$ rpki-client -vvf rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.mft File: 0XRFPpVj66_LuzKsxs-Gb72OIvA.mft (raw, json) Hash identifier: tBQKKCm8ezJ0T1oOCUZ+59pXFuZfpXYj/8vX8glHTH4= Subject key identifier: 92:39:3D:52:2B:9D:B1:3B:88:54:7B:D2:A9:95:36:5C:C0:E7:72:73 Authority key identifier: D1:74:45:3E:95:63:EB:AF:CB:BB:32:AC:C6:CF:86:6F:BD:8E:22:F0 Certificate issuer: /CN=A9187325/serialNumber=D174453E9563EBAFCBBB32ACC6CF866FBD8E22F0 Certificate serial: 4C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0XRFPpVj66_LuzKsxs-Gb72OIvA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.mft Manifest number: 4B Signing time: Thu 17 Apr 2025 06:08:40 +0000 Manifest this update: Thu 17 Apr 2025 06:08:39 +0000 Manifest next update: Thu 24 Apr 2025 06:08:39 +0000 Files and hashes: 1: 0XRFPpVj66_LuzKsxs-Gb72OIvA.crl (hash: 7W5as+U+tQ/PkXjOD7FQU4tEuBLovWNMgL45T4QD+T0=) 2: D9DB29CCAAEF11EF9187EE2AC4F9AE02.roa (hash: zhUDBt2wZDhknIJUCNitYM8EJRnUn0t65SOwAtO1PEM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.crl rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0XRFPpVj66_LuzKsxs-Gb72OIvA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Apr 2025 06:08:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76 (0x4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187325, serialNumber=D174453E9563EBAFCBBB32ACC6CF866FBD8E22F0 Validity Not Before: Apr 17 06:08:39 2025 GMT Not After : Apr 24 06:08:39 2025 GMT Subject: CN=68009ae7-ece5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:1f:b6:b7:c7:4c:da:d1:df:78:43:93:f4:29: 6f:db:be:86:d4:b7:9d:3b:46:c3:98:d7:0c:3e:75: 4b:4c:4a:be:0c:57:23:6c:25:4d:c2:a5:20:45:0a: 4f:cf:13:24:15:0c:0f:ed:22:bc:0d:32:f7:e0:0e: 66:36:39:fc:1f:98:b7:bc:b9:4d:51:53:31:31:4c: cb:82:cc:c5:fb:28:ec:e5:d9:f2:81:5c:b6:92:0d: 4b:20:29:6b:c1:bf:fd:e7:75:1e:21:35:dc:2e:c4: f4:68:e3:ab:39:13:b3:59:95:f2:63:1b:71:db:a0: 1e:1d:e5:58:4e:2f:fa:75:04:d7:3e:a4:d4:66:7c: 13:c1:64:09:ea:f9:8d:14:6b:48:17:fb:1c:f7:4e: 0f:59:15:07:f1:b9:4b:4c:b4:37:aa:48:36:44:d4: 73:b9:ae:78:cf:6a:b9:92:7e:36:fe:4c:39:7a:93: 2e:d6:3f:6e:3a:24:5f:fe:f2:7f:26:9e:42:69:fb: 14:d7:91:72:d3:4a:40:b9:fa:51:86:8b:e5:ca:fa: 23:67:d7:ce:9f:5b:28:0c:fa:43:f1:e2:ea:4c:71: 13:93:d8:bc:d0:dc:7d:da:28:a4:5d:40:13:f7:c4: 27:c7:f8:4c:a4:61:0e:7f:1e:48:d5:d9:a6:3a:d2: e2:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:39:3D:52:2B:9D:B1:3B:88:54:7B:D2:A9:95:36:5C:C0:E7:72:73 X509v3 Authority Key Identifier: keyid:D1:74:45:3E:95:63:EB:AF:CB:BB:32:AC:C6:CF:86:6F:BD:8E:22:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0XRFPpVj66_LuzKsxs-Gb72OIvA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:dd:f0:fd:3b:b3:b0:97:c4:59:32:11:db:60:95:1b:21:de: c4:cd:be:df:76:b7:ca:7a:52:44:35:99:c3:1d:7e:28:3b:f4: 6a:1d:60:09:6f:00:d0:f1:32:64:8b:c4:56:b2:c1:01:6e:e6: cc:75:81:5e:54:08:9b:c6:21:e0:f9:2f:f3:d4:1a:83:a5:76: f8:70:4f:ee:ba:35:ff:c0:c0:9d:70:65:2f:f2:71:8a:31:3b: 5f:72:0e:5f:e0:fd:e9:51:82:ce:f3:41:df:5c:59:71:68:49: 74:e4:05:32:44:b6:1f:2a:2e:ff:cf:80:4c:8b:78:26:d0:e8: 30:a4:fc:32:c6:82:0d:90:c7:d8:e5:48:15:ce:7c:70:d9:b0: 35:77:c5:52:34:4b:06:74:7e:e5:87:9f:e2:79:ed:67:0f:8c: c9:28:12:64:09:2e:4d:09:99:e2:0f:10:eb:97:04:61:96:69: 83:4b:3c:d4:2f:c5:46:7b:e0:67:bc:28:b3:48:19:3f:dd:1f: 20:7c:09:7d:96:3a:58:43:6f:14:c9:39:25:ec:a4:e0:99:49: 22:f0:fc:98:c1:8c:8e:f9:13:2f:56:e9:0b:93:82:1b:f7:23: 40:ef:c1:04:74:ca:9b:88:49:56:26:32:7a:da:c2:65:e6:e7: 9b:56:24:5e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NzMyNTExMC8GA1UEBRMoRDE3NDQ1M0U5NTYzRUJBRkNCQkIzMkFDQzZDRjg2NkZC RDhFMjJGMDAeFw0yNTA0MTcwNjA4MzlaFw0yNTA0MjQwNjA4MzlaMBgxFjAUBgNV BAMTDTY4MDA5YWU3LWVjZTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDWH7a3x0za0d94Q5P0KW/bvobUt507RsOY1ww+dUtMSr4MVyNsJU3CpSBFCk/P EyQVDA/tIrwNMvfgDmY2OfwfmLe8uU1RUzExTMuCzMX7KOzl2fKBXLaSDUsgKWvB v/3ndR4hNdwuxPRo46s5E7NZlfJjG3HboB4d5VhOL/p1BNc+pNRmfBPBZAnq+Y0U a0gX+xz3Tg9ZFQfxuUtMtDeqSDZE1HO5rnjParmSfjb+TDl6ky7WP246JF/+8n8m nkJp+xTXkXLTSkC5+lGGi+XK+iNn186fWygM+kPx4upMcROT2LzQ3H3aKKRdQBP3 xCfH+EykYQ5/HkjV2aY60uJHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUkjk9Uiud sTuIVHvSqZU2XMDncnMwHwYDVR0jBBgwFoAU0XRFPpVj66/LuzKsxs+Gb72OIvAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg3MzI1LzdCMzM0QTRBQUFF OTExRUZCNzIxQzI1REM0RjlBRTAyLzBYUkZQcFZqNjZfTHV6S3N4cy1HYjcyT0l2 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMFhSRlBwVmo2Nl9MdXpLc3hzLUdiNzJPSXZBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg3 MzI1LzdCMzM0QTRBQUFFOTExRUZCNzIxQzI1REM0RjlBRTAyLzBYUkZQcFZqNjZf THV6S3N4cy1HYjcyT0l2QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALrd8P07s7CXxFkyEdtglRsh3sTNvt92t8p6UkQ1mcMdfig79GodYAlv ANDxMmSLxFaywQFu5sx1gV5UCJvGIeD5L/PUGoOldvhwT+66Nf/AwJ1wZS/ycYox O19yDl/g/elRgs7zQd9cWXFoSXTkBTJEth8qLv/PgEyLeCbQ6DCk/DLGgg2Qx9jl SBXOfHDZsDV3xVI0SwZ0fuWHn+J57WcPjMkoEmQJLk0JmeIPEOuXBGGWaYNLPNQv xUZ74Ge8KLNIGT/dHyB8CX2WOlhDbxTJOSXspOCZSSLw/JjBjI75Ey9W6QuTghv3 I0DvwQR0ypuISVYmMnrawmXm55tWJF4= -----END CERTIFICATE-----Generated at Sat Apr 19 01:05:11 2025 by rpki-client