$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft File: XSeFtU0WPtAepUGLz6NPG3RWtxM.mft (raw, json) Hash identifier: Mf8cvOhWzwZ4x1V02iPTZXGx899e17lI2hTRqFLa3gI= Subject key identifier: AA:CC:11:05:AA:07:17:C7:8D:FC:AE:65:31:EA:8C:D0:1C:B8:60:B2 Authority key identifier: 5D:27:85:B5:4D:16:3E:D0:1E:A5:41:8B:CF:A3:4F:1B:74:56:B7:13 Certificate issuer: /CN=A9167CC5/serialNumber=5D2785B54D163ED01EA5418BCFA34F1B7456B713 Certificate serial: 048C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft Manifest number: 0474 Signing time: Mon 12 May 2025 23:55:18 +0000 Manifest this update: Mon 12 May 2025 23:55:18 +0000 Manifest next update: Mon 19 May 2025 23:55:18 +0000 Files and hashes: 1: XSeFtU0WPtAepUGLz6NPG3RWtxM.crl (hash: 1e967l44gWO1wq6WbdEg7HcDWvpY60ZWdrdwntNQyKs=) 2: 6337963E4C3D11ECB5FF844FC4F9AE02.roa (hash: 3KTOI3tChJ1EuHHkZIxY0+a6WeVb+6nR6Jk3wwfwMHU=) 3: ACE844F047AA11ECA0F05026C4F9AE02.roa (hash: xweR0My4YSEWr28C8V1U/OMEuVwH/Ly7NJUba0hYsCg=) 4: 1F77EFA44C4011EC952D5A23C4F9AE02.roa (hash: c5WQ+yUKORBq8d/u8k3An8QJMDIFK4yVXiwWYWbL5qc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.crl rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 23:55:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1164 (0x48c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167CC5, serialNumber=5D2785B54D163ED01EA5418BCFA34F1B7456B713 Validity Not Before: May 12 23:55:18 2025 GMT Not After : May 19 23:55:18 2025 GMT Subject: CN=68228a66-2208 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:da:10:51:8f:1d:0a:00:78:53:bd:8e:27:3d: b4:10:11:7e:33:14:3a:56:8b:8d:b9:cc:4b:50:d7: 9f:39:f1:e1:86:69:9b:91:e3:9c:a6:6c:ee:c4:32: 52:46:d1:b0:3d:2e:7b:dd:4e:77:49:8f:07:cb:35: 06:a9:d6:3a:38:08:d3:5c:a1:b8:14:80:98:23:9d: c4:b5:b1:61:48:9a:33:ef:f0:24:2d:78:7c:c0:7f: 1e:43:2f:7a:29:c6:7e:ab:e1:fa:bb:d5:cb:d7:9f: 18:27:dc:2d:66:b0:80:cf:ba:96:2c:4f:68:a6:5a: f3:20:56:33:a7:02:84:3b:bd:46:9b:13:00:0c:f0: 82:ff:15:c6:e0:28:8b:28:45:1d:07:5c:19:64:44: b5:7b:ba:0f:8e:c8:4f:a7:75:79:ae:4b:5e:47:d3: 4e:8c:7c:c4:3c:c6:c6:f2:2a:72:43:ec:a8:24:6f: c5:55:41:f4:cd:79:15:69:88:62:d7:9e:ba:79:fa: 34:d7:f2:1d:bb:f3:ba:06:d1:9f:fc:aa:99:26:2b: 9b:3d:75:84:d2:35:9e:31:35:6f:ce:1e:10:26:20: 4b:66:c3:74:50:6a:05:ff:1c:78:76:39:dc:a4:23: 9c:75:c7:c4:6f:9b:c7:43:be:e3:51:e7:a3:96:ec: 93:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:CC:11:05:AA:07:17:C7:8D:FC:AE:65:31:EA:8C:D0:1C:B8:60:B2 X509v3 Authority Key Identifier: keyid:5D:27:85:B5:4D:16:3E:D0:1E:A5:41:8B:CF:A3:4F:1B:74:56:B7:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:a6:48:60:97:85:3f:a8:ef:ad:4b:c2:56:b8:98:6f:bd:d6: 5a:a6:2d:fb:d0:09:1c:28:66:e7:d2:c7:27:55:57:26:27:9e: c7:b1:cc:88:06:21:3c:04:0e:b9:97:5e:5a:01:c2:73:2b:84: 24:7f:a8:42:89:29:84:1c:ed:ed:04:b3:cb:37:51:17:00:2a: 8a:bb:57:cb:68:d0:2d:e7:ce:ee:a7:cd:fb:d5:9b:4b:48:51: f9:24:a4:23:78:02:1d:df:5f:c1:6f:44:b1:ab:ca:f9:f0:c1: 4d:56:0c:f5:5c:86:a1:26:30:77:d0:e8:1c:c8:e3:3c:91:e6: 2a:2c:f6:b8:25:0f:cb:a1:b8:6e:27:5b:09:b3:4a:7f:21:1d: f8:6e:c8:9d:2e:82:5a:84:85:99:e0:84:02:30:44:af:df:06: 70:11:f8:b8:9b:6e:a6:a1:ba:fa:da:1e:66:ea:c1:c6:74:4c: 4f:55:03:3d:3d:11:ff:36:49:5c:7e:d0:bc:a7:96:15:34:30: 4a:26:0e:61:5d:4a:1e:df:5c:99:fd:26:0d:db:21:1c:96:43: 91:1a:86:d1:66:e1:45:c7:0f:3f:27:30:48:61:0c:1b:a0:bb: 9d:1a:0e:f5:4a:a9:78:20:89:3b:65:e7:d1:29:8b:83:b2:76: 03:e1:4e:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDQzUxMTAvBgNVBAUTKDVEMjc4NUI1NEQxNjNFRDAxRUE1NDE4QkNGQTM0RjFC NzQ1NkI3MTMwHhcNMjUwNTEyMjM1NTE4WhcNMjUwNTE5MjM1NTE4WjAYMRYwFAYD VQQDEw02ODIyOGE2Ni0yMjA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA79oQUY8dCgB4U72OJz20EBF+MxQ6VouNucxLUNefOfHhhmmbkeOcpmzuxDJS RtGwPS573U53SY8HyzUGqdY6OAjTXKG4FICYI53EtbFhSJoz7/AkLXh8wH8eQy96 KcZ+q+H6u9XL158YJ9wtZrCAz7qWLE9oplrzIFYzpwKEO71GmxMADPCC/xXG4CiL KEUdB1wZZES1e7oPjshPp3V5rkteR9NOjHzEPMbG8ipyQ+yoJG/FVUH0zXkVaYhi 1566efo01/Idu/O6BtGf/KqZJiubPXWE0jWeMTVvzh4QJiBLZsN0UGoF/xx4djnc pCOcdcfEb5vHQ77jUeejluyTaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKrMEQWq BxfHjfyuZTHqjNAcuGCyMB8GA1UdIwQYMBaAFF0nhbVNFj7QHqVBi8+jTxt0VrcT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0NDNS8yQUM0RDMzRTQ2 QjExMUVDOTQ1QjRGNTdDNEY5QUUwMi9YU2VGdFUwV1B0QWVwVUdMejZOUEczUld0 eE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTZUZ0VTBXUHRBZXBVR0x6Nk5QRzNSV3R4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0NDNS8yQUM0RDMzRTQ2QjExMUVDOTQ1QjRGNTdDNEY5QUUwMi9YU2VGdFUwV1B0 QWVwVUdMejZOUEczUld0eE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUpkhgl4U/qO+tS8JWuJhvvdZapi370AkcKGbn0scnVVcmJ57HscyI BiE8BA65l15aAcJzK4Qkf6hCiSmEHO3tBLPLN1EXACqKu1fLaNAt587up8371ZtL SFH5JKQjeAId31/Bb0Sxq8r58MFNVgz1XIahJjB30OgcyOM8keYqLPa4JQ/Lobhu J1sJs0p/IR34bsidLoJahIWZ4IQCMESv3wZwEfi4m26mobr62h5m6sHGdExPVQM9 PRH/NklcftC8p5YVNDBKJg5hXUoe31yZ/SYN2yEclkORGobRZuFFxw8/JzBIYQwb oLudGg71Sql4IIk7ZefRKYuDsnYD4U6q -----END CERTIFICATE-----Generated at Tue May 13 08:29:20 2025 by rpki-client