$ rpki-client -vvf rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.mft File: cXGYzRpGea2dRS7h2wLQASpDdOw.mft (raw, json) Hash identifier: b6sj0CM4jzDqtqkoj0Xo9boOzz1DHEGaSQEH6M7Uv4w= Subject key identifier: FA:56:D0:C0:94:FE:D7:26:5E:CE:D7:46:CC:71:56:EA:CD:1E:31:5A Authority key identifier: 71:71:98:CD:1A:46:79:AD:9D:45:2E:E1:DB:02:D0:01:2A:43:74:EC Certificate issuer: /CN=A9169F49/serialNumber=717198CD1A4679AD9D452EE1DB02D0012A4374EC Certificate serial: 25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXGYzRpGea2dRS7h2wLQASpDdOw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.mft Manifest number: 24 Signing time: Sun 11 May 2025 06:31:57 +0000 Manifest this update: Sun 11 May 2025 06:31:57 +0000 Manifest next update: Sun 18 May 2025 06:31:57 +0000 Files and hashes: 1: cXGYzRpGea2dRS7h2wLQASpDdOw.crl (hash: VZQnpPMVa2wvk3jXPyzoe+ft8ngIMi5gtlOpv99XGtg=) 2: 2B42D1D8F9B611EFB3AB154BC4F9AE02.roa (hash: qRFt1VDcs2OHFjFWZc9CCxRhXeBrmwOFxAL6+b0Q2Co=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.crl rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXGYzRpGea2dRS7h2wLQASpDdOw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 06:31:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37 (0x25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169F49, serialNumber=717198CD1A4679AD9D452EE1DB02D0012A4374EC Validity Not Before: May 11 06:31:57 2025 GMT Not After : May 18 06:31:57 2025 GMT Subject: CN=6820445d-ec23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:a8:81:7f:ea:71:ac:54:c3:92:32:0f:45:2b: 22:77:73:c7:dd:ad:32:0d:04:72:48:66:d8:24:da: f4:2b:d8:1e:bd:38:90:4f:b6:25:05:2c:69:50:e5: a9:75:87:9f:03:7c:51:b4:c5:c9:51:8a:c0:5e:7d: d9:de:41:0d:68:67:37:93:00:5f:0e:04:f3:95:75: 2f:c7:35:40:88:e1:3c:ed:53:e2:9c:ed:c6:d6:f2: 35:65:1b:dd:8a:1c:db:f9:3a:cb:aa:cb:50:ca:26: a3:7b:01:a5:0a:4d:3b:b6:0f:83:4a:d1:f4:1d:c5: de:6f:bf:98:4c:c6:ff:f5:9b:81:f1:a3:39:9b:72: 23:75:d3:3b:e0:0f:67:9d:ea:97:72:95:fc:2b:8f: 90:36:d9:63:72:83:2f:9a:ca:f8:60:f6:89:ff:64: 0c:d1:78:0a:15:67:7e:10:b4:8e:56:bc:ad:ce:2e: 38:73:81:60:f4:cb:46:32:02:95:2f:ed:ee:4a:6b: 58:aa:ef:63:be:b9:d7:db:40:e1:e5:34:89:db:44: c2:5c:d3:5e:fc:7b:75:f1:f1:95:64:1a:9b:11:14: 66:8e:1b:67:84:63:b1:b2:40:13:7e:00:c6:29:71: 2b:59:f0:ba:42:35:3c:53:45:8e:93:45:e0:c0:5e: 79:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:56:D0:C0:94:FE:D7:26:5E:CE:D7:46:CC:71:56:EA:CD:1E:31:5A X509v3 Authority Key Identifier: keyid:71:71:98:CD:1A:46:79:AD:9D:45:2E:E1:DB:02:D0:01:2A:43:74:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXGYzRpGea2dRS7h2wLQASpDdOw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:c3:4c:65:69:e8:46:59:a5:aa:3d:10:60:15:d2:32:b5:e5: 1d:b0:1d:3d:26:18:ca:d3:fc:c7:d5:89:14:ef:f1:c5:92:6c: 1e:6f:59:71:c3:7a:d3:16:ae:3d:7f:9d:48:20:7c:39:32:0b: d7:54:29:e5:64:ba:da:9f:25:14:dc:27:4a:09:95:35:40:d2: 18:7f:03:44:75:6a:c2:fb:af:22:80:37:6a:2f:73:24:4f:87: 70:9c:99:2a:3e:4c:3f:ec:78:28:c0:74:35:a2:5c:01:e1:70: 94:42:25:11:0a:ab:e8:56:76:6d:fb:ec:0b:e0:05:58:e1:ee: 3a:36:13:8a:60:b0:e7:de:52:01:9d:63:32:61:a3:1a:18:e0: ad:43:c9:aa:31:bd:4f:95:e8:b3:c2:a5:10:38:3e:5e:c8:7a: fd:04:3e:1d:f9:56:97:14:8e:7e:8d:31:8e:9d:15:e9:eb:7c: 94:00:4c:d8:bd:26:16:4f:f5:fd:6f:cf:04:0c:5c:13:d5:38: 32:32:fc:1b:33:8c:2e:9c:18:43:e2:8a:71:f3:17:d0:58:ae: c8:d1:1d:a3:24:0f:19:5f:11:8f:a2:8b:42:89:74:ff:d5:d4: 5a:b0:69:a0:3b:62:5f:c6:8e:a6:cc:87:c5:46:eb:d1:8a:8c: 13:25:16:92 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 OUY0OTExMC8GA1UEBRMoNzE3MTk4Q0QxQTQ2NzlBRDlENDUyRUUxREIwMkQwMDEy QTQzNzRFQzAeFw0yNTA1MTEwNjMxNTdaFw0yNTA1MTgwNjMxNTdaMBgxFjAUBgNV BAMTDTY4MjA0NDVkLWVjMjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCrqIF/6nGsVMOSMg9FKyJ3c8fdrTINBHJIZtgk2vQr2B69OJBPtiUFLGlQ5al1 h58DfFG0xclRisBefdneQQ1oZzeTAF8OBPOVdS/HNUCI4TztU+Kc7cbW8jVlG92K HNv5Osuqy1DKJqN7AaUKTTu2D4NK0fQdxd5vv5hMxv/1m4HxozmbciN10zvgD2ed 6pdylfwrj5A22WNygy+ayvhg9on/ZAzReAoVZ34QtI5WvK3OLjhzgWD0y0YyApUv 7e5Ka1iq72O+udfbQOHlNInbRMJc0178e3Xx8ZVkGpsRFGaOG2eEY7GyQBN+AMYp cStZ8LpCNTxTRY6TReDAXnlHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU+lbQwJT+ 1yZeztdGzHFW6s0eMVowHwYDVR0jBBgwFoAUcXGYzRpGea2dRS7h2wLQASpDdOww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY5RjQ5L0IyQzVGQjlBRjlC NTExRUZBNUQ3M0M0N0M0RjlBRTAyL2NYR1l6UnBHZWEyZFJTN2gyd0xRQVNwRGRP dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvY1hHWXpScEdlYTJkUlM3aDJ3TFFBU3BEZE93LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY5 RjQ5L0IyQzVGQjlBRjlCNTExRUZBNUQ3M0M0N0M0RjlBRTAyL2NYR1l6UnBHZWEy ZFJTN2gyd0xRQVNwRGRPdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMLDTGVp6EZZpao9EGAV0jK15R2wHT0mGMrT/MfViRTv8cWSbB5vWXHD etMWrj1/nUggfDkyC9dUKeVkutqfJRTcJ0oJlTVA0hh/A0R1asL7ryKAN2ovcyRP h3CcmSo+TD/seCjAdDWiXAHhcJRCJREKq+hWdm377AvgBVjh7jo2E4pgsOfeUgGd YzJhoxoY4K1DyaoxvU+V6LPCpRA4Pl7Iev0EPh35VpcUjn6NMY6dFenrfJQATNi9 JhZP9f1vzwQMXBPVODIy/BszjC6cGEPiinHzF9BYrsjRHaMkDxlfEY+ii0KJdP/V 1FqwaaA7Yl/GjqbMh8VG69GKjBMlFpI= -----END CERTIFICATE-----Generated at Sun May 11 20:09:32 2025 by rpki-client