$ rpki-client -vvf rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft File: XfVm12I2fCjH8_ElYbRxa4yhuWY.mft (raw, json) Hash identifier: 0z5/a0KuPmlF0HIP7q2D2z4vZ7sQ/dtZgX7NJbowRRg= Subject key identifier: D4:45:C1:2F:BA:22:7E:55:94:39:5C:FD:7C:C9:A7:E8:32:FE:EC:28 Authority key identifier: 5D:F5:66:D7:62:36:7C:28:C7:F3:F1:25:61:B4:71:6B:8C:A1:B9:66 Certificate issuer: /CN=A9133B47/serialNumber=5DF566D762367C28C7F3F12561B4716B8CA1B966 Certificate serial: C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfVm12I2fCjH8_ElYbRxa4yhuWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft Manifest number: BF Signing time: Thu 15 May 2025 05:11:11 +0000 Manifest this update: Thu 15 May 2025 05:11:11 +0000 Manifest next update: Thu 22 May 2025 05:11:11 +0000 Files and hashes: 1: XfVm12I2fCjH8_ElYbRxa4yhuWY.crl (hash: d0norL3opMHyJMbullLxZA3UEve1w8fY0/pAQLCkxkM=) 2: 23B1A0120FA511EFB28F5235C4F9AE02.roa (hash: hXpBoYToApPmmdPekjKleadge49SIJY0fjcaISdG6yE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.crl rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfVm12I2fCjH8_ElYbRxa4yhuWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 05:11:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 193 (0xc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9133B47, serialNumber=5DF566D762367C28C7F3F12561B4716B8CA1B966 Validity Not Before: May 15 05:11:11 2025 GMT Not After : May 22 05:11:11 2025 GMT Subject: CN=6825776f-36ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:1f:c7:24:b7:6a:66:35:c5:df:23:9d:96:8d: d5:cb:7b:f5:74:64:f9:20:17:47:97:f6:88:64:dc: db:6b:e7:fd:3a:6c:95:1d:71:f2:c2:7a:57:37:a1: e1:81:4d:1f:ed:26:2b:5a:a8:d9:b2:cd:49:40:04: a6:2a:08:f9:36:d7:be:d5:72:69:8a:54:fe:57:a0: e8:8c:04:1c:a4:5f:04:74:7f:59:e1:1f:72:c1:68: bd:a6:bd:cb:fe:08:c6:13:93:0c:54:90:30:2e:38: fe:72:4d:74:10:0b:10:96:c2:6a:86:b8:c5:41:c8: dc:4d:bb:7c:a0:15:fe:8b:00:2a:04:4a:c4:50:5e: 7d:a9:34:af:0d:54:cf:f3:35:91:3b:7c:ee:b4:1d: dd:76:7b:af:5c:fa:14:90:03:1d:22:d2:36:48:5a: 27:d5:9d:f5:be:a6:27:e6:23:23:97:c3:2c:88:ab: 66:fb:e6:13:b1:de:9d:00:ef:2e:31:4d:ac:ee:6b: 9c:bd:ec:44:65:dc:a6:1e:a4:1f:a2:b7:5c:57:d2: 5a:0f:f0:3e:2b:d0:54:b6:b3:61:60:76:6a:9f:9b: cb:d2:33:f0:0a:68:56:c1:22:c0:8d:c7:7d:bf:c8: 14:99:3c:0e:60:d5:1c:fd:68:2e:81:b8:d0:6c:00: 68:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:45:C1:2F:BA:22:7E:55:94:39:5C:FD:7C:C9:A7:E8:32:FE:EC:28 X509v3 Authority Key Identifier: keyid:5D:F5:66:D7:62:36:7C:28:C7:F3:F1:25:61:B4:71:6B:8C:A1:B9:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfVm12I2fCjH8_ElYbRxa4yhuWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:c3:c0:6f:ec:6b:88:15:b3:cc:51:00:d4:f2:55:92:b8:d8: 53:2f:f8:54:60:4a:26:04:25:62:60:7c:c6:f6:61:3f:a3:21: 30:9b:1c:86:d9:ed:7a:15:ea:24:39:10:4c:e3:fc:d0:7c:33: a3:61:b9:5a:47:28:a7:3b:3e:cb:6c:cb:fb:c5:d8:e6:c5:0f: fa:83:fd:3f:d6:b4:30:b9:53:83:0d:42:b3:8d:95:be:19:d7: ab:28:dd:04:e5:ea:fe:4c:a3:98:39:64:d7:15:68:de:0b:69: 68:56:53:32:62:9a:25:a4:14:26:26:c9:1e:b9:02:c2:d4:17: 14:15:58:eb:91:21:e1:ce:d9:ef:81:41:1b:03:90:0b:4f:e1: 53:d4:a9:1c:7a:e2:15:27:47:81:e6:3d:1c:2f:fc:35:2a:0d: 0d:ae:73:45:d5:71:48:57:1a:8c:34:7b:9e:5d:f2:51:4d:97: 3b:37:d0:0c:37:31:52:d0:05:9d:d9:1e:d6:cf:ee:9a:d0:83: 4e:2f:03:54:bd:7e:61:44:4d:2f:71:3f:da:f2:a1:6c:66:ec: 12:ca:75:13:74:d4:c6:45:1c:e4:0e:bd:4e:a0:72:94:af:9b: 63:47:9a:f5:09:de:c3:39:61:61:77:ee:78:db:84:19:95:10: d7:66:3d:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzNCNDcxMTAvBgNVBAUTKDVERjU2NkQ3NjIzNjdDMjhDN0YzRjEyNTYxQjQ3MTZC OENBMUI5NjYwHhcNMjUwNTE1MDUxMTExWhcNMjUwNTIyMDUxMTExWjAYMRYwFAYD VQQDEw02ODI1Nzc2Zi0zNmFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwB/HJLdqZjXF3yOdlo3Vy3v1dGT5IBdHl/aIZNzba+f9OmyVHXHywnpXN6Hh gU0f7SYrWqjZss1JQASmKgj5Nte+1XJpilT+V6DojAQcpF8EdH9Z4R9ywWi9pr3L /gjGE5MMVJAwLjj+ck10EAsQlsJqhrjFQcjcTbt8oBX+iwAqBErEUF59qTSvDVTP 8zWRO3zutB3ddnuvXPoUkAMdItI2SFon1Z31vqYn5iMjl8MsiKtm++YTsd6dAO8u MU2s7mucvexEZdymHqQfordcV9JaD/A+K9BUtrNhYHZqn5vL0jPwCmhWwSLAjcd9 v8gUmTwOYNUc/WgugbjQbABoEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNRFwS+6 In5VlDlc/XzJp+gy/uwoMB8GA1UdIwQYMBaAFF31ZtdiNnwox/PxJWG0cWuMoblm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzM0I0Ny84NzFCOTI5NDBG QTQxMUVGQTFBMTY5MzRDNEY5QUUwMi9YZlZtMTJJMmZDakg4X0VsWWJSeGE0eWh1 V1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hmVm0xMkkyZkNqSDhfRWxZYlJ4YTR5aHVXWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz M0I0Ny84NzFCOTI5NDBGQTQxMUVGQTFBMTY5MzRDNEY5QUUwMi9YZlZtMTJJMmZD akg4X0VsWWJSeGE0eWh1V1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0w8Bv7GuIFbPMUQDU8lWSuNhTL/hUYEomBCViYHzG9mE/oyEwmxyG 2e16FeokORBM4/zQfDOjYblaRyinOz7LbMv7xdjmxQ/6g/0/1rQwuVODDUKzjZW+ GderKN0E5er+TKOYOWTXFWjeC2loVlMyYpolpBQmJskeuQLC1BcUFVjrkSHhztnv gUEbA5ALT+FT1KkceuIVJ0eB5j0cL/w1Kg0NrnNF1XFIVxqMNHueXfJRTZc7N9AM NzFS0AWd2R7Wz+6a0INOLwNUvX5hRE0vcT/a8qFsZuwSynUTdNTGRRzkDr1OoHKU r5tjR5r1Cd7DOWFhd+5424QZlRDXZj1o -----END CERTIFICATE-----Generated at Fri May 16 21:41:13 2025 by rpki-client