$ rpki-client -vvf rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.mft File: xG1ZE_bCUMau4vMnRTXOhmKVufo.mft (raw, json) Hash identifier: Bnu3UoiVgbSgp8do2Xie0wU1wecyTMotxYWGz11yeQs= Subject key identifier: 71:F3:E3:D1:52:FF:DB:C6:3B:43:AB:F1:4C:E7:8F:FF:48:90:A6:85 Authority key identifier: C4:6D:59:13:F6:C2:50:C6:AE:E2:F3:27:45:35:CE:86:62:95:B9:FA Certificate issuer: /CN=A9148B83/serialNumber=C46D5913F6C250C6AEE2F3274535CE866295B9FA Certificate serial: 064D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xG1ZE_bCUMau4vMnRTXOhmKVufo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.mft Manifest number: 0642 Signing time: Thu 24 Apr 2025 22:22:51 +0000 Manifest this update: Thu 24 Apr 2025 22:22:51 +0000 Manifest next update: Thu 01 May 2025 22:22:51 +0000 Files and hashes: 1: xG1ZE_bCUMau4vMnRTXOhmKVufo.crl (hash: 8XCHL+UbthkcrFcm9p6uyhF3RBnP7uxWZZS+XznD3+4=) 2: 65FE79B8885D11EB81454E41C4F9AE02.roa (hash: 327ah/e9fUSF5H9j9NGNYuwKtrueHyZEroURzg2Xyh8=) 3: 009E969E885C11EB88A7723DC4F9AE02.roa (hash: 10SP9rtLMhnfiCiDsyU/nUUSFenGWa1NBToGV5Ae6kE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.crl rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xG1ZE_bCUMau4vMnRTXOhmKVufo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:22:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1613 (0x64d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148B83, serialNumber=C46D5913F6C250C6AEE2F3274535CE866295B9FA Validity Not Before: Apr 24 22:22:51 2025 GMT Not After : May 1 22:22:51 2025 GMT Subject: CN=680ab9bb-b69f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:f1:86:73:cb:3c:c2:5d:b3:f7:6f:b3:5d:6f: a8:fd:36:cb:5b:97:c2:90:ec:39:17:a7:d8:af:3f: 74:2c:6a:90:bc:76:fe:fb:6f:e7:52:3d:fb:da:ed: d5:ad:a0:10:63:ae:ec:42:e0:0e:6f:bf:8e:17:24: 3a:e2:b9:5d:c8:00:f6:31:73:34:4f:2e:eb:ed:bd: 15:e0:d8:70:19:a4:6c:48:fe:55:29:0b:44:c0:da: 86:bb:8d:13:24:d2:ba:3f:f1:ec:7b:eb:6b:95:6c: a5:dd:27:46:83:3e:cf:68:c8:2b:8b:59:f7:52:0b: 33:a4:a0:56:43:51:d1:14:52:b2:e5:d7:29:55:81: a1:11:2b:86:ae:b6:7e:ce:f4:ea:e7:19:be:ba:66: 9a:b2:ef:b2:e6:33:37:17:9b:ae:1e:ab:34:d1:1b: b7:6f:21:3f:65:55:5f:61:d7:b2:a0:3c:a9:b2:a1: 9d:11:99:17:18:5c:75:27:e1:2a:ab:88:43:79:c7: 47:56:2d:86:88:83:bb:23:32:f7:ab:ea:50:32:78: 5f:ac:1a:8f:08:bc:de:38:9f:61:32:0d:ab:e7:c8: 64:ac:2c:19:07:a4:28:d6:70:dd:a4:6e:02:8e:c6: 58:03:d5:57:7c:07:fa:68:25:ff:cd:26:3a:cd:8d: d0:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:F3:E3:D1:52:FF:DB:C6:3B:43:AB:F1:4C:E7:8F:FF:48:90:A6:85 X509v3 Authority Key Identifier: keyid:C4:6D:59:13:F6:C2:50:C6:AE:E2:F3:27:45:35:CE:86:62:95:B9:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xG1ZE_bCUMau4vMnRTXOhmKVufo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:79:e3:a7:eb:9e:d6:8c:41:ed:fd:61:5d:c4:84:a3:67:ad: 0b:cf:fe:d4:81:2f:91:e1:03:43:3f:7c:71:7f:1c:60:96:8f: 6e:3e:35:f1:72:19:a1:0d:27:36:38:ee:22:8b:2e:b6:ca:e4: 15:90:90:d2:f7:22:b0:52:4b:ab:44:62:a7:e7:50:76:49:19: ff:8d:9e:94:3e:60:f1:38:ec:86:4f:c0:c6:ac:fc:89:19:e7: be:5e:98:e2:7a:8b:42:75:9f:a4:d7:6d:f8:e1:e7:d2:c8:47: 66:1f:f2:fd:fc:54:b5:a9:70:2e:1c:0f:72:7c:c8:66:13:64: 6d:72:d4:22:fb:b2:b6:69:86:3b:57:e5:7e:9a:28:4b:b0:b4: 11:59:5b:e5:0c:f1:71:45:f7:f0:d4:ba:55:6a:de:11:20:b2: a5:ab:60:51:5f:94:6b:92:66:44:35:01:0a:41:2d:26:d5:65: 6e:84:a4:f3:fa:cd:5c:79:ac:5e:c0:51:b8:cc:a0:8f:50:36: 02:5b:c2:8f:c8:fc:24:03:6d:b7:c4:cc:bc:d1:94:5a:b8:d1: da:7d:cb:23:ab:bc:c2:c6:5b:ce:24:a7:7a:2a:c9:1e:fb:c6: 62:57:f1:a9:16:71:f7:47:e4:31:a6:ba:16:a6:85:4f:fe:d3: 5f:2e:3e:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBk0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhCODMxMTAvBgNVBAUTKEM0NkQ1OTEzRjZDMjUwQzZBRUUyRjMyNzQ1MzVDRTg2 NjI5NUI5RkEwHhcNMjUwNDI0MjIyMjUxWhcNMjUwNTAxMjIyMjUxWjAYMRYwFAYD VQQDEw02ODBhYjliYi1iNjlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuvGGc8s8wl2z92+zXW+o/TbLW5fCkOw5F6fYrz90LGqQvHb++2/nUj372u3V raAQY67sQuAOb7+OFyQ64rldyAD2MXM0Ty7r7b0V4NhwGaRsSP5VKQtEwNqGu40T JNK6P/Hse+trlWyl3SdGgz7PaMgri1n3UgszpKBWQ1HRFFKy5dcpVYGhESuGrrZ+ zvTq5xm+umaasu+y5jM3F5uuHqs00Ru3byE/ZVVfYdeyoDypsqGdEZkXGFx1J+Eq q4hDecdHVi2GiIO7IzL3q+pQMnhfrBqPCLzeOJ9hMg2r58hkrCwZB6Qo1nDdpG4C jsZYA9VXfAf6aCX/zSY6zY3QvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHHz49FS /9vGO0Or8Uznj/9IkKaFMB8GA1UdIwQYMBaAFMRtWRP2wlDGruLzJ0U1zoZilbn6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEI4My83N0FBNDE0Njg3 RTExMUVCQjUwMUNCMjVDNEY5QUUwMi94RzFaRV9iQ1VNYXU0dk1uUlRYT2htS1Z1 Zm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hHMVpFX2JDVU1hdTR2TW5SVFhPaG1LVnVmby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEI4My83N0FBNDE0Njg3RTExMUVCQjUwMUNCMjVDNEY5QUUwMi94RzFaRV9iQ1VN YXU0dk1uUlRYT2htS1Z1Zm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQeeOn657WjEHt/WFdxISjZ60Lz/7UgS+R4QNDP3xxfxxglo9uPjXx chmhDSc2OO4iiy62yuQVkJDS9yKwUkurRGKn51B2SRn/jZ6UPmDxOOyGT8DGrPyJ Gee+XpjieotCdZ+k12344efSyEdmH/L9/FS1qXAuHA9yfMhmE2RtctQi+7K2aYY7 V+V+mihLsLQRWVvlDPFxRffw1LpVat4RILKlq2BRX5RrkmZENQEKQS0m1WVuhKTz +s1ceaxewFG4zKCPUDYCW8KPyPwkA223xMy80ZRauNHafcsjq7zCxlvOJKd6Kske +8ZiV/GpFnH3R+QxproWpoVP/tNfLj7q -----END CERTIFICATE-----Generated at Sat Apr 26 05:08:00 2025 by rpki-client