$ rpki-client -vvf rpki.apnic.net/member_repository/A9138171/75D64D1218BD11EB8B844345C4F9AE02/cXie4rLIt_u60_eFpd3s7xXMFaQ.mft File: cXie4rLIt_u60_eFpd3s7xXMFaQ.mft (raw, json) Hash identifier: QOOnt2SeLrwO6d901kJQ3pqmbMA7D6FVurS6Dk9IP3g= Subject key identifier: D4:C7:A6:2A:84:26:F9:1A:09:84:20:8B:A2:C8:C0:71:19:DA:C4:06 Authority key identifier: 71:78:9E:E2:B2:C8:B7:FB:BA:D3:F7:85:A5:DD:EC:EF:15:CC:15:A4 Certificate issuer: /CN=A9138171/serialNumber=71789EE2B2C8B7FBBAD3F785A5DDECEF15CC15A4 Certificate serial: 0770 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXie4rLIt_u60_eFpd3s7xXMFaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138171/75D64D1218BD11EB8B844345C4F9AE02/cXie4rLIt_u60_eFpd3s7xXMFaQ.mft Manifest number: 0763 Signing time: Thu 24 Apr 2025 21:23:39 +0000 Manifest this update: Thu 24 Apr 2025 21:23:39 +0000 Manifest next update: Thu 01 May 2025 21:23:39 +0000 Files and hashes: 1: cXie4rLIt_u60_eFpd3s7xXMFaQ.crl (hash: 5PrshhHGveZmirhyoB5Gq3uIVs6kfP817woId6BjV/k=) 2: 4848EB6E18BF11EBA5E2E946C4F9AE02.roa (hash: WcA0e7saPqIm2zyMau/4bmWlWFCaJQ2WBh7b1zXUWss=) 3: 47B8C6B018BF11EBA5E2E946C4F9AE02.roa (hash: saRxbZnY10CKxPD1pSytKLg8FuSkNaBBrOYD5Hz5qjk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138171/75D64D1218BD11EB8B844345C4F9AE02/cXie4rLIt_u60_eFpd3s7xXMFaQ.crl rsync://rpki.apnic.net/member_repository/A9138171/75D64D1218BD11EB8B844345C4F9AE02/cXie4rLIt_u60_eFpd3s7xXMFaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXie4rLIt_u60_eFpd3s7xXMFaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:23:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1904 (0x770) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138171, serialNumber=71789EE2B2C8B7FBBAD3F785A5DDECEF15CC15A4 Validity Not Before: Apr 24 21:23:39 2025 GMT Not After : May 1 21:23:39 2025 GMT Subject: CN=680aabdb-ac2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:a8:b7:1a:01:0d:46:77:ed:f7:72:2d:db:b4: a8:05:d2:29:3c:e4:02:7b:e7:50:f3:c2:22:c5:e8: 52:46:07:04:a4:b0:d8:6a:ca:35:e0:d3:e9:1a:b4: 44:e2:ab:4d:03:43:10:f4:b3:ed:d0:73:50:e8:66: 7b:9a:f2:60:e2:9f:4f:49:f4:36:21:4e:e5:97:37: 41:e3:8e:0b:1e:fd:cd:db:d6:ce:59:2d:e9:36:b3: b8:ee:2e:3f:e0:ee:71:6d:e6:80:49:de:38:ad:45: a6:df:01:46:8a:ec:de:c1:d3:d0:3c:97:b2:a0:3e: 2f:3a:1c:53:d4:0b:df:0c:9f:a1:8f:aa:c0:19:b2: 36:a4:8a:1d:01:db:c9:f3:ac:66:a3:bb:7b:41:d4: 89:fb:2d:a3:82:21:a3:f2:ee:ae:26:e0:a4:94:b2: 96:25:1e:d8:1b:6c:ce:17:a2:69:21:46:2f:53:4c: e6:44:25:a6:04:c8:5d:f8:69:44:59:d4:68:ad:19: 5b:c9:1c:0e:8e:2e:88:04:ff:ee:14:d2:f6:21:06: 39:11:cc:ba:8e:8e:f7:46:d1:44:24:c8:52:ad:a7: ae:21:2c:19:78:d6:38:76:78:bb:8b:19:02:1d:4c: 4e:f0:68:39:6b:39:44:17:36:79:83:b2:8a:91:4e: b9:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:C7:A6:2A:84:26:F9:1A:09:84:20:8B:A2:C8:C0:71:19:DA:C4:06 X509v3 Authority Key Identifier: keyid:71:78:9E:E2:B2:C8:B7:FB:BA:D3:F7:85:A5:DD:EC:EF:15:CC:15:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138171/75D64D1218BD11EB8B844345C4F9AE02/cXie4rLIt_u60_eFpd3s7xXMFaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXie4rLIt_u60_eFpd3s7xXMFaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138171/75D64D1218BD11EB8B844345C4F9AE02/cXie4rLIt_u60_eFpd3s7xXMFaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:43:c2:48:17:27:6b:9a:bd:63:d5:13:e4:88:2e:54:a8:7f: c0:7d:f3:1a:53:53:94:99:7b:4a:c1:cd:0e:27:a9:58:1c:da: ed:35:6b:21:c6:0a:8c:67:a0:98:6a:ab:8c:ca:6d:43:4c:8f: 97:0c:f5:ae:44:a0:d9:81:26:b0:c0:30:6e:d3:4a:b7:cb:78: b2:13:11:3a:9a:41:c8:42:5a:4b:2e:91:ed:6a:24:24:a7:2f: 5a:36:5d:9b:ed:de:14:af:ac:30:1f:18:ac:40:90:a4:57:ae: be:1a:01:ea:43:45:a1:cf:f6:ab:e6:8f:17:f8:42:62:06:b5: ba:59:f5:48:38:c4:a4:81:99:e1:db:e0:f8:23:0e:46:95:2b: cb:06:64:c9:8c:ac:de:db:2a:14:dd:41:85:a0:f5:76:a6:63: 10:67:29:04:53:dd:57:3d:57:c0:d8:11:fa:21:81:2d:fd:65: 2d:ea:a5:9f:15:e7:47:bd:19:95:f8:54:bc:99:71:27:d9:86: 5f:59:04:60:3f:c4:ae:af:10:0e:d6:12:f1:9b:37:98:67:89: 36:45:00:71:f8:80:c9:46:b5:31:0a:50:23:61:7f:91:a5:43: 9d:b7:6c:47:3b:70:4e:d0:e5:93:6e:0e:37:5d:e3:a2:8c:28: 1a:70:23:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB3AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgxNzExMTAvBgNVBAUTKDcxNzg5RUUyQjJDOEI3RkJCQUQzRjc4NUE1RERFQ0VG MTVDQzE1QTQwHhcNMjUwNDI0MjEyMzM5WhcNMjUwNTAxMjEyMzM5WjAYMRYwFAYD VQQDEw02ODBhYWJkYi1hYzJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsKi3GgENRnft93It27SoBdIpPOQCe+dQ88IixehSRgcEpLDYaso14NPpGrRE 4qtNA0MQ9LPt0HNQ6GZ7mvJg4p9PSfQ2IU7llzdB444LHv3N29bOWS3pNrO47i4/ 4O5xbeaASd44rUWm3wFGiuzewdPQPJeyoD4vOhxT1AvfDJ+hj6rAGbI2pIodAdvJ 86xmo7t7QdSJ+y2jgiGj8u6uJuCklLKWJR7YG2zOF6JpIUYvU0zmRCWmBMhd+GlE WdRorRlbyRwOji6IBP/uFNL2IQY5Ecy6jo73RtFEJMhSraeuISwZeNY4dni7ixkC HUxO8Gg5azlEFzZ5g7KKkU65MQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNTHpiqE JvkaCYQgi6LIwHEZ2sQGMB8GA1UdIwQYMBaAFHF4nuKyyLf7utP3haXd7O8VzBWk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODE3MS83NUQ2NEQxMjE4 QkQxMUVCOEI4NDQzNDVDNEY5QUUwMi9jWGllNHJMSXRfdTYwX2VGcGQzczd4WE1G YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NYaWU0ckxJdF91NjBfZUZwZDNzN3hYTUZhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODE3MS83NUQ2NEQxMjE4QkQxMUVCOEI4NDQzNDVDNEY5QUUwMi9jWGllNHJMSXRf dTYwX2VGcGQzczd4WE1GYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmQ8JIFydrmr1j1RPkiC5UqH/AffMaU1OUmXtKwc0OJ6lYHNrtNWsh xgqMZ6CYaquMym1DTI+XDPWuRKDZgSawwDBu00q3y3iyExE6mkHIQlpLLpHtaiQk py9aNl2b7d4Ur6wwHxisQJCkV66+GgHqQ0Whz/ar5o8X+EJiBrW6WfVIOMSkgZnh 2+D4Iw5GlSvLBmTJjKze2yoU3UGFoPV2pmMQZykEU91XPVfA2BH6IYEt/WUt6qWf FedHvRmV+FS8mXEn2YZfWQRgP8SurxAO1hLxmzeYZ4k2RQBx+IDJRrUxClAjYX+R pUOdt2xHO3BO0OWTbg43XeOijCgacCMY -----END CERTIFICATE-----Generated at Sat Apr 26 13:04:15 2025 by rpki-client