$ rpki-client -vvf rpki.apnic.net/member_repository/A9169903/EE6B7418C81811EB83CEEB4AC4F9AE02/xDfVjxI6auBXxgjiFrtr_WWER2o.mft File: xDfVjxI6auBXxgjiFrtr_WWER2o.mft (raw, json) Hash identifier: 3gs90mlYTMv88GbQMsnH1vCu5Dm5+UDkNbvvVfmjkEM= Subject key identifier: BD:06:6D:55:73:1F:46:7E:81:8B:82:96:51:31:7A:A3:E4:38:D7:D9 Authority key identifier: C4:37:D5:8F:12:3A:6A:E0:57:C6:08:E2:16:BB:6B:FD:65:84:47:6A Certificate issuer: /CN=A9169903/serialNumber=C437D58F123A6AE057C608E216BB6BFD6584476A Certificate serial: 05B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xDfVjxI6auBXxgjiFrtr_WWER2o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169903/EE6B7418C81811EB83CEEB4AC4F9AE02/xDfVjxI6auBXxgjiFrtr_WWER2o.mft Manifest number: 05AC Signing time: Mon 12 May 2025 22:56:51 +0000 Manifest this update: Mon 12 May 2025 22:56:50 +0000 Manifest next update: Mon 19 May 2025 22:56:50 +0000 Files and hashes: 1: xDfVjxI6auBXxgjiFrtr_WWER2o.crl (hash: BQUbdT2FcA/DQ22S1ZrJt04UQOMCQXqQ+W7ONPFI2I4=) 2: ED31D84EC81D11EBA4C0E321C4F9AE02.roa (hash: bXFPKdh1DOKKzF1VDrO1xVCyooUJXcE+RZoWJywL3IM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169903/EE6B7418C81811EB83CEEB4AC4F9AE02/xDfVjxI6auBXxgjiFrtr_WWER2o.crl rsync://rpki.apnic.net/member_repository/A9169903/EE6B7418C81811EB83CEEB4AC4F9AE02/xDfVjxI6auBXxgjiFrtr_WWER2o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xDfVjxI6auBXxgjiFrtr_WWER2o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 22:56:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1458 (0x5b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169903, serialNumber=C437D58F123A6AE057C608E216BB6BFD6584476A Validity Not Before: May 12 22:56:50 2025 GMT Not After : May 19 22:56:50 2025 GMT Subject: CN=68227cb3-7733 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:bf:dd:60:41:00:e8:a2:99:0d:b9:cf:2e:8a: 5b:4f:45:08:96:46:b3:9b:0f:75:ae:a5:ae:d0:5a: 15:34:81:26:a2:4d:99:e6:aa:3b:45:86:38:f7:eb: a4:00:71:9e:77:f3:ac:12:d2:39:ed:2c:cf:82:38: 61:c3:48:06:63:57:a4:8f:4e:c6:1b:83:57:6d:6d: 77:01:6f:b2:82:27:7c:e5:e5:ee:73:8d:1a:ce:b9: 83:22:93:d5:54:2d:f1:38:0e:fc:b4:40:16:b1:a5: 53:3a:31:73:9b:27:d8:80:2a:96:b2:34:17:53:cb: 3d:d1:1a:87:7e:3b:a7:71:9f:cd:0c:43:61:e2:21: 80:8b:00:3f:91:31:1c:30:4e:39:45:15:55:b9:c0: 5d:2c:ba:3a:06:77:37:6e:b1:62:25:f9:80:da:f4: 8c:b6:20:b2:53:52:06:f5:ba:74:9b:13:71:e0:fc: fe:13:99:c2:51:45:c5:28:60:de:91:67:28:e0:2e: 94:b4:32:fc:09:b4:b3:3f:78:e2:bd:44:fb:64:db: 4e:56:53:49:c2:63:e7:8d:f1:8a:fb:09:e3:1d:4f: f4:62:0e:ef:22:91:a6:0a:aa:d9:07:dc:1d:5c:76: 03:7a:b9:71:82:4d:f4:b5:0d:02:fd:2b:64:b8:a2: e3:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:06:6D:55:73:1F:46:7E:81:8B:82:96:51:31:7A:A3:E4:38:D7:D9 X509v3 Authority Key Identifier: keyid:C4:37:D5:8F:12:3A:6A:E0:57:C6:08:E2:16:BB:6B:FD:65:84:47:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169903/EE6B7418C81811EB83CEEB4AC4F9AE02/xDfVjxI6auBXxgjiFrtr_WWER2o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xDfVjxI6auBXxgjiFrtr_WWER2o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169903/EE6B7418C81811EB83CEEB4AC4F9AE02/xDfVjxI6auBXxgjiFrtr_WWER2o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:f8:39:55:e9:f3:9f:af:eb:7b:dc:97:c7:14:a9:12:62:ec: 63:28:33:30:96:90:f1:0e:da:8e:21:4c:2b:8c:10:91:4b:bf: f7:94:c7:f7:5c:8e:3e:8d:8b:a9:90:4b:ee:fe:33:27:33:c1: 6f:bd:0a:20:95:58:ac:b0:82:79:06:38:c2:ea:06:d0:94:a3: a3:35:47:89:3a:fe:1b:6e:a8:e8:10:02:5d:ea:8f:7d:4a:98: 77:f1:52:4f:59:bf:69:76:ae:9b:f1:a9:5f:05:79:5d:e2:b0: f8:0d:22:6d:e7:ca:0a:1d:92:f9:28:e4:e4:31:27:4e:42:b6: 80:eb:00:e4:ac:86:b5:67:82:51:7f:5e:3d:21:67:21:15:87: 1b:b5:99:d0:82:84:08:75:04:ec:8f:fb:b9:5b:b9:69:1e:a9: 76:13:08:81:2f:3b:66:41:70:52:c0:04:f6:e6:5c:08:0b:ef: 4d:ce:94:87:0a:27:3f:8e:11:4e:3c:bc:be:8b:83:0b:0e:ee: 09:85:3a:87:8d:d8:fe:0b:b3:f4:d8:01:71:9a:16:14:99:47: 2c:5a:72:d4:e4:78:25:92:b1:8a:62:a5:7c:d5:a5:e9:4c:8c: 89:18:59:62:07:00:22:29:ec:15:d1:14:1a:18:41:77:07:58: 63:7a:36:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBbIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk5MDMxMTAvBgNVBAUTKEM0MzdENThGMTIzQTZBRTA1N0M2MDhFMjE2QkI2QkZE NjU4NDQ3NkEwHhcNMjUwNTEyMjI1NjUwWhcNMjUwNTE5MjI1NjUwWjAYMRYwFAYD VQQDEw02ODIyN2NiMy03NzMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqb/dYEEA6KKZDbnPLopbT0UIlkazmw91rqWu0FoVNIEmok2Z5qo7RYY49+uk AHGed/OsEtI57SzPgjhhw0gGY1ekj07GG4NXbW13AW+ygid85eXuc40azrmDIpPV VC3xOA78tEAWsaVTOjFzmyfYgCqWsjQXU8s90RqHfjuncZ/NDENh4iGAiwA/kTEc ME45RRVVucBdLLo6Bnc3brFiJfmA2vSMtiCyU1IG9bp0mxNx4Pz+E5nCUUXFKGDe kWco4C6UtDL8CbSzP3jivUT7ZNtOVlNJwmPnjfGK+wnjHU/0Yg7vIpGmCqrZB9wd XHYDerlxgk30tQ0C/StkuKLjIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL0GbVVz H0Z+gYuCllExeqPkONfZMB8GA1UdIwQYMBaAFMQ31Y8SOmrgV8YI4ha7a/1lhEdq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTkwMy9FRTZCNzQxOEM4 MTgxMUVCODNDRUVCNEFDNEY5QUUwMi94RGZWanhJNmF1Qlh4Z2ppRnJ0cl9XV0VS Mm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hEZlZqeEk2YXVCWHhnamlGcnRyX1dXRVIyby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OTkwMy9FRTZCNzQxOEM4MTgxMUVCODNDRUVCNEFDNEY5QUUwMi94RGZWanhJNmF1 Qlh4Z2ppRnJ0cl9XV0VSMm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9+DlV6fOfr+t73JfHFKkSYuxjKDMwlpDxDtqOIUwrjBCRS7/3lMf3 XI4+jYupkEvu/jMnM8FvvQoglVissIJ5BjjC6gbQlKOjNUeJOv4bbqjoEAJd6o99 Sph38VJPWb9pdq6b8alfBXld4rD4DSJt58oKHZL5KOTkMSdOQraA6wDkrIa1Z4JR f149IWchFYcbtZnQgoQIdQTsj/u5W7lpHql2EwiBLztmQXBSwAT25lwIC+9NzpSH Cic/jhFOPLy+i4MLDu4JhTqHjdj+C7P02AFxmhYUmUcsWnLU5HglkrGKYqV81aXp TIyJGFliBwAiKewV0RQaGEF3B1hjejb4 -----END CERTIFICATE-----Generated at Wed May 14 17:46:20 2025 by rpki-client