$ rpki-client -vvf rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft File: XZRtT0edN7zhcAywut1RosPfYg8.mft (raw, json) Hash identifier: Z3AIuVxHQMDmn7Vz6aOtMgH4/12XZVvocYE9vylKh9w= Subject key identifier: 1B:B7:E7:9C:D6:F8:9C:3E:23:80:A5:DC:60:B0:FB:99:08:37:35:48 Authority key identifier: 5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F Certificate issuer: /CN=A9152787/serialNumber=5D946D4F479D37BCE1700CB0BADD51A2C3DF620F Certificate serial: 61 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft Manifest number: 5F Signing time: Thu 17 Apr 2025 05:54:25 +0000 Manifest this update: Thu 17 Apr 2025 05:54:24 +0000 Manifest next update: Thu 24 Apr 2025 05:54:24 +0000 Files and hashes: 1: XZRtT0edN7zhcAywut1RosPfYg8.crl (hash: n8kgKIeVYdacx8JZH6NoyABup4RMQ3H0lY1qVejLpys=) 2: CB24F37C033711F0B76A8520C4F9AE02.roa (hash: 086QtTZ7qGEzYPBYkqpmBPb1qovlHlBpqUB0MoAAlkQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.crl rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Apr 2025 05:54:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 97 (0x61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152787, serialNumber=5D946D4F479D37BCE1700CB0BADD51A2C3DF620F Validity Not Before: Apr 17 05:54:24 2025 GMT Not After : Apr 24 05:54:24 2025 GMT Subject: CN=68009791-4765 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:9b:f6:c4:79:c6:d1:18:52:3a:37:8e:73:7b: 63:a6:7a:14:98:d5:ec:3a:f1:47:6a:f1:0b:44:28: be:a7:9c:12:71:fc:0e:93:18:2f:7e:06:50:6b:5c: 64:d0:be:70:7d:29:17:e4:e8:6b:fb:69:cb:c6:71: c8:4e:5c:94:b3:c7:80:ef:31:93:eb:1c:a6:67:d0: d4:7a:fd:2c:18:d5:f9:bc:66:53:0a:fc:93:36:9f: 5d:3f:9f:fb:34:05:2d:01:90:19:63:9a:8a:d6:bb: b7:c8:4b:23:c4:cc:01:fb:d6:1b:fe:5c:e6:93:c7: c0:13:1f:6d:89:c5:31:94:31:ed:5e:f8:10:99:15: 82:c8:2d:4f:ff:05:d0:9e:4e:9e:ba:f7:35:81:05: 83:fa:4a:e2:cc:26:ea:74:a2:31:96:da:88:0d:85: 22:19:31:08:0b:87:10:34:27:da:4c:5b:3f:f8:83: b7:90:77:e1:eb:3d:d7:94:05:b2:51:10:41:58:b9: 85:02:b8:a5:77:7a:df:c8:0b:00:35:6f:f2:22:b0: ac:4b:5d:af:7f:7e:46:4f:14:9c:0d:47:24:4c:48: e6:0f:f5:ad:cd:ab:eb:0e:37:e0:b8:49:7d:38:f8: 10:95:48:0f:89:b6:4a:4b:e7:81:aa:bf:3e:27:2d: f7:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:B7:E7:9C:D6:F8:9C:3E:23:80:A5:DC:60:B0:FB:99:08:37:35:48 X509v3 Authority Key Identifier: keyid:5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:24:58:ea:e6:fe:c0:28:26:d1:2e:1a:3a:21:b8:78:02:5a: 0b:2c:ae:bd:80:66:09:6f:29:48:bb:79:d6:69:0b:c2:d8:9e: 66:8d:bb:de:30:11:a3:f6:97:01:ed:cf:67:3a:fd:05:31:8b: ad:a6:d7:87:78:44:91:20:af:4b:76:f0:ce:c1:6d:60:03:13: ca:68:09:16:04:cb:fe:43:32:13:ed:a0:7f:3c:fc:1d:e4:a6: bd:63:9f:1b:11:46:bc:8d:3e:ea:da:25:a6:7e:63:2b:46:34: 92:cc:de:05:bf:4d:94:8c:a6:1f:5d:37:b7:a5:a0:14:c7:5f: 05:78:9f:d0:c5:cf:a2:12:8b:0e:6b:c5:ee:1a:8d:7d:03:77: 11:61:44:b8:18:0d:d5:24:15:98:70:26:7a:3b:4b:ba:2c:a3: 69:88:e9:ae:b4:d4:e7:9e:75:e4:fd:f8:62:3b:3d:3a:2a:39: 0c:e7:cf:15:59:d9:54:0d:55:30:e7:9f:6a:51:74:c7:7a:cf: 33:49:d7:30:1f:f8:57:9d:d9:ae:da:6b:6d:54:fa:61:16:99: 33:e7:e9:c9:3b:1d:3a:ee:29:50:c7:30:8a:48:54:d2:cc:86: ff:67:15:0b:b7:a7:68:53:7a:13:9c:4d:4f:1a:a7:ce:e4:07: e7:f6:6a:08 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 Mjc4NzExMC8GA1UEBRMoNUQ5NDZENEY0NzlEMzdCQ0UxNzAwQ0IwQkFERDUxQTJD M0RGNjIwRjAeFw0yNTA0MTcwNTU0MjRaFw0yNTA0MjQwNTU0MjRaMBgxFjAUBgNV BAMTDTY4MDA5NzkxLTQ3NjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKm/bEecbRGFI6N45ze2OmehSY1ew68Udq8QtEKL6nnBJx/A6TGC9+BlBrXGTQ vnB9KRfk6Gv7acvGcchOXJSzx4DvMZPrHKZn0NR6/SwY1fm8ZlMK/JM2n10/n/s0 BS0BkBljmorWu7fISyPEzAH71hv+XOaTx8ATH22JxTGUMe1e+BCZFYLILU//BdCe Tp669zWBBYP6SuLMJup0ojGW2ogNhSIZMQgLhxA0J9pMWz/4g7eQd+HrPdeUBbJR EEFYuYUCuKV3et/ICwA1b/IisKxLXa9/fkZPFJwNRyRMSOYP9a3Nq+sON+C4SX04 +BCVSA+JtkpL54Gqvz4nLff1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUG7fnnNb4 nD4jgKXcYLD7mQg3NUgwHwYDVR0jBBgwFoAUXZRtT0edN7zhcAywut1RosPfYg8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUyNzg3LzIyODY1NjJBOEY3 OTExRUY5MkFDNzgxRUM0RjlBRTAyL1haUnRUMGVkTjd6aGNBeXd1dDFSb3NQZlln OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWFpSdFQwZWRON3poY0F5d3V0MVJvc1BmWWc4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUy Nzg3LzIyODY1NjJBOEY3OTExRUY5MkFDNzgxRUM0RjlBRTAyL1haUnRUMGVkTjd6 aGNBeXd1dDFSb3NQZllnOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACgkWOrm/sAoJtEuGjohuHgCWgssrr2AZglvKUi7edZpC8LYnmaNu94w EaP2lwHtz2c6/QUxi62m14d4RJEgr0t28M7BbWADE8poCRYEy/5DMhPtoH88/B3k pr1jnxsRRryNPuraJaZ+YytGNJLM3gW/TZSMph9dN7eloBTHXwV4n9DFz6ISiw5r xe4ajX0DdxFhRLgYDdUkFZhwJno7S7oso2mI6a601OeedeT9+GI7PToqOQznzxVZ 2VQNVTDnn2pRdMd6zzNJ1zAf+Fed2a7aa21U+mEWmTPn6ck7HTruKVDHMIpIVNLM hv9nFQu3p2hTehOcTU8ap87kB+f2agg= -----END CERTIFICATE-----Generated at Fri Apr 18 11:16:50 2025 by rpki-client