$ rpki-client -vvf rpki.apnic.net/member_repository/A9144160/DD6571A64F9211E9AD10AA13C4F9AE02/_XRQsRgVCpshTxoL7t8-Oyb-0Es.mft File: _XRQsRgVCpshTxoL7t8-Oyb-0Es.mft (raw, json) Hash identifier: z71wKfoATCWuwJ5EtPEEKensyOrOg9jyNx48/oab+Z4= Subject key identifier: 73:8A:78:4C:7D:AA:14:42:4B:1C:22:09:AF:AD:0C:9E:E3:C1:9C:90 Authority key identifier: FD:74:50:B1:18:15:0A:9B:21:4F:1A:0B:EE:DF:3E:3B:26:FE:D0:4B Certificate issuer: /CN=A9144160/serialNumber=FD7450B118150A9B214F1A0BEEDF3E3B26FED04B Certificate serial: 0FCB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_XRQsRgVCpshTxoL7t8-Oyb-0Es.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144160/DD6571A64F9211E9AD10AA13C4F9AE02/_XRQsRgVCpshTxoL7t8-Oyb-0Es.mft Manifest number: 0FC3 Signing time: Fri 04 Apr 2025 17:36:10 +0000 Manifest this update: Fri 04 Apr 2025 17:36:09 +0000 Manifest next update: Fri 11 Apr 2025 17:36:09 +0000 Files and hashes: 1: _XRQsRgVCpshTxoL7t8-Oyb-0Es.crl (hash: sJj1ujQMe+2kG8e5slm84rfi51L2ShI+dcpCdI8zBUY=) 2: 378459525C6511E989D03610C4F9AE02.roa (hash: IiQprXM45ceBxjHWm+F/2TXqvKDyfsIZ5gHCOtJkT5o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144160/DD6571A64F9211E9AD10AA13C4F9AE02/_XRQsRgVCpshTxoL7t8-Oyb-0Es.crl rsync://rpki.apnic.net/member_repository/A9144160/DD6571A64F9211E9AD10AA13C4F9AE02/_XRQsRgVCpshTxoL7t8-Oyb-0Es.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_XRQsRgVCpshTxoL7t8-Oyb-0Es.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 17:36:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4043 (0xfcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144160 Validity Not Before: Apr 4 17:36:09 2025 GMT Not After : Apr 11 17:36:09 2025 GMT Subject: CN=67f01889-4428 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:e8:90:1f:d0:53:7f:92:f1:60:60:73:2e:e6: 62:0b:45:15:5d:3c:dc:a8:96:31:28:c5:11:2b:bf: b3:c4:e5:38:14:1c:82:be:1c:38:bd:86:e5:df:62: f8:bc:0b:59:80:81:db:99:04:1e:c8:a6:00:38:5c: c9:ac:e2:08:a0:d7:9a:ee:3b:06:d1:2e:4e:38:04: a7:8d:f0:6d:ae:45:fd:fb:d9:e2:ff:07:ef:7f:6e: f4:55:23:19:80:b5:b8:4a:3b:90:22:92:6c:cc:be: df:53:77:24:1a:a8:ee:ce:64:4c:3c:c6:c6:3d:d2: c7:bc:61:b5:81:24:a4:fb:9a:f4:32:d6:e0:90:43: 68:54:61:ff:84:69:62:ef:b2:63:14:58:2f:ba:e0: 72:3f:e4:d5:94:0f:62:21:b4:af:14:d9:0b:04:a6: ca:c5:ae:8c:9a:a7:b4:a2:d7:2b:17:98:d3:47:37: b4:60:f8:3e:6b:4c:1c:df:42:f3:f7:29:5f:82:73: c0:5b:1c:42:e8:bb:67:35:a6:94:34:ff:c9:c0:20: b4:d6:cd:65:bd:e5:5f:44:73:f1:d1:ae:0b:d2:e9: cb:aa:5e:04:b7:b6:b9:a0:3d:1f:d9:60:73:82:89: 41:82:a4:33:4f:c5:0f:d7:45:9f:92:0f:0c:9a:87: 04:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:8A:78:4C:7D:AA:14:42:4B:1C:22:09:AF:AD:0C:9E:E3:C1:9C:90 X509v3 Authority Key Identifier: keyid:FD:74:50:B1:18:15:0A:9B:21:4F:1A:0B:EE:DF:3E:3B:26:FE:D0:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144160/DD6571A64F9211E9AD10AA13C4F9AE02/_XRQsRgVCpshTxoL7t8-Oyb-0Es.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_XRQsRgVCpshTxoL7t8-Oyb-0Es.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144160/DD6571A64F9211E9AD10AA13C4F9AE02/_XRQsRgVCpshTxoL7t8-Oyb-0Es.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d1:0f:3b:8f:53:c9:98:b3:68:88:f8:78:bf:83:6a:87:98:55: 05:ed:ad:88:a9:80:4f:b3:89:20:c2:ae:b1:87:8b:31:83:2c: ff:af:1c:5d:81:a1:6d:c1:c2:6e:19:fd:98:32:15:36:46:90: c7:bc:d7:74:89:41:78:2f:57:ed:e9:c6:0d:97:1b:4e:44:62: ee:c6:ef:01:d2:dd:aa:26:d6:bc:76:13:66:91:e1:27:3c:cf: 8a:ac:48:7e:13:cf:83:73:c8:8c:b6:11:5c:97:49:cc:2c:5c: 4a:be:e2:6f:9b:64:e6:a4:d2:30:48:d4:d9:37:03:da:25:99: bc:87:ba:9b:0c:89:e8:9a:6a:00:55:20:c9:a8:1f:89:19:17: 4f:e2:b3:6d:26:90:0c:7f:d3:8f:a5:db:20:0e:30:f5:83:5f: e5:94:a4:f5:5f:e8:82:89:fb:cf:15:bc:ef:a5:0c:54:a9:33: 70:fe:d9:16:78:42:43:6a:dc:5a:2b:76:1e:3c:b1:7c:61:26: d6:46:da:b0:40:53:9a:f6:76:2f:60:b8:0f:9e:7c:e1:0e:ca: c7:ac:03:d0:45:f3:0d:50:c2:61:97:2c:83:09:ea:af:7e:fd: e4:a4:20:66:df:36:9d:34:18:82:00:30:9f:0f:64:17:5b:a3: 43:fc:98:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD8swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQxNjAxMTAvBgNVBAUTKEZENzQ1MEIxMTgxNTBBOUIyMTRGMUEwQkVFREYzRTNC MjZGRUQwNEIwHhcNMjUwNDA0MTczNjA5WhcNMjUwNDExMTczNjA5WjAYMRYwFAYD VQQDEw02N2YwMTg4OS00NDI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyeiQH9BTf5LxYGBzLuZiC0UVXTzcqJYxKMURK7+zxOU4FByCvhw4vYbl32L4 vAtZgIHbmQQeyKYAOFzJrOIIoNea7jsG0S5OOASnjfBtrkX9+9ni/wfvf270VSMZ gLW4SjuQIpJszL7fU3ckGqjuzmRMPMbGPdLHvGG1gSSk+5r0MtbgkENoVGH/hGli 77JjFFgvuuByP+TVlA9iIbSvFNkLBKbKxa6Mmqe0otcrF5jTRze0YPg+a0wc30Lz 9ylfgnPAWxxC6LtnNaaUNP/JwCC01s1lveVfRHPx0a4L0unLql4Et7a5oD0f2WBz golBgqQzT8UP10Wfkg8MmocEUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHOKeEx9 qhRCSxwiCa+tDJ7jwZyQMB8GA1UdIwQYMBaAFP10ULEYFQqbIU8aC+7fPjsm/tBL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDE2MC9ERDY1NzFBNjRG OTIxMUU5QUQxMEFBMTNDNEY5QUUwMi9fWFJRc1JnVkNwc2hUeG9MN3Q4LU95Yi0w RXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19YUlFzUmdWQ3BzaFR4b0w3dDgtT3liLTBFcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDE2MC9ERDY1NzFBNjRGOTIxMUU5QUQxMEFBMTNDNEY5QUUwMi9fWFJRc1JnVkNw c2hUeG9MN3Q4LU95Yi0wRXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDRDzuPU8mYs2iI+Hi/g2qHmFUF7a2IqYBPs4kgwq6xh4sxgyz/rxxd gaFtwcJuGf2YMhU2RpDHvNd0iUF4L1ft6cYNlxtORGLuxu8B0t2qJta8dhNmkeEn PM+KrEh+E8+Dc8iMthFcl0nMLFxKvuJvm2TmpNIwSNTZNwPaJZm8h7qbDInommoA VSDJqB+JGRdP4rNtJpAMf9OPpdsgDjD1g1/llKT1X+iCifvPFbzvpQxUqTNw/tkW eEJDatxaK3YePLF8YSbWRtqwQFOa9nYvYLgPnnzhDsrHrAPQRfMNUMJhlyyDCeqv fv3kpCBm3zadNBiCADCfD2QXW6ND/Jhu -----END CERTIFICATE-----Generated at Fri Apr 4 22:06:50 2025 by rpki-client