$ rpki-client -vvf rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft File: X2mHOU7ukmatexkjRBv29RNP-VA.mft (raw, json) Hash identifier: iw++ZC/Cu4ivwNf9vBMl0I5EX4tuVgWaF1wNGpp3DPE= Subject key identifier: FD:E5:46:6C:F7:8B:62:8D:32:2D:36:9D:DB:EC:41:21:18:84:14:2C Authority key identifier: 5F:69:87:39:4E:EE:92:66:AD:7B:19:23:44:1B:F6:F5:13:4F:F9:50 Certificate issuer: /CN=A9147241/serialNumber=5F6987394EEE9266AD7B1923441BF6F5134FF950 Certificate serial: 07E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mHOU7ukmatexkjRBv29RNP-VA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft Manifest number: 07DA Signing time: Mon 12 May 2025 20:50:08 +0000 Manifest this update: Mon 12 May 2025 20:50:07 +0000 Manifest next update: Mon 19 May 2025 20:50:07 +0000 Files and hashes: 1: X2mHOU7ukmatexkjRBv29RNP-VA.crl (hash: dIek01vuL+LvakDV8EXG0E9ga23tYBOhhNYS7dDZt5w=) 2: F69648C2ECF211EABBFDDD24C4F9AE02.roa (hash: 90ekW1pDIqXWRjwU9tVaYqCrzXTRiG8h8pa7XJ3ojS8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.crl rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mHOU7ukmatexkjRBv29RNP-VA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 20:50:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2017 (0x7e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147241, serialNumber=5F6987394EEE9266AD7B1923441BF6F5134FF950 Validity Not Before: May 12 20:50:07 2025 GMT Not After : May 19 20:50:07 2025 GMT Subject: CN=68225eff-c98c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:c0:ad:42:7a:d7:d8:d6:cf:1e:ef:48:a5:d5: 22:43:a6:4b:de:e8:22:08:1f:db:fa:42:df:f8:3e: b5:28:8e:84:2f:76:a0:11:f4:1e:ba:d5:4e:60:46: 95:64:93:62:53:19:2d:a5:64:20:e9:f3:42:ba:03: c7:1e:3b:0b:85:62:18:4f:2c:4b:b6:40:80:08:0b: 99:1f:c9:73:4b:09:bb:53:61:58:16:77:11:7d:87: e8:eb:d5:c1:f9:1b:dc:40:31:b7:0a:7a:26:6c:06: 4c:8d:17:e3:28:9c:da:b0:9a:ca:ac:ca:85:7a:78: 1f:2a:46:f5:5c:38:28:9c:2b:93:2f:42:1a:6f:9a: 11:9b:56:45:c0:0e:92:a8:ea:23:8a:c1:78:41:61: 9c:f6:9f:6b:85:81:32:07:8f:9b:e0:cc:ac:f4:63: 26:44:e9:69:02:04:8e:7a:cb:1d:09:c3:a8:e6:01: c5:05:7d:38:3b:d8:e9:e0:17:2a:5f:53:60:64:ea: 0e:6d:46:40:bc:60:c2:ca:33:07:e0:38:49:6c:34: 33:1f:a0:5e:70:50:ca:e0:3f:ac:7a:42:05:de:47: bd:1b:dc:92:96:17:59:2f:0d:aa:29:bf:73:5f:09: 8d:17:bb:6d:c6:ff:8a:b9:70:7c:b6:d2:c4:1c:2f: 46:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:E5:46:6C:F7:8B:62:8D:32:2D:36:9D:DB:EC:41:21:18:84:14:2C X509v3 Authority Key Identifier: keyid:5F:69:87:39:4E:EE:92:66:AD:7B:19:23:44:1B:F6:F5:13:4F:F9:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mHOU7ukmatexkjRBv29RNP-VA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:8c:c9:d1:ca:92:e8:e3:c8:c2:a7:28:97:dc:9d:48:6f:11: 07:09:9b:92:49:74:4a:08:7e:fa:2f:50:d3:d5:dd:cb:fc:00: d0:1e:56:b9:f1:33:4f:ba:28:5c:ad:c6:f4:ba:81:4c:6f:70: 74:dd:17:4f:5d:c8:de:eb:d6:55:67:37:8f:55:93:18:49:bb: 50:f1:77:8b:94:ca:a7:d4:91:65:f9:db:f0:57:26:bf:ba:4a: c6:66:72:a6:1b:08:d4:33:6c:c7:64:3f:fb:bc:1b:f2:ce:41: 32:75:e8:18:96:c8:dc:a7:da:ea:06:c0:42:61:57:41:6f:ef: ff:8a:37:ba:2d:6b:6a:20:96:b5:e5:ad:43:65:81:39:1a:2d: ef:81:a9:7a:11:e9:8c:dc:1e:54:82:14:3d:32:a8:32:9b:24: bd:42:1f:76:10:ff:8e:1f:42:ec:47:2b:60:ee:6e:51:ae:3d: 70:fc:45:0e:c2:b4:8e:58:fb:e5:55:4b:cf:a3:ff:21:96:51: e0:85:5f:f8:4d:4a:4c:be:ab:8e:80:1d:da:4f:99:b2:3b:16: 1d:b4:1d:3e:4d:0b:76:30:e8:91:5b:41:8a:34:66:6d:3d:17: ef:39:b7:77:21:d1:52:cd:65:66:e5:71:6c:3a:79:85:02:94: fb:e7:dc:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDcyNDExMTAvBgNVBAUTKDVGNjk4NzM5NEVFRTkyNjZBRDdCMTkyMzQ0MUJGNkY1 MTM0RkY5NTAwHhcNMjUwNTEyMjA1MDA3WhcNMjUwNTE5MjA1MDA3WjAYMRYwFAYD VQQDEw02ODIyNWVmZi1jOThjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6sCtQnrX2NbPHu9IpdUiQ6ZL3ugiCB/b+kLf+D61KI6EL3agEfQeutVOYEaV ZJNiUxktpWQg6fNCugPHHjsLhWIYTyxLtkCACAuZH8lzSwm7U2FYFncRfYfo69XB +RvcQDG3CnombAZMjRfjKJzasJrKrMqFengfKkb1XDgonCuTL0Iab5oRm1ZFwA6S qOojisF4QWGc9p9rhYEyB4+b4Mys9GMmROlpAgSOessdCcOo5gHFBX04O9jp4Bcq X1NgZOoObUZAvGDCyjMH4DhJbDQzH6BecFDK4D+sekIF3ke9G9ySlhdZLw2qKb9z XwmNF7ttxv+KuXB8ttLEHC9GEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP3lRmz3 i2KNMi02ndvsQSEYhBQsMB8GA1UdIwQYMBaAFF9phzlO7pJmrXsZI0Qb9vUTT/lQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzI0MS82MkJCNUM3NEVD RjExMUVBQTM5RDU3MjJDNEY5QUUwMi9YMm1IT1U3dWttYXRleGtqUkJ2MjlSTlAt VkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gybUhPVTd1a21hdGV4a2pSQnYyOVJOUC1WQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzI0MS82MkJCNUM3NEVDRjExMUVBQTM5RDU3MjJDNEY5QUUwMi9YMm1IT1U3dWtt YXRleGtqUkJ2MjlSTlAtVkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxjMnRypLo48jCpyiX3J1IbxEHCZuSSXRKCH76L1DT1d3L/ADQHla5 8TNPuihcrcb0uoFMb3B03RdPXcje69ZVZzePVZMYSbtQ8XeLlMqn1JFl+dvwVya/ ukrGZnKmGwjUM2zHZD/7vBvyzkEydegYlsjcp9rqBsBCYVdBb+//ije6LWtqIJa1 5a1DZYE5Gi3vgal6EemM3B5UghQ9MqgymyS9Qh92EP+OH0LsRytg7m5Rrj1w/EUO wrSOWPvlVUvPo/8hllHghV/4TUpMvquOgB3aT5myOxYdtB0+TQt2MOiRW0GKNGZt PRfvObd3IdFSzWVm5XFsOnmFApT759xq -----END CERTIFICATE-----Generated at Wed May 14 18:31:44 2025 by rpki-client