$ rpki-client -vvf rpki.apnic.net/member_repository/A9173B29/617E9448E82411EEAFB7DA7DC4F9AE02/xVGHsAsaczdfhFaIX2oQfuHZNc8.mft File: xVGHsAsaczdfhFaIX2oQfuHZNc8.mft (raw, json) Hash identifier: xbkoDcY5N/FVgce7bLG7Wiv2C1jC5b1dy5fuyBbKGSE= Subject key identifier: 9D:6F:26:DB:9F:AF:2E:D8:56:66:70:7D:19:B3:53:E4:C6:CC:79:D0 Authority key identifier: C5:51:87:B0:0B:1A:73:37:5F:84:56:88:5F:6A:10:7E:E1:D9:35:CF Certificate issuer: /CN=A9173B29/serialNumber=C55187B00B1A73375F8456885F6A107EE1D935CF Certificate serial: D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xVGHsAsaczdfhFaIX2oQfuHZNc8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173B29/617E9448E82411EEAFB7DA7DC4F9AE02/xVGHsAsaczdfhFaIX2oQfuHZNc8.mft Manifest number: D1 Signing time: Fri 25 Apr 2025 04:45:35 +0000 Manifest this update: Fri 25 Apr 2025 04:45:34 +0000 Manifest next update: Fri 02 May 2025 04:45:34 +0000 Files and hashes: 1: xVGHsAsaczdfhFaIX2oQfuHZNc8.crl (hash: kL0JW+/NBxYTnzOJsmlzN1W6SLxXiz1glxxrkevRAoc=) 2: C9FDEC12E82411EE81065223C4F9AE02.roa (hash: w8SNcu2W86NVWJqOd27to5fWU6al9qmk5VnBP7mMOjs=) 3: EF1E7F70E82411EE9005BA2DC4F9AE02.roa (hash: q12pisfHJtoL9XkqG0on+CXyPl8Ax23nksmjhCAQXBQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173B29/617E9448E82411EEAFB7DA7DC4F9AE02/xVGHsAsaczdfhFaIX2oQfuHZNc8.crl rsync://rpki.apnic.net/member_repository/A9173B29/617E9448E82411EEAFB7DA7DC4F9AE02/xVGHsAsaczdfhFaIX2oQfuHZNc8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xVGHsAsaczdfhFaIX2oQfuHZNc8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:45:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 215 (0xd7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173B29, serialNumber=C55187B00B1A73375F8456885F6A107EE1D935CF Validity Not Before: Apr 25 04:45:34 2025 GMT Not After : May 2 04:45:34 2025 GMT Subject: CN=680b136e-0f2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:bd:29:3d:4c:e0:fa:6d:3d:77:89:9c:5b:50: e6:9c:8a:d0:30:08:62:e7:19:28:39:bd:87:fa:93: 7b:88:8d:3c:e4:84:e1:16:d9:e0:ed:5a:6c:3e:75: 40:d3:77:a5:40:d4:49:8b:8b:5c:8a:97:e8:10:a3: 9e:b0:10:1d:60:26:f3:87:c5:23:fc:ca:17:dd:5b: e8:b9:8d:4f:1f:88:73:c3:dc:52:96:c5:a0:fb:89: 20:05:fa:b4:ee:aa:0a:8f:62:4f:91:26:74:2a:de: 6a:a3:88:00:11:bd:d3:3b:66:32:46:33:00:7c:dc: c8:39:d3:99:20:df:17:cb:63:f5:a5:42:be:99:42: 6e:32:6d:39:02:d2:56:63:43:e7:cd:23:17:0f:cd: a6:4e:ba:cc:c9:33:b4:23:a0:90:3a:6d:0c:ea:25: 1c:f3:3a:50:b4:67:2c:e8:45:11:ad:d9:75:a3:9c: 22:32:af:4a:ed:15:96:80:65:77:08:31:79:74:94: 7b:36:6b:11:df:29:65:86:85:9d:92:67:24:a6:d5: 81:4f:ef:51:6d:5b:5b:07:89:e3:98:6c:90:82:1b: 88:54:c2:86:be:32:65:40:26:e0:74:68:f7:dc:21: bc:1d:a7:3d:1a:00:31:c2:7c:57:de:fe:5f:06:ee: c9:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:6F:26:DB:9F:AF:2E:D8:56:66:70:7D:19:B3:53:E4:C6:CC:79:D0 X509v3 Authority Key Identifier: keyid:C5:51:87:B0:0B:1A:73:37:5F:84:56:88:5F:6A:10:7E:E1:D9:35:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173B29/617E9448E82411EEAFB7DA7DC4F9AE02/xVGHsAsaczdfhFaIX2oQfuHZNc8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xVGHsAsaczdfhFaIX2oQfuHZNc8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173B29/617E9448E82411EEAFB7DA7DC4F9AE02/xVGHsAsaczdfhFaIX2oQfuHZNc8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:aa:89:10:00:a8:38:14:f3:f3:29:ee:49:45:43:84:f0:d1: 57:51:b1:a2:48:f8:93:ec:a9:c3:fb:61:0f:2d:a4:97:2e:37: f1:6a:ae:bb:d5:45:62:b2:50:0a:07:e2:ba:9e:b6:06:ec:d4: ea:26:ec:65:fc:32:74:30:bb:1f:63:60:6b:99:5a:29:c0:e5: 6c:7d:4f:39:f7:c6:fd:88:ee:b1:25:d4:75:2b:f5:32:e9:11: d2:73:24:da:9f:12:03:b7:b5:6b:a6:1c:cf:60:ee:48:6c:33: fc:d8:74:d6:c3:13:d7:88:22:55:27:4b:69:40:e2:02:e8:f5: 88:3e:65:6b:e7:87:1e:72:2e:21:11:ba:af:bd:ea:1c:60:0d: a6:19:dd:70:db:fc:31:0a:f3:d2:ac:d1:14:ce:30:cd:49:90: 6c:cc:0a:ef:83:42:74:be:69:90:f3:1d:dc:0c:39:5c:ff:8c: 18:08:78:88:cd:20:56:94:fd:44:23:32:aa:4a:74:f8:92:5c: 6b:26:c2:04:e8:7a:e9:77:75:d7:6d:6b:2a:25:fe:5e:ee:90: 6b:7a:f6:9b:41:57:b6:5f:8f:28:13:41:24:bd:1a:dc:cc:17: 80:38:7d:7f:dd:c3:f6:52:76:d6:a8:49:eb:14:64:83:10:70: e1:1f:e7:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNCMjkxMTAvBgNVBAUTKEM1NTE4N0IwMEIxQTczMzc1Rjg0NTY4ODVGNkExMDdF RTFEOTM1Q0YwHhcNMjUwNDI1MDQ0NTM0WhcNMjUwNTAyMDQ0NTM0WjAYMRYwFAYD VQQDEw02ODBiMTM2ZS0wZjJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs70pPUzg+m09d4mcW1DmnIrQMAhi5xkoOb2H+pN7iI085IThFtng7VpsPnVA 03elQNRJi4tcipfoEKOesBAdYCbzh8Uj/MoX3VvouY1PH4hzw9xSlsWg+4kgBfq0 7qoKj2JPkSZ0Kt5qo4gAEb3TO2YyRjMAfNzIOdOZIN8Xy2P1pUK+mUJuMm05AtJW Y0PnzSMXD82mTrrMyTO0I6CQOm0M6iUc8zpQtGcs6EURrdl1o5wiMq9K7RWWgGV3 CDF5dJR7NmsR3yllhoWdkmckptWBT+9RbVtbB4njmGyQghuIVMKGvjJlQCbgdGj3 3CG8Hac9GgAxwnxX3v5fBu7JOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ1vJtuf ry7YVmZwfRmzU+TGzHnQMB8GA1UdIwQYMBaAFMVRh7ALGnM3X4RWiF9qEH7h2TXP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0IyOS82MTdFOTQ0OEU4 MjQxMUVFQUZCN0RBN0RDNEY5QUUwMi94VkdIc0FzYWN6ZGZoRmFJWDJvUWZ1SFpO YzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hWR0hzQXNhY3pkZmhGYUlYMm9RZnVIWk5jOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0IyOS82MTdFOTQ0OEU4MjQxMUVFQUZCN0RBN0RDNEY5QUUwMi94VkdIc0FzYWN6 ZGZoRmFJWDJvUWZ1SFpOYzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJqokQAKg4FPPzKe5JRUOE8NFXUbGiSPiT7KnD+2EPLaSXLjfxaq67 1UVislAKB+K6nrYG7NTqJuxl/DJ0MLsfY2BrmVopwOVsfU8598b9iO6xJdR1K/Uy 6RHScyTanxIDt7VrphzPYO5IbDP82HTWwxPXiCJVJ0tpQOIC6PWIPmVr54ceci4h EbqvveocYA2mGd1w2/wxCvPSrNEUzjDNSZBszArvg0J0vmmQ8x3cDDlc/4wYCHiI zSBWlP1EIzKqSnT4klxrJsIE6Hrpd3XXbWsqJf5e7pBrevabQVe2X48oE0EkvRrc zBeAOH1/3cP2UnbWqEnrFGSDEHDhH+et -----END CERTIFICATE-----Generated at Sat Apr 26 13:07:37 2025 by rpki-client