$ rpki-client -vvf rpki.apnic.net/member_repository/A9136B8D/0DB893EC836C11EB8C1A9813C4F9AE02/77_xazqfbkTaHnWOk5XRxbcUR1o.mft File: 77_xazqfbkTaHnWOk5XRxbcUR1o.mft (raw, json) Hash identifier: EqM6h6GAu6BkXzxpQkg16lXAxm4VSA0V2GHxK0Dwc7Q= Subject key identifier: C8:71:6F:A8:11:CA:3F:6B:8F:59:F8:BD:4F:3D:E6:A1:ED:AD:1C:4B Authority key identifier: EF:BF:F1:6B:3A:9F:6E:44:DA:1E:75:8E:93:95:D1:C5:B7:14:47:5A Certificate issuer: /CN=A9136B8D/serialNumber=EFBFF16B3A9F6E44DA1E758E9395D1C5B714475A Certificate serial: 064B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/77_xazqfbkTaHnWOk5XRxbcUR1o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136B8D/0DB893EC836C11EB8C1A9813C4F9AE02/77_xazqfbkTaHnWOk5XRxbcUR1o.mft Manifest number: 0642 Signing time: Fri 28 Mar 2025 22:50:27 +0000 Manifest this update: Fri 28 Mar 2025 22:50:26 +0000 Manifest next update: Fri 04 Apr 2025 22:50:26 +0000 Files and hashes: 1: 77_xazqfbkTaHnWOk5XRxbcUR1o.crl (hash: ZFL/O/9+Y87kb4Rn49860RKe34LRnOMk1D+JHNuaw2M=) 2: 3ADF4748836D11EBAD2CDC13C4F9AE02.roa (hash: /FJLHrb+Y+v6CrfuPekX8L5QT/sE2Qa/rLDAkhyiJro=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136B8D/0DB893EC836C11EB8C1A9813C4F9AE02/77_xazqfbkTaHnWOk5XRxbcUR1o.crl rsync://rpki.apnic.net/member_repository/A9136B8D/0DB893EC836C11EB8C1A9813C4F9AE02/77_xazqfbkTaHnWOk5XRxbcUR1o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/77_xazqfbkTaHnWOk5XRxbcUR1o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 22:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1611 (0x64b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136B8D Validity Not Before: Mar 28 22:50:26 2025 GMT Not After : Apr 4 22:50:26 2025 GMT Subject: CN=67e727b3-65a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:aa:7b:5f:2c:f0:e8:e6:62:6c:58:07:06:0f: 32:95:3c:4a:b1:0c:e4:fe:78:45:1a:68:2e:e6:48: 02:82:a5:01:ee:3e:fc:6c:88:7c:fa:98:66:46:ed: be:c3:7f:2d:46:6e:50:15:33:60:ae:5b:50:41:d8: 97:29:34:d6:44:f2:22:7a:f7:7b:4f:58:42:b3:0e: 96:70:61:07:10:da:e3:d5:26:61:4d:50:eb:75:85: 40:52:a2:ea:88:0b:d9:35:99:10:cc:aa:99:24:9c: 54:6a:f1:5d:f7:e1:85:2d:63:14:cf:28:12:da:a8: ce:18:f6:40:63:a3:c4:ec:5a:e8:9c:1c:3d:2b:7d: f7:9b:37:01:d6:99:7d:cf:ce:e3:11:36:55:89:55: 7d:0a:0b:0f:42:97:d7:89:7c:4a:09:5e:86:e4:e5: ac:5e:6d:2d:cc:90:a1:b0:d2:0e:0a:83:b2:c3:a1: b3:3c:5b:cf:be:9d:97:35:9d:be:93:94:67:42:fc: ef:29:d0:b8:e9:1c:5f:00:30:8e:de:8a:e6:c2:23: 7a:45:4a:64:14:af:ed:94:cf:92:03:1f:47:26:0d: a6:48:cb:8b:04:74:13:e5:a4:5b:fb:87:1f:fb:78: c9:73:df:07:45:8f:7a:05:fe:4c:c0:55:56:95:1f: e4:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:71:6F:A8:11:CA:3F:6B:8F:59:F8:BD:4F:3D:E6:A1:ED:AD:1C:4B X509v3 Authority Key Identifier: keyid:EF:BF:F1:6B:3A:9F:6E:44:DA:1E:75:8E:93:95:D1:C5:B7:14:47:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136B8D/0DB893EC836C11EB8C1A9813C4F9AE02/77_xazqfbkTaHnWOk5XRxbcUR1o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/77_xazqfbkTaHnWOk5XRxbcUR1o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136B8D/0DB893EC836C11EB8C1A9813C4F9AE02/77_xazqfbkTaHnWOk5XRxbcUR1o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:82:4d:0f:35:3b:c2:44:c4:07:ce:91:7d:6c:fd:5b:f5:ef: 71:fe:e7:82:01:1c:63:b2:44:9f:47:57:9d:a7:a4:ce:cf:96: 53:4c:82:d3:8a:ce:07:31:0f:26:41:11:04:0b:0d:cb:67:21: 25:40:4a:1a:18:02:f9:d1:51:df:2f:7e:f3:b2:8b:07:74:5e: 4c:35:f4:a1:af:40:dd:d2:c3:98:22:5a:11:90:71:51:ac:f8: 38:94:62:d6:68:2d:ed:f9:bf:4d:4f:38:19:12:00:80:cc:15: 18:4b:61:29:45:53:d9:90:e6:15:f1:98:b8:a6:48:39:ea:e5: 3c:8a:f1:cb:40:ad:d5:14:f0:cf:2a:7d:af:26:ef:25:5e:d8: 87:d3:e2:8c:d0:ec:84:19:0b:ba:9e:1f:a1:4d:f4:dd:f1:65: 2e:90:cb:3f:f9:82:3e:ee:a6:a4:47:d9:7b:bc:8f:76:29:c2: b1:df:b0:1e:2f:bb:a2:e0:b6:15:0b:83:af:46:b5:f0:54:14: c2:3b:ad:ca:2b:b5:cf:f9:c4:50:4e:e1:3d:60:1f:7c:50:4c: 1b:26:b2:b6:25:be:a2:41:3c:4a:b6:72:0c:28:39:d7:d3:e8: 39:22:5e:8f:6f:51:0f:6c:95:5f:b2:7c:03:ac:8c:5b:8c:43: bd:63:37:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZCOEQxMTAvBgNVBAUTKEVGQkZGMTZCM0E5RjZFNDREQTFFNzU4RTkzOTVEMUM1 QjcxNDQ3NUEwHhcNMjUwMzI4MjI1MDI2WhcNMjUwNDA0MjI1MDI2WjAYMRYwFAYD VQQDEw02N2U3MjdiMy02NWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzqp7Xyzw6OZibFgHBg8ylTxKsQzk/nhFGmgu5kgCgqUB7j78bIh8+phmRu2+ w38tRm5QFTNgrltQQdiXKTTWRPIievd7T1hCsw6WcGEHENrj1SZhTVDrdYVAUqLq iAvZNZkQzKqZJJxUavFd9+GFLWMUzygS2qjOGPZAY6PE7FronBw9K333mzcB1pl9 z87jETZViVV9CgsPQpfXiXxKCV6G5OWsXm0tzJChsNIOCoOyw6GzPFvPvp2XNZ2+ k5RnQvzvKdC46RxfADCO3ormwiN6RUpkFK/tlM+SAx9HJg2mSMuLBHQT5aRb+4cf +3jJc98HRY96Bf5MwFVWlR/kyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMhxb6gR yj9rj1n4vU895qHtrRxLMB8GA1UdIwQYMBaAFO+/8Ws6n25E2h51jpOV0cW3FEda MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkI4RC8wREI4OTNFQzgz NkMxMUVCOEMxQTk4MTNDNEY5QUUwMi83N194YXpxZmJrVGFIbldPazVYUnhiY1VS MW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzc3X3hhenFmYmtUYUhuV09rNVhSeGJjVVIxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NkI4RC8wREI4OTNFQzgzNkMxMUVCOEMxQTk4MTNDNEY5QUUwMi83N194YXpxZmJr VGFIbldPazVYUnhiY1VSMW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8gk0PNTvCRMQHzpF9bP1b9e9x/ueCARxjskSfR1edp6TOz5ZTTILT is4HMQ8mQREECw3LZyElQEoaGAL50VHfL37zsosHdF5MNfShr0Dd0sOYIloRkHFR rPg4lGLWaC3t+b9NTzgZEgCAzBUYS2EpRVPZkOYV8Zi4pkg56uU8ivHLQK3VFPDP Kn2vJu8lXtiH0+KM0OyEGQu6nh+hTfTd8WUukMs/+YI+7qakR9l7vI92KcKx37Ae L7ui4LYVC4OvRrXwVBTCO63KK7XP+cRQTuE9YB98UEwbJrK2Jb6iQTxKtnIMKDnX 0+g5Il6Pb1EPbJVfsnwDrIxbjEO9YzcK -----END CERTIFICATE-----Generated at Fri Apr 4 21:55:37 2025 by rpki-client