$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft File: XSeFtU0WPtAepUGLz6NPG3RWtxM.mft (raw, json) Hash identifier: U47I/f6xcRx0PKNtVl2b2jLhatBpNmjROP/Xw/3dLrM= Subject key identifier: 93:E2:A8:A5:40:A6:8E:F3:E5:AE:B2:C6:28:FA:EA:FB:4C:F3:2A:3B Authority key identifier: 5D:27:85:B5:4D:16:3E:D0:1E:A5:41:8B:CF:A3:4F:1B:74:56:B7:13 Certificate issuer: /CN=A9167CC5/serialNumber=5D2785B54D163ED01EA5418BCFA34F1B7456B713 Certificate serial: 0486 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft Manifest number: 046E Signing time: Wed 30 Apr 2025 23:42:39 +0000 Manifest this update: Wed 30 Apr 2025 23:42:38 +0000 Manifest next update: Wed 07 May 2025 23:42:38 +0000 Files and hashes: 1: XSeFtU0WPtAepUGLz6NPG3RWtxM.crl (hash: 19Du8/Pq6GOJfrmw8NKs1A+lQQ6RltzFTxqANHijUlI=) 2: 6337963E4C3D11ECB5FF844FC4F9AE02.roa (hash: 3KTOI3tChJ1EuHHkZIxY0+a6WeVb+6nR6Jk3wwfwMHU=) 3: ACE844F047AA11ECA0F05026C4F9AE02.roa (hash: xweR0My4YSEWr28C8V1U/OMEuVwH/Ly7NJUba0hYsCg=) 4: 1F77EFA44C4011EC952D5A23C4F9AE02.roa (hash: c5WQ+yUKORBq8d/u8k3An8QJMDIFK4yVXiwWYWbL5qc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.crl rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 May 2025 23:42:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1158 (0x486) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167CC5, serialNumber=5D2785B54D163ED01EA5418BCFA34F1B7456B713 Validity Not Before: Apr 30 23:42:38 2025 GMT Not After : May 7 23:42:38 2025 GMT Subject: CN=6812b56e-3544 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:b5:a6:fe:ae:9b:b5:1a:e1:ee:85:74:b6:37: 0b:25:f6:2d:0b:48:39:6b:45:fe:c5:83:e7:e2:6d: ec:c3:a7:0b:0c:2e:c7:52:81:68:30:11:b7:a9:03: 3a:75:fc:c1:d4:6e:ae:23:6c:87:91:75:b5:96:c8: af:26:75:67:44:6a:24:ea:a5:9d:ad:d9:a9:37:c4: a2:45:e5:98:fc:7e:29:ff:69:f3:3a:66:f6:e0:22: ad:a1:a8:97:96:33:45:7e:ca:7a:26:78:4c:13:90: 96:99:9a:29:bd:02:50:f6:4e:13:a2:27:6c:0d:c2: 13:65:97:41:0a:1a:df:45:91:39:13:05:52:2a:db: 89:18:52:5c:90:06:81:1f:19:a6:b7:98:e5:99:f3: 0d:fe:5d:b7:b7:27:ea:70:cb:6e:d9:2a:8a:bf:5b: 11:b7:10:92:b3:5f:ec:94:0d:3b:aa:91:bf:a9:3e: aa:3e:32:38:bc:d0:6a:ac:ce:a4:d0:e7:d7:b4:ad: 96:37:37:49:34:47:09:32:d7:14:e3:5d:d9:18:5c: 48:35:fe:cc:22:fd:04:00:f7:f5:dd:a7:c6:90:9a: c3:4a:23:96:e2:f6:53:cc:b8:1f:a0:21:2d:09:ac: 5a:5d:ba:4e:a4:1c:94:e2:17:69:99:8e:9a:95:6e: e5:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:E2:A8:A5:40:A6:8E:F3:E5:AE:B2:C6:28:FA:EA:FB:4C:F3:2A:3B X509v3 Authority Key Identifier: keyid:5D:27:85:B5:4D:16:3E:D0:1E:A5:41:8B:CF:A3:4F:1B:74:56:B7:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:8f:e4:78:d5:e0:ec:9b:14:20:bd:ef:df:95:30:22:2b:3a: 7b:69:aa:56:97:fb:9c:03:9f:1a:f2:c2:bd:40:16:70:31:f8: ee:05:fa:04:1f:78:e9:48:07:a7:c6:ee:21:0e:f8:e9:c7:c0: 87:07:36:d3:f0:0b:70:81:8e:e4:6b:79:0e:c3:74:a3:cd:a7: e0:67:ee:52:f7:0e:cd:8a:43:3f:25:40:55:51:8f:9f:b3:c6: 11:60:ee:35:f3:cd:2a:9b:c1:da:47:b4:5a:52:90:e1:d9:8e: 23:8d:58:01:25:0c:42:db:fa:c3:10:97:32:3f:71:72:66:72: e2:72:60:3e:3c:56:b5:d9:a7:60:2f:ee:fd:20:79:4c:0a:75: 06:96:20:e8:12:cb:b4:69:db:3c:45:24:bb:aa:f2:5c:df:d2: 7e:6f:b0:da:02:2e:bf:57:03:0e:34:b3:35:65:40:d7:c3:ff: 95:0e:95:d7:68:a0:cc:92:3a:f3:29:7e:76:55:eb:d4:f7:35: 49:1e:b7:42:09:c6:bb:2f:e7:29:75:06:e6:f6:21:1a:24:fa: 2f:84:1a:e8:89:f2:7f:51:fb:16:68:f3:7c:18:d5:0e:77:24: f5:e1:25:d1:f6:b9:50:98:61:5b:bf:fa:fc:e3:59:74:a8:6f: 06:8d:e2:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDQzUxMTAvBgNVBAUTKDVEMjc4NUI1NEQxNjNFRDAxRUE1NDE4QkNGQTM0RjFC NzQ1NkI3MTMwHhcNMjUwNDMwMjM0MjM4WhcNMjUwNTA3MjM0MjM4WjAYMRYwFAYD VQQDEw02ODEyYjU2ZS0zNTQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsrWm/q6btRrh7oV0tjcLJfYtC0g5a0X+xYPn4m3sw6cLDC7HUoFoMBG3qQM6 dfzB1G6uI2yHkXW1lsivJnVnRGok6qWdrdmpN8SiReWY/H4p/2nzOmb24CKtoaiX ljNFfsp6JnhME5CWmZopvQJQ9k4ToidsDcITZZdBChrfRZE5EwVSKtuJGFJckAaB Hxmmt5jlmfMN/l23tyfqcMtu2SqKv1sRtxCSs1/slA07qpG/qT6qPjI4vNBqrM6k 0OfXtK2WNzdJNEcJMtcU413ZGFxINf7MIv0EAPf13afGkJrDSiOW4vZTzLgfoCEt CaxaXbpOpByU4hdpmY6alW7ltwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJPiqKVA po7z5a6yxij66vtM8yo7MB8GA1UdIwQYMBaAFF0nhbVNFj7QHqVBi8+jTxt0VrcT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0NDNS8yQUM0RDMzRTQ2 QjExMUVDOTQ1QjRGNTdDNEY5QUUwMi9YU2VGdFUwV1B0QWVwVUdMejZOUEczUld0 eE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTZUZ0VTBXUHRBZXBVR0x6Nk5QRzNSV3R4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0NDNS8yQUM0RDMzRTQ2QjExMUVDOTQ1QjRGNTdDNEY5QUUwMi9YU2VGdFUwV1B0 QWVwVUdMejZOUEczUld0eE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAj+R41eDsmxQgve/flTAiKzp7aapWl/ucA58a8sK9QBZwMfjuBfoE H3jpSAenxu4hDvjpx8CHBzbT8AtwgY7ka3kOw3SjzafgZ+5S9w7NikM/JUBVUY+f s8YRYO41880qm8HaR7RaUpDh2Y4jjVgBJQxC2/rDEJcyP3FyZnLicmA+PFa12adg L+79IHlMCnUGliDoEsu0ads8RSS7qvJc39J+b7DaAi6/VwMONLM1ZUDXw/+VDpXX aKDMkjrzKX52VevU9zVJHrdCCca7L+cpdQbm9iEaJPovhBroifJ/UfsWaPN8GNUO dyT14SXR9rlQmGFbv/r841l0qG8GjeI8 -----END CERTIFICATE-----Generated at Thu May 1 16:22:21 2025 by rpki-client