$ rpki-client -vvf rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft File: XZRtT0edN7zhcAywut1RosPfYg8.mft (raw, json) Hash identifier: qVnf3UznA1JiEMMNj/mOdg0oIFqnc0QrylFbKfqPsic= Subject key identifier: FC:65:9A:55:B6:7C:BE:5A:73:8B:FC:B0:13:5C:45:E5:B8:05:4B:A1 Authority key identifier: 5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F Certificate issuer: /CN=A9152787/serialNumber=5D946D4F479D37BCE1700CB0BADD51A2C3DF620F Certificate serial: 6E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft Manifest number: 6C Signing time: Tue 13 May 2025 06:07:36 +0000 Manifest this update: Tue 13 May 2025 06:07:36 +0000 Manifest next update: Tue 20 May 2025 06:07:36 +0000 Files and hashes: 1: XZRtT0edN7zhcAywut1RosPfYg8.crl (hash: gUwPGizogq5TzHSsM8MiRwIZnCfIiWIwuVmYjQNPHuo=) 2: CB24F37C033711F0B76A8520C4F9AE02.roa (hash: 086QtTZ7qGEzYPBYkqpmBPb1qovlHlBpqUB0MoAAlkQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.crl rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 06:07:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 110 (0x6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152787, serialNumber=5D946D4F479D37BCE1700CB0BADD51A2C3DF620F Validity Not Before: May 13 06:07:36 2025 GMT Not After : May 20 06:07:36 2025 GMT Subject: CN=6822e1a8-bd1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:b3:84:47:7e:94:19:58:2e:8c:85:0c:87:7b: b0:82:32:d4:20:da:a2:36:d5:25:ea:89:14:43:fd: 52:35:a6:00:7f:53:b5:e1:29:1b:45:bd:66:a0:aa: 16:b4:30:de:22:aa:b9:1b:dd:a7:7d:6d:b0:b7:e5: 4a:c8:88:44:6f:1d:11:1d:3c:86:dd:0a:f2:e4:4a: 8f:ca:7b:f0:61:fb:50:27:45:5d:ee:b4:3c:2c:bc: 8d:72:18:52:30:31:3b:35:6a:95:3d:db:05:fa:31: c5:c7:3d:6e:8a:81:aa:5f:9d:65:9b:1f:50:68:bd: 5d:6e:68:ae:59:47:8d:f1:c7:1f:c4:17:cf:ea:98: 0e:e3:9c:59:e4:83:75:eb:d3:bc:9a:4f:52:71:fe: d3:aa:42:8f:40:94:d1:5a:cd:3e:80:c2:90:a3:e1: 2b:56:ab:7d:a4:5f:e7:60:6d:f7:65:01:7e:ac:51: 9a:fd:9b:e6:50:b7:39:b3:2e:ee:88:71:c9:e6:d6: 32:5d:52:97:36:cd:e7:b5:eb:f2:ed:68:93:4c:52: 0a:70:69:c5:1a:90:90:95:8f:4a:88:b0:a1:ea:ee: 35:f9:8c:20:ab:e8:03:38:21:36:e3:38:51:bb:80: 39:1a:79:cf:aa:bf:8b:95:e9:7e:09:b1:b6:1c:d9: 93:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:65:9A:55:B6:7C:BE:5A:73:8B:FC:B0:13:5C:45:E5:B8:05:4B:A1 X509v3 Authority Key Identifier: keyid:5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:85:21:2e:a7:db:2f:04:88:7e:79:98:88:9a:fd:19:29:5d: 14:0e:65:16:ea:f1:6b:59:e4:b4:27:90:89:5c:c9:f8:7f:52: d2:fe:88:31:4c:1a:47:0b:e6:97:d5:fb:84:2b:b1:72:94:13: 95:9f:6d:98:33:9f:69:b7:8e:79:9b:d7:6e:a1:1e:24:e7:ca: 3a:57:89:e6:58:ca:af:b2:8b:16:ca:6a:cf:b5:d2:de:e7:2d: 5b:0f:00:12:ca:24:da:de:58:b9:a5:2c:35:de:5e:db:17:f5: 60:d8:ef:57:6a:61:67:45:c0:8d:61:91:63:66:f6:07:c4:a7: 09:6f:69:4e:6c:3a:fb:e1:76:1e:62:63:8c:bf:fe:96:9d:09: c7:33:01:17:66:dc:b8:34:4e:1e:79:2b:d4:aa:1e:e5:ac:a1: ee:14:14:6b:c5:e2:2c:c9:22:26:49:60:07:b1:6f:22:2a:85: 85:65:98:ca:f7:9e:c9:fa:05:8f:17:ae:ec:cb:12:46:cd:f7: 56:4a:82:0f:31:ad:a3:8d:cb:11:20:a5:92:ac:15:09:f4:0b: 60:06:48:b9:ee:46:f3:58:1c:ce:37:c7:b9:60:7a:90:40:bf: d8:c8:ff:e3:f4:ad:62:1d:0e:50:5a:13:ea:10:a3:15:b6:23: f8:e1:02:9f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 Mjc4NzExMC8GA1UEBRMoNUQ5NDZENEY0NzlEMzdCQ0UxNzAwQ0IwQkFERDUxQTJD M0RGNjIwRjAeFw0yNTA1MTMwNjA3MzZaFw0yNTA1MjAwNjA3MzZaMBgxFjAUBgNV BAMTDTY4MjJlMWE4LWJkMWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDRs4RHfpQZWC6MhQyHe7CCMtQg2qI21SXqiRRD/VI1pgB/U7XhKRtFvWagqha0 MN4iqrkb3ad9bbC35UrIiERvHREdPIbdCvLkSo/Ke/Bh+1AnRV3utDwsvI1yGFIw MTs1apU92wX6McXHPW6KgapfnWWbH1BovV1uaK5ZR43xxx/EF8/qmA7jnFnkg3Xr 07yaT1Jx/tOqQo9AlNFazT6AwpCj4StWq32kX+dgbfdlAX6sUZr9m+ZQtzmzLu6I ccnm1jJdUpc2zee16/LtaJNMUgpwacUakJCVj0qIsKHq7jX5jCCr6AM4ITbjOFG7 gDkaec+qv4uV6X4JsbYc2ZOlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU/GWaVbZ8 vlpzi/ywE1xF5bgFS6EwHwYDVR0jBBgwFoAUXZRtT0edN7zhcAywut1RosPfYg8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUyNzg3LzIyODY1NjJBOEY3 OTExRUY5MkFDNzgxRUM0RjlBRTAyL1haUnRUMGVkTjd6aGNBeXd1dDFSb3NQZlln OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWFpSdFQwZWRON3poY0F5d3V0MVJvc1BmWWc4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUy Nzg3LzIyODY1NjJBOEY3OTExRUY5MkFDNzgxRUM0RjlBRTAyL1haUnRUMGVkTjd6 aGNBeXd1dDFSb3NQZllnOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAeFIS6n2y8EiH55mIia/RkpXRQOZRbq8WtZ5LQnkIlcyfh/UtL+iDFM GkcL5pfV+4QrsXKUE5WfbZgzn2m3jnmb126hHiTnyjpXieZYyq+yixbKas+10t7n LVsPABLKJNreWLmlLDXeXtsX9WDY71dqYWdFwI1hkWNm9gfEpwlvaU5sOvvhdh5i Y4y//padCcczARdm3Lg0Th55K9SqHuWsoe4UFGvF4izJIiZJYAexbyIqhYVlmMr3 nsn6BY8XruzLEkbN91ZKgg8xraONyxEgpZKsFQn0C2AGSLnuRvNYHM43x7lgepBA v9jI/+P0rWIdDlBaE+oQoxW2I/jhAp8= -----END CERTIFICATE-----Generated at Wed May 14 11:33:57 2025 by rpki-client