$ rpki-client -vvf rpki.apnic.net/member_repository/A9168D20/C0C6AE5C935B11EB91086D55C4F9AE02/cXp42D7DjxcRAnMoE5hEns3RBQA.mft File: cXp42D7DjxcRAnMoE5hEns3RBQA.mft (raw, json) Hash identifier: 9RoQFLnmRR3qJVxhpMNDeR4cLZjoQY0zu5SCMHsl2SQ= Subject key identifier: 37:A6:BB:AC:BD:F8:47:CD:C4:89:CC:57:77:39:FE:9D:AD:5E:DF:B2 Authority key identifier: 71:7A:78:D8:3E:C3:8F:17:11:02:73:28:13:98:44:9E:CD:D1:05:00 Certificate issuer: /CN=A9168D20/serialNumber=717A78D83EC38F17110273281398449ECDD10500 Certificate serial: 0645 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXp42D7DjxcRAnMoE5hEns3RBQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168D20/C0C6AE5C935B11EB91086D55C4F9AE02/cXp42D7DjxcRAnMoE5hEns3RBQA.mft Manifest number: 063C Signing time: Fri 30 May 2025 22:53:33 +0000 Manifest this update: Fri 30 May 2025 22:53:32 +0000 Manifest next update: Fri 06 Jun 2025 22:53:32 +0000 Files and hashes: 1: cXp42D7DjxcRAnMoE5hEns3RBQA.crl (hash: o3luJRufkCvYXFDBo2/iEM8itO85RN8zBe0C+Edd9Vg=) 2: B9D0CC00D67311EEAD5F8B0FC4F9AE02.roa (hash: xnj1+DqNRGp1sU91Z+zGlbx4vpo9U2+YWkznSk4BLXI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168D20/C0C6AE5C935B11EB91086D55C4F9AE02/cXp42D7DjxcRAnMoE5hEns3RBQA.crl rsync://rpki.apnic.net/member_repository/A9168D20/C0C6AE5C935B11EB91086D55C4F9AE02/cXp42D7DjxcRAnMoE5hEns3RBQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXp42D7DjxcRAnMoE5hEns3RBQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:53:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1605 (0x645) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168D20, serialNumber=717A78D83EC38F17110273281398449ECDD10500 Validity Not Before: May 30 22:53:32 2025 GMT Not After : Jun 6 22:53:32 2025 GMT Subject: CN=683a36ec-b713 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:e2:22:3c:aa:fd:dd:d4:be:13:ec:b4:29:2d: 4a:1d:14:78:8d:f1:62:64:4a:fb:b4:ae:9d:4a:fc: 3e:be:6a:47:9f:21:a8:ce:69:b7:ad:6f:be:51:58: 1f:5e:d2:c5:e4:03:07:b5:5f:91:ec:cd:c7:43:a7: 00:7b:ad:53:56:23:f6:e2:61:73:84:47:02:9d:86: e9:5c:8e:42:db:b7:10:a1:70:76:b4:fa:62:36:79: 62:47:01:2a:5f:0d:cc:2d:65:03:e4:c6:23:16:f8: eb:33:d6:88:7b:2c:b3:e3:85:13:d3:e1:cc:14:8e: 8c:f6:e9:d9:4e:6a:43:01:6a:33:30:61:c3:36:e0: fb:fc:56:9a:8f:04:ff:12:18:c3:59:79:9a:28:21: 99:38:f6:27:e2:95:76:8d:b3:b1:8c:47:9c:9d:e7: f8:ba:6f:f8:70:8a:0b:f4:80:60:95:69:3f:fa:24: 60:6f:dd:ae:95:90:ea:13:70:72:10:88:86:bc:2f: 93:c1:e2:c5:51:85:7f:05:15:81:25:e2:79:27:24: a4:b0:e6:aa:ca:ae:b0:59:62:7f:9b:ba:00:6f:46: a6:16:40:7b:1f:95:e9:86:98:4f:02:90:64:c9:30: 26:18:ba:d3:be:cb:48:b1:8a:a1:81:4b:5c:bc:6e: 58:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:A6:BB:AC:BD:F8:47:CD:C4:89:CC:57:77:39:FE:9D:AD:5E:DF:B2 X509v3 Authority Key Identifier: keyid:71:7A:78:D8:3E:C3:8F:17:11:02:73:28:13:98:44:9E:CD:D1:05:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168D20/C0C6AE5C935B11EB91086D55C4F9AE02/cXp42D7DjxcRAnMoE5hEns3RBQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXp42D7DjxcRAnMoE5hEns3RBQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168D20/C0C6AE5C935B11EB91086D55C4F9AE02/cXp42D7DjxcRAnMoE5hEns3RBQA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ca:97:80:ff:16:4f:2d:ab:bc:dd:56:cf:f5:d3:da:83:2c:03: 55:66:19:8b:41:79:0b:6f:96:19:06:4c:02:85:73:6e:b9:02: b7:40:6c:1a:85:25:b7:ac:f6:ad:64:d5:95:02:78:cd:24:3e: 68:30:b1:d0:38:29:8a:90:0a:bd:57:f7:ac:5e:ad:d1:d7:c2: f2:6d:87:f8:6b:89:2a:2d:0e:87:fb:73:40:79:cd:f6:da:be: f3:ab:02:94:38:49:f1:9e:ce:3e:76:bf:42:52:c9:73:62:fb: 86:68:c2:de:26:c6:40:af:8d:32:12:f9:2b:48:f7:5d:b6:93: e2:26:34:d6:5c:71:f4:30:a9:74:a0:bc:2c:43:df:1d:3e:32: a2:9e:7a:64:19:df:28:0a:cc:a7:07:03:26:36:4c:ef:ff:a6: a9:b8:bb:4f:f2:a9:ff:d6:87:3c:f0:41:3d:08:e4:5f:24:95: f3:0f:bc:8b:49:bb:cd:cc:68:a2:e1:53:78:a1:9e:42:43:07: 6d:cf:30:25:2b:fa:e8:ad:e7:16:5c:80:22:51:c2:b0:a3:45: a9:9d:ea:b8:4c:53:5c:ee:12:fd:fa:ea:ae:54:cd:9a:d3:8f: b3:98:b0:83:3f:f8:51:e4:49:8f:55:ca:ec:7e:3f:19:3d:8d: 6e:07:da:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhEMjAxMTAvBgNVBAUTKDcxN0E3OEQ4M0VDMzhGMTcxMTAyNzMyODEzOTg0NDlF Q0REMTA1MDAwHhcNMjUwNTMwMjI1MzMyWhcNMjUwNjA2MjI1MzMyWjAYMRYwFAYD VQQDEw02ODNhMzZlYy1iNzEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0eIiPKr93dS+E+y0KS1KHRR4jfFiZEr7tK6dSvw+vmpHnyGozmm3rW++UVgf XtLF5AMHtV+R7M3HQ6cAe61TViP24mFzhEcCnYbpXI5C27cQoXB2tPpiNnliRwEq Xw3MLWUD5MYjFvjrM9aIeyyz44UT0+HMFI6M9unZTmpDAWozMGHDNuD7/FaajwT/ EhjDWXmaKCGZOPYn4pV2jbOxjEecnef4um/4cIoL9IBglWk/+iRgb92ulZDqE3By EIiGvC+TweLFUYV/BRWBJeJ5JySksOaqyq6wWWJ/m7oAb0amFkB7H5XphphPApBk yTAmGLrTvstIsYqhgUtcvG5Y/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDemu6y9 +EfNxInMV3c5/p2tXt+yMB8GA1UdIwQYMBaAFHF6eNg+w48XEQJzKBOYRJ7N0QUA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEQyMC9DMEM2QUU1Qzkz NUIxMUVCOTEwODZENTVDNEY5QUUwMi9jWHA0MkQ3RGp4Y1JBbk1vRTVoRW5zM1JC UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NYcDQyRDdEanhjUkFuTW9FNWhFbnMzUkJRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEQyMC9DMEM2QUU1QzkzNUIxMUVCOTEwODZENTVDNEY5QUUwMi9jWHA0MkQ3RGp4 Y1JBbk1vRTVoRW5zM1JCUUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDKl4D/Fk8tq7zdVs/109qDLANVZhmLQXkLb5YZBkwChXNuuQK3QGwa hSW3rPatZNWVAnjNJD5oMLHQOCmKkAq9V/esXq3R18LybYf4a4kqLQ6H+3NAec32 2r7zqwKUOEnxns4+dr9CUslzYvuGaMLeJsZAr40yEvkrSPddtpPiJjTWXHH0MKl0 oLwsQ98dPjKinnpkGd8oCsynBwMmNkzv/6apuLtP8qn/1oc88EE9CORfJJXzD7yL SbvNzGii4VN4oZ5CQwdtzzAlK/rorecWXIAiUcKwo0Wpneq4TFNc7hL9+uquVM2a 04+zmLCDP/hR5EmPVcrsfj8ZPY1uB9o4 -----END CERTIFICATE-----Generated at Sat May 31 15:06:09 2025 by rpki-client