$ rpki-client -vvf rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.mft File: 0XRFPpVj66_LuzKsxs-Gb72OIvA.mft (raw, json) Hash identifier: dZfORJpVRSuwPfIT2teRQe6uAD7lu8DCHxks7WAZPj0= Subject key identifier: A6:88:A7:1A:0E:32:CE:9B:4D:09:88:C4:CA:50:BB:9C:E8:B1:13:7C Authority key identifier: D1:74:45:3E:95:63:EB:AF:CB:BB:32:AC:C6:CF:86:6F:BD:8E:22:F0 Certificate issuer: /CN=A9187325/serialNumber=D174453E9563EBAFCBBB32ACC6CF866FBD8E22F0 Certificate serial: 5A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0XRFPpVj66_LuzKsxs-Gb72OIvA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.mft Manifest number: 59 Signing time: Thu 15 May 2025 06:26:46 +0000 Manifest this update: Thu 15 May 2025 06:26:45 +0000 Manifest next update: Thu 22 May 2025 06:26:45 +0000 Files and hashes: 1: 0XRFPpVj66_LuzKsxs-Gb72OIvA.crl (hash: +S5RJI0Fd8iaMpGaMy5E85XWM4daxFDIoD8tvyQxEsc=) 2: D9DB29CCAAEF11EF9187EE2AC4F9AE02.roa (hash: zhUDBt2wZDhknIJUCNitYM8EJRnUn0t65SOwAtO1PEM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.crl rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0XRFPpVj66_LuzKsxs-Gb72OIvA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 06:26:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 90 (0x5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187325, serialNumber=D174453E9563EBAFCBBB32ACC6CF866FBD8E22F0 Validity Not Before: May 15 06:26:45 2025 GMT Not After : May 22 06:26:45 2025 GMT Subject: CN=68258926-c426 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:fe:b3:a2:8c:23:87:ea:e8:64:fd:af:4c:18: e0:f1:e1:3a:ea:43:40:ee:c3:6f:58:24:8f:1e:35: c8:f6:20:c8:d2:ed:21:33:6a:fc:1d:7c:e0:aa:a5: 89:67:1b:76:82:a9:df:6d:0e:3c:15:94:44:0b:52: 3b:d2:2c:ba:9e:54:bf:73:0b:b2:7f:72:48:34:62: 5d:33:a9:ab:47:53:a5:85:1a:c1:5f:7d:ef:c4:10: a9:a9:3f:c9:bd:95:c2:e2:ee:c7:e3:a9:97:b2:a5: d5:14:1d:30:56:3a:35:9d:3e:41:e2:96:1e:a2:81: 5d:33:e0:ad:f5:d2:f6:5f:05:8b:46:d1:30:b5:fa: ee:8a:26:91:d2:ae:e2:c5:fc:3a:1b:a9:85:a6:c8: 24:ce:35:80:19:d0:f2:72:2f:c1:6f:22:f2:8e:86: 6b:03:62:c3:a8:1e:33:7a:c5:ca:10:34:db:5a:52: d1:c0:5d:0d:3c:6c:c9:e7:b7:5e:67:ea:d0:30:53: f4:81:cc:97:00:0c:40:b8:d3:94:0f:09:45:b7:e9: 33:ff:ec:85:63:60:b4:3d:f2:12:18:7a:55:a5:3f: f5:1e:ba:0d:68:cc:d5:1a:ab:17:b0:a1:31:b8:d3: 19:6f:a6:9a:57:42:db:36:e8:f5:aa:91:88:ba:f3: 88:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:88:A7:1A:0E:32:CE:9B:4D:09:88:C4:CA:50:BB:9C:E8:B1:13:7C X509v3 Authority Key Identifier: keyid:D1:74:45:3E:95:63:EB:AF:CB:BB:32:AC:C6:CF:86:6F:BD:8E:22:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0XRFPpVj66_LuzKsxs-Gb72OIvA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d2:1f:4c:fa:fe:28:6e:96:c5:98:c1:b7:4e:b9:f3:c9:dd:97: 6f:67:ca:dc:dd:cd:92:7c:9e:9a:ce:60:f5:b6:72:be:f6:32: fe:14:b8:b5:53:18:b3:f6:20:08:8b:73:65:07:26:ce:ec:d9: 63:1a:1c:0b:7a:a5:53:92:0f:e4:ab:37:54:d7:1c:97:c1:6a: 10:f8:86:c7:ce:18:df:99:a6:9b:4f:b4:df:ed:6e:64:03:93: 75:22:aa:9b:a4:19:bb:3b:59:1f:38:c2:03:30:de:a3:c3:b2: 63:cf:a0:e6:cf:bc:2d:25:99:29:37:10:3a:f4:46:e6:11:d0: 1b:5d:0a:53:4c:44:5d:cf:a8:a3:35:2b:16:de:b3:1c:ca:1b: 2d:7c:c8:ba:a9:e6:46:3e:12:11:77:a6:ba:d8:5a:dc:8b:da: 2b:da:fe:27:44:a9:17:ae:dc:ba:c8:ed:13:97:b7:b8:2a:18: 99:44:da:8d:80:d1:0b:7f:d9:9d:75:5e:92:26:43:86:ab:52: 95:44:41:12:26:a6:4e:01:a2:24:95:a8:53:39:8f:ff:1a:16: 3b:2c:21:1e:17:e0:d7:ae:ac:28:4c:42:88:c9:02:20:44:9d: 7b:63:36:7e:6a:af:aa:9a:fb:f3:12:cf:2b:00:05:d7:87:b1: a9:2d:ea:0f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NzMyNTExMC8GA1UEBRMoRDE3NDQ1M0U5NTYzRUJBRkNCQkIzMkFDQzZDRjg2NkZC RDhFMjJGMDAeFw0yNTA1MTUwNjI2NDVaFw0yNTA1MjIwNjI2NDVaMBgxFjAUBgNV BAMTDTY4MjU4OTI2LWM0MjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDh/rOijCOH6uhk/a9MGODx4TrqQ0Duw29YJI8eNcj2IMjS7SEzavwdfOCqpYln G3aCqd9tDjwVlEQLUjvSLLqeVL9zC7J/ckg0Yl0zqatHU6WFGsFffe/EEKmpP8m9 lcLi7sfjqZeypdUUHTBWOjWdPkHilh6igV0z4K310vZfBYtG0TC1+u6KJpHSruLF /DobqYWmyCTONYAZ0PJyL8FvIvKOhmsDYsOoHjN6xcoQNNtaUtHAXQ08bMnnt15n 6tAwU/SBzJcADEC405QPCUW36TP/7IVjYLQ98hIYelWlP/Ueug1ozNUaqxewoTG4 0xlvpppXQts26PWqkYi684h1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUpoinGg4y zptNCYjEylC7nOixE3wwHwYDVR0jBBgwFoAU0XRFPpVj66/LuzKsxs+Gb72OIvAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg3MzI1LzdCMzM0QTRBQUFF OTExRUZCNzIxQzI1REM0RjlBRTAyLzBYUkZQcFZqNjZfTHV6S3N4cy1HYjcyT0l2 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMFhSRlBwVmo2Nl9MdXpLc3hzLUdiNzJPSXZBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg3 MzI1LzdCMzM0QTRBQUFFOTExRUZCNzIxQzI1REM0RjlBRTAyLzBYUkZQcFZqNjZf THV6S3N4cy1HYjcyT0l2QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBANIfTPr+KG6WxZjBt06588ndl29nytzdzZJ8nprOYPW2cr72Mv4UuLVT GLP2IAiLc2UHJs7s2WMaHAt6pVOSD+SrN1TXHJfBahD4hsfOGN+ZpptPtN/tbmQD k3UiqpukGbs7WR84wgMw3qPDsmPPoObPvC0lmSk3EDr0RuYR0BtdClNMRF3PqKM1 KxbesxzKGy18yLqp5kY+EhF3prrYWtyL2iva/idEqReu3LrI7ROXt7gqGJlE2o2A 0Qt/2Z11XpImQ4arUpVEQRImpk4BoiSVqFM5j/8aFjssIR4X4NeurChMQojJAiBE nXtjNn5qr6qa+/MSzysABdeHsakt6g8= -----END CERTIFICATE-----Generated at Fri May 16 18:00:20 2025 by rpki-client