$ rpki-client -vvf rpki.apnic.net/member_repository/A9178580/39F966F8965811EBADF4641FC4F9AE02/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.mft File: Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.mft (raw, json) Hash identifier: HqpHFwDOujQho7+hXGNw8nnTupaP7Au04RSoac2qBxE= Subject key identifier: E9:35:A2:24:75:6A:08:95:FA:11:3C:E6:17:87:2A:CA:2E:EC:FD:42 Authority key identifier: 45:C9:B9:BD:47:D8:21:84:85:99:A6:7D:7F:22:95:6E:09:13:C7:F6 Certificate issuer: /CN=A9178580/serialNumber=45C9B9BD47D821848599A67D7F22956E0913C7F6 Certificate serial: 0622 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178580/39F966F8965811EBADF4641FC4F9AE02/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.mft Manifest number: 061D Signing time: Thu 24 Apr 2025 22:32:51 +0000 Manifest this update: Thu 24 Apr 2025 22:32:50 +0000 Manifest next update: Thu 01 May 2025 22:32:50 +0000 Files and hashes: 1: Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.crl (hash: J96P5Ix4/66yIlEAh/nzu5MvruDfiU8keSL5g3r0weo=) 2: EA266BB0965911EB9A717E21C4F9AE02.roa (hash: gli6G9isd7214k/XwPb4QWIehT/cx5I/c38k571CPVY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178580/39F966F8965811EBADF4641FC4F9AE02/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.crl rsync://rpki.apnic.net/member_repository/A9178580/39F966F8965811EBADF4641FC4F9AE02/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:32:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1570 (0x622) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178580, serialNumber=45C9B9BD47D821848599A67D7F22956E0913C7F6 Validity Not Before: Apr 24 22:32:50 2025 GMT Not After : May 1 22:32:50 2025 GMT Subject: CN=680abc13-c8d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:bd:64:d5:56:76:4d:07:72:6b:65:aa:63:10: 70:b4:29:0b:4c:1e:45:56:b6:c4:d8:a3:4c:12:f0: 37:76:e0:6e:c3:9b:36:0c:87:b7:e5:83:88:6e:59: 97:3d:d7:dd:2b:73:c9:b2:23:29:f5:fd:70:45:69: f9:42:f7:0b:cd:84:b6:bf:58:1f:ed:fb:0a:d4:b2: d1:a6:f7:d3:b4:14:87:72:9d:28:b4:96:e9:50:20: 71:e0:12:cb:26:d0:2a:76:e8:a5:27:ca:40:8d:28: d6:01:5e:69:76:41:95:13:6a:12:d0:1d:ac:7f:73: cf:cf:06:d8:83:8a:a4:6c:38:79:d9:3c:db:82:51: 24:61:bb:f8:78:a6:1e:05:06:f5:eb:e1:a6:d7:c8: ac:a0:a7:20:01:ed:1b:8f:90:a4:6b:a1:d6:e4:95: 44:aa:13:53:d4:3f:d8:a3:49:d5:79:6f:f8:22:6c: 77:11:68:a1:a7:fe:fa:d5:71:ba:35:27:13:fb:57: 4c:3e:18:55:dd:b2:e5:2a:f3:47:ea:66:ab:fd:4d: ec:eb:67:de:c6:9e:ef:d9:69:8e:0c:34:3a:78:c5: f5:86:d0:c4:b5:27:44:64:56:47:a4:80:34:cc:8f: c8:a1:de:66:4f:0e:43:f5:14:4f:6c:93:e9:bd:e6: db:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:35:A2:24:75:6A:08:95:FA:11:3C:E6:17:87:2A:CA:2E:EC:FD:42 X509v3 Authority Key Identifier: keyid:45:C9:B9:BD:47:D8:21:84:85:99:A6:7D:7F:22:95:6E:09:13:C7:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178580/39F966F8965811EBADF4641FC4F9AE02/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178580/39F966F8965811EBADF4641FC4F9AE02/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:51:02:c4:45:d0:3f:2e:25:58:af:6f:10:74:ec:86:a1:a7: f4:0c:4e:16:91:23:8e:33:32:b6:f1:1c:6a:e4:ac:2b:15:f9: 3b:ec:2e:36:e9:47:49:ff:5a:5f:e0:a9:d8:0a:3d:37:94:5f: 11:46:2a:27:17:74:67:94:be:fa:5c:74:99:64:be:b9:cc:b4: 5d:1b:f1:c9:55:79:60:3f:95:65:cd:7c:ac:bf:59:c2:1e:de: 76:8f:cd:88:67:f2:d0:68:fd:b5:9c:6b:65:60:9f:78:ab:04: 41:a7:b4:0e:88:98:3f:fd:82:09:a6:23:00:70:96:22:6e:b2: 9b:cd:50:e0:13:f8:2c:bc:3f:73:08:a0:01:8e:e9:dd:88:a7: 86:f0:4e:7c:22:61:07:c1:a4:b3:9e:72:7d:7d:6a:1f:2d:1c: 54:fe:78:36:f6:fb:aa:ce:ef:26:05:61:44:84:1f:f9:c5:58: 2e:63:ce:37:f1:04:e0:ac:38:58:8c:12:fc:f5:04:12:97:fc: e8:0f:1d:66:ea:99:cb:88:7e:6e:91:10:c4:9b:ef:4f:fb:21: 2d:d5:ff:8a:62:c8:82:3e:45:68:da:59:fd:5c:49:dc:7c:34: 98:d9:af:be:d1:2c:51:f4:38:c7:88:12:e1:61:0c:2c:c1:4d: 25:b9:4f:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBiIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzg1ODAxMTAvBgNVBAUTKDQ1QzlCOUJENDdEODIxODQ4NTk5QTY3RDdGMjI5NTZF MDkxM0M3RjYwHhcNMjUwNDI0MjIzMjUwWhcNMjUwNTAxMjIzMjUwWjAYMRYwFAYD VQQDEw02ODBhYmMxMy1jOGQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxr1k1VZ2TQdya2WqYxBwtCkLTB5FVrbE2KNMEvA3duBuw5s2DIe35YOIblmX PdfdK3PJsiMp9f1wRWn5QvcLzYS2v1gf7fsK1LLRpvfTtBSHcp0otJbpUCBx4BLL JtAqduilJ8pAjSjWAV5pdkGVE2oS0B2sf3PPzwbYg4qkbDh52TzbglEkYbv4eKYe BQb16+Gm18isoKcgAe0bj5Cka6HW5JVEqhNT1D/Yo0nVeW/4Imx3EWihp/761XG6 NScT+1dMPhhV3bLlKvNH6mar/U3s62fexp7v2WmODDQ6eMX1htDEtSdEZFZHpIA0 zI/Iod5mTw5D9RRPbJPpvebbuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOk1oiR1 agiV+hE85heHKsou7P1CMB8GA1UdIwQYMBaAFEXJub1H2CGEhZmmfX8ilW4JE8f2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3ODU4MC8zOUY5NjZGODk2 NTgxMUVCQURGNDY0MUZDNEY5QUUwMi9SY201dlVmWUlZU0ZtYVo5ZnlLVmJna1R4 X1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JjbTV2VWZZSVlTRm1hWjlmeUtWYmdrVHhfWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 ODU4MC8zOUY5NjZGODk2NTgxMUVCQURGNDY0MUZDNEY5QUUwMi9SY201dlVmWUlZ U0ZtYVo5ZnlLVmJna1R4X1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+UQLERdA/LiVYr28QdOyGoaf0DE4WkSOOMzK28Rxq5KwrFfk77C42 6UdJ/1pf4KnYCj03lF8RRionF3RnlL76XHSZZL65zLRdG/HJVXlgP5VlzXysv1nC Ht52j82IZ/LQaP21nGtlYJ94qwRBp7QOiJg//YIJpiMAcJYibrKbzVDgE/gsvD9z CKABjundiKeG8E58ImEHwaSznnJ9fWofLRxU/ng29vuqzu8mBWFEhB/5xVguY843 8QTgrDhYjBL89QQSl/zoDx1m6pnLiH5ukRDEm+9P+yEt1f+KYsiCPkVo2ln9XEnc fDSY2a++0SxR9DjHiBLhYQwswU0luU+v -----END CERTIFICATE-----Generated at Sat Apr 26 17:04:38 2025 by rpki-client