$ rpki-client -vvf rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft File: XZRtT0edN7zhcAywut1RosPfYg8.mft (raw, json) Hash identifier: L85viMSFIundzHqVSWSeWVVOsNhO7pTS6nkeTb/Nmjo= Subject key identifier: AC:C4:A0:65:B0:82:0C:AB:98:DB:DD:E5:34:3C:63:18:46:FB:09:A3 Authority key identifier: 5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F Certificate issuer: /CN=A9152787/serialNumber=5D946D4F479D37BCE1700CB0BADD51A2C3DF620F Certificate serial: 65 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft Manifest number: 63 Signing time: Fri 25 Apr 2025 06:02:13 +0000 Manifest this update: Fri 25 Apr 2025 06:02:13 +0000 Manifest next update: Fri 02 May 2025 06:02:13 +0000 Files and hashes: 1: XZRtT0edN7zhcAywut1RosPfYg8.crl (hash: rW6ei8t1VFduw7R+LNxUznEvkTZr7zhBLj7kzYd1vyY=) 2: CB24F37C033711F0B76A8520C4F9AE02.roa (hash: 086QtTZ7qGEzYPBYkqpmBPb1qovlHlBpqUB0MoAAlkQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.crl rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:02:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 101 (0x65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152787, serialNumber=5D946D4F479D37BCE1700CB0BADD51A2C3DF620F Validity Not Before: Apr 25 06:02:13 2025 GMT Not After : May 2 06:02:13 2025 GMT Subject: CN=680b2565-15fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:85:bf:df:d7:94:6c:c6:3c:01:80:ec:50:ef: 0e:fc:bc:34:10:92:f6:be:52:12:9d:b4:af:d2:97: 22:c5:87:e8:96:58:97:ff:ef:7a:7f:15:62:c2:0b: f0:8a:8f:00:16:f8:e0:0e:8c:db:7d:3c:71:94:1b: a5:00:60:93:e4:55:bf:8c:b2:3a:d1:96:7a:68:e6: 10:5f:63:1d:05:71:7c:e2:f0:a2:a9:84:54:da:3d: d3:0a:ab:98:23:1a:69:d8:d2:ea:50:7d:ba:69:a6: d2:80:81:7c:f1:9d:d6:2a:d4:32:dc:d4:a6:32:5a: 02:8f:71:f4:fd:26:be:29:3f:9c:9e:e5:71:84:63: 1b:09:e0:25:2e:37:b6:58:ea:23:52:1d:a7:37:f2: f0:06:09:a9:f5:5f:ff:5a:e2:5e:fc:5b:a5:a9:28: e4:7a:30:a2:00:bc:1d:f1:1d:68:09:d9:39:61:8b: 1a:45:5d:33:28:ec:96:49:1b:9e:e2:82:59:21:26: c3:77:f1:68:34:5e:b3:25:1b:90:89:ac:a2:74:80: 07:cc:61:9b:00:f1:b0:14:68:2f:f5:9f:03:b2:c9: b4:9e:52:8d:6c:1c:8c:6b:bd:19:5e:ea:a7:48:f0: 3f:d7:35:ac:ae:16:cf:85:1c:d6:20:e5:4c:2a:66: ce:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:C4:A0:65:B0:82:0C:AB:98:DB:DD:E5:34:3C:63:18:46:FB:09:A3 X509v3 Authority Key Identifier: keyid:5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:4b:d1:5c:d6:20:f4:a9:8a:a3:1d:2d:94:b5:3a:0f:0e:55: b6:f2:96:79:4b:79:18:47:5a:31:02:28:00:86:18:69:81:9f: ea:c9:96:75:d2:70:42:67:51:51:e7:2d:57:b5:16:64:40:b7: 8b:5a:53:7c:40:bb:5d:3d:c9:12:f9:cb:8e:ad:88:13:c3:e0: c6:40:d3:df:44:04:fb:98:34:23:27:65:74:21:6b:cc:6b:c2: 4b:cb:5a:ac:d2:9f:39:64:f0:a6:67:a4:f5:29:91:bb:7c:00: 3f:fb:c8:36:0c:ec:30:3f:2a:31:79:a2:83:d7:74:de:10:2c: 06:30:3e:b4:c3:25:4d:7f:98:34:1d:fa:63:8d:85:67:bf:f2: 07:09:73:61:d9:28:fc:8e:db:bb:b5:a7:50:4e:c2:64:99:04: c0:af:0c:9b:35:b9:7f:cb:bd:7e:a8:93:1f:0f:cc:68:10:e2: 63:f6:d3:12:7c:6f:58:49:75:3b:27:b3:d4:c5:e6:10:cf:71: a7:56:37:2f:c2:43:08:74:75:21:60:33:7a:56:b5:af:4b:81: b0:2a:9a:42:28:02:e1:e8:da:e9:04:f2:8c:5b:56:eb:bd:88: 57:34:0a:a2:fb:bc:a8:6e:6c:91:3d:93:f2:2b:ec:6e:04:82: 30:e8:04:8f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 Mjc4NzExMC8GA1UEBRMoNUQ5NDZENEY0NzlEMzdCQ0UxNzAwQ0IwQkFERDUxQTJD M0RGNjIwRjAeFw0yNTA0MjUwNjAyMTNaFw0yNTA1MDIwNjAyMTNaMBgxFjAUBgNV BAMTDTY4MGIyNTY1LTE1ZmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCphb/f15RsxjwBgOxQ7w78vDQQkva+UhKdtK/SlyLFh+iWWJf/73p/FWLCC/CK jwAW+OAOjNt9PHGUG6UAYJPkVb+MsjrRlnpo5hBfYx0FcXzi8KKphFTaPdMKq5gj GmnY0upQfbppptKAgXzxndYq1DLc1KYyWgKPcfT9Jr4pP5ye5XGEYxsJ4CUuN7ZY 6iNSHac38vAGCan1X/9a4l78W6WpKOR6MKIAvB3xHWgJ2TlhixpFXTMo7JZJG57i glkhJsN38Wg0XrMlG5CJrKJ0gAfMYZsA8bAUaC/1nwOyybSeUo1sHIxrvRle6qdI 8D/XNayuFs+FHNYg5UwqZs5jAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUrMSgZbCC DKuY293lNDxjGEb7CaMwHwYDVR0jBBgwFoAUXZRtT0edN7zhcAywut1RosPfYg8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUyNzg3LzIyODY1NjJBOEY3 OTExRUY5MkFDNzgxRUM0RjlBRTAyL1haUnRUMGVkTjd6aGNBeXd1dDFSb3NQZlln OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWFpSdFQwZWRON3poY0F5d3V0MVJvc1BmWWc4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUy Nzg3LzIyODY1NjJBOEY3OTExRUY5MkFDNzgxRUM0RjlBRTAyL1haUnRUMGVkTjd6 aGNBeXd1dDFSb3NQZllnOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJRL0VzWIPSpiqMdLZS1Og8OVbbylnlLeRhHWjECKACGGGmBn+rJlnXS cEJnUVHnLVe1FmRAt4taU3xAu109yRL5y46tiBPD4MZA099EBPuYNCMnZXQha8xr wkvLWqzSnzlk8KZnpPUpkbt8AD/7yDYM7DA/KjF5ooPXdN4QLAYwPrTDJU1/mDQd +mONhWe/8gcJc2HZKPyO27u1p1BOwmSZBMCvDJs1uX/LvX6okx8PzGgQ4mP20xJ8 b1hJdTsns9TF5hDPcadWNy/CQwh0dSFgM3pWta9LgbAqmkIoAuHo2ukE8oxbVuu9 iFc0CqL7vKhubJE9k/Ir7G4EgjDoBI8= -----END CERTIFICATE-----Generated at Sat Apr 26 14:16:17 2025 by rpki-client