$ rpki-client -vvf rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.mft File: -xaxnfv3ymrECmtqNT94V4kX4P0.mft (raw, json) Hash identifier: U2AlrCLWH4Fkf2Adl0CCKTyzYUGQAb3hbITsVyK1RpI= Subject key identifier: F7:EF:08:C3:37:25:52:3F:13:30:B1:2A:B4:27:FE:13:FB:C9:69:47 Authority key identifier: FB:16:B1:9D:FB:F7:CA:6A:C4:0A:6B:6A:35:3F:78:57:89:17:E0:FD Certificate issuer: /CN=A9146CB4/serialNumber=FB16B19DFBF7CA6AC40A6B6A353F78578917E0FD Certificate serial: 0175 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xaxnfv3ymrECmtqNT94V4kX4P0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.mft Manifest number: 0171 Signing time: Tue 13 May 2025 03:03:17 +0000 Manifest this update: Tue 13 May 2025 03:03:17 +0000 Manifest next update: Tue 20 May 2025 03:03:17 +0000 Files and hashes: 1: -xaxnfv3ymrECmtqNT94V4kX4P0.crl (hash: hFa9cBq4ny/LqFcI14AI8jV8359rUNrzbAed877R6iI=) 2: DFC662EC415B11EE9E83852AC4F9AE02.roa (hash: JQglPoDIL3Eq1y2JiUK8F3q2nUek/I2P1c153lPMYTA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.crl rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xaxnfv3ymrECmtqNT94V4kX4P0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 03:03:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 373 (0x175) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146CB4, serialNumber=FB16B19DFBF7CA6AC40A6B6A353F78578917E0FD Validity Not Before: May 13 03:03:17 2025 GMT Not After : May 20 03:03:17 2025 GMT Subject: CN=6822b675-49af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:3b:99:fd:8c:f3:5d:3a:6e:69:e0:ee:78:16: 9a:b1:ba:ae:f3:38:31:cd:45:40:3b:4f:10:dd:36: dc:e8:59:3b:84:a3:a1:5f:cf:c2:9d:88:6e:15:a3: c0:bc:cb:9b:a0:34:cd:31:03:29:05:7e:a3:6c:dd: 71:b9:71:3c:e3:61:b8:d9:09:8f:01:14:51:e9:8a: c9:ef:9d:e7:a8:a2:d4:df:45:41:85:50:c2:6c:a9: 11:e5:59:10:d2:8d:5d:31:a6:74:e9:47:70:7f:f5: 8f:76:86:63:69:02:ac:3d:34:75:81:4a:27:80:84: db:98:f6:ac:b9:57:1d:ec:1e:cc:5c:95:3e:73:0e: ac:a0:3f:82:af:b2:ca:f8:ba:05:e5:1b:55:e3:d8: ee:c2:38:c8:35:34:d7:57:de:f6:60:77:3c:73:e1: e9:bd:12:7c:cd:b5:22:d8:98:db:b8:bd:6c:72:df: 50:37:7c:ff:05:1d:09:b6:69:57:0b:07:34:4a:31: d2:ba:9d:0f:60:b6:c2:ae:a8:10:1c:68:08:c2:8b: 7a:24:79:53:0f:dc:cf:c1:90:03:01:a2:c1:4b:0d: 2f:3d:b1:ae:04:d9:2b:75:90:8a:1a:d9:ab:94:b3: 59:80:cc:08:c6:c4:0c:1b:9a:69:c3:cf:7c:a5:ac: 79:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:EF:08:C3:37:25:52:3F:13:30:B1:2A:B4:27:FE:13:FB:C9:69:47 X509v3 Authority Key Identifier: keyid:FB:16:B1:9D:FB:F7:CA:6A:C4:0A:6B:6A:35:3F:78:57:89:17:E0:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xaxnfv3ymrECmtqNT94V4kX4P0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:72:61:0d:62:e3:b0:81:5f:25:cd:fe:7b:d3:44:b1:68:3e: b5:7b:22:98:9a:70:c0:a4:d0:15:1b:7d:72:58:91:cb:82:03: e9:b9:a1:ee:68:28:f6:5e:3a:20:79:dc:47:21:a8:e1:8e:d1: aa:49:3b:6e:16:27:92:45:5d:17:52:46:23:a9:a3:99:be:df: 33:c8:e8:f6:86:8e:ea:5b:58:2c:66:fe:74:b5:2e:24:e5:b4: d9:a1:2d:c5:8e:21:70:f1:5b:9a:e3:37:0e:9c:a0:e5:39:d5: ac:54:a2:4e:b5:72:a4:74:90:a0:bb:ef:77:69:d9:68:69:e3: c1:91:83:53:80:ac:46:fe:cd:36:3d:4a:d6:97:da:ea:f0:6c: 4c:a9:94:20:1a:1b:49:a4:1e:39:e0:5f:c4:03:9e:c1:51:d1: 03:39:13:bb:2d:5c:d3:18:29:79:cc:72:9d:c8:75:1a:67:86: 5a:95:28:ac:d5:74:3c:60:47:e8:7d:c0:70:c6:2e:f7:a9:55: d7:5a:9d:77:4f:44:13:94:4b:72:ed:d9:20:2d:12:35:a3:1a: f4:0f:79:55:57:ec:21:22:04:29:f0:26:6c:05:55:cb:32:82: 2a:35:b2:8f:a2:d1:15:c5:26:31:69:64:87:68:e9:32:84:dc: d2:3d:c0:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZDQjQxMTAvBgNVBAUTKEZCMTZCMTlERkJGN0NBNkFDNDBBNkI2QTM1M0Y3ODU3 ODkxN0UwRkQwHhcNMjUwNTEzMDMwMzE3WhcNMjUwNTIwMDMwMzE3WjAYMRYwFAYD VQQDEw02ODIyYjY3NS00OWFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7TuZ/YzzXTpuaeDueBaasbqu8zgxzUVAO08Q3Tbc6Fk7hKOhX8/CnYhuFaPA vMuboDTNMQMpBX6jbN1xuXE842G42QmPARRR6YrJ753nqKLU30VBhVDCbKkR5VkQ 0o1dMaZ06Udwf/WPdoZjaQKsPTR1gUongITbmPasuVcd7B7MXJU+cw6soD+Cr7LK +LoF5RtV49juwjjINTTXV972YHc8c+HpvRJ8zbUi2JjbuL1sct9QN3z/BR0JtmlX Cwc0SjHSup0PYLbCrqgQHGgIwot6JHlTD9zPwZADAaLBSw0vPbGuBNkrdZCKGtmr lLNZgMwIxsQMG5ppw898pax5PwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPfvCMM3 JVI/EzCxKrQn/hP7yWlHMB8GA1UdIwQYMBaAFPsWsZ3798pqxAprajU/eFeJF+D9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkNCNC8yQTg0RDFEOEZE QzgxMUVEOTcyRURCMUVDNEY5QUUwMi8teGF4bmZ2M3ltckVDbXRxTlQ5NFY0a1g0 UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy14YXhuZnYzeW1yRUNtdHFOVDk0VjRrWDRQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkNCNC8yQTg0RDFEOEZEQzgxMUVEOTcyRURCMUVDNEY5QUUwMi8teGF4bmZ2M3lt ckVDbXRxTlQ5NFY0a1g0UDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJcmENYuOwgV8lzf5700SxaD61eyKYmnDApNAVG31yWJHLggPpuaHu aCj2XjogedxHIajhjtGqSTtuFieSRV0XUkYjqaOZvt8zyOj2ho7qW1gsZv50tS4k 5bTZoS3FjiFw8Vua4zcOnKDlOdWsVKJOtXKkdJCgu+93adloaePBkYNTgKxG/s02 PUrWl9rq8GxMqZQgGhtJpB454F/EA57BUdEDORO7LVzTGCl5zHKdyHUaZ4ZalSis 1XQ8YEfofcBwxi73qVXXWp13T0QTlEty7dkgLRI1oxr0D3lVV+whIgQp8CZsBVXL MoIqNbKPotEVxSYxaWSHaOkyhNzSPcDz -----END CERTIFICATE-----Generated at Tue May 13 11:18:53 2025 by rpki-client