$ rpki-client -vvf rpki.apnic.net/member_repository/A9170ADF/B85F0E8C3ACB11EBA225AD17C4F9AE02/xwv3nojjEZrpa7dhopO7UaSGFzw.mft File: xwv3nojjEZrpa7dhopO7UaSGFzw.mft (raw, json) Hash identifier: m8bojsxqn387F4JfInvUTeGl8CLz55++T4vwjpPH+JA= Subject key identifier: 15:D6:16:F2:9C:DE:96:20:58:93:EF:DA:69:96:D0:DA:D9:25:1E:92 Authority key identifier: C7:0B:F7:9E:88:E3:11:9A:E9:6B:B7:61:A2:93:BB:51:A4:86:17:3C Certificate issuer: /CN=A9170ADF/serialNumber=C70BF79E88E3119AE96BB761A293BB51A486173C Certificate serial: 071C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xwv3nojjEZrpa7dhopO7UaSGFzw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170ADF/B85F0E8C3ACB11EBA225AD17C4F9AE02/xwv3nojjEZrpa7dhopO7UaSGFzw.mft Manifest number: 0710 Signing time: Sun 20 Apr 2025 21:34:33 +0000 Manifest this update: Sun 20 Apr 2025 21:34:32 +0000 Manifest next update: Sun 27 Apr 2025 21:34:32 +0000 Files and hashes: 1: xwv3nojjEZrpa7dhopO7UaSGFzw.crl (hash: NTBpyCdd3EdkxmYAnMQzmxQ3zCdTkdAV2oxV6vpP85A=) 2: AC53A55C7B3611EBB7C5F122C4F9AE02.roa (hash: Xmj6Hu3XamtN1TfoLFF4zTOGMT8EY6KW6APUipxbG/Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170ADF/B85F0E8C3ACB11EBA225AD17C4F9AE02/xwv3nojjEZrpa7dhopO7UaSGFzw.crl rsync://rpki.apnic.net/member_repository/A9170ADF/B85F0E8C3ACB11EBA225AD17C4F9AE02/xwv3nojjEZrpa7dhopO7UaSGFzw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xwv3nojjEZrpa7dhopO7UaSGFzw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 21:34:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1820 (0x71c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170ADF, serialNumber=C70BF79E88E3119AE96BB761A293BB51A486173C Validity Not Before: Apr 20 21:34:32 2025 GMT Not After : Apr 27 21:34:32 2025 GMT Subject: CN=68056869-70a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:34:d7:39:7d:44:41:01:8a:dc:6a:9e:05:5c: 16:3f:34:00:bd:95:53:be:4d:d4:51:08:a7:78:74: d4:7c:bf:c0:48:be:1c:ee:c6:06:ec:fd:71:57:b8: d8:98:ae:30:50:7b:10:43:28:68:6c:43:3a:42:5d: cc:d8:89:c7:93:08:18:23:b6:5a:a7:27:cd:20:64: ed:d9:fd:3e:29:1b:5d:8d:1a:d2:25:6e:f4:81:9d: 33:37:e8:2e:81:36:c0:2a:75:b3:e2:3f:44:11:c3: 04:30:cc:ca:fb:3b:ca:35:0b:4b:cc:3a:0b:12:b6: 1b:06:fb:19:ee:7c:f0:7d:c4:6e:bb:02:f5:7e:d7: e9:44:95:00:19:7b:28:56:85:5e:14:39:2b:a9:26: bc:f8:ab:f5:fd:46:8e:9f:75:e6:75:82:a6:bd:94: 33:80:12:70:a9:8b:a7:99:8f:cf:0b:48:f0:8b:c0: 67:41:d0:2d:d3:6f:c3:2d:ad:35:d3:c6:4c:21:13: db:dd:b2:f3:e5:eb:50:b1:34:dc:9f:2c:c3:e7:fa: 5c:a2:0c:db:8b:40:12:db:06:58:7c:0b:6f:11:42: 27:5f:f8:5c:a2:3b:72:92:f2:49:57:d1:43:f5:5e: af:b0:79:dc:4a:74:83:e6:19:da:f6:8e:0a:d7:8f: 1b:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:D6:16:F2:9C:DE:96:20:58:93:EF:DA:69:96:D0:DA:D9:25:1E:92 X509v3 Authority Key Identifier: keyid:C7:0B:F7:9E:88:E3:11:9A:E9:6B:B7:61:A2:93:BB:51:A4:86:17:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170ADF/B85F0E8C3ACB11EBA225AD17C4F9AE02/xwv3nojjEZrpa7dhopO7UaSGFzw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xwv3nojjEZrpa7dhopO7UaSGFzw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170ADF/B85F0E8C3ACB11EBA225AD17C4F9AE02/xwv3nojjEZrpa7dhopO7UaSGFzw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:23:52:81:a9:f0:8e:19:c5:89:2d:84:0e:1d:00:0a:9d:7e: e9:51:6c:f3:a6:ba:38:f4:fd:80:cc:b8:d9:1b:2b:59:e2:dd: fe:c6:5b:4f:9d:54:c3:da:a1:2c:fc:4a:e6:74:19:8f:da:e3: 74:a8:81:54:35:1d:a3:1d:23:c1:95:38:e1:10:6b:82:5e:67: 16:7d:38:70:e7:c8:79:b0:5e:b9:c5:fd:4a:2b:96:c5:2c:33: 0e:65:8d:aa:36:d2:22:da:56:38:30:70:7c:12:35:b0:9c:66: 9c:2b:e6:95:5d:9f:0d:77:ab:9b:f7:32:4b:ff:8e:dc:bd:6b: 6a:cc:5c:e9:21:fd:49:bc:2e:e5:e9:b6:57:b3:b4:10:98:1a: 0f:f8:09:8e:26:99:92:91:7f:52:0e:1e:ff:b9:93:3c:5a:80: 2b:04:13:68:6c:87:ec:e2:18:80:01:a9:cf:18:e5:e8:b9:f5: 11:e2:e4:3f:c5:9f:87:5f:6c:44:7a:d6:ac:0b:a8:96:be:10: 25:60:0b:26:04:4d:26:01:ff:82:2d:c4:4f:06:31:a9:dd:01: 2e:73:de:8f:f9:fc:59:3c:d6:8a:41:b6:6f:47:e4:5f:ae:f4: 17:e4:92:20:99:1f:eb:b2:3b:54:3d:1c:aa:a9:dc:12:bf:0e: db:16:ff:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBxwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBBREYxMTAvBgNVBAUTKEM3MEJGNzlFODhFMzExOUFFOTZCQjc2MUEyOTNCQjUx QTQ4NjE3M0MwHhcNMjUwNDIwMjEzNDMyWhcNMjUwNDI3MjEzNDMyWjAYMRYwFAYD VQQDEw02ODA1Njg2OS03MGE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzDTXOX1EQQGK3GqeBVwWPzQAvZVTvk3UUQineHTUfL/ASL4c7sYG7P1xV7jY mK4wUHsQQyhobEM6Ql3M2InHkwgYI7ZapyfNIGTt2f0+KRtdjRrSJW70gZ0zN+gu gTbAKnWz4j9EEcMEMMzK+zvKNQtLzDoLErYbBvsZ7nzwfcRuuwL1ftfpRJUAGXso VoVeFDkrqSa8+Kv1/UaOn3XmdYKmvZQzgBJwqYunmY/PC0jwi8BnQdAt02/DLa01 08ZMIRPb3bLz5etQsTTcnyzD5/pcogzbi0AS2wZYfAtvEUInX/hcojtykvJJV9FD 9V6vsHncSnSD5hna9o4K148bvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBXWFvKc 3pYgWJPv2mmW0NrZJR6SMB8GA1UdIwQYMBaAFMcL956I4xGa6Wu3YaKTu1Gkhhc8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEFERi9CODVGMEU4QzNB Q0IxMUVCQTIyNUFEMTdDNEY5QUUwMi94d3Yzbm9qakVacnBhN2Rob3BPN1VhU0dG encuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h3djNub2pqRVpycGE3ZGhvcE83VWFTR0Z6dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEFERi9CODVGMEU4QzNBQ0IxMUVCQTIyNUFEMTdDNEY5QUUwMi94d3Yzbm9qakVa cnBhN2Rob3BPN1VhU0dGencubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhI1KBqfCOGcWJLYQOHQAKnX7pUWzzpro49P2AzLjZGytZ4t3+xltP nVTD2qEs/ErmdBmP2uN0qIFUNR2jHSPBlTjhEGuCXmcWfThw58h5sF65xf1KK5bF LDMOZY2qNtIi2lY4MHB8EjWwnGacK+aVXZ8Nd6ub9zJL/47cvWtqzFzpIf1JvC7l 6bZXs7QQmBoP+AmOJpmSkX9SDh7/uZM8WoArBBNobIfs4hiAAanPGOXoufUR4uQ/ xZ+HX2xEetasC6iWvhAlYAsmBE0mAf+CLcRPBjGp3QEuc96P+fxZPNaKQbZvR+Rf rvQX5JIgmR/rsjtUPRyqqdwSvw7bFv/B -----END CERTIFICATE-----Generated at Tue Apr 22 03:15:05 2025 by rpki-client