$ rpki-client -vvf rpki.apnic.net/member_repository/A9158131/982AB6E648B111EA96A06C7EC4F9AE02/x5u-qmYkHuzwHDAzXbGO8rP1YCY.mft File: x5u-qmYkHuzwHDAzXbGO8rP1YCY.mft (raw, json) Hash identifier: s/HsciUawa1junx/Xj+LF4t8bQFMVJPNUFFSKaYfV+0= Subject key identifier: 13:8B:91:E4:E9:46:45:DE:45:0E:82:A9:AE:B7:25:9C:FC:FF:D8:4E Authority key identifier: C7:9B:BE:AA:66:24:1E:EC:F0:1C:30:33:5D:B1:8E:F2:B3:F5:60:26 Certificate issuer: /CN=A9158131/serialNumber=C79BBEAA66241EECF01C30335DB18EF2B3F56026 Certificate serial: 0AF9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5u-qmYkHuzwHDAzXbGO8rP1YCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158131/982AB6E648B111EA96A06C7EC4F9AE02/x5u-qmYkHuzwHDAzXbGO8rP1YCY.mft Manifest number: 0AE9 Signing time: Thu 24 Apr 2025 19:19:32 +0000 Manifest this update: Thu 24 Apr 2025 19:19:32 +0000 Manifest next update: Thu 01 May 2025 19:19:32 +0000 Files and hashes: 1: x5u-qmYkHuzwHDAzXbGO8rP1YCY.crl (hash: 0c14eC3p4AS8SDru7jrce+CXjTNVhWyGQxe85Sb3N8U=) 2: 0F29204CB4B511EF86D6381EC4F9AE02.roa (hash: 2cXl/5f431sLYOEV9wOGgPMtNZFFmZ0haqZGiKbsEGE=) 3: 2E4BBE4EB4B511EF8A24821EC4F9AE02.roa (hash: UpMy5YvHwAoOrHu9/2m6YmhC+FBzuF02PJm6nhV30kU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158131/982AB6E648B111EA96A06C7EC4F9AE02/x5u-qmYkHuzwHDAzXbGO8rP1YCY.crl rsync://rpki.apnic.net/member_repository/A9158131/982AB6E648B111EA96A06C7EC4F9AE02/x5u-qmYkHuzwHDAzXbGO8rP1YCY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5u-qmYkHuzwHDAzXbGO8rP1YCY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:19:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2809 (0xaf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158131, serialNumber=C79BBEAA66241EECF01C30335DB18EF2B3F56026 Validity Not Before: Apr 24 19:19:32 2025 GMT Not After : May 1 19:19:32 2025 GMT Subject: CN=680a8ec4-c63f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:a4:1c:43:b3:71:89:4b:60:e5:ac:3b:0e:1a: 43:06:58:14:0e:a7:28:b8:6d:c5:cf:a9:f9:11:6d: 30:6c:d2:f4:76:5a:ab:1d:31:c5:6f:c8:05:b8:51: a7:28:49:bd:ee:d1:4a:5d:91:a0:bc:75:d8:4a:32: 90:b1:54:ff:23:91:8c:45:fa:05:0f:20:1f:a5:8b: 62:d5:b0:5e:fa:c8:f6:21:7e:8b:ca:71:b0:5d:09: 97:26:c9:59:1d:11:a4:31:b9:e5:39:99:e7:52:d8: 64:6c:8a:c4:9a:a6:94:e5:c7:e7:f6:e5:92:3c:05: aa:25:80:76:98:7b:58:23:2d:fd:f9:e0:53:ee:e0: 33:8d:3d:8a:01:b6:88:31:d2:30:43:9a:3f:60:ea: a2:fe:8c:f7:ea:89:50:6a:79:34:90:b8:e5:f1:60: 43:63:ae:d2:67:1d:cd:64:03:23:50:6b:a0:53:8e: 24:b3:cd:cf:99:6d:b9:c4:c4:ce:09:03:55:69:17: 85:24:31:05:25:30:aa:d3:a6:a7:25:5f:b8:6b:66: 51:7f:75:3b:6c:28:82:7d:3a:01:6a:9c:f9:ff:66: b0:0c:e1:66:51:2c:92:d1:d1:b9:b0:1d:3d:fa:b1: a3:da:da:fe:f1:58:63:aa:85:98:95:7d:91:cb:9b: 84:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:8B:91:E4:E9:46:45:DE:45:0E:82:A9:AE:B7:25:9C:FC:FF:D8:4E X509v3 Authority Key Identifier: keyid:C7:9B:BE:AA:66:24:1E:EC:F0:1C:30:33:5D:B1:8E:F2:B3:F5:60:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158131/982AB6E648B111EA96A06C7EC4F9AE02/x5u-qmYkHuzwHDAzXbGO8rP1YCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5u-qmYkHuzwHDAzXbGO8rP1YCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158131/982AB6E648B111EA96A06C7EC4F9AE02/x5u-qmYkHuzwHDAzXbGO8rP1YCY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:91:75:7c:63:62:8d:15:40:9e:4b:0a:16:4e:9c:57:be:73: ea:3c:3d:ef:f5:49:08:46:0f:44:e5:89:19:c2:c2:b2:a9:56: 39:a8:66:fa:ef:f7:17:a4:3b:9d:62:1f:04:06:7b:c0:bd:34: 3d:f2:53:79:da:99:2c:b9:7c:54:27:58:ce:ca:1a:9f:95:8d: da:01:43:45:d8:d3:82:29:76:6a:9e:2c:f6:33:f3:2a:f5:af: 58:ac:3a:75:7c:0c:08:0c:25:b1:91:dd:1c:ef:9d:f9:fa:18: dd:83:7c:01:52:b5:5e:77:84:e3:5a:34:eb:f7:85:69:b7:50: 53:fa:51:8e:d5:29:9e:12:61:be:8c:2d:e4:1e:be:05:a8:c6: 4f:9a:c8:55:43:98:1d:64:f4:82:94:f0:4c:a6:7d:49:e5:66: ca:1e:33:e8:0e:28:1e:b1:fe:26:9c:22:c3:65:7b:b4:59:47: d7:7d:7f:f8:2a:4e:8e:97:73:3d:57:a6:92:7f:d3:25:88:cf: d5:00:c0:ec:f3:ff:53:8d:1c:d7:4d:95:66:a0:a5:0c:c6:8b: 52:7f:c2:cb:31:1d:65:32:0c:b3:f5:3e:c9:05:b3:81:b9:6f: dd:8c:4d:40:39:0c:73:d5:68:83:1d:f5:88:7b:50:45:23:36: 22:23:ba:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCvkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgxMzExMTAvBgNVBAUTKEM3OUJCRUFBNjYyNDFFRUNGMDFDMzAzMzVEQjE4RUYy QjNGNTYwMjYwHhcNMjUwNDI0MTkxOTMyWhcNMjUwNTAxMTkxOTMyWjAYMRYwFAYD VQQDEw02ODBhOGVjNC1jNjNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2aQcQ7NxiUtg5aw7DhpDBlgUDqcouG3Fz6n5EW0wbNL0dlqrHTHFb8gFuFGn KEm97tFKXZGgvHXYSjKQsVT/I5GMRfoFDyAfpYti1bBe+sj2IX6LynGwXQmXJslZ HRGkMbnlOZnnUthkbIrEmqaU5cfn9uWSPAWqJYB2mHtYIy39+eBT7uAzjT2KAbaI MdIwQ5o/YOqi/oz36olQank0kLjl8WBDY67SZx3NZAMjUGugU44ks83PmW25xMTO CQNVaReFJDEFJTCq06anJV+4a2ZRf3U7bCiCfToBapz5/2awDOFmUSyS0dG5sB09 +rGj2tr+8VhjqoWYlX2Ry5uEZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBOLkeTp RkXeRQ6Cqa63JZz8/9hOMB8GA1UdIwQYMBaAFMebvqpmJB7s8BwwM12xjvKz9WAm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODEzMS85ODJBQjZFNjQ4 QjExMUVBOTZBMDZDN0VDNEY5QUUwMi94NXUtcW1Za0h1endIREF6WGJHTzhyUDFZ Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3g1dS1xbVlrSHV6d0hEQXpYYkdPOHJQMVlDWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODEzMS85ODJBQjZFNjQ4QjExMUVBOTZBMDZDN0VDNEY5QUUwMi94NXUtcW1Za0h1 endIREF6WGJHTzhyUDFZQ1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnkXV8Y2KNFUCeSwoWTpxXvnPqPD3v9UkIRg9E5YkZwsKyqVY5qGb6 7/cXpDudYh8EBnvAvTQ98lN52pksuXxUJ1jOyhqflY3aAUNF2NOCKXZqniz2M/Mq 9a9YrDp1fAwIDCWxkd0c7535+hjdg3wBUrVed4TjWjTr94Vpt1BT+lGO1SmeEmG+ jC3kHr4FqMZPmshVQ5gdZPSClPBMpn1J5WbKHjPoDigesf4mnCLDZXu0WUfXfX/4 Kk6Ol3M9V6aSf9MliM/VAMDs8/9TjRzXTZVmoKUMxotSf8LLMR1lMgyz9T7JBbOB uW/djE1AOQxz1WiDHfWIe1BFIzYiI7p+ -----END CERTIFICATE-----Generated at Sat Apr 26 13:09:46 2025 by rpki-client