$ rpki-client -vvf rpki.apnic.net/member_repository/A9194A8C/9E6711A42B1C11EC95997409C4F9AE02/Cr_XemhpLv60MkAP_d3XrhsjvCc.mft File: Cr_XemhpLv60MkAP_d3XrhsjvCc.mft (raw, json) Hash identifier: rc9L5ZsFgVM74pHja0t7VYfWl8mWOQYqJAueJziskY4= Subject key identifier: 78:9E:63:B2:DC:30:E4:93:AC:1B:5A:6E:5D:64:2D:90:11:82:9F:77 Authority key identifier: 0A:BF:D7:7A:68:69:2E:FE:B4:32:40:0F:FD:DD:D7:AE:1B:23:BC:27 Certificate issuer: /CN=A9194A8C/serialNumber=0ABFD77A68692EFEB432400FFDDDD7AE1B23BC27 Certificate serial: 04B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cr_XemhpLv60MkAP_d3XrhsjvCc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194A8C/9E6711A42B1C11EC95997409C4F9AE02/Cr_XemhpLv60MkAP_d3XrhsjvCc.mft Manifest number: 0603 Signing time: Mon 12 May 2025 23:40:28 +0000 Manifest this update: Mon 12 May 2025 23:40:27 +0000 Manifest next update: Mon 19 May 2025 23:40:27 +0000 Files and hashes: 1: Cr_XemhpLv60MkAP_d3XrhsjvCc.crl (hash: NVwKhdnaZ+s0IMjDvHrZDeZi9UcdB1eWZOJ/QUL2p/0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194A8C/9E6711A42B1C11EC95997409C4F9AE02/Cr_XemhpLv60MkAP_d3XrhsjvCc.crl rsync://rpki.apnic.net/member_repository/A9194A8C/9E6711A42B1C11EC95997409C4F9AE02/Cr_XemhpLv60MkAP_d3XrhsjvCc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cr_XemhpLv60MkAP_d3XrhsjvCc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 23:40:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1208 (0x4b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194A8C, serialNumber=0ABFD77A68692EFEB432400FFDDDD7AE1B23BC27 Validity Not Before: May 12 23:40:27 2025 GMT Not After : May 19 23:40:27 2025 GMT Subject: CN=682286ec-e4f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:b0:95:c9:d6:01:02:3a:ee:bb:a2:07:db:e0: 79:64:c1:1e:44:e9:67:52:f9:c1:7b:64:41:92:63: ee:c8:ea:ac:36:4a:0b:e5:2f:bd:80:66:45:8b:a5: 08:1e:ce:14:a6:ba:ab:95:18:cf:2f:3c:ab:6a:f6: fd:f6:1c:e0:c6:0e:55:90:c3:e7:44:32:bd:f1:18: 8e:fe:5f:0c:d8:1e:c8:5c:55:43:46:54:b4:48:f6: 18:63:d3:56:e6:0e:40:ed:8e:f2:32:2c:0f:98:e6: 16:e1:a6:07:8b:00:5e:7b:33:9b:33:06:39:5b:ed: 4e:93:fc:40:27:ed:1e:1e:91:aa:c2:5f:83:24:01: 21:68:bc:90:30:78:33:c9:f1:39:7d:0d:e8:86:b2: 10:97:d2:c8:0e:03:cf:99:45:33:f7:65:7a:d3:92: 1c:5c:88:ec:d2:c5:9d:27:ed:c6:f9:a1:9c:57:b9: 0f:f6:be:e2:18:09:5b:f5:e8:f6:a9:8e:7a:6a:f9: 7a:55:24:23:31:8f:21:3e:39:80:30:b8:3c:99:62: 93:e0:a8:ad:e8:39:f5:d5:9e:50:fc:c8:6a:9d:4d: 4e:4a:92:df:ec:a1:78:d3:8b:f7:4b:97:d1:e1:43: 66:cf:10:cb:e1:d7:cc:fc:ba:7e:80:c2:3d:5b:be: a7:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:9E:63:B2:DC:30:E4:93:AC:1B:5A:6E:5D:64:2D:90:11:82:9F:77 X509v3 Authority Key Identifier: keyid:0A:BF:D7:7A:68:69:2E:FE:B4:32:40:0F:FD:DD:D7:AE:1B:23:BC:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194A8C/9E6711A42B1C11EC95997409C4F9AE02/Cr_XemhpLv60MkAP_d3XrhsjvCc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cr_XemhpLv60MkAP_d3XrhsjvCc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194A8C/9E6711A42B1C11EC95997409C4F9AE02/Cr_XemhpLv60MkAP_d3XrhsjvCc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:08:73:3b:db:5b:76:62:c7:8c:92:57:fc:0d:3f:d6:6f:be: 97:d7:30:d1:30:15:dd:5d:b1:f0:a4:73:2c:2f:0a:4a:4d:6b: 12:3c:bf:ec:76:70:c9:f2:76:82:e4:ed:f5:32:d1:17:f4:83: d5:d0:7f:79:4d:c9:6b:dc:49:77:8c:ec:3d:70:79:95:5a:3b: ee:fb:c1:b4:32:92:45:a6:70:47:82:fc:db:ec:6c:e4:e2:d5: ac:3f:40:15:20:c6:e6:0f:bc:dc:f5:d3:2e:31:98:4b:85:36: de:f6:95:c8:d0:57:37:c8:07:6c:4e:0a:1d:6b:41:6a:ea:30: 39:69:d2:6a:f4:9a:06:9f:c2:70:1b:d8:a9:ff:3c:48:7a:94: ea:5f:18:11:b3:41:71:ef:68:3d:19:70:10:04:85:3c:4f:bf: 8b:dc:6a:80:85:83:04:1d:9b:77:7f:b5:b6:0f:78:70:31:cb: aa:64:19:19:38:09:fc:87:59:89:90:82:29:3d:6b:9e:e9:e6: 09:ac:c4:43:da:78:81:b9:7a:87:74:ec:2d:7c:bd:24:14:31: 7b:b2:a0:97:09:76:ea:c9:39:d5:63:b7:a5:b9:c9:59:a8:4a: f6:0e:73:42:08:9c:dd:1a:b3:75:db:4c:ab:7e:55:b1:c6:c5: 67:48:1a:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRBOEMxMTAvBgNVBAUTKDBBQkZENzdBNjg2OTJFRkVCNDMyNDAwRkZEREREN0FF MUIyM0JDMjcwHhcNMjUwNTEyMjM0MDI3WhcNMjUwNTE5MjM0MDI3WjAYMRYwFAYD VQQDEw02ODIyODZlYy1lNGY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6LCVydYBAjruu6IH2+B5ZMEeROlnUvnBe2RBkmPuyOqsNkoL5S+9gGZFi6UI Hs4UprqrlRjPLzyravb99hzgxg5VkMPnRDK98RiO/l8M2B7IXFVDRlS0SPYYY9NW 5g5A7Y7yMiwPmOYW4aYHiwBeezObMwY5W+1Ok/xAJ+0eHpGqwl+DJAEhaLyQMHgz yfE5fQ3ohrIQl9LIDgPPmUUz92V605IcXIjs0sWdJ+3G+aGcV7kP9r7iGAlb9ej2 qY56avl6VSQjMY8hPjmAMLg8mWKT4Kit6Dn11Z5Q/MhqnU1OSpLf7KF404v3S5fR 4UNmzxDL4dfM/Lp+gMI9W76n9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHieY7Lc MOSTrBtabl1kLZARgp93MB8GA1UdIwQYMBaAFAq/13poaS7+tDJAD/3d164bI7wn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEE4Qy85RTY3MTFBNDJC MUMxMUVDOTU5OTc0MDlDNEY5QUUwMi9Dcl9YZW1ocEx2NjBNa0FQX2QzWHJoc2p2 Q2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NyX1hlbWhwTHY2ME1rQVBfZDNYcmhzanZDYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NEE4Qy85RTY3MTFBNDJCMUMxMUVDOTU5OTc0MDlDNEY5QUUwMi9Dcl9YZW1ocEx2 NjBNa0FQX2QzWHJoc2p2Q2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFCHM721t2YseMklf8DT/Wb76X1zDRMBXdXbHwpHMsLwpKTWsSPL/s dnDJ8naC5O31MtEX9IPV0H95Tclr3El3jOw9cHmVWjvu+8G0MpJFpnBHgvzb7Gzk 4tWsP0AVIMbmD7zc9dMuMZhLhTbe9pXI0Fc3yAdsTgoda0Fq6jA5adJq9JoGn8Jw G9ip/zxIepTqXxgRs0Fx72g9GXAQBIU8T7+L3GqAhYMEHZt3f7W2D3hwMcuqZBkZ OAn8h1mJkIIpPWue6eYJrMRD2niBuXqHdOwtfL0kFDF7sqCXCXbqyTnVY7eluclZ qEr2DnNCCJzdGrN120yrflWxxsVnSBri -----END CERTIFICATE-----Generated at Tue May 13 19:52:15 2025 by rpki-client