$ rpki-client -vvf rpki.apnic.net/member_repository/A9178ACB/523A8F560BA711ED8B0E4C43C4F9AE02/XCfVPQ8jgTyOoWOK8GyNNNjy3_E.mft File: XCfVPQ8jgTyOoWOK8GyNNNjy3_E.mft (raw, json) Hash identifier: Mgrr/2En5DZ3e4bImBU2Q+h2ykfOVrYXYzBmbbgncH8= Subject key identifier: 33:03:87:47:30:16:A8:3C:14:02:A9:B0:1C:52:8A:A6:0C:43:07:5A Authority key identifier: 5C:27:D5:3D:0F:23:81:3C:8E:A1:63:8A:F0:6C:8D:34:D8:F2:DF:F1 Certificate issuer: /CN=A9178ACB/serialNumber=5C27D53D0F23813C8EA1638AF06C8D34D8F2DFF1 Certificate serial: 0270 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCfVPQ8jgTyOoWOK8GyNNNjy3_E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178ACB/523A8F560BA711ED8B0E4C43C4F9AE02/XCfVPQ8jgTyOoWOK8GyNNNjy3_E.mft Manifest number: 026C Signing time: Fri 25 Apr 2025 01:29:01 +0000 Manifest this update: Fri 25 Apr 2025 01:29:01 +0000 Manifest next update: Fri 02 May 2025 01:29:01 +0000 Files and hashes: 1: XCfVPQ8jgTyOoWOK8GyNNNjy3_E.crl (hash: lD37OwnQL0qbTc32oGkuTQC9M2i1ZAsAYr2N3u2UogM=) 2: F82824B4163311EDA7687F1CC4F9AE02.roa (hash: mdNnumQ5YiPoV1OJ4uam9G3UP6D/angADBcavXL7QI8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178ACB/523A8F560BA711ED8B0E4C43C4F9AE02/XCfVPQ8jgTyOoWOK8GyNNNjy3_E.crl rsync://rpki.apnic.net/member_repository/A9178ACB/523A8F560BA711ED8B0E4C43C4F9AE02/XCfVPQ8jgTyOoWOK8GyNNNjy3_E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCfVPQ8jgTyOoWOK8GyNNNjy3_E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:29:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 624 (0x270) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178ACB, serialNumber=5C27D53D0F23813C8EA1638AF06C8D34D8F2DFF1 Validity Not Before: Apr 25 01:29:01 2025 GMT Not After : May 2 01:29:01 2025 GMT Subject: CN=680ae55d-8db2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:ce:1e:75:dc:a2:b4:f1:4d:ef:8b:7f:85:2a: 04:9b:6c:92:5b:4f:c3:dc:24:d2:79:66:0d:ee:7a: 18:86:9c:9b:39:da:f5:a8:01:a0:b7:3a:ea:93:62: 36:e0:73:c9:02:91:9f:ac:0d:83:6f:aa:d9:9a:04: 50:16:92:bd:2e:fa:2b:81:4c:64:66:31:62:5c:bc: e6:39:91:e1:7f:7f:d8:05:83:33:b1:79:e4:d9:44: 20:da:eb:1c:14:b7:39:09:95:61:9a:65:49:f5:e4: e9:1d:92:aa:cc:28:88:4b:1c:f0:db:4b:d1:aa:9f: 8a:e6:d8:ef:7e:b8:f4:02:bc:f5:69:26:55:14:7c: c4:de:84:9f:94:2c:d0:c2:9a:75:f6:2e:11:92:e9: 3c:54:d8:45:6c:c4:8a:45:ff:85:e9:b7:e9:39:3b: 66:f6:5a:bf:66:84:83:3e:31:4e:7c:cc:2e:25:b0: 4d:45:23:fa:bf:5b:76:de:81:3d:b8:2e:45:2a:e7: c0:37:d3:7b:0b:82:7e:55:71:e2:7b:4a:3c:5a:92: 68:2b:95:20:17:e1:5b:3c:86:b5:5f:ce:77:45:3b: 52:05:d0:33:38:0c:db:3d:2c:fc:6b:74:12:19:77: 14:65:6a:3c:98:ba:6d:d9:93:26:e3:5b:67:51:dc: 12:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:03:87:47:30:16:A8:3C:14:02:A9:B0:1C:52:8A:A6:0C:43:07:5A X509v3 Authority Key Identifier: keyid:5C:27:D5:3D:0F:23:81:3C:8E:A1:63:8A:F0:6C:8D:34:D8:F2:DF:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178ACB/523A8F560BA711ED8B0E4C43C4F9AE02/XCfVPQ8jgTyOoWOK8GyNNNjy3_E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCfVPQ8jgTyOoWOK8GyNNNjy3_E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178ACB/523A8F560BA711ED8B0E4C43C4F9AE02/XCfVPQ8jgTyOoWOK8GyNNNjy3_E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:21:e8:e9:63:7a:64:09:b3:23:5e:c9:aa:c4:d7:93:15:f4: b5:42:97:f9:cd:f8:17:c1:a5:07:e1:a8:c5:03:65:7f:fe:37: 8b:de:63:45:77:83:e3:4a:12:04:0e:52:96:01:28:6f:b7:91: 47:75:dc:06:ed:5e:b3:ba:c7:93:cc:9b:ff:35:2e:5c:1a:2a: ed:69:bb:7b:8c:f2:d0:e6:25:69:af:c4:55:c0:3a:64:92:ac: 58:06:98:5a:b0:18:5b:69:3e:b7:18:81:7d:7a:72:f7:67:5c: aa:9c:ca:f4:07:68:d3:d5:71:bf:d3:22:b4:11:e5:9f:ca:84: aa:fc:29:e4:88:2a:f3:ae:98:24:e5:41:37:6e:63:10:0a:1c: 4a:9b:cc:ff:cf:18:49:3e:86:57:a3:05:cb:7c:a2:4d:f0:37: d5:23:f1:fc:17:97:cd:f3:f3:8c:cd:71:89:93:4d:0b:5f:ec: b7:9f:d4:a3:83:11:7d:02:bf:d4:b3:3a:26:8c:f3:6f:91:97: 50:60:19:06:4f:96:50:ed:a1:e8:ec:63:c9:50:ed:89:9d:7c: 40:fd:c0:ec:ff:32:1a:b5:f8:cd:9d:61:f6:06:bf:d4:49:c9: e9:0c:cb:28:89:39:62:b3:bd:9c:ed:f1:c5:ec:e6:a6:de:e3: 71:8c:3a:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhBQ0IxMTAvBgNVBAUTKDVDMjdENTNEMEYyMzgxM0M4RUExNjM4QUYwNkM4RDM0 RDhGMkRGRjEwHhcNMjUwNDI1MDEyOTAxWhcNMjUwNTAyMDEyOTAxWjAYMRYwFAYD VQQDEw02ODBhZTU1ZC04ZGIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4s4eddyitPFN74t/hSoEm2ySW0/D3CTSeWYN7noYhpybOdr1qAGgtzrqk2I2 4HPJApGfrA2Db6rZmgRQFpK9LvorgUxkZjFiXLzmOZHhf3/YBYMzsXnk2UQg2usc FLc5CZVhmmVJ9eTpHZKqzCiISxzw20vRqp+K5tjvfrj0Arz1aSZVFHzE3oSflCzQ wpp19i4Rkuk8VNhFbMSKRf+F6bfpOTtm9lq/ZoSDPjFOfMwuJbBNRSP6v1t23oE9 uC5FKufAN9N7C4J+VXHie0o8WpJoK5UgF+FbPIa1X853RTtSBdAzOAzbPSz8a3QS GXcUZWo8mLpt2ZMm41tnUdwSSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDMDh0cw Fqg8FAKpsBxSiqYMQwdaMB8GA1UdIwQYMBaAFFwn1T0PI4E8jqFjivBsjTTY8t/x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEFDQi81MjNBOEY1NjBC QTcxMUVEOEIwRTRDNDNDNEY5QUUwMi9YQ2ZWUFE4amdUeU9vV09LOEd5Tk5Oankz X0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hDZlZQUThqZ1R5T29XT0s4R3lOTk5qeTNfRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OEFDQi81MjNBOEY1NjBCQTcxMUVEOEIwRTRDNDNDNEY5QUUwMi9YQ2ZWUFE4amdU eU9vV09LOEd5Tk5OankzX0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3IejpY3pkCbMjXsmqxNeTFfS1Qpf5zfgXwaUH4ajFA2V//jeL3mNF d4PjShIEDlKWAShvt5FHddwG7V6zuseTzJv/NS5cGirtabt7jPLQ5iVpr8RVwDpk kqxYBphasBhbaT63GIF9enL3Z1yqnMr0B2jT1XG/0yK0EeWfyoSq/CnkiCrzrpgk 5UE3bmMQChxKm8z/zxhJPoZXowXLfKJN8DfVI/H8F5fN8/OMzXGJk00LX+y3n9Sj gxF9Ar/UszomjPNvkZdQYBkGT5ZQ7aHo7GPJUO2JnXxA/cDs/zIatfjNnWH2Br/U ScnpDMsoiTlis72c7fHF7Oam3uNxjDq8 -----END CERTIFICATE-----Generated at Sat Apr 26 03:43:54 2025 by rpki-client