$ rpki-client -vvf rpki.apnic.net/member_repository/A9178ACB/523A8F560BA711ED8B0E4C43C4F9AE02/XCfVPQ8jgTyOoWOK8GyNNNjy3_E.mft File: XCfVPQ8jgTyOoWOK8GyNNNjy3_E.mft (raw, json) Hash identifier: /2SAzta6hWPTNbBXePNS8jY4SPZeX+KZZjca/UGC6xo= Subject key identifier: BA:A5:70:D2:E5:D4:26:F4:18:18:80:93:96:A9:12:F6:7A:C4:3B:FC Authority key identifier: 5C:27:D5:3D:0F:23:81:3C:8E:A1:63:8A:F0:6C:8D:34:D8:F2:DF:F1 Certificate issuer: /CN=A9178ACB/serialNumber=5C27D53D0F23813C8EA1638AF06C8D34D8F2DFF1 Certificate serial: 0262 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCfVPQ8jgTyOoWOK8GyNNNjy3_E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178ACB/523A8F560BA711ED8B0E4C43C4F9AE02/XCfVPQ8jgTyOoWOK8GyNNNjy3_E.mft Manifest number: 025E Signing time: Sat 29 Mar 2025 02:00:16 +0000 Manifest this update: Sat 29 Mar 2025 02:00:16 +0000 Manifest next update: Sat 05 Apr 2025 02:00:16 +0000 Files and hashes: 1: XCfVPQ8jgTyOoWOK8GyNNNjy3_E.crl (hash: mvwrQfjJ+W7fCySwKyw05ILh+hiNQKzDBbBTGPsVKc0=) 2: F82824B4163311EDA7687F1CC4F9AE02.roa (hash: mdNnumQ5YiPoV1OJ4uam9G3UP6D/angADBcavXL7QI8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178ACB/523A8F560BA711ED8B0E4C43C4F9AE02/XCfVPQ8jgTyOoWOK8GyNNNjy3_E.crl rsync://rpki.apnic.net/member_repository/A9178ACB/523A8F560BA711ED8B0E4C43C4F9AE02/XCfVPQ8jgTyOoWOK8GyNNNjy3_E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCfVPQ8jgTyOoWOK8GyNNNjy3_E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 02:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 610 (0x262) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178ACB Validity Not Before: Mar 29 02:00:16 2025 GMT Not After : Apr 5 02:00:16 2025 GMT Subject: CN=67e75430-9fee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:a7:a8:62:41:ba:8a:8b:a9:e5:17:ca:b7:f3: bf:58:f8:81:11:1f:e4:af:dc:90:aa:21:e6:5f:13: 80:92:ad:81:55:25:05:ac:0b:d9:a1:d4:7a:ab:10: 5c:e5:46:0f:e3:b8:13:37:79:a1:a9:2a:26:3a:9d: e7:75:f0:16:08:30:f6:88:21:c2:dc:2b:b7:89:80: 60:14:78:69:86:d5:8a:a5:d8:f4:b6:49:d8:81:8f: 54:33:27:29:6c:b0:52:5b:10:bf:54:34:11:a0:db: ed:c6:6e:de:dd:10:82:c5:47:88:83:69:a0:37:37: ee:eb:bb:dd:95:d5:f6:8e:d6:91:ec:35:3b:f1:85: 52:8f:b8:0b:39:01:a7:65:0c:04:f3:82:95:23:99: 82:f9:e1:ce:01:49:9b:f4:8a:ce:19:14:2b:62:7f: ab:d8:07:f7:b5:66:82:df:f2:b3:b9:d6:90:7b:76: de:fc:7f:e4:76:ac:8f:93:ef:d6:bf:4e:62:e3:09: 62:95:29:ba:0a:35:cc:d6:c1:27:8c:4c:a6:5c:b4: b9:cb:6e:2d:9f:c1:2c:f1:2e:96:2a:90:05:4c:5a: 22:24:5b:3a:20:bb:06:e1:f3:c7:73:c8:2c:ac:1d: 88:9f:0a:10:95:f7:cf:36:1b:28:45:b2:86:a7:c7: 16:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:A5:70:D2:E5:D4:26:F4:18:18:80:93:96:A9:12:F6:7A:C4:3B:FC X509v3 Authority Key Identifier: keyid:5C:27:D5:3D:0F:23:81:3C:8E:A1:63:8A:F0:6C:8D:34:D8:F2:DF:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178ACB/523A8F560BA711ED8B0E4C43C4F9AE02/XCfVPQ8jgTyOoWOK8GyNNNjy3_E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCfVPQ8jgTyOoWOK8GyNNNjy3_E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178ACB/523A8F560BA711ED8B0E4C43C4F9AE02/XCfVPQ8jgTyOoWOK8GyNNNjy3_E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:bc:41:14:d6:f6:f5:73:23:13:cd:d0:2e:13:10:c9:c1:bd: 6b:dd:d3:be:03:5e:14:26:df:e3:04:92:bc:88:47:67:ea:10: 63:21:13:49:46:ce:4b:21:7a:a0:33:00:e2:6b:5b:55:82:1a: e9:95:69:e9:14:4c:a9:11:f8:86:35:00:46:98:3a:d2:ac:5f: c2:01:1c:8a:d5:3c:73:c5:38:48:de:93:45:e2:3e:25:3a:4a: 01:b4:48:41:90:d5:f1:8f:68:df:a2:d5:59:3f:1f:c2:83:99: 69:63:eb:ac:fb:8c:fb:c2:d9:e2:e4:8d:55:a3:18:50:c3:b1: 15:86:d9:13:02:86:b4:4a:c5:f0:a0:cd:a2:38:b0:34:50:29: de:ee:e8:26:5c:72:05:33:b2:df:0a:9f:14:69:65:b0:1b:de: dc:7f:4a:9c:1a:62:86:70:a3:96:5a:54:29:40:25:c8:fc:e9: 66:30:87:f2:47:51:16:c1:14:fa:95:42:a2:b0:c7:e2:59:0c: 19:cb:38:a7:a3:64:fc:cb:64:36:9a:8d:2e:e0:60:ea:9f:61: 3b:2d:87:a2:bd:8d:53:30:1c:e4:7e:45:eb:3e:a5:bf:b3:13: 11:f4:53:25:74:48:3d:65:62:04:14:de:4a:d7:8d:e5:bb:ac: d9:ac:fc:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhBQ0IxMTAvBgNVBAUTKDVDMjdENTNEMEYyMzgxM0M4RUExNjM4QUYwNkM4RDM0 RDhGMkRGRjEwHhcNMjUwMzI5MDIwMDE2WhcNMjUwNDA1MDIwMDE2WjAYMRYwFAYD VQQDEw02N2U3NTQzMC05ZmVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnqeoYkG6ioup5RfKt/O/WPiBER/kr9yQqiHmXxOAkq2BVSUFrAvZodR6qxBc 5UYP47gTN3mhqSomOp3ndfAWCDD2iCHC3Cu3iYBgFHhphtWKpdj0tknYgY9UMycp bLBSWxC/VDQRoNvtxm7e3RCCxUeIg2mgNzfu67vdldX2jtaR7DU78YVSj7gLOQGn ZQwE84KVI5mC+eHOAUmb9IrOGRQrYn+r2Af3tWaC3/KzudaQe3be/H/kdqyPk+/W v05i4wlilSm6CjXM1sEnjEymXLS5y24tn8Es8S6WKpAFTFoiJFs6ILsG4fPHc8gs rB2InwoQlffPNhsoRbKGp8cW4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLqlcNLl 1Cb0GBiAk5apEvZ6xDv8MB8GA1UdIwQYMBaAFFwn1T0PI4E8jqFjivBsjTTY8t/x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEFDQi81MjNBOEY1NjBC QTcxMUVEOEIwRTRDNDNDNEY5QUUwMi9YQ2ZWUFE4amdUeU9vV09LOEd5Tk5Oankz X0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hDZlZQUThqZ1R5T29XT0s4R3lOTk5qeTNfRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OEFDQi81MjNBOEY1NjBCQTcxMUVEOEIwRTRDNDNDNEY5QUUwMi9YQ2ZWUFE4amdU eU9vV09LOEd5Tk5OankzX0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAvEEU1vb1cyMTzdAuExDJwb1r3dO+A14UJt/jBJK8iEdn6hBjIRNJ Rs5LIXqgMwDia1tVghrplWnpFEypEfiGNQBGmDrSrF/CARyK1TxzxThI3pNF4j4l OkoBtEhBkNXxj2jfotVZPx/Cg5lpY+us+4z7wtni5I1VoxhQw7EVhtkTAoa0SsXw oM2iOLA0UCne7ugmXHIFM7LfCp8UaWWwG97cf0qcGmKGcKOWWlQpQCXI/OlmMIfy R1EWwRT6lUKisMfiWQwZyzino2T8y2Q2mo0u4GDqn2E7LYeivY1TMBzkfkXrPqW/ sxMR9FMldEg9ZWIEFN5K143lu6zZrPyj -----END CERTIFICATE-----Generated at Fri Apr 4 21:55:40 2025 by rpki-client