$ rpki-client -vvf rpki.apnic.net/member_repository/A9169903/EE6B7418C81811EB83CEEB4AC4F9AE02/xDfVjxI6auBXxgjiFrtr_WWER2o.mft File: xDfVjxI6auBXxgjiFrtr_WWER2o.mft (raw, json) Hash identifier: 1rEBwWQ/tGB0GXVPEiSJ5zmiQBBwaeMk+k3nwKKTef4= Subject key identifier: 7D:ED:A7:54:3C:A8:15:1E:29:91:FC:02:A5:18:F8:35:50:60:DE:16 Authority key identifier: C4:37:D5:8F:12:3A:6A:E0:57:C6:08:E2:16:BB:6B:FD:65:84:47:6A Certificate issuer: /CN=A9169903/serialNumber=C437D58F123A6AE057C608E216BB6BFD6584476A Certificate serial: 05A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xDfVjxI6auBXxgjiFrtr_WWER2o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169903/EE6B7418C81811EB83CEEB4AC4F9AE02/xDfVjxI6auBXxgjiFrtr_WWER2o.mft Manifest number: 05A3 Signing time: Thu 24 Apr 2025 22:58:42 +0000 Manifest this update: Thu 24 Apr 2025 22:58:41 +0000 Manifest next update: Thu 01 May 2025 22:58:41 +0000 Files and hashes: 1: xDfVjxI6auBXxgjiFrtr_WWER2o.crl (hash: Hd1huL/Ckdb6l7XyPzDmiZk3HFPJQnWQM9Dw9omhqWg=) 2: ED31D84EC81D11EBA4C0E321C4F9AE02.roa (hash: bXFPKdh1DOKKzF1VDrO1xVCyooUJXcE+RZoWJywL3IM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169903/EE6B7418C81811EB83CEEB4AC4F9AE02/xDfVjxI6auBXxgjiFrtr_WWER2o.crl rsync://rpki.apnic.net/member_repository/A9169903/EE6B7418C81811EB83CEEB4AC4F9AE02/xDfVjxI6auBXxgjiFrtr_WWER2o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xDfVjxI6auBXxgjiFrtr_WWER2o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:58:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1449 (0x5a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169903, serialNumber=C437D58F123A6AE057C608E216BB6BFD6584476A Validity Not Before: Apr 24 22:58:41 2025 GMT Not After : May 1 22:58:41 2025 GMT Subject: CN=680ac221-3173 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:6f:6b:38:47:81:ad:8b:90:09:df:07:57:af: fb:b8:e9:6d:82:c5:98:70:4a:31:86:27:1b:43:98: 68:f3:b5:6f:d5:73:89:82:1e:4b:de:b0:c4:ec:7d: 34:7c:71:3d:e4:7e:14:7e:82:69:33:38:81:84:a4: 60:6b:b1:bd:eb:18:b5:3c:35:cc:f8:73:43:7c:d7: 87:f5:dc:6b:0b:d2:e7:4d:38:62:a0:ac:e8:d4:12: 3a:07:34:02:4b:a7:c5:1c:6f:3e:2d:2e:ed:ff:50: 81:7a:93:77:1b:a0:20:3d:86:a0:81:f0:1d:b0:80: 58:f8:a4:f9:61:4c:08:e4:cd:af:b8:d7:03:a1:1c: 44:75:35:fa:da:9e:79:d2:f9:73:f7:7c:3f:41:35: d4:da:17:a0:e3:57:87:52:5b:ce:94:16:b7:7d:e2: c0:e3:5b:66:cf:fc:2e:0b:89:e9:5f:e2:a9:ab:b2: 22:6f:36:6a:6d:0f:2b:40:91:9e:46:1e:31:16:45: 68:95:9c:7a:fa:65:df:c9:f3:92:f8:1f:67:5f:a5: 3b:65:df:8a:97:ae:25:a7:90:71:e5:cc:95:52:44: 5c:bd:ee:15:85:32:19:46:ca:89:20:9b:40:94:78: b2:36:6a:ca:40:69:f6:eb:61:6e:cf:76:fa:56:05: 2b:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:ED:A7:54:3C:A8:15:1E:29:91:FC:02:A5:18:F8:35:50:60:DE:16 X509v3 Authority Key Identifier: keyid:C4:37:D5:8F:12:3A:6A:E0:57:C6:08:E2:16:BB:6B:FD:65:84:47:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169903/EE6B7418C81811EB83CEEB4AC4F9AE02/xDfVjxI6auBXxgjiFrtr_WWER2o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xDfVjxI6auBXxgjiFrtr_WWER2o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169903/EE6B7418C81811EB83CEEB4AC4F9AE02/xDfVjxI6auBXxgjiFrtr_WWER2o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:3a:86:b5:8e:f9:04:42:35:c4:0e:b1:b1:e5:97:db:de:c8: 55:b9:24:19:9c:81:13:30:5c:b2:aa:79:d5:92:d0:fa:15:e0: 7c:25:d8:5f:8b:11:c2:5c:cc:a8:04:fe:93:56:00:b4:b6:4d: f1:bc:fb:e4:fc:94:ed:ba:64:91:77:61:72:40:4b:79:af:cb: 80:70:eb:d2:e7:15:cf:95:73:94:dd:1c:cf:94:d1:3a:44:29: da:63:46:6f:29:31:76:c6:ec:8d:4e:cd:55:79:33:42:28:78: a7:b9:c7:04:54:bc:e5:0b:ee:13:1c:4b:ef:a8:ea:90:94:cc: 48:52:4c:c6:4e:a0:97:57:b4:dd:0b:95:81:22:16:5f:e2:a9: d7:be:95:98:7a:40:ee:2c:1b:00:e2:10:50:83:9d:08:31:3d: cc:9f:8b:d0:55:57:3b:c7:0d:fc:28:3c:09:24:d9:3c:97:58: d9:cf:31:bd:14:34:69:5f:32:f4:bc:74:2c:b6:02:2d:2a:7a: ac:0b:2c:e9:da:1b:23:4d:5e:f3:da:4a:c9:f9:f6:41:60:f8: 4b:ae:aa:17:99:31:35:14:17:d1:d5:91:78:85:1d:91:15:85: 57:52:b8:b5:7a:10:b6:ed:dd:6f:db:9c:9d:69:24:43:aa:7d: 3f:c0:8d:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBakwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk5MDMxMTAvBgNVBAUTKEM0MzdENThGMTIzQTZBRTA1N0M2MDhFMjE2QkI2QkZE NjU4NDQ3NkEwHhcNMjUwNDI0MjI1ODQxWhcNMjUwNTAxMjI1ODQxWjAYMRYwFAYD VQQDEw02ODBhYzIyMS0zMTczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyG9rOEeBrYuQCd8HV6/7uOltgsWYcEoxhicbQ5ho87Vv1XOJgh5L3rDE7H00 fHE95H4UfoJpMziBhKRga7G96xi1PDXM+HNDfNeH9dxrC9LnTThioKzo1BI6BzQC S6fFHG8+LS7t/1CBepN3G6AgPYaggfAdsIBY+KT5YUwI5M2vuNcDoRxEdTX62p55 0vlz93w/QTXU2heg41eHUlvOlBa3feLA41tmz/wuC4npX+Kpq7IibzZqbQ8rQJGe Rh4xFkVolZx6+mXfyfOS+B9nX6U7Zd+Kl64lp5Bx5cyVUkRcve4VhTIZRsqJIJtA lHiyNmrKQGn262Fuz3b6VgUrgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH3tp1Q8 qBUeKZH8AqUY+DVQYN4WMB8GA1UdIwQYMBaAFMQ31Y8SOmrgV8YI4ha7a/1lhEdq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTkwMy9FRTZCNzQxOEM4 MTgxMUVCODNDRUVCNEFDNEY5QUUwMi94RGZWanhJNmF1Qlh4Z2ppRnJ0cl9XV0VS Mm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hEZlZqeEk2YXVCWHhnamlGcnRyX1dXRVIyby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OTkwMy9FRTZCNzQxOEM4MTgxMUVCODNDRUVCNEFDNEY5QUUwMi94RGZWanhJNmF1 Qlh4Z2ppRnJ0cl9XV0VSMm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEOoa1jvkEQjXEDrGx5Zfb3shVuSQZnIETMFyyqnnVktD6FeB8Jdhf ixHCXMyoBP6TVgC0tk3xvPvk/JTtumSRd2FyQEt5r8uAcOvS5xXPlXOU3RzPlNE6 RCnaY0ZvKTF2xuyNTs1VeTNCKHinuccEVLzlC+4THEvvqOqQlMxIUkzGTqCXV7Td C5WBIhZf4qnXvpWYekDuLBsA4hBQg50IMT3Mn4vQVVc7xw38KDwJJNk8l1jZzzG9 FDRpXzL0vHQstgItKnqsCyzp2hsjTV7z2krJ+fZBYPhLrqoXmTE1FBfR1ZF4hR2R FYVXUri1ehC27d1v25ydaSRDqn0/wI3G -----END CERTIFICATE-----Generated at Sat Apr 26 14:18:54 2025 by rpki-client