$ rpki-client -vvf rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft File: XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft (raw, json) Hash identifier: VIGej/usrlyFVY0mMFFGr/gDDtdXj2vVJdnIN696+1Y= Subject key identifier: 9C:F3:4F:6E:8F:DB:55:A9:2C:92:ED:48:74:BA:42:37:95:89:33:F2 Authority key identifier: 5E:84:25:16:65:70:4C:DD:DF:2F:3F:9B:E8:2E:31:FF:B0:74:A5:8E Certificate issuer: /CN=A9127EAD/serialNumber=5E84251665704CDDDF2F3F9BE82E31FFB074A58E Certificate serial: 07E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XoQlFmVwTN3fLz-b6C4x_7B0pY4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft Manifest number: 07E1 Signing time: Wed 14 May 2025 21:06:29 +0000 Manifest this update: Wed 14 May 2025 21:06:29 +0000 Manifest next update: Wed 21 May 2025 21:06:29 +0000 Files and hashes: 1: XoQlFmVwTN3fLz-b6C4x_7B0pY4.crl (hash: deJNt54s1A0nJUHpiOM24tE6Te8/6kbZvhWiYviV0Rk=) 2: 6CAC2064EA2211EA9C2F064AC4F9AE02.roa (hash: 8MctpWGtN4TB9CaLOxK2lVRFp6WdGzpjql1y9Hz4Ctk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.crl rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XoQlFmVwTN3fLz-b6C4x_7B0pY4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 21:06:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2023 (0x7e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127EAD, serialNumber=5E84251665704CDDDF2F3F9BE82E31FFB074A58E Validity Not Before: May 14 21:06:29 2025 GMT Not After : May 21 21:06:29 2025 GMT Subject: CN=682505d5-d221 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:07:db:0a:64:4a:1e:40:a2:37:67:ea:2a:1f: 65:b4:54:48:34:78:7a:40:e2:6e:58:5c:20:4e:76: 4d:89:8b:ef:c0:8e:0d:4f:75:1e:f9:d1:69:45:da: 94:f3:49:34:8f:6c:98:1f:97:b6:6a:26:bb:5c:ff: 39:58:7f:2f:60:18:59:54:29:34:01:d0:f4:1a:ff: ca:3a:cb:b1:ef:fc:68:83:35:ee:0c:28:63:9d:0e: 20:e9:29:43:23:1f:b0:52:6c:00:ad:49:90:42:ff: 99:dd:fe:51:e2:55:9d:a0:43:5a:fd:bd:b1:be:fd: 26:fd:2d:7c:e7:27:e3:44:b5:18:c1:a2:90:de:5f: 4a:5d:b8:44:33:4e:52:07:df:bf:63:d1:08:db:e0: 16:c8:b6:50:60:9d:cc:e7:fc:5e:1b:65:5b:45:91: 00:e3:b5:9e:60:35:de:40:8e:a0:77:72:91:ce:56: 2b:8b:9b:91:3a:9c:ff:dc:c7:74:cd:af:33:ba:ff: 9d:2a:52:08:c0:67:7b:2a:09:80:86:1d:e4:ee:6d: f0:0f:1e:ca:a2:f3:59:a1:6a:e8:cf:b6:84:ef:a7: 16:a2:2c:5c:12:49:ea:5e:44:d0:51:e5:b8:a6:0d: b4:78:ed:85:87:a5:96:90:ec:2b:05:a0:59:92:ad: c3:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:F3:4F:6E:8F:DB:55:A9:2C:92:ED:48:74:BA:42:37:95:89:33:F2 X509v3 Authority Key Identifier: keyid:5E:84:25:16:65:70:4C:DD:DF:2F:3F:9B:E8:2E:31:FF:B0:74:A5:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XoQlFmVwTN3fLz-b6C4x_7B0pY4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:6b:2b:09:d7:fe:b1:4c:d6:b9:e1:58:12:a7:8e:e6:4b:69: 4f:b9:a8:c3:69:7c:cd:ea:0c:0b:0a:2e:2c:85:a0:14:ad:ad: ae:61:23:8d:b0:ce:55:67:29:08:35:73:c8:ae:9b:3a:32:81: 43:c6:67:66:e6:59:a8:79:92:d9:17:b5:bf:7c:92:ca:73:ec: c9:eb:ef:1e:aa:14:9e:3a:76:65:b8:e9:e4:92:d9:cc:0b:a3: f9:6c:57:ef:75:08:c6:10:c9:f7:4d:fb:00:a3:b0:15:24:66: aa:31:11:9b:42:06:52:a1:71:a8:59:52:d9:fe:fb:0d:7e:02: 1c:1f:6f:f5:50:23:2f:34:63:02:fb:e4:ef:63:7c:0a:2d:2f: 76:ca:d1:1a:df:08:d2:ff:ea:ee:98:cf:60:c7:12:22:02:9f: a9:12:70:7c:9a:70:d5:df:f4:0a:19:bd:13:26:4e:75:da:d9: ba:cc:80:49:ff:ff:4f:ce:06:d9:01:69:71:77:e8:64:9a:00: 2e:f7:dd:92:5b:c9:ef:b5:e5:4e:37:fa:52:6b:01:31:96:cc: d6:9c:15:06:33:28:18:fb:f0:53:a3:b8:ce:ca:43:18:4c:18: 27:33:6c:92:7e:86:f3:e2:0b:ae:ec:3f:da:2d:08:34:61:fb: 4e:44:5c:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjdFQUQxMTAvBgNVBAUTKDVFODQyNTE2NjU3MDRDRERERjJGM0Y5QkU4MkUzMUZG QjA3NEE1OEUwHhcNMjUwNTE0MjEwNjI5WhcNMjUwNTIxMjEwNjI5WjAYMRYwFAYD VQQDEw02ODI1MDVkNS1kMjIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyQfbCmRKHkCiN2fqKh9ltFRINHh6QOJuWFwgTnZNiYvvwI4NT3Ue+dFpRdqU 80k0j2yYH5e2aia7XP85WH8vYBhZVCk0AdD0Gv/KOsux7/xogzXuDChjnQ4g6SlD Ix+wUmwArUmQQv+Z3f5R4lWdoENa/b2xvv0m/S185yfjRLUYwaKQ3l9KXbhEM05S B9+/Y9EI2+AWyLZQYJ3M5/xeG2VbRZEA47WeYDXeQI6gd3KRzlYri5uROpz/3Md0 za8zuv+dKlIIwGd7KgmAhh3k7m3wDx7KovNZoWroz7aE76cWoixcEknqXkTQUeW4 pg20eO2Fh6WWkOwrBaBZkq3DlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJzzT26P 21WpLJLtSHS6QjeViTPyMB8GA1UdIwQYMBaAFF6EJRZlcEzd3y8/m+guMf+wdKWO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyN0VBRC9FOUI3MDY2NkVB MjAxMUVBOUNCRkFENDhDNEY5QUUwMi9Yb1FsRm1Wd1ROM2ZMei1iNkM0eF83QjBw WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hvUWxGbVZ3VE4zZkx6LWI2QzR4XzdCMHBZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy N0VBRC9FOUI3MDY2NkVBMjAxMUVBOUNCRkFENDhDNEY5QUUwMi9Yb1FsRm1Wd1RO M2ZMei1iNkM0eF83QjBwWTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkaysJ1/6xTNa54VgSp47mS2lPuajDaXzN6gwLCi4shaAUra2uYSON sM5VZykINXPIrps6MoFDxmdm5lmoeZLZF7W/fJLKc+zJ6+8eqhSeOnZluOnkktnM C6P5bFfvdQjGEMn3TfsAo7AVJGaqMRGbQgZSoXGoWVLZ/vsNfgIcH2/1UCMvNGMC ++TvY3wKLS92ytEa3wjS/+rumM9gxxIiAp+pEnB8mnDV3/QKGb0TJk512tm6zIBJ //9PzgbZAWlxd+hkmgAu992SW8nvteVON/pSawExlszWnBUGMygY+/BTo7jOykMY TBgnM2ySfobz4guu7D/aLQg0YftORFwf -----END CERTIFICATE-----Generated at Fri May 16 12:41:06 2025 by rpki-client