$ rpki-client -vvf rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.mft File: 0XRFPpVj66_LuzKsxs-Gb72OIvA.mft (raw, json) Hash identifier: 0UtYji+KYb7vzxoww3rle0pchlGJqL401K9eCtx7fYE= Subject key identifier: C7:90:C9:B7:B0:BD:B9:89:EF:83:20:F4:31:A3:59:B9:78:14:6A:F3 Authority key identifier: D1:74:45:3E:95:63:EB:AF:CB:BB:32:AC:C6:CF:86:6F:BD:8E:22:F0 Certificate issuer: /CN=A9187325/serialNumber=D174453E9563EBAFCBBB32ACC6CF866FBD8E22F0 Certificate serial: 50 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0XRFPpVj66_LuzKsxs-Gb72OIvA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.mft Manifest number: 4F Signing time: Fri 25 Apr 2025 06:16:25 +0000 Manifest this update: Fri 25 Apr 2025 06:16:24 +0000 Manifest next update: Fri 02 May 2025 06:16:24 +0000 Files and hashes: 1: 0XRFPpVj66_LuzKsxs-Gb72OIvA.crl (hash: Z9PLYTX13bLBx3kwdMlGwm6yaG5hfTAG9XOvjZQwqrE=) 2: D9DB29CCAAEF11EF9187EE2AC4F9AE02.roa (hash: zhUDBt2wZDhknIJUCNitYM8EJRnUn0t65SOwAtO1PEM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.crl rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0XRFPpVj66_LuzKsxs-Gb72OIvA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:16:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 80 (0x50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187325, serialNumber=D174453E9563EBAFCBBB32ACC6CF866FBD8E22F0 Validity Not Before: Apr 25 06:16:24 2025 GMT Not After : May 2 06:16:24 2025 GMT Subject: CN=680b28b9-89c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:3a:6d:f4:41:f2:7e:58:5e:0e:2a:1b:ba:54: 59:ca:43:a9:40:95:5d:b2:f7:3b:51:ab:26:a7:c5: 0e:06:c8:b5:b4:18:e9:77:53:90:07:58:c9:82:b5: 38:b8:4e:21:26:30:d0:b6:c0:7d:d6:21:1d:05:74: b0:91:6f:37:64:e6:46:91:7f:77:e9:a0:1d:25:12: 6c:7f:cd:28:a1:93:60:9d:65:c1:5f:aa:19:5b:44: 61:50:92:78:44:47:7b:85:e2:c0:b8:72:4e:aa:1e: 81:66:62:ce:ac:61:97:39:f1:03:0a:55:9c:5a:2c: e1:84:37:be:55:6a:d8:6e:d3:3f:c5:ca:b4:48:15: 73:35:e1:8e:10:69:44:19:43:65:9d:bf:2a:9b:59: 1d:b2:1e:b3:b9:59:0e:a3:b9:b3:b7:ba:94:f5:c9: c3:3c:28:6f:d1:ef:ce:12:43:26:de:9d:14:84:fd: 06:f9:7d:bd:b2:51:1c:5b:b3:fa:5a:4f:80:56:1f: cf:9b:45:c6:3a:4b:71:88:f2:13:66:31:14:df:79: 40:b7:fb:db:9e:75:81:0e:56:d8:f8:c7:2f:79:b7: f4:1a:d5:6f:d4:7d:0c:ac:52:f9:1a:be:af:fc:1d: 96:e8:02:7d:22:8f:03:c3:58:4b:6a:eb:3c:35:c2: bb:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:90:C9:B7:B0:BD:B9:89:EF:83:20:F4:31:A3:59:B9:78:14:6A:F3 X509v3 Authority Key Identifier: keyid:D1:74:45:3E:95:63:EB:AF:CB:BB:32:AC:C6:CF:86:6F:BD:8E:22:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0XRFPpVj66_LuzKsxs-Gb72OIvA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:39:c8:37:40:2c:58:a4:21:94:95:4e:e2:b3:36:89:92:0f: 85:5c:8a:ce:0b:ef:93:7f:e2:7a:41:c9:42:3d:8a:ff:13:64: 44:3a:f6:d5:61:3a:56:de:cb:22:ff:45:c5:aa:54:b3:4c:f2: b0:7c:c8:9a:49:78:70:cc:51:f2:2f:17:7e:77:b2:a5:36:28: 05:a2:f8:7c:2d:8b:a3:07:25:3c:4c:5d:40:a4:48:5b:9d:b3: 84:94:84:29:3b:c7:06:f9:a2:20:2b:7b:a0:39:68:eb:b0:b3: 05:db:c6:a1:07:0c:b1:07:0a:cf:a7:85:cc:24:aa:aa:48:5d: c7:b1:ac:a8:99:0d:f6:71:f2:8d:a4:9c:44:c9:c0:92:3a:99: 90:81:3f:9d:dd:b6:95:f6:37:4d:8a:3e:e6:be:67:3a:07:88: 17:71:7d:3c:bb:86:4b:ba:2f:a9:66:8d:8f:cf:2b:01:84:27: 48:54:d3:35:13:b7:87:e4:d1:9e:5a:ab:32:66:76:2e:11:1b: 3a:9c:1f:cd:0a:b3:cf:78:01:73:67:41:88:84:78:f0:cb:8e: ed:03:f1:18:ac:34:49:9d:7e:77:a3:a3:8a:5d:db:a5:d0:fa: 3d:1a:8a:2c:57:42:10:e2:b9:ad:6f:91:44:11:ae:27:0b:c8: e5:14:9a:9c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NzMyNTExMC8GA1UEBRMoRDE3NDQ1M0U5NTYzRUJBRkNCQkIzMkFDQzZDRjg2NkZC RDhFMjJGMDAeFw0yNTA0MjUwNjE2MjRaFw0yNTA1MDIwNjE2MjRaMBgxFjAUBgNV BAMTDTY4MGIyOGI5LTg5YzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKOm30QfJ+WF4OKhu6VFnKQ6lAlV2y9ztRqyanxQ4GyLW0GOl3U5AHWMmCtTi4 TiEmMNC2wH3WIR0FdLCRbzdk5kaRf3fpoB0lEmx/zSihk2CdZcFfqhlbRGFQknhE R3uF4sC4ck6qHoFmYs6sYZc58QMKVZxaLOGEN75Vathu0z/FyrRIFXM14Y4QaUQZ Q2WdvyqbWR2yHrO5WQ6jubO3upT1ycM8KG/R784SQybenRSE/Qb5fb2yURxbs/pa T4BWH8+bRcY6S3GI8hNmMRTfeUC3+9uedYEOVtj4xy95t/Qa1W/UfQysUvkavq/8 HZboAn0ijwPDWEtq6zw1wrvlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUx5DJt7C9 uYnvgyD0MaNZuXgUavMwHwYDVR0jBBgwFoAU0XRFPpVj66/LuzKsxs+Gb72OIvAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg3MzI1LzdCMzM0QTRBQUFF OTExRUZCNzIxQzI1REM0RjlBRTAyLzBYUkZQcFZqNjZfTHV6S3N4cy1HYjcyT0l2 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMFhSRlBwVmo2Nl9MdXpLc3hzLUdiNzJPSXZBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg3 MzI1LzdCMzM0QTRBQUFFOTExRUZCNzIxQzI1REM0RjlBRTAyLzBYUkZQcFZqNjZf THV6S3N4cy1HYjcyT0l2QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIU5yDdALFikIZSVTuKzNomSD4Vcis4L75N/4npByUI9iv8TZEQ69tVh OlbeyyL/RcWqVLNM8rB8yJpJeHDMUfIvF353sqU2KAWi+Hwti6MHJTxMXUCkSFud s4SUhCk7xwb5oiAre6A5aOuwswXbxqEHDLEHCs+nhcwkqqpIXcexrKiZDfZx8o2k nETJwJI6mZCBP53dtpX2N02KPua+ZzoHiBdxfTy7hku6L6lmjY/PKwGEJ0hU0zUT t4fk0Z5aqzJmdi4RGzqcH80Ks894AXNnQYiEePDLju0D8RisNEmdfnejo4pd26XQ +j0aiixXQhDiua1vkUQRricLyOUUmpw= -----END CERTIFICATE-----Generated at Sat Apr 26 17:13:49 2025 by rpki-client