$ rpki-client -vvf rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft File: X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft (raw, json) Hash identifier: bbtgYKNRgApZCyY+8bkX0ogdo0ulTNmQIizsaZjv1so= Subject key identifier: 6C:F0:FA:85:39:92:CE:43:59:AF:68:6F:1A:DB:75:4A:E5:CF:C7:19 Authority key identifier: 5F:6C:8F:A3:A6:58:74:02:31:B2:C4:B1:34:81:BE:11:50:0A:DC:76 Certificate issuer: /CN=A9156255/serialNumber=5F6C8FA3A658740231B2C4B13481BE11500ADC76 Certificate serial: 01DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft Manifest number: 01D8 Signing time: Fri 25 Apr 2025 01:58:01 +0000 Manifest this update: Fri 25 Apr 2025 01:58:00 +0000 Manifest next update: Fri 02 May 2025 01:58:00 +0000 Files and hashes: 1: X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl (hash: TCJNDjffIyBKNWmZeocusn/NmofodSRd88ygu88/az4=) 2: 5637146C507611EDB59D9E2EC4F9AE02.roa (hash: EH2CgKpJsudgq4d5ghs/SJTUKeHCisdiJwkRQRkot80=) 3: D1FCB742514711ED92E3885EC4F9AE02.roa (hash: Js88dwnU0hyC4RLKD1NQ44jyQxJzu0X07dqPCT3Ukh0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:58:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 478 (0x1de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156255, serialNumber=5F6C8FA3A658740231B2C4B13481BE11500ADC76 Validity Not Before: Apr 25 01:58:00 2025 GMT Not After : May 2 01:58:00 2025 GMT Subject: CN=680aec29-3dbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:44:f2:88:34:c9:27:cc:5d:b1:fa:3c:a1:e4: c7:8f:0e:17:cd:f4:a6:a1:df:a5:c5:a2:1a:7d:3e: 9a:56:1f:e2:7d:ef:00:7f:16:58:63:1b:e5:1c:9c: 0b:bf:37:c0:60:dc:54:3d:ca:29:ec:bd:fd:c8:04: c2:e6:76:c1:8d:24:3c:aa:9c:b6:b8:8d:0d:45:d5: cd:f0:ef:7a:0f:74:92:11:a7:9f:53:6f:67:8e:15: d0:bf:62:c2:2b:37:66:13:07:ae:f9:2c:cc:75:25: 57:b2:1e:49:20:5e:87:ef:d4:1b:d6:5c:62:f3:b0: ef:3f:74:c9:4d:62:e9:85:59:ff:5b:ba:ce:db:22: a2:95:45:70:33:a3:d6:d1:70:a2:88:58:e4:5d:cd: 43:c0:af:33:39:2d:12:60:ad:ef:11:46:d0:25:c7: 35:60:f7:75:89:dd:fa:4c:69:c0:dc:4e:8c:15:0d: 27:e8:54:d5:54:5f:76:33:45:90:d0:7d:c2:e0:cc: 54:e0:f6:59:25:02:cd:cf:38:b0:ae:00:bf:49:36: 56:55:a0:0a:ee:58:85:e8:a1:db:8b:84:5a:06:69: 1e:21:a4:08:b5:6c:5c:fe:b8:87:03:10:c0:1e:dd: 9a:fa:44:ee:f7:a3:de:ab:e5:2a:26:b8:97:c4:19: e4:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:F0:FA:85:39:92:CE:43:59:AF:68:6F:1A:DB:75:4A:E5:CF:C7:19 X509v3 Authority Key Identifier: keyid:5F:6C:8F:A3:A6:58:74:02:31:B2:C4:B1:34:81:BE:11:50:0A:DC:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:2c:b8:12:8c:d5:a1:30:69:fd:18:0b:df:38:0b:8e:14:68: 53:e5:d9:1d:4d:d1:3b:58:e9:74:ac:eb:33:b5:c0:ef:d7:50: 2c:42:47:d2:31:a2:87:d7:8e:16:c1:47:15:5b:75:fb:5b:ac: f6:49:a8:7a:e0:b5:3b:cd:58:9b:7e:86:80:6b:22:75:0c:84: 5e:bb:16:82:5b:94:52:a2:4e:a9:26:a1:ff:de:9e:cb:09:15: fe:2d:ad:22:b7:41:0f:7d:17:4b:03:6c:c4:3d:a7:19:b6:ff: 8d:4a:f8:62:1c:40:ff:3d:a4:14:51:ea:40:db:3d:36:92:5f: 0b:27:92:81:95:3f:e3:16:ab:59:60:39:6b:ed:e6:34:fc:5b: f5:58:75:4e:a3:a4:52:a0:ba:d3:60:ef:24:68:7a:af:62:df: c9:88:38:1e:87:87:fa:28:77:2d:69:0b:cf:60:b7:a6:64:21: 16:75:52:31:a7:1e:47:28:7b:87:50:11:03:ab:ec:e8:ff:e3: 5e:c0:de:ac:f3:18:b0:56:cd:5b:25:f7:bb:23:4a:47:13:cb: 75:47:7e:5d:dc:be:46:6a:3f:9f:93:d1:9d:73:2c:45:9e:e9: 4b:a7:a2:60:58:0f:ef:74:2d:d6:04:20:48:f7:db:b5:28:f4: b0:1e:3a:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAd4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYyNTUxMTAvBgNVBAUTKDVGNkM4RkEzQTY1ODc0MDIzMUIyQzRCMTM0ODFCRTEx NTAwQURDNzYwHhcNMjUwNDI1MDE1ODAwWhcNMjUwNTAyMDE1ODAwWjAYMRYwFAYD VQQDEw02ODBhZWMyOS0zZGJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAykTyiDTJJ8xdsfo8oeTHjw4XzfSmod+lxaIafT6aVh/ife8AfxZYYxvlHJwL vzfAYNxUPcop7L39yATC5nbBjSQ8qpy2uI0NRdXN8O96D3SSEaefU29njhXQv2LC KzdmEweu+SzMdSVXsh5JIF6H79Qb1lxi87DvP3TJTWLphVn/W7rO2yKilUVwM6PW 0XCiiFjkXc1DwK8zOS0SYK3vEUbQJcc1YPd1id36TGnA3E6MFQ0n6FTVVF92M0WQ 0H3C4MxU4PZZJQLNzziwrgC/STZWVaAK7liF6KHbi4RaBmkeIaQItWxc/riHAxDA Ht2a+kTu96Peq+UqJriXxBnknwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGzw+oU5 ks5DWa9obxrbdUrlz8cZMB8GA1UdIwQYMBaAFF9sj6OmWHQCMbLEsTSBvhFQCtx2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjI1NS85MTYyMDg0QzUw NzMxMUVEOUI4QzE0MkRDNEY5QUUwMi9YMnlQbzZaWWRBSXhzc1N4TklHLUVWQUsz SFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gyeVBvNlpZZEFJeHNzU3hOSUctRVZBSzNIWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjI1NS85MTYyMDg0QzUwNzMxMUVEOUI4QzE0MkRDNEY5QUUwMi9YMnlQbzZaWWRB SXhzc1N4TklHLUVWQUszSFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANLLgSjNWhMGn9GAvfOAuOFGhT5dkdTdE7WOl0rOsztcDv11AsQkfS MaKH144WwUcVW3X7W6z2Sah64LU7zVibfoaAayJ1DIReuxaCW5RSok6pJqH/3p7L CRX+La0it0EPfRdLA2zEPacZtv+NSvhiHED/PaQUUepA2z02kl8LJ5KBlT/jFqtZ YDlr7eY0/Fv1WHVOo6RSoLrTYO8kaHqvYt/JiDgeh4f6KHctaQvPYLemZCEWdVIx px5HKHuHUBEDq+zo/+NewN6s8xiwVs1bJfe7I0pHE8t1R35d3L5Gaj+fk9GdcyxF nulLp6JgWA/vdC3WBCBI99u1KPSwHjpR -----END CERTIFICATE-----Generated at Sat Apr 26 04:36:59 2025 by rpki-client