$ rpki-client -vvf rpki.apnic.net/member_repository/A9173CE6/0E8E27807BD011EB85A66980C4F9AE02/MxlflsRtTShdW95LCwMOODFOj8s.mft File: MxlflsRtTShdW95LCwMOODFOj8s.mft (raw, json) Hash identifier: QmiTbqp1yGvz4Qs3oqjiuopkukKxPoC2ychvdRKt6Eo= Subject key identifier: D0:4F:32:B1:FD:B0:2B:5E:67:DA:59:1D:44:B8:33:46:4F:05:CD:36 Authority key identifier: 33:19:5F:96:C4:6D:4D:28:5D:5B:DE:4B:0B:03:0E:38:31:4E:8F:CB Certificate issuer: /CN=A9173CE6/serialNumber=33195F96C46D4D285D5BDE4B0B030E38314E8FCB Certificate serial: 0694 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MxlflsRtTShdW95LCwMOODFOj8s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173CE6/0E8E27807BD011EB85A66980C4F9AE02/MxlflsRtTShdW95LCwMOODFOj8s.mft Manifest number: 0679 Signing time: Thu 24 Apr 2025 22:11:06 +0000 Manifest this update: Thu 24 Apr 2025 22:11:05 +0000 Manifest next update: Thu 01 May 2025 22:11:05 +0000 Files and hashes: 1: MxlflsRtTShdW95LCwMOODFOj8s.crl (hash: PvdKFO9vrk2z7xU9zzr8OPdcGmSRdzc9WcYNYhhDFXA=) 2: 7AC60C48CEB611ED8850A727C4F9AE02.roa (hash: Kmy121XzUGh8ewwF3KZSeQZhERtI3ipUIuwTYhIH4NM=) 3: 7A180DFACEB611ED8850A727C4F9AE02.roa (hash: h+i7d4l1n6vcg20ldi1OzleaWsx0vPPuUjmVScWRXXI=) 4: 93AC2C18CF5811ED9DBB075DC4F9AE02.roa (hash: PifTuQf9ETmHsQRTOYGkROLV+pof9sWcOvRDOEXvkJE=) 5: C4E57D9EE55A11ED98D38780C4F9AE02.roa (hash: 9n7ji7mRbxqw5LbmJKOtKEWm7L5OaLEva61LWM3vFFM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173CE6/0E8E27807BD011EB85A66980C4F9AE02/MxlflsRtTShdW95LCwMOODFOj8s.crl rsync://rpki.apnic.net/member_repository/A9173CE6/0E8E27807BD011EB85A66980C4F9AE02/MxlflsRtTShdW95LCwMOODFOj8s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MxlflsRtTShdW95LCwMOODFOj8s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:11:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1684 (0x694) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173CE6, serialNumber=33195F96C46D4D285D5BDE4B0B030E38314E8FCB Validity Not Before: Apr 24 22:11:05 2025 GMT Not After : May 1 22:11:05 2025 GMT Subject: CN=680ab6f9-3988 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:17:ad:ed:00:13:ff:8a:1b:4a:f3:c7:d3:38: 4a:72:da:40:56:32:56:1c:ca:e0:13:06:b1:ec:b8: 37:de:1f:92:6e:b3:0c:e0:fd:33:30:dd:7f:c2:83: d9:93:b4:de:d1:1f:d4:ee:7d:13:90:74:7f:77:86: f8:d1:c1:17:17:d7:71:cd:e0:ff:5f:35:ed:cc:09: cb:b6:14:2f:3f:17:ac:1a:30:0d:c1:57:79:d0:df: 7c:4d:51:55:a2:9f:d9:66:61:66:72:69:12:f0:c6: c8:5b:5c:74:1c:24:95:2c:28:cb:28:c0:1e:05:9c: 7b:1e:a6:00:e4:88:6b:73:61:43:6e:f5:b2:37:dc: aa:fb:27:2c:6d:f3:f3:95:81:09:ec:63:01:44:e2: b7:e5:30:a9:ca:07:e3:50:c4:d8:73:43:ba:46:39: 49:b8:5a:d2:b6:b5:a0:61:4f:04:43:15:a6:cf:68: 71:23:6d:f2:fd:3e:68:45:9e:23:46:50:df:2f:7e: 56:1d:ca:5c:a3:81:62:6e:49:78:09:f7:66:ed:a4: a4:47:0c:cc:32:f1:2e:07:ba:7e:e3:ef:b9:67:ee: 09:37:75:d9:22:3c:d6:d2:73:0f:0a:85:81:f2:62: 81:a0:ce:5b:bf:24:b5:0a:f6:02:06:d8:28:5a:51: 61:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:4F:32:B1:FD:B0:2B:5E:67:DA:59:1D:44:B8:33:46:4F:05:CD:36 X509v3 Authority Key Identifier: keyid:33:19:5F:96:C4:6D:4D:28:5D:5B:DE:4B:0B:03:0E:38:31:4E:8F:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173CE6/0E8E27807BD011EB85A66980C4F9AE02/MxlflsRtTShdW95LCwMOODFOj8s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MxlflsRtTShdW95LCwMOODFOj8s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173CE6/0E8E27807BD011EB85A66980C4F9AE02/MxlflsRtTShdW95LCwMOODFOj8s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:ab:b1:01:17:12:39:83:9a:10:d9:89:22:d0:1e:9b:2b:f9: 1f:d4:55:69:6d:5b:a3:f1:a1:99:21:ea:dd:48:3a:2f:ec:1c: ae:2b:d7:bb:35:f1:2e:48:3f:8d:dd:a1:f5:10:3a:d3:0f:e6: 35:69:6a:f3:5c:b4:7b:11:3b:a2:64:da:22:b2:95:17:eb:40: e2:92:b8:94:52:91:96:1f:f2:4a:88:08:16:49:44:f9:38:d5: 87:ea:6b:6d:3f:ba:04:a5:76:bf:61:7c:42:0a:da:9d:7b:1a: 64:b3:19:06:63:48:2e:18:6d:12:f8:35:fd:bf:61:f4:01:c8: 18:33:17:e5:27:53:7a:67:05:96:94:70:f5:86:bb:27:c7:c2: 94:0d:ea:7e:23:06:40:2a:29:70:44:d5:a3:7e:52:e8:ab:bd: 74:f2:9d:d5:89:f2:60:21:74:35:fa:4a:3c:53:ce:94:60:9b: 50:92:f6:ca:fb:cc:52:58:fe:b9:e1:51:24:54:c8:36:5a:8c: 1c:d0:1d:9e:0b:49:f8:b2:5d:f9:1e:71:a8:84:b4:e6:ca:f3: 71:4c:bb:3c:43:7a:85:0e:ab:e3:69:c7:91:f7:cf:8b:e6:61: d6:84:a1:ec:d2:49:6d:e8:bc:17:5d:86:51:4a:10:c3:dd:ce: b9:3f:2a:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDRTYxMTAvBgNVBAUTKDMzMTk1Rjk2QzQ2RDREMjg1RDVCREU0QjBCMDMwRTM4 MzE0RThGQ0IwHhcNMjUwNDI0MjIxMTA1WhcNMjUwNTAxMjIxMTA1WjAYMRYwFAYD VQQDEw02ODBhYjZmOS0zOTg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Ret7QAT/4obSvPH0zhKctpAVjJWHMrgEwax7Lg33h+SbrMM4P0zMN1/woPZ k7Te0R/U7n0TkHR/d4b40cEXF9dxzeD/XzXtzAnLthQvPxesGjANwVd50N98TVFV op/ZZmFmcmkS8MbIW1x0HCSVLCjLKMAeBZx7HqYA5Ihrc2FDbvWyN9yq+ycsbfPz lYEJ7GMBROK35TCpygfjUMTYc0O6RjlJuFrStrWgYU8EQxWmz2hxI23y/T5oRZ4j RlDfL35WHcpco4Fibkl4Cfdm7aSkRwzMMvEuB7p+4++5Z+4JN3XZIjzW0nMPCoWB 8mKBoM5bvyS1CvYCBtgoWlFhSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNBPMrH9 sCteZ9pZHUS4M0ZPBc02MB8GA1UdIwQYMBaAFDMZX5bEbU0oXVveSwsDDjgxTo/L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0NFNi8wRThFMjc4MDdC RDAxMUVCODVBNjY5ODBDNEY5QUUwMi9NeGxmbHNSdFRTaGRXOTVMQ3dNT09ERk9q OHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL014bGZsc1J0VFNoZFc5NUxDd01PT0RGT2o4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0NFNi8wRThFMjc4MDdCRDAxMUVCODVBNjY5ODBDNEY5QUUwMi9NeGxmbHNSdFRT aGRXOTVMQ3dNT09ERk9qOHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYq7EBFxI5g5oQ2Yki0B6bK/kf1FVpbVuj8aGZIerdSDov7ByuK9e7 NfEuSD+N3aH1EDrTD+Y1aWrzXLR7ETuiZNoispUX60DikriUUpGWH/JKiAgWSUT5 ONWH6mttP7oEpXa/YXxCCtqdexpksxkGY0guGG0S+DX9v2H0AcgYMxflJ1N6ZwWW lHD1hrsnx8KUDep+IwZAKilwRNWjflLoq7108p3VifJgIXQ1+ko8U86UYJtQkvbK +8xSWP654VEkVMg2Wowc0B2eC0n4sl35HnGohLTmyvNxTLs8Q3qFDqvjaceR98+L 5mHWhKHs0klt6LwXXYZRShDD3c65Pyp9 -----END CERTIFICATE-----Generated at Sat Apr 26 04:02:35 2025 by rpki-client