$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.mft File: xFWwhrq4ZHzSUQyoMkHnABTNikQ.mft (raw, json) Hash identifier: tYgoDVHysapT+CZVIYbAcsnuHeWuBGI3xCLwYv4KALo= Subject key identifier: 13:97:77:94:08:6B:DC:5C:0E:33:8A:A9:DF:57:4B:C1:89:F4:09:10 Authority key identifier: C4:55:B0:86:BA:B8:64:7C:D2:51:0C:A8:32:41:E7:00:14:CD:8A:44 Certificate issuer: /CN=A9157B66/serialNumber=C455B086BAB8647CD2510CA83241E70014CD8A44 Certificate serial: 0631 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xFWwhrq4ZHzSUQyoMkHnABTNikQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.mft Manifest number: 062C Signing time: Thu 24 Apr 2025 22:27:45 +0000 Manifest this update: Thu 24 Apr 2025 22:27:44 +0000 Manifest next update: Thu 01 May 2025 22:27:44 +0000 Files and hashes: 1: xFWwhrq4ZHzSUQyoMkHnABTNikQ.crl (hash: UWcJL4eW4wmCB1f3Kf1DxKmANjzLRyp08+jZSl5fWVQ=) 2: 807CB298903A11EBA9783756C4F9AE02.roa (hash: HcRkeL0L46StqN8XUYCiDhZBU5a1szFT/RluEKL79UI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.crl rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xFWwhrq4ZHzSUQyoMkHnABTNikQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:27:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1585 (0x631) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157B66, serialNumber=C455B086BAB8647CD2510CA83241E70014CD8A44 Validity Not Before: Apr 24 22:27:44 2025 GMT Not After : May 1 22:27:44 2025 GMT Subject: CN=680abae1-b7f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d3:09:4e:ca:95:ae:d5:1c:dd:b2:b6:71:ab: bf:b8:8a:d3:86:6e:7b:08:57:0e:82:e1:fd:e8:ed: 59:52:3a:70:d5:be:be:8d:18:c2:e3:2b:89:94:dc: b8:96:34:fc:2b:c1:ba:3a:ff:dd:20:91:75:6b:69: f2:84:60:f0:71:f6:65:29:6b:13:46:c8:90:56:9a: 2e:2a:16:c0:94:00:d1:16:67:94:e3:27:93:ce:30: ca:15:da:30:45:3c:76:ce:7f:c6:ae:37:07:b9:a2: e0:00:3c:ae:82:ae:77:ed:27:d1:8c:af:75:87:c4: 1b:c1:ff:e8:a3:9d:26:56:27:22:6d:3c:c6:2b:30: bd:21:61:00:5e:d5:b4:d9:19:5a:1e:f1:42:ec:92: 05:27:ac:44:a8:af:4f:ed:63:f1:89:30:56:67:1e: f9:cf:fd:ea:37:20:17:c8:f7:12:ed:a3:36:2b:2a: 0b:6d:39:9f:a6:62:b1:7e:eb:37:42:50:c1:01:a2: 47:8d:a3:c4:3d:3e:e5:9e:8f:87:c2:54:9a:ec:e2: c1:67:c4:1c:4e:f7:59:d5:2d:36:fc:03:24:98:7c: 26:db:5b:6f:d2:bf:e8:69:71:f6:b0:99:6e:ec:a6: d9:52:0a:8d:0d:b0:3b:c3:58:84:5f:7d:b6:d2:e0: 19:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:97:77:94:08:6B:DC:5C:0E:33:8A:A9:DF:57:4B:C1:89:F4:09:10 X509v3 Authority Key Identifier: keyid:C4:55:B0:86:BA:B8:64:7C:D2:51:0C:A8:32:41:E7:00:14:CD:8A:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xFWwhrq4ZHzSUQyoMkHnABTNikQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:bd:b0:d1:18:d3:c7:b1:31:b7:ea:35:d2:a7:cd:f8:05:c8: ac:38:5a:cf:b6:0f:4a:e0:cf:80:2a:06:ee:54:91:6b:cc:59: d0:89:1c:26:27:67:32:bb:d3:3e:fb:a5:4a:1f:84:a1:3c:fd: b1:8c:92:51:08:26:54:25:be:95:62:94:07:7d:2e:64:ba:59: 67:74:b6:4d:26:8b:d4:f5:e6:92:18:e1:45:4c:1a:d1:13:dc: ba:8b:cd:47:5b:86:f3:e8:49:1d:ac:ea:1e:ee:e5:24:4e:03: 1f:af:8e:37:2d:7f:64:2c:b4:0b:c0:4a:4b:e0:db:28:d8:e8: 87:8e:50:b4:b5:d3:95:dc:73:23:17:1c:d2:be:7b:99:88:be: 45:05:7c:33:18:77:c0:05:d6:b7:d0:b8:8c:d0:81:09:6d:84: b7:42:a8:03:03:2b:51:30:bb:eb:fb:fd:a6:05:e9:21:f3:09: 57:89:c2:8b:d2:16:b0:09:e2:25:8d:0e:6a:4f:97:d1:9e:98: 47:02:c6:2f:b3:d3:d7:f3:0d:51:8c:10:0e:4b:54:08:1e:37: 3a:ad:73:9b:6b:fe:53:7a:67:87:c7:82:10:c8:02:35:e5:6f: bf:60:7b:77:22:2c:57:05:e6:cb:f5:5d:4c:68:01:ba:fb:12: 12:b9:80:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBjEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdCNjYxMTAvBgNVBAUTKEM0NTVCMDg2QkFCODY0N0NEMjUxMENBODMyNDFFNzAw MTRDRDhBNDQwHhcNMjUwNDI0MjIyNzQ0WhcNMjUwNTAxMjIyNzQ0WjAYMRYwFAYD VQQDEw02ODBhYmFlMS1iN2Y5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyNMJTsqVrtUc3bK2cau/uIrThm57CFcOguH96O1ZUjpw1b6+jRjC4yuJlNy4 ljT8K8G6Ov/dIJF1a2nyhGDwcfZlKWsTRsiQVpouKhbAlADRFmeU4yeTzjDKFdow RTx2zn/GrjcHuaLgADyugq537SfRjK91h8Qbwf/oo50mVicibTzGKzC9IWEAXtW0 2RlaHvFC7JIFJ6xEqK9P7WPxiTBWZx75z/3qNyAXyPcS7aM2KyoLbTmfpmKxfus3 QlDBAaJHjaPEPT7lno+HwlSa7OLBZ8QcTvdZ1S02/AMkmHwm21tv0r/oaXH2sJlu 7KbZUgqNDbA7w1iEX3220uAZZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBOXd5QI a9xcDjOKqd9XS8GJ9AkQMB8GA1UdIwQYMBaAFMRVsIa6uGR80lEMqDJB5wAUzYpE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0I2Ni9FNUM0RDMyNjkw MzgxMUVCQTREQzVBNTRDNEY5QUUwMi94Rld3aHJxNFpIelNVUXlvTWtIbkFCVE5p a1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hGV3docnE0Wkh6U1VReW9Na0huQUJUTmlrUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0I2Ni9FNUM0RDMyNjkwMzgxMUVCQTREQzVBNTRDNEY5QUUwMi94Rld3aHJxNFpI elNVUXlvTWtIbkFCVE5pa1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGvbDRGNPHsTG36jXSp834BcisOFrPtg9K4M+AKgbuVJFrzFnQiRwm J2cyu9M++6VKH4ShPP2xjJJRCCZUJb6VYpQHfS5kullndLZNJovU9eaSGOFFTBrR E9y6i81HW4bz6EkdrOoe7uUkTgMfr443LX9kLLQLwEpL4Nso2OiHjlC0tdOV3HMj FxzSvnuZiL5FBXwzGHfABda30LiM0IEJbYS3QqgDAytRMLvr+/2mBekh8wlXicKL 0hawCeIljQ5qT5fRnphHAsYvs9PX8w1RjBAOS1QIHjc6rXOba/5TemeHx4IQyAI1 5W+/YHt3IixXBebL9V1MaAG6+xISuYAZ -----END CERTIFICATE-----Generated at Sat Apr 26 04:34:10 2025 by rpki-client