$ rpki-client -vvf rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft File: XZRtT0edN7zhcAywut1RosPfYg8.mft (raw, json) Hash identifier: yfdNHB784SGUbvKUHldjm2UAbMx/xgP6NHJFKuQiqoM= Subject key identifier: DC:DF:C2:3D:44:AE:89:8F:1E:68:EE:99:CE:6F:21:0E:4F:37:96:FB Authority key identifier: 5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F Certificate issuer: /CN=A9152787/serialNumber=5D946D4F479D37BCE1700CB0BADD51A2C3DF620F Certificate serial: 4C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft Manifest number: 4B Signing time: Thu 13 Mar 2025 05:23:35 +0000 Manifest this update: Thu 13 Mar 2025 05:23:34 +0000 Manifest next update: Thu 20 Mar 2025 05:23:34 +0000 Files and hashes: 1: XZRtT0edN7zhcAywut1RosPfYg8.crl (hash: y1LaTg2srLuuLgszP9iobW+JWnfZZjK9LAS6WaNro7Y=) 2: B45D344C8F7911EF90F6941FC4F9AE02.roa (hash: IwG41/v32DGnAzEUwm2fWrp5jpFSCenIV1xWWix510E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.crl rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 05:23:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76 (0x4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152787 Validity Not Before: Mar 13 05:23:34 2025 GMT Not After : Mar 20 05:23:34 2025 GMT Subject: CN=67d26bd6-0640 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:01:9e:56:72:ff:5c:de:d3:25:e7:15:fa:b5: bb:2f:13:52:fa:a0:de:28:a1:4e:ce:20:a8:fc:84: 06:ae:27:5a:d4:84:79:b6:52:50:9a:a5:5f:42:66: 9c:2a:ed:06:10:8d:24:b2:98:69:45:2b:c4:73:a6: b2:e0:da:89:ee:dc:b1:a7:cc:25:6d:35:6a:ab:89: 3f:fa:9c:6b:e3:7e:a0:90:63:89:53:05:f3:b6:1f: 5d:ed:8a:4f:2d:f0:85:97:ba:d6:5b:06:a1:96:60: 4b:3f:e2:73:6e:62:20:c5:e9:73:a8:a1:dd:19:9a: a4:15:e0:e5:8f:c8:47:d6:9d:c5:49:d9:e6:03:0c: d8:7b:d7:4e:95:37:82:01:70:e2:82:7e:eb:3a:2c: 4c:7c:ac:81:8f:58:dc:0f:10:f9:87:9d:54:c1:22: 0e:67:62:c6:45:af:75:37:1d:b7:e9:6a:b7:9a:a2: 68:70:be:46:0f:0f:a0:de:e5:68:d9:a3:b4:8b:de: d9:c5:4a:6f:91:a3:6a:37:1a:bd:54:00:0f:5c:8a: 5a:06:78:eb:c0:62:aa:c5:ee:23:df:89:67:4a:7e: 24:d9:86:c9:64:84:20:e7:70:54:37:19:22:f9:84: 42:62:19:38:49:16:30:91:f4:69:96:8e:85:b9:88: fb:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:DF:C2:3D:44:AE:89:8F:1E:68:EE:99:CE:6F:21:0E:4F:37:96:FB X509v3 Authority Key Identifier: keyid:5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:27:63:10:1d:20:ac:cc:8a:19:4e:6c:dd:95:31:ff:74:76: c1:3f:ff:84:45:0e:97:27:33:79:5c:f9:71:5f:09:e0:f9:0e: 57:61:90:dc:cc:1a:96:e4:54:69:e5:09:62:74:af:82:67:b4: 06:a2:21:39:29:2a:dc:48:bd:87:f2:8d:49:4b:b5:01:e4:11: 0a:9d:70:92:61:4f:82:a5:10:37:c8:f1:7c:c9:f2:fc:22:d5: e0:df:45:1e:c1:95:02:19:44:73:ff:d3:90:ed:c6:8a:5e:97: e2:da:e3:cf:2e:44:d8:f7:82:26:1c:23:79:db:0e:12:16:1d: cd:3a:66:db:0d:71:ce:f2:ab:e0:62:96:97:32:28:b2:63:00: 8d:b1:bd:ca:70:bb:7a:d4:b4:fb:32:ba:9a:68:bc:e0:dd:dd: 1d:d1:49:9a:0e:41:37:d6:af:55:27:8d:08:30:2d:25:8d:1c: 7e:bd:ff:1f:48:c2:b6:76:0f:f7:9f:92:74:03:5b:f9:d5:40: 2c:bf:92:e1:79:5f:ce:5a:63:ea:ce:25:2c:6a:c0:0a:d0:dc: f3:bf:35:06:30:84:ed:4c:91:58:bd:ad:40:de:f1:a3:db:a6: 98:c1:fb:4b:53:b3:29:65:0e:1d:d6:b7:65:44:0e:73:1f:08: d2:9b:1b:08 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 Mjc4NzExMC8GA1UEBRMoNUQ5NDZENEY0NzlEMzdCQ0UxNzAwQ0IwQkFERDUxQTJD M0RGNjIwRjAeFw0yNTAzMTMwNTIzMzRaFw0yNTAzMjAwNTIzMzRaMBgxFjAUBgNV BAMTDTY3ZDI2YmQ2LTA2NDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCnAZ5Wcv9c3tMl5xX6tbsvE1L6oN4ooU7OIKj8hAauJ1rUhHm2UlCapV9CZpwq 7QYQjSSymGlFK8RzprLg2onu3LGnzCVtNWqriT/6nGvjfqCQY4lTBfO2H13tik8t 8IWXutZbBqGWYEs/4nNuYiDF6XOood0ZmqQV4OWPyEfWncVJ2eYDDNh7106VN4IB cOKCfus6LEx8rIGPWNwPEPmHnVTBIg5nYsZFr3U3HbfpareaomhwvkYPD6De5WjZ o7SL3tnFSm+Ro2o3Gr1UAA9ciloGeOvAYqrF7iPfiWdKfiTZhslkhCDncFQ3GSL5 hEJiGThJFjCR9GmWjoW5iPuxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU3N/CPUSu iY8eaO6Zzm8hDk83lvswHwYDVR0jBBgwFoAUXZRtT0edN7zhcAywut1RosPfYg8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUyNzg3LzIyODY1NjJBOEY3 OTExRUY5MkFDNzgxRUM0RjlBRTAyL1haUnRUMGVkTjd6aGNBeXd1dDFSb3NQZlln OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWFpSdFQwZWRON3poY0F5d3V0MVJvc1BmWWc4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUy Nzg3LzIyODY1NjJBOEY3OTExRUY5MkFDNzgxRUM0RjlBRTAyL1haUnRUMGVkTjd6 aGNBeXd1dDFSb3NQZllnOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAK8nYxAdIKzMihlObN2VMf90dsE//4RFDpcnM3lc+XFfCeD5DldhkNzM GpbkVGnlCWJ0r4JntAaiITkpKtxIvYfyjUlLtQHkEQqdcJJhT4KlEDfI8XzJ8vwi 1eDfRR7BlQIZRHP/05Dtxopel+La488uRNj3giYcI3nbDhIWHc06ZtsNcc7yq+Bi lpcyKLJjAI2xvcpwu3rUtPsyuppovODd3R3RSZoOQTfWr1UnjQgwLSWNHH69/x9I wrZ2D/efknQDW/nVQCy/kuF5X85aY+rOJSxqwArQ3PO/NQYwhO1MkVi9rUDe8aPb ppjB+0tTsyllDh3Wt2VEDnMfCNKbGwg= -----END CERTIFICATE-----Generated at Thu Mar 13 21:31:43 2025 by rpki-client