$ rpki-client -vvf rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft File: Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft (raw, json) Hash identifier: bcwjWlgQDQU+wMFvkDA6vqgZ4mY3rWhGhuAIsdetgpU= Subject key identifier: 1D:38:7C:C7:CD:99:C8:62:99:09:C2:29:85:B5:2A:88:D7:F9:AA:2F Authority key identifier: 5F:2E:5E:62:93:2B:B5:0A:85:FF:2F:9A:5F:31:B2:BA:DD:5F:34:AC Certificate issuer: /CN=A9158E8E/serialNumber=5F2E5E62932BB50A85FF2F9A5F31B2BADD5F34AC Certificate serial: 03A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft Manifest number: 0385 Signing time: Sat 17 May 2025 01:11:27 +0000 Manifest this update: Sat 17 May 2025 01:11:26 +0000 Manifest next update: Sat 24 May 2025 01:11:26 +0000 Files and hashes: 1: Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl (hash: roa02HdLyrwvkkjMX4wPNy4urVa7BlRCasseUEQ7nY0=) 2: 7B6F6276E03811EFAC3C5652C4F9AE02.roa (hash: melteXR1cRharD5muHTsf70+edihxivjKNNQzAZNpLE=) 3: 79C2D638E03811EFAC3C5652C4F9AE02.roa (hash: pIl/ybOSWeNJuXyu7vI+RsUvtpL0KXP/t0jEbgQtU7I=) 4: 7AA94F3CE03811EFAC3C5652C4F9AE02.roa (hash: ImUvDtTwcm68idWdwXB7tEHKc5rG51UP9vCEMxdSyRc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 00:27:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 937 (0x3a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158E8E, serialNumber=5F2E5E62932BB50A85FF2F9A5F31B2BADD5F34AC Validity Not Before: May 17 01:11:26 2025 GMT Not After : May 24 01:11:26 2025 GMT Subject: CN=6827e23e-c12c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:6a:b9:d5:2c:e1:2a:b6:e3:c6:da:ed:13:d9: 40:fe:2f:11:d5:9b:2a:c1:ec:c2:6d:c9:c6:d2:59: 77:65:74:c8:72:6a:4f:f6:fa:a8:10:8a:88:78:9c: 50:6f:8c:a9:16:44:a8:51:44:2c:18:7d:db:bc:62: 25:10:0f:41:3d:c3:79:eb:b6:3f:cb:be:cf:65:5e: 0a:04:89:47:21:2d:37:25:56:e7:b7:f6:94:4d:b9: 42:8e:c0:e6:b2:01:12:48:20:2f:a6:55:2f:e7:f0: 2e:3b:24:15:76:5e:db:4c:ff:d0:1e:a5:a4:cc:5f: 4b:f5:67:cf:6b:bc:6f:ff:0e:af:c5:9d:c3:19:61: a3:eb:25:84:84:d5:35:d0:d8:e6:20:2c:a7:7f:e8: 6e:3d:da:03:b6:f5:55:68:c6:f5:92:e8:8f:d0:e2: d0:5d:be:b7:33:db:04:e6:93:8c:c8:79:74:b4:1d: f5:28:e9:6a:c9:e1:08:2e:34:e4:df:04:2e:3b:c4: 33:c5:fc:90:d0:07:5b:ba:f3:46:28:55:e9:73:7d: 9f:58:6d:02:4f:4e:25:61:03:e5:8b:b5:b3:06:7d: 34:d7:70:52:89:6e:f2:f2:8f:ea:0b:75:af:14:1f: f1:57:86:12:fa:02:99:6c:73:be:9d:17:ed:63:02: 73:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:38:7C:C7:CD:99:C8:62:99:09:C2:29:85:B5:2A:88:D7:F9:AA:2F X509v3 Authority Key Identifier: keyid:5F:2E:5E:62:93:2B:B5:0A:85:FF:2F:9A:5F:31:B2:BA:DD:5F:34:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:fe:ec:df:6d:37:fe:65:28:7e:96:3b:7b:26:60:99:92:3f: 9d:11:ce:88:4b:0f:66:1f:16:18:23:03:ad:e3:1f:de:3c:19: 68:ea:38:d3:70:f2:34:9d:32:bf:ac:c3:b9:9a:1a:a6:8d:31: 7f:13:c1:2b:3f:ab:b9:4a:07:54:18:2b:3a:26:e3:48:1e:0a: 2f:72:9f:78:44:05:72:08:01:40:78:75:90:4f:da:29:28:7d: 4c:99:fa:4b:52:6d:11:40:da:c3:a6:be:9d:81:a8:c5:28:a1: 52:fc:92:44:fd:0b:05:76:78:2e:58:86:82:43:f8:83:c9:a6: 61:d6:d5:e4:77:9b:5a:a3:e8:52:da:89:f7:03:6d:70:d2:0a: 14:b1:f6:4b:0a:10:1c:81:04:4b:69:15:b1:ab:bb:d8:60:12: 7a:c6:3a:af:62:20:ed:f1:83:8a:6c:1e:9b:1c:c4:08:4a:0a: ba:0a:64:df:38:e7:7e:fd:13:05:15:2a:1e:26:e8:58:26:38: 31:1a:05:23:75:7e:a9:82:9f:43:b1:99:5d:61:79:77:ca:69: be:c8:65:fd:8c:2e:ea:e8:87:c2:55:be:30:ac:f5:c2:a0:23: 3c:21:cc:ef:bc:99:6d:a8:51:60:94:f2:bd:e1:88:ff:31:30: 7c:79:c0:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThFOEUxMTAvBgNVBAUTKDVGMkU1RTYyOTMyQkI1MEE4NUZGMkY5QTVGMzFCMkJB REQ1RjM0QUMwHhcNMjUwNTE3MDExMTI2WhcNMjUwNTI0MDExMTI2WjAYMRYwFAYD VQQDEw02ODI3ZTIzZS1jMTJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxmq51SzhKrbjxtrtE9lA/i8R1ZsqwezCbcnG0ll3ZXTIcmpP9vqoEIqIeJxQ b4ypFkSoUUQsGH3bvGIlEA9BPcN567Y/y77PZV4KBIlHIS03JVbnt/aUTblCjsDm sgESSCAvplUv5/AuOyQVdl7bTP/QHqWkzF9L9WfPa7xv/w6vxZ3DGWGj6yWEhNU1 0NjmICynf+huPdoDtvVVaMb1kuiP0OLQXb63M9sE5pOMyHl0tB31KOlqyeEILjTk 3wQuO8QzxfyQ0AdbuvNGKFXpc32fWG0CT04lYQPli7WzBn0013BSiW7y8o/qC3Wv FB/xV4YS+gKZbHO+nRftYwJzdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB04fMfN mchimQnCKYW1KojX+aovMB8GA1UdIwQYMBaAFF8uXmKTK7UKhf8vml8xsrrdXzSs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEU4RS8wNEZCQjhGMEFF MEYxMUVDQTAyMDU2NjZDNEY5QUUwMi9YeTVlWXBNcnRRcUZfeS1hWHpHeXV0MWZO S3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h5NWVZcE1ydFFxRl95LWFYekd5dXQxZk5Ldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OEU4RS8wNEZCQjhGMEFFMEYxMUVDQTAyMDU2NjZDNEY5QUUwMi9YeTVlWXBNcnRR cUZfeS1hWHpHeXV0MWZOS3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCu/uzfbTf+ZSh+ljt7JmCZkj+dEc6ISw9mHxYYIwOt4x/ePBlo6jjT cPI0nTK/rMO5mhqmjTF/E8ErP6u5SgdUGCs6JuNIHgovcp94RAVyCAFAeHWQT9op KH1MmfpLUm0RQNrDpr6dgajFKKFS/JJE/QsFdnguWIaCQ/iDyaZh1tXkd5tao+hS 2on3A21w0goUsfZLChAcgQRLaRWxq7vYYBJ6xjqvYiDt8YOKbB6bHMQISgq6CmTf OOd+/RMFFSoeJuhYJjgxGgUjdX6pgp9DsZldYXl3ymm+yGX9jC7q6IfCVb4wrPXC oCM8IczvvJltqFFglPK94Yj/MTB8ecAN -----END CERTIFICATE-----Generated at Sat May 17 04:05:29 2025 by rpki-client