$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft File: XSeFtU0WPtAepUGLz6NPG3RWtxM.mft (raw, json) Hash identifier: l8FgEpo1d6ukafN5tINMglTB+Oh/rxX5V+i+jpa5Euw= Subject key identifier: 1E:C5:1A:1A:3B:0A:82:DE:A4:77:D4:96:C1:02:8A:3D:8D:04:1A:63 Authority key identifier: 5D:27:85:B5:4D:16:3E:D0:1E:A5:41:8B:CF:A3:4F:1B:74:56:B7:13 Certificate issuer: /CN=A9167CC5/serialNumber=5D2785B54D163ED01EA5418BCFA34F1B7456B713 Certificate serial: 0494 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft Manifest number: 047C Signing time: Sat 31 May 2025 00:18:15 +0000 Manifest this update: Sat 31 May 2025 00:18:15 +0000 Manifest next update: Sat 07 Jun 2025 00:18:15 +0000 Files and hashes: 1: XSeFtU0WPtAepUGLz6NPG3RWtxM.crl (hash: QOZnw1YDe2Qf57I2V+efoKwCm0oBh6fxKZxn6emKbDA=) 2: 6337963E4C3D11ECB5FF844FC4F9AE02.roa (hash: 3KTOI3tChJ1EuHHkZIxY0+a6WeVb+6nR6Jk3wwfwMHU=) 3: ACE844F047AA11ECA0F05026C4F9AE02.roa (hash: xweR0My4YSEWr28C8V1U/OMEuVwH/Ly7NJUba0hYsCg=) 4: 1F77EFA44C4011EC952D5A23C4F9AE02.roa (hash: c5WQ+yUKORBq8d/u8k3An8QJMDIFK4yVXiwWYWbL5qc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.crl rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:18:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1172 (0x494) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167CC5, serialNumber=5D2785B54D163ED01EA5418BCFA34F1B7456B713 Validity Not Before: May 31 00:18:15 2025 GMT Not After : Jun 7 00:18:15 2025 GMT Subject: CN=683a4ac7-78f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:06:fd:c8:7e:f1:d0:d0:09:58:65:ab:0c:5d: a6:d0:98:24:bf:cb:2d:1f:2f:43:7a:21:fb:42:bc: 11:09:bd:3a:12:b6:87:da:c4:3f:da:d8:97:3b:98: 01:b7:56:12:89:ca:38:69:74:b5:17:52:1b:42:00: a1:bc:83:b2:14:51:65:d9:cc:2d:7e:a3:e7:26:83: 5e:3a:5d:c1:b8:36:d9:14:4c:e7:e8:ae:3b:e4:c7: 65:f4:b0:73:c3:c8:ce:6b:27:4e:f7:f4:69:0c:85: cc:b1:3f:30:9a:be:43:97:2c:24:57:66:34:0a:1e: 3c:7a:e3:bd:0c:08:cb:18:2c:30:d2:bb:2e:34:5e: 7a:b2:e3:48:53:0e:4e:c1:54:f4:cb:2e:4d:90:21: 30:73:64:2e:34:af:57:ce:af:eb:f5:60:96:29:b4: 08:2a:7d:f2:35:b2:34:c3:be:a6:91:c9:f5:82:f0: f4:f1:25:0c:29:1e:10:2d:16:81:9a:a4:3f:49:1a: b6:71:ae:81:d9:17:d0:72:89:86:1d:45:87:a4:34: f9:b1:41:82:d6:a0:e4:e0:5b:d1:00:88:aa:c4:3a: c6:98:a8:49:7e:a5:10:c0:47:d7:e9:68:e8:34:20: 66:b2:1e:8d:a8:bc:84:27:c0:2a:2b:76:cd:3e:70: f8:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:C5:1A:1A:3B:0A:82:DE:A4:77:D4:96:C1:02:8A:3D:8D:04:1A:63 X509v3 Authority Key Identifier: keyid:5D:27:85:B5:4D:16:3E:D0:1E:A5:41:8B:CF:A3:4F:1B:74:56:B7:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:f2:c5:1c:a4:4b:6a:39:e4:e2:70:ef:ad:2e:1d:d1:92:10: 39:e6:ac:66:fd:8c:e5:c6:91:21:c2:08:e8:3f:9b:ba:00:76: d0:9d:ad:2b:d4:61:95:a5:f2:8d:ce:aa:e7:c5:43:0d:eb:67: 01:11:38:b8:51:88:9d:02:a3:c8:9d:13:74:64:04:c8:d6:8d: 95:bf:da:73:bb:38:b1:f0:ba:ec:85:25:50:45:d7:da:44:46: 85:3e:da:cd:93:38:cc:8b:dc:60:71:04:f6:ef:10:7c:93:3a: 03:01:c5:7d:c1:c4:81:9b:6d:3f:3c:0e:b6:8e:a0:df:19:8d: 7a:0f:60:be:9d:94:a6:cd:0b:64:d9:33:3b:6b:95:82:61:ea: 49:6c:3f:f8:4a:10:9f:a8:84:ac:99:dc:19:b8:0b:37:a0:d2: c6:bf:8c:45:35:b5:38:f8:10:d0:d9:29:05:3a:d3:4d:20:85: 02:9c:57:50:e6:4e:52:79:aa:d2:7b:83:48:29:8f:26:3d:4b: 1a:2b:e3:39:6e:ea:08:5f:d2:9b:72:23:81:d2:e6:c2:dc:ea: a6:c7:e3:ad:cb:af:c0:d0:2e:33:1e:6e:e7:a1:ee:b4:75:74: c6:43:c4:bd:4e:81:1d:e3:08:94:c4:14:9b:43:46:4a:44:e8: 77:ef:35:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDQzUxMTAvBgNVBAUTKDVEMjc4NUI1NEQxNjNFRDAxRUE1NDE4QkNGQTM0RjFC NzQ1NkI3MTMwHhcNMjUwNTMxMDAxODE1WhcNMjUwNjA3MDAxODE1WjAYMRYwFAYD VQQDEw02ODNhNGFjNy03OGYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Ab9yH7x0NAJWGWrDF2m0Jgkv8stHy9DeiH7QrwRCb06EraH2sQ/2tiXO5gB t1YSico4aXS1F1IbQgChvIOyFFFl2cwtfqPnJoNeOl3BuDbZFEzn6K475Mdl9LBz w8jOaydO9/RpDIXMsT8wmr5DlywkV2Y0Ch48euO9DAjLGCww0rsuNF56suNIUw5O wVT0yy5NkCEwc2QuNK9Xzq/r9WCWKbQIKn3yNbI0w76mkcn1gvD08SUMKR4QLRaB mqQ/SRq2ca6B2RfQcomGHUWHpDT5sUGC1qDk4FvRAIiqxDrGmKhJfqUQwEfX6Wjo NCBmsh6NqLyEJ8AqK3bNPnD4eQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB7FGho7 CoLepHfUlsECij2NBBpjMB8GA1UdIwQYMBaAFF0nhbVNFj7QHqVBi8+jTxt0VrcT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0NDNS8yQUM0RDMzRTQ2 QjExMUVDOTQ1QjRGNTdDNEY5QUUwMi9YU2VGdFUwV1B0QWVwVUdMejZOUEczUld0 eE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTZUZ0VTBXUHRBZXBVR0x6Nk5QRzNSV3R4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0NDNS8yQUM0RDMzRTQ2QjExMUVDOTQ1QjRGNTdDNEY5QUUwMi9YU2VGdFUwV1B0 QWVwVUdMejZOUEczUld0eE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCd8sUcpEtqOeTicO+tLh3RkhA55qxm/YzlxpEhwgjoP5u6AHbQna0r 1GGVpfKNzqrnxUMN62cBETi4UYidAqPInRN0ZATI1o2Vv9pzuzix8LrshSVQRdfa REaFPtrNkzjMi9xgcQT27xB8kzoDAcV9wcSBm20/PA62jqDfGY16D2C+nZSmzQtk 2TM7a5WCYepJbD/4ShCfqISsmdwZuAs3oNLGv4xFNbU4+BDQ2SkFOtNNIIUCnFdQ 5k5SearSe4NIKY8mPUsaK+M5buoIX9KbciOB0ubC3Oqmx+Oty6/A0C4zHm7noe60 dXTGQ8S9ToEd4wiUxBSbQ0ZKROh37zWn -----END CERTIFICATE-----Generated at Sat May 31 17:02:16 2025 by rpki-client