$ rpki-client -vvf rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft File: X2mHOU7ukmatexkjRBv29RNP-VA.mft (raw, json) Hash identifier: WtSk5dNSlPeeHZ3HOddkPnHztvIHbZQIjnEExKbc6Rw= Subject key identifier: 29:C2:D1:FF:E5:FD:97:61:43:78:8B:C6:55:4D:3C:13:D5:ED:99:BC Authority key identifier: 5F:69:87:39:4E:EE:92:66:AD:7B:19:23:44:1B:F6:F5:13:4F:F9:50 Certificate issuer: /CN=A9147241/serialNumber=5F6987394EEE9266AD7B1923441BF6F5134FF950 Certificate serial: 07CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mHOU7ukmatexkjRBv29RNP-VA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft Manifest number: 07C7 Signing time: Fri 04 Apr 2025 21:13:50 +0000 Manifest this update: Fri 04 Apr 2025 21:13:50 +0000 Manifest next update: Fri 11 Apr 2025 21:13:50 +0000 Files and hashes: 1: X2mHOU7ukmatexkjRBv29RNP-VA.crl (hash: GBNJJra7hT284lN0CXrN+g92xjsVW6L1bl7YyyqLRwk=) 2: F69648C2ECF211EABBFDDD24C4F9AE02.roa (hash: 90ekW1pDIqXWRjwU9tVaYqCrzXTRiG8h8pa7XJ3ojS8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.crl rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mHOU7ukmatexkjRBv29RNP-VA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:13:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1998 (0x7ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147241 Validity Not Before: Apr 4 21:13:50 2025 GMT Not After : Apr 11 21:13:50 2025 GMT Subject: CN=67f04b8e-a5ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:99:e2:43:b5:dd:3b:2d:90:6c:2a:e7:50:7c: 01:36:fa:2d:4c:8d:5c:ac:a0:b1:36:87:0a:b4:b7: fb:bd:60:bb:82:03:f2:b2:45:2b:ac:a1:62:47:09: e5:11:02:4b:c7:eb:a7:46:cb:ca:0e:a9:18:30:05: f9:a7:93:48:0b:68:3d:c4:1e:05:38:2a:42:07:95: 53:88:dc:01:ea:e3:9c:01:c7:ff:7b:7a:94:3a:3b: 2f:77:38:53:b7:90:19:83:43:ea:72:c9:8f:26:bc: f6:47:ac:0d:01:d0:99:2e:b2:34:77:a0:96:1d:c0: 6c:7b:3a:8f:aa:53:28:72:b5:01:8e:96:93:12:9b: fe:f7:ab:11:12:17:33:c2:1c:61:54:35:54:f2:94: 5f:cd:63:28:95:66:99:ea:6c:6e:45:e6:e9:ef:81: 38:71:bb:b9:07:97:c9:5d:b8:40:03:73:d7:c9:2c: 35:c8:0d:fc:96:26:6f:46:d5:e9:87:88:e3:7f:b0: df:50:74:05:2c:94:bd:68:f5:76:7e:7c:2f:b4:db: 05:c5:60:75:f3:4a:16:18:9a:66:4b:c4:28:bc:87: ed:93:a6:b9:23:5b:6e:c4:30:db:6a:0f:9f:47:87: 23:03:ec:ea:ae:c0:83:bd:54:6c:43:cc:53:83:36: da:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:C2:D1:FF:E5:FD:97:61:43:78:8B:C6:55:4D:3C:13:D5:ED:99:BC X509v3 Authority Key Identifier: keyid:5F:69:87:39:4E:EE:92:66:AD:7B:19:23:44:1B:F6:F5:13:4F:F9:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mHOU7ukmatexkjRBv29RNP-VA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:7a:44:fb:ff:21:03:0d:6a:c9:6b:d4:c5:db:cd:8b:07:9b: 06:34:34:61:d3:7f:83:67:24:6e:ca:9a:7e:76:d5:a1:2b:13: a7:5d:4c:5a:ac:35:ca:1f:f0:f7:a7:bd:16:eb:ed:d1:2a:c5: 29:9f:4d:0f:5c:a4:1a:b6:9b:c7:54:39:8f:b7:79:7c:9d:2a: a3:8d:27:c1:fe:d7:c9:9e:38:6a:fe:57:1f:f0:60:f4:3f:e1: 19:d5:8e:4f:38:a1:39:bd:81:67:fc:9e:a0:18:b2:3a:0f:62: 7e:3c:6f:03:b9:4e:cb:da:91:e1:ff:ba:32:4a:dd:a6:8e:9a: 67:2f:b2:a8:c0:7e:8c:d7:7c:48:e9:42:fc:7c:e6:99:11:c8: 21:06:58:03:73:6a:ab:60:5b:f1:a4:15:28:c3:58:35:b3:14: 7b:0b:82:2b:be:27:78:35:dd:e9:c6:e2:61:1c:80:a8:51:dc: 71:84:77:26:b9:fd:f4:e2:11:51:df:3f:fb:2f:93:f7:2a:39: 84:29:e0:8f:8d:92:5c:2b:ee:f0:60:13:bb:70:04:14:b8:31: 97:c3:d9:85:bd:d2:1b:c3:6f:b5:01:7a:6b:af:70:f7:6f:80: e0:7c:a4:f1:82:67:bd:60:c7:28:ab:1a:e3:9d:a4:a1:be:09: f9:57:01:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB84wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDcyNDExMTAvBgNVBAUTKDVGNjk4NzM5NEVFRTkyNjZBRDdCMTkyMzQ0MUJGNkY1 MTM0RkY5NTAwHhcNMjUwNDA0MjExMzUwWhcNMjUwNDExMjExMzUwWjAYMRYwFAYD VQQDEw02N2YwNGI4ZS1hNWVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA15niQ7XdOy2QbCrnUHwBNvotTI1crKCxNocKtLf7vWC7ggPyskUrrKFiRwnl EQJLx+unRsvKDqkYMAX5p5NIC2g9xB4FOCpCB5VTiNwB6uOcAcf/e3qUOjsvdzhT t5AZg0PqcsmPJrz2R6wNAdCZLrI0d6CWHcBsezqPqlMocrUBjpaTEpv+96sREhcz whxhVDVU8pRfzWMolWaZ6mxuRebp74E4cbu5B5fJXbhAA3PXySw1yA38liZvRtXp h4jjf7DfUHQFLJS9aPV2fnwvtNsFxWB180oWGJpmS8QovIftk6a5I1tuxDDbag+f R4cjA+zqrsCDvVRsQ8xTgzbauQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCnC0f/l /ZdhQ3iLxlVNPBPV7Zm8MB8GA1UdIwQYMBaAFF9phzlO7pJmrXsZI0Qb9vUTT/lQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzI0MS82MkJCNUM3NEVD RjExMUVBQTM5RDU3MjJDNEY5QUUwMi9YMm1IT1U3dWttYXRleGtqUkJ2MjlSTlAt VkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gybUhPVTd1a21hdGV4a2pSQnYyOVJOUC1WQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzI0MS82MkJCNUM3NEVDRjExMUVBQTM5RDU3MjJDNEY5QUUwMi9YMm1IT1U3dWtt YXRleGtqUkJ2MjlSTlAtVkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVekT7/yEDDWrJa9TF282LB5sGNDRh03+DZyRuypp+dtWhKxOnXUxa rDXKH/D3p70W6+3RKsUpn00PXKQatpvHVDmPt3l8nSqjjSfB/tfJnjhq/lcf8GD0 P+EZ1Y5POKE5vYFn/J6gGLI6D2J+PG8DuU7L2pHh/7oySt2mjppnL7KowH6M13xI 6UL8fOaZEcghBlgDc2qrYFvxpBUow1g1sxR7C4Irvid4Nd3pxuJhHICoUdxxhHcm uf304hFR3z/7L5P3KjmEKeCPjZJcK+7wYBO7cAQUuDGXw9mFvdIbw2+1AXprr3D3 b4DgfKTxgme9YMcoqxrjnaShvgn5VwEj -----END CERTIFICATE-----Generated at Sun Apr 6 21:07:30 2025 by rpki-client