$ rpki-client -vvf rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.mft File: fXPvEVsCxeAQI4R6kbCw8Hi18Cs.mft (raw, json) Hash identifier: 8YVmiCdK0Nioli/AogmgE63cVxzxD/vItqm/Mmf9Hw0= Subject key identifier: AD:C4:E8:57:7C:DD:48:62:D5:55:AF:30:B8:EB:AC:76:F2:79:86:9B Authority key identifier: 7D:73:EF:11:5B:02:C5:E0:10:23:84:7A:91:B0:B0:F0:78:B5:F0:2B Certificate issuer: /CN=A9152A4E/serialNumber=7D73EF115B02C5E01023847A91B0B0F078B5F02B Certificate serial: 062A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.mft Manifest number: 0624 Signing time: Thu 24 Apr 2025 22:32:22 +0000 Manifest this update: Thu 24 Apr 2025 22:32:22 +0000 Manifest next update: Thu 01 May 2025 22:32:22 +0000 Files and hashes: 1: fXPvEVsCxeAQI4R6kbCw8Hi18Cs.crl (hash: c5mE1oeBCX3/sjtefhWGsDyQ8gXFytaDwZUAkjglTSg=) 2: 6E1BCBC495BD11EB89199F37C4F9AE02.roa (hash: 6VtKNEIG9FeALH3s40nNCwARNeebdE67fF6D4UlnLsE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.crl rsync://rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:32:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1578 (0x62a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152A4E, serialNumber=7D73EF115B02C5E01023847A91B0B0F078B5F02B Validity Not Before: Apr 24 22:32:22 2025 GMT Not After : May 1 22:32:22 2025 GMT Subject: CN=680abbf6-b4a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e0:a1:c5:ee:e3:c4:90:70:5e:45:9e:e5:fd: 9b:d3:93:e8:4e:fd:32:bb:e2:9b:cb:75:03:58:b5: 82:0a:e5:d5:bf:85:22:42:35:05:2b:d8:7f:3f:73: f0:fd:45:89:fa:4d:f7:99:2d:a0:a2:13:58:de:ac: 12:d6:32:60:c3:9c:e2:dc:85:95:e0:a1:d4:e3:34: 46:41:d9:24:b2:a9:ec:0d:3a:9b:41:9b:ad:7b:ee: 45:d9:08:c4:29:6e:a1:f2:e8:f3:30:0a:76:23:f7: 19:c3:06:f7:2a:f7:62:8e:44:62:31:4d:cd:f1:cd: 61:12:f3:03:7d:5d:00:3f:24:27:7f:e3:5a:14:6e: 95:dc:81:da:17:9f:6d:97:83:26:cd:0c:e6:5c:f5: 7c:fc:70:7b:db:ec:3d:ec:10:3f:2f:9d:c8:ab:fc: 79:df:11:5f:f8:03:fa:5b:bb:7f:ec:71:a8:e6:fe: 5e:29:6b:90:b8:1a:9e:03:ca:3e:39:31:01:dc:1e: 19:ea:19:5d:b1:cb:e7:10:f3:f8:37:a7:b7:44:dd: 30:4b:dd:19:06:fb:ea:6a:1c:b9:ce:67:d8:6c:99: cb:67:fc:e3:76:3f:2e:f7:db:fc:41:87:1d:72:70: bb:17:5e:6c:0a:c7:7d:97:d9:78:1b:3c:1e:78:bb: 89:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:C4:E8:57:7C:DD:48:62:D5:55:AF:30:B8:EB:AC:76:F2:79:86:9B X509v3 Authority Key Identifier: keyid:7D:73:EF:11:5B:02:C5:E0:10:23:84:7A:91:B0:B0:F0:78:B5:F0:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:ee:dd:dc:cc:35:d6:09:d2:e7:16:cc:f6:4c:c5:94:d5:4c: fa:87:f1:b5:55:d3:6c:56:9e:85:3d:c0:81:a5:d0:d0:b2:0b: 14:98:7b:f1:94:a0:72:fa:8f:a9:e7:87:0c:49:80:bc:86:33: 0a:03:dd:5f:92:e7:e4:97:da:5f:ed:ed:ad:ab:57:0d:de:38: 18:67:25:ae:c0:2f:cc:fa:4b:ce:86:a4:63:11:ca:55:74:03: a8:54:b3:c2:a5:2e:a4:6e:ac:34:a4:59:61:79:00:6c:52:44: a3:5f:21:ed:d0:aa:db:c7:c6:20:55:0a:9e:b6:61:4d:ab:0f: 0b:4e:59:42:a7:64:83:b9:b3:84:99:64:d6:5c:1c:13:10:bf: bc:04:ac:9b:1b:64:4a:9e:4d:f0:d3:32:d5:13:0e:7e:9d:a7: c0:4c:bf:84:c3:a8:f0:f3:e0:57:58:dd:22:48:21:d8:46:14: f9:35:72:66:83:bb:1d:06:d7:a1:80:f8:a3:90:b1:03:5b:5d: 58:65:96:44:ad:af:7e:f0:20:a6:f7:fd:71:ac:a4:50:ae:4c: 79:55:9d:24:cc:2c:d7:71:f7:cd:1b:68:34:20:ee:24:f7:f2: 0a:07:10:aa:ef:cb:fc:ce:a7:05:ab:5a:7c:3c:08:88:d8:95: 9a:f3:7f:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBiowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTJBNEUxMTAvBgNVBAUTKDdENzNFRjExNUIwMkM1RTAxMDIzODQ3QTkxQjBCMEYw NzhCNUYwMkIwHhcNMjUwNDI0MjIzMjIyWhcNMjUwNTAxMjIzMjIyWjAYMRYwFAYD VQQDEw02ODBhYmJmNi1iNGEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuOChxe7jxJBwXkWe5f2b05PoTv0yu+Kby3UDWLWCCuXVv4UiQjUFK9h/P3Pw /UWJ+k33mS2gohNY3qwS1jJgw5zi3IWV4KHU4zRGQdkksqnsDTqbQZute+5F2QjE KW6h8ujzMAp2I/cZwwb3KvdijkRiMU3N8c1hEvMDfV0APyQnf+NaFG6V3IHaF59t l4MmzQzmXPV8/HB72+w97BA/L53Iq/x53xFf+AP6W7t/7HGo5v5eKWuQuBqeA8o+ OTEB3B4Z6hldscvnEPP4N6e3RN0wS90ZBvvqahy5zmfYbJnLZ/zjdj8u99v8QYcd cnC7F15sCsd9l9l4GzweeLuJzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK3E6Fd8 3Uhi1VWvMLjrrHbyeYabMB8GA1UdIwQYMBaAFH1z7xFbAsXgECOEepGwsPB4tfAr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MkE0RS9FM0UwODQ2NDk1 QkIxMUVCOTQ5RkU1MzVDNEY5QUUwMi9mWFB2RVZzQ3hlQVFJNFI2a2JDdzhIaTE4 Q3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZYUHZFVnNDeGVBUUk0UjZrYkN3OEhpMThDcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MkE0RS9FM0UwODQ2NDk1QkIxMUVCOTQ5RkU1MzVDNEY5QUUwMi9mWFB2RVZzQ3hl QVFJNFI2a2JDdzhIaTE4Q3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCC7t3czDXWCdLnFsz2TMWU1Uz6h/G1VdNsVp6FPcCBpdDQsgsUmHvx lKBy+o+p54cMSYC8hjMKA91fkufkl9pf7e2tq1cN3jgYZyWuwC/M+kvOhqRjEcpV dAOoVLPCpS6kbqw0pFlheQBsUkSjXyHt0Krbx8YgVQqetmFNqw8LTllCp2SDubOE mWTWXBwTEL+8BKybG2RKnk3w0zLVEw5+nafATL+Ew6jw8+BXWN0iSCHYRhT5NXJm g7sdBtehgPijkLEDW11YZZZEra9+8CCm9/1xrKRQrkx5VZ0kzCzXcffNG2g0IO4k 9/IKBxCq78v8zqcFq1p8PAiI2JWa83+g -----END CERTIFICATE-----Generated at Sat Apr 26 05:05:22 2025 by rpki-client