$ rpki-client -vvf rpki.apnic.net/member_repository/A9196296/42A0B71AAF5B11EEB60D0527C4F9AE02/X9vV31MtLFYgb3sRLnu7MFejmZA.mft File: X9vV31MtLFYgb3sRLnu7MFejmZA.mft (raw, json) Hash identifier: bzglhBxYp3q4kFv7D53sfTmeLkgV2mpZnT0Hkec+ygU= Subject key identifier: 50:1F:80:AC:61:FB:DA:C1:BE:CB:83:13:34:C6:75:22:B5:1B:29:5C Authority key identifier: 5F:DB:D5:DF:53:2D:2C:56:20:6F:7B:11:2E:7B:BB:30:57:A3:99:90 Certificate issuer: /CN=A9196296/serialNumber=5FDBD5DF532D2C56206F7B112E7BBB3057A39990 Certificate serial: F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X9vV31MtLFYgb3sRLnu7MFejmZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196296/42A0B71AAF5B11EEB60D0527C4F9AE02/X9vV31MtLFYgb3sRLnu7MFejmZA.mft Manifest number: F1 Signing time: Mon 21 Apr 2025 04:08:26 +0000 Manifest this update: Mon 21 Apr 2025 04:08:25 +0000 Manifest next update: Mon 28 Apr 2025 04:08:25 +0000 Files and hashes: 1: X9vV31MtLFYgb3sRLnu7MFejmZA.crl (hash: YEm1Yxk4WGwXfomNJ/EJGsYPN01TyfQ3FynzUScYqzw=) 2: 9A28A416AF5B11EE9B50AD27C4F9AE02.roa (hash: ZtCY4of0oNZSmT+bU0NNMOI3a0wB7P9BZQfRH7MJK3I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196296/42A0B71AAF5B11EEB60D0527C4F9AE02/X9vV31MtLFYgb3sRLnu7MFejmZA.crl rsync://rpki.apnic.net/member_repository/A9196296/42A0B71AAF5B11EEB60D0527C4F9AE02/X9vV31MtLFYgb3sRLnu7MFejmZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X9vV31MtLFYgb3sRLnu7MFejmZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 04:08:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 243 (0xf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196296, serialNumber=5FDBD5DF532D2C56206F7B112E7BBB3057A39990 Validity Not Before: Apr 21 04:08:25 2025 GMT Not After : Apr 28 04:08:25 2025 GMT Subject: CN=6805c4b9-3b58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:18:e0:ff:25:50:31:ea:af:a6:62:f3:aa:59: 74:44:a8:e6:9c:cb:72:05:6c:c8:86:d6:51:d7:94: 79:65:4b:51:84:06:78:19:42:75:b6:01:9d:8c:a9: fa:5d:4e:d1:fc:6c:71:5b:2a:88:7d:b5:f2:a9:00: 94:a0:db:38:8c:3c:7d:ae:08:93:6b:d4:4c:dc:65: c2:bc:44:b6:be:f2:92:f8:3a:ec:e2:6e:c6:b0:28: fd:b7:fd:cb:ed:fd:6e:a5:26:ab:2c:7f:f4:22:ce: 91:39:84:2c:34:e2:d7:63:08:bf:7c:01:6b:1c:3f: 9d:ac:4e:8b:e1:02:81:56:c8:09:01:35:89:67:21: 6f:2b:48:3d:36:95:13:a4:1e:18:6d:0c:4a:01:e9: 70:76:a3:b7:6f:a8:bf:68:77:c8:1c:68:6b:6d:a9: 2c:cf:55:a7:ef:c0:9d:27:92:2a:6f:9c:53:ed:33: 67:0a:fc:d3:96:35:2a:27:3f:6d:31:3d:24:7e:b0: 9b:be:ac:c4:9b:0d:df:e9:17:28:21:90:52:5b:1e: 73:33:8d:01:b5:44:27:5d:a3:d8:1b:d5:c3:4f:b1: 8d:a0:6e:ca:a4:1a:b7:3e:71:6e:a1:2c:7f:4a:d9: 19:df:15:e5:13:99:40:c9:8f:00:b3:37:87:a4:3a: 28:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:1F:80:AC:61:FB:DA:C1:BE:CB:83:13:34:C6:75:22:B5:1B:29:5C X509v3 Authority Key Identifier: keyid:5F:DB:D5:DF:53:2D:2C:56:20:6F:7B:11:2E:7B:BB:30:57:A3:99:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196296/42A0B71AAF5B11EEB60D0527C4F9AE02/X9vV31MtLFYgb3sRLnu7MFejmZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X9vV31MtLFYgb3sRLnu7MFejmZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196296/42A0B71AAF5B11EEB60D0527C4F9AE02/X9vV31MtLFYgb3sRLnu7MFejmZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:e3:b8:3b:56:73:9f:9d:fb:9e:30:90:dd:cf:30:31:42:15: 4e:33:7a:6f:af:0e:80:7e:2a:f3:b5:a6:48:6d:2a:e0:3a:24: f0:13:36:0f:e1:bd:03:2d:9c:d1:1c:47:77:5f:81:4e:1a:99: 48:71:65:d3:3a:59:87:50:01:19:9f:f6:be:a1:41:a7:e1:22: 94:3f:61:f0:73:56:7d:2f:5c:5c:eb:87:90:66:e2:57:02:c6: 6c:13:27:5f:ed:aa:b4:9b:c4:47:73:df:6c:87:f9:45:9b:75: 1e:96:8a:63:58:09:a4:ba:58:c0:27:bc:07:9b:46:88:a8:2e: 81:63:60:79:a0:01:54:65:e3:5a:a0:39:c7:f8:37:57:4b:1d: 5c:35:0a:76:7f:70:51:52:e9:a6:20:54:cb:33:9e:93:91:77: 68:8d:51:ca:4e:3d:11:db:31:e3:06:4a:92:11:93:6a:25:1c: 9c:01:ee:d6:30:ad:01:ea:70:22:26:ca:dc:2c:d4:76:8e:19: e4:eb:34:22:71:a8:59:4e:e2:91:8e:37:88:e7:b8:54:d2:9b: fb:a0:38:56:b9:6d:f7:67:45:e6:64:30:47:76:35:d6:fe:9e: de:85:0e:bd:07:c6:3d:f0:c0:78:b6:ca:47:ee:18:f3:6d:f5: f4:c4:aa:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTYyOTYxMTAvBgNVBAUTKDVGREJENURGNTMyRDJDNTYyMDZGN0IxMTJFN0JCQjMw NTdBMzk5OTAwHhcNMjUwNDIxMDQwODI1WhcNMjUwNDI4MDQwODI1WjAYMRYwFAYD VQQDEw02ODA1YzRiOS0zYjU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2hjg/yVQMeqvpmLzqll0RKjmnMtyBWzIhtZR15R5ZUtRhAZ4GUJ1tgGdjKn6 XU7R/GxxWyqIfbXyqQCUoNs4jDx9rgiTa9RM3GXCvES2vvKS+Drs4m7GsCj9t/3L 7f1upSarLH/0Is6ROYQsNOLXYwi/fAFrHD+drE6L4QKBVsgJATWJZyFvK0g9NpUT pB4YbQxKAelwdqO3b6i/aHfIHGhrbaksz1Wn78CdJ5Iqb5xT7TNnCvzTljUqJz9t MT0kfrCbvqzEmw3f6RcoIZBSWx5zM40BtUQnXaPYG9XDT7GNoG7KpBq3PnFuoSx/ StkZ3xXlE5lAyY8AszeHpDoo7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFAfgKxh +9rBvsuDEzTGdSK1GylcMB8GA1UdIwQYMBaAFF/b1d9TLSxWIG97ES57uzBXo5mQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjI5Ni80MkEwQjcxQUFG NUIxMUVFQjYwRDA1MjdDNEY5QUUwMi9YOXZWMzFNdExGWWdiM3NSTG51N01GZWpt WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g5dlYzMU10TEZZZ2Izc1JMbnU3TUZlam1aQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjI5Ni80MkEwQjcxQUFGNUIxMUVFQjYwRDA1MjdDNEY5QUUwMi9YOXZWMzFNdExG WWdiM3NSTG51N01GZWptWkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBn47g7VnOfnfueMJDdzzAxQhVOM3pvrw6AfirztaZIbSrgOiTwEzYP 4b0DLZzRHEd3X4FOGplIcWXTOlmHUAEZn/a+oUGn4SKUP2Hwc1Z9L1xc64eQZuJX AsZsEydf7aq0m8RHc99sh/lFm3UelopjWAmkuljAJ7wHm0aIqC6BY2B5oAFUZeNa oDnH+DdXSx1cNQp2f3BRUummIFTLM56TkXdojVHKTj0R2zHjBkqSEZNqJRycAe7W MK0B6nAiJsrcLNR2jhnk6zQicahZTuKRjjeI57hU0pv7oDhWuW33Z0XmZDBHdjXW /p7ehQ69B8Y98MB4tspH7hjzbfX0xKoi -----END CERTIFICATE-----Generated at Tue Apr 22 19:14:21 2025 by rpki-client