$ rpki-client -vvf rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/-XyNrMJ-n8zTOuuFNQsmpIFfELc.mft File: -XyNrMJ-n8zTOuuFNQsmpIFfELc.mft (raw, json) Hash identifier: MZSXAK9lcuM950JzluwHgkuofp4sWtU1njbheZXcwRw= Subject key identifier: A6:B0:1B:DE:EE:5D:3E:24:73:A8:97:59:7C:40:AB:F4:90:31:F7:23 Authority key identifier: F9:7C:8D:AC:C2:7E:9F:CC:D3:3A:EB:85:35:0B:26:A4:81:5F:10:B7 Certificate issuer: /CN=A9196BD8/serialNumber=F97C8DACC27E9FCCD33AEB85350B26A4815F10B7 Certificate serial: 2344 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XyNrMJ-n8zTOuuFNQsmpIFfELc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/-XyNrMJ-n8zTOuuFNQsmpIFfELc.mft Manifest number: 232A Signing time: Thu 24 Apr 2025 15:51:55 +0000 Manifest this update: Thu 24 Apr 2025 15:51:54 +0000 Manifest next update: Thu 01 May 2025 15:51:54 +0000 Files and hashes: 1: -XyNrMJ-n8zTOuuFNQsmpIFfELc.crl (hash: 3nFS5c4nnsfRPQRQYDgiJ/sDuhWkX+3IvUfM14gUB7o=) 2: A768E6B6FB0811ED860A5143C4F9AE02.roa (hash: SVFtlSzgsbl94LKJE/MqOpvXoyEaSOVfShQjoppkD5M=) 3: C73BE8A654F311E7AC64ED3AC4F9AE02.roa (hash: SmF6p3k95KsM+SMEI2F1sl2qA3ioWO3N9renwiZgrBM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/-XyNrMJ-n8zTOuuFNQsmpIFfELc.crl rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/-XyNrMJ-n8zTOuuFNQsmpIFfELc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XyNrMJ-n8zTOuuFNQsmpIFfELc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:51:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9028 (0x2344) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196BD8, serialNumber=F97C8DACC27E9FCCD33AEB85350B26A4815F10B7 Validity Not Before: Apr 24 15:51:54 2025 GMT Not After : May 1 15:51:54 2025 GMT Subject: CN=680a5e1a-d493 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:d9:99:bb:5b:14:b6:aa:57:4e:b3:73:38:ed: 01:c0:87:3a:e3:b1:45:64:a1:62:c6:3f:0a:fb:2c: 7d:e2:61:04:61:aa:6a:e5:73:b2:3f:62:06:16:c9: 0a:53:90:15:16:13:e3:2b:f6:40:73:e6:12:4c:f1: b3:83:1e:91:76:d1:69:30:76:13:e6:39:e7:22:4c: 0d:19:3c:5d:be:32:6d:0e:3f:72:f1:a7:64:9b:38: 4e:6b:19:1e:09:b7:cb:1b:c7:5a:6b:5b:eb:5b:bc: fa:b1:f6:c4:15:73:42:89:91:9d:0d:8f:ef:1c:c0: 64:9e:c9:76:2f:44:89:09:19:e8:84:86:c8:4d:ac: ff:93:14:58:89:dd:2f:1a:6b:e6:de:e2:bd:15:83: 8d:d2:59:39:34:a4:f4:8d:c3:05:b3:bc:b9:e9:4f: ed:00:d6:e0:c8:77:a1:cb:e6:82:4b:d1:9f:fa:2e: 1d:ab:28:0f:b7:d7:d6:9a:7d:72:c6:aa:39:2d:46: 9f:21:6b:f4:48:50:8a:cc:7c:a7:c3:5b:d0:88:ed: ae:c9:fe:d6:03:15:b0:d8:27:d4:49:0c:8e:cd:92: f5:eb:e9:5a:f1:2f:f6:80:d5:ac:5e:cd:7b:8d:91: f4:f4:31:3e:c4:22:13:a7:8f:2d:eb:c6:b3:99:00: f5:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:B0:1B:DE:EE:5D:3E:24:73:A8:97:59:7C:40:AB:F4:90:31:F7:23 X509v3 Authority Key Identifier: keyid:F9:7C:8D:AC:C2:7E:9F:CC:D3:3A:EB:85:35:0B:26:A4:81:5F:10:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/-XyNrMJ-n8zTOuuFNQsmpIFfELc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XyNrMJ-n8zTOuuFNQsmpIFfELc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/-XyNrMJ-n8zTOuuFNQsmpIFfELc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption da:0b:78:94:df:39:0d:3a:40:8a:3e:c2:ed:26:f6:4b:6b:19: d3:fd:00:68:a8:ad:bb:3b:b2:52:8f:79:3f:7c:f2:f8:35:4e: 6a:cd:4f:1c:83:20:96:c4:c0:79:5a:98:be:9f:ea:29:e6:0e: c9:e9:ab:32:19:4b:e6:95:ee:60:7e:20:ef:05:de:1c:7d:b7: 5c:fd:21:31:c3:2b:18:70:a2:72:92:3e:1b:7a:46:73:e0:2b: 04:94:13:8e:37:a9:d9:2e:9c:cf:41:14:cb:08:87:83:f0:c1: 7a:20:ef:ac:97:6f:bf:84:a1:82:28:e1:85:9a:84:c5:b6:b4: f1:2f:dc:f0:9d:ae:9d:29:5a:07:fc:71:39:52:50:ed:66:17: ea:7f:20:b1:7c:90:c8:7e:14:f6:d2:f3:bd:0b:19:2d:f8:a5: 77:1c:4c:4f:c0:07:55:bc:4a:c2:99:c1:5e:8a:e6:1e:84:73: d9:3b:22:3d:be:29:a8:7a:39:78:92:0b:7b:5c:74:b2:07:e6: be:79:08:d0:6c:28:d1:9e:90:ca:c2:31:27:f6:ae:05:f8:fe: 64:8b:f1:d1:82:1e:c5:04:17:6f:7e:85:01:d8:e3:08:d4:06: 41:27:31:d6:56:7d:34:43:cf:a2:16:3f:10:4f:c9:4c:87:d0: db:58:4e:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICI0QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZCRDgxMTAvBgNVBAUTKEY5N0M4REFDQzI3RTlGQ0NEMzNBRUI4NTM1MEIyNkE0 ODE1RjEwQjcwHhcNMjUwNDI0MTU1MTU0WhcNMjUwNTAxMTU1MTU0WjAYMRYwFAYD VQQDEw02ODBhNWUxYS1kNDkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy9mZu1sUtqpXTrNzOO0BwIc647FFZKFixj8K+yx94mEEYapq5XOyP2IGFskK U5AVFhPjK/ZAc+YSTPGzgx6RdtFpMHYT5jnnIkwNGTxdvjJtDj9y8adkmzhOaxke CbfLG8daa1vrW7z6sfbEFXNCiZGdDY/vHMBknsl2L0SJCRnohIbITaz/kxRYid0v Gmvm3uK9FYON0lk5NKT0jcMFs7y56U/tANbgyHehy+aCS9Gf+i4dqygPt9fWmn1y xqo5LUafIWv0SFCKzHynw1vQiO2uyf7WAxWw2CfUSQyOzZL16+la8S/2gNWsXs17 jZH09DE+xCITp48t68azmQD1JwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKawG97u XT4kc6iXWXxAq/SQMfcjMB8GA1UdIwQYMBaAFPl8jazCfp/M0zrrhTULJqSBXxC3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkJEOC9DNTgzRDIzMjg3 QTIxMUU1OUU1MUYyNTFDNEY5QUUwMi8tWHlOck1KLW44elRPdXVGTlFzbXBJRmZF TGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1YeU5yTUotbjh6VE91dUZOUXNtcElGZkVMYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NkJEOC9DNTgzRDIzMjg3QTIxMUU1OUU1MUYyNTFDNEY5QUUwMi8tWHlOck1KLW44 elRPdXVGTlFzbXBJRmZFTGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDaC3iU3zkNOkCKPsLtJvZLaxnT/QBoqK27O7JSj3k/fPL4NU5qzU8c gyCWxMB5Wpi+n+op5g7J6asyGUvmle5gfiDvBd4cfbdc/SExwysYcKJykj4bekZz 4CsElBOON6nZLpzPQRTLCIeD8MF6IO+sl2+/hKGCKOGFmoTFtrTxL9zwna6dKVoH /HE5UlDtZhfqfyCxfJDIfhT20vO9Cxkt+KV3HExPwAdVvErCmcFeiuYehHPZOyI9 vimoejl4kgt7XHSyB+a+eQjQbCjRnpDKwjEn9q4F+P5ki/HRgh7FBBdvfoUB2OMI 1AZBJzHWVn00Q8+iFj8QT8lMh9DbWE5x -----END CERTIFICATE-----Generated at Sat Apr 26 05:20:56 2025 by rpki-client