$ rpki-client -vvf rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/X60bOb5FVSYiBtGfWmabx7afcsg.mft File: X60bOb5FVSYiBtGfWmabx7afcsg.mft (raw, json) Hash identifier: fX4NJyezMRIhPo2E2iFJz0qCboaTCyTh08dM8Kd/u8k= Subject key identifier: FB:25:14:E8:BC:7F:EF:41:3E:4B:F0:2E:7C:2E:77:41:66:45:0D:87 Authority key identifier: 5F:AD:1B:39:BE:45:55:26:22:06:D1:9F:5A:66:9B:C7:B6:9F:72:C8 Certificate issuer: /CN=A9173CE6/serialNumber=5FAD1B39BE4555262206D19F5A669BC7B69F72C8 Certificate serial: 0676 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/X60bOb5FVSYiBtGfWmabx7afcsg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/X60bOb5FVSYiBtGfWmabx7afcsg.mft Manifest number: 0673 Signing time: Sat 31 May 2025 22:22:53 +0000 Manifest this update: Sat 31 May 2025 22:22:53 +0000 Manifest next update: Sat 07 Jun 2025 22:22:53 +0000 Files and hashes: 1: X60bOb5FVSYiBtGfWmabx7afcsg.crl (hash: xDZNWnGDuFZigQ4IJcVWyvfc3cbwsldrWsmWxjBr8TI=) 2: C4245600E55A11ED98D38780C4F9AE02.roa (hash: yju+fZAWtM3RsMZrSlngexqtu4I3chkHV+7N/8ZbBdQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/X60bOb5FVSYiBtGfWmabx7afcsg.crl rsync://rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/X60bOb5FVSYiBtGfWmabx7afcsg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/X60bOb5FVSYiBtGfWmabx7afcsg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 22:22:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1654 (0x676) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173CE6, serialNumber=5FAD1B39BE4555262206D19F5A669BC7B69F72C8 Validity Not Before: May 31 22:22:53 2025 GMT Not After : Jun 7 22:22:53 2025 GMT Subject: CN=683b813d-ee45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:0a:ff:5f:d7:41:83:34:bd:97:16:40:d6:77: 3d:d8:62:f7:39:6d:88:e0:b6:61:74:70:ce:d9:61: 70:9b:5d:7d:5c:d9:c3:a3:f2:ac:97:70:c6:76:8b: ef:a3:5b:56:51:47:05:dd:8b:c1:fe:99:b5:c2:cb: 95:c8:80:e8:5e:3e:af:47:89:aa:18:b7:43:05:c1: 94:d3:e2:ab:46:79:eb:c9:22:a1:db:31:55:56:50: 13:05:15:eb:f6:69:2d:66:e2:0a:a6:f1:7c:dd:a0: 89:9f:2d:2a:e9:95:e0:b7:a8:a4:4d:5d:54:c1:6a: a9:8d:1d:0d:2d:55:a6:87:51:8e:90:97:c3:c2:9f: 2b:e5:9b:ed:f7:71:b4:2d:8a:bd:9d:57:b3:20:c4: af:b5:e1:e4:06:b6:dd:13:43:11:db:5e:4b:05:6e: c1:87:d1:e7:83:a6:aa:de:62:9c:d4:65:39:a3:c1: eb:09:61:df:6b:ea:13:dc:06:71:2f:06:55:1c:0c: 5a:86:f3:63:34:08:ba:03:92:21:05:a1:56:86:9b: 91:67:99:8b:6b:a8:b7:88:46:ab:69:56:c6:97:38: 0c:aa:e1:86:27:8c:20:31:d9:0c:a0:42:8c:c3:63: 87:d8:13:1c:7f:17:64:01:9e:3a:2f:d3:4f:57:5a: 5e:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:25:14:E8:BC:7F:EF:41:3E:4B:F0:2E:7C:2E:77:41:66:45:0D:87 X509v3 Authority Key Identifier: keyid:5F:AD:1B:39:BE:45:55:26:22:06:D1:9F:5A:66:9B:C7:B6:9F:72:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/X60bOb5FVSYiBtGfWmabx7afcsg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/X60bOb5FVSYiBtGfWmabx7afcsg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/X60bOb5FVSYiBtGfWmabx7afcsg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:8c:14:5b:fe:96:ea:18:49:70:3a:eb:ef:4e:fa:2b:e0:c5: e8:2a:d0:22:48:c7:f4:1b:3d:77:bc:84:b6:5e:5d:65:64:28: 48:c8:c4:d1:e9:d7:3f:9b:cb:bb:09:8c:dd:c4:0a:86:e7:7b: 2e:cf:95:1d:2a:a2:5f:83:88:2e:e6:be:22:66:7f:cf:9a:d1: c5:c4:d9:c2:c8:da:e6:91:8e:25:91:37:16:8f:7d:00:20:af: a3:20:34:3d:11:17:87:39:a1:ce:87:1d:42:c4:a6:11:00:01: 53:50:2d:ea:90:80:f3:21:95:ae:16:50:81:8a:54:a6:8b:f5: 10:52:07:32:6c:a3:ba:1f:5d:3a:74:19:7d:12:21:b2:65:4c: b7:79:6a:2f:bf:ce:a6:05:64:ec:01:93:da:11:cd:cd:08:6a: 91:1d:9c:f2:c7:88:79:2e:00:c0:65:8a:8c:10:0d:d2:eb:6c: 53:52:d9:ee:91:31:45:d5:40:7d:40:37:25:0f:f3:92:52:0e: 82:39:a4:d2:68:b7:16:05:00:f2:8c:0d:81:35:92:a8:04:d2: 73:7d:4a:f4:9d:e0:e2:2b:62:fc:4c:f4:90:a6:d9:c6:51:e9: 18:9d:c6:24:1f:e1:53:27:9c:76:89:1f:ab:0c:9f:33:e8:9e: 8d:aa:60:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDRTYxMTAvBgNVBAUTKDVGQUQxQjM5QkU0NTU1MjYyMjA2RDE5RjVBNjY5QkM3 QjY5RjcyQzgwHhcNMjUwNTMxMjIyMjUzWhcNMjUwNjA3MjIyMjUzWjAYMRYwFAYD VQQDEw02ODNiODEzZC1lZTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4wr/X9dBgzS9lxZA1nc92GL3OW2I4LZhdHDO2WFwm119XNnDo/Ksl3DGdovv o1tWUUcF3YvB/pm1wsuVyIDoXj6vR4mqGLdDBcGU0+KrRnnrySKh2zFVVlATBRXr 9mktZuIKpvF83aCJny0q6ZXgt6ikTV1UwWqpjR0NLVWmh1GOkJfDwp8r5Zvt93G0 LYq9nVezIMSvteHkBrbdE0MR215LBW7Bh9Hng6aq3mKc1GU5o8HrCWHfa+oT3AZx LwZVHAxahvNjNAi6A5IhBaFWhpuRZ5mLa6i3iEaraVbGlzgMquGGJ4wgMdkMoEKM w2OH2BMcfxdkAZ46L9NPV1peIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPslFOi8 f+9BPkvwLnwud0FmRQ2HMB8GA1UdIwQYMBaAFF+tGzm+RVUmIgbRn1pmm8e2n3LI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0NFNi8wM0EwMTc4NDdC RDAxMUVCODVBNjY5ODBDNEY5QUUwMi9YNjBiT2I1RlZTWWlCdEdmV21hYng3YWZj c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1g2MGJPYjVGVlNZaUJ0R2ZXbWFieDdhZmNzZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0NFNi8wM0EwMTc4NDdCRDAxMUVCODVBNjY5ODBDNEY5QUUwMi9YNjBiT2I1RlZT WWlCdEdmV21hYng3YWZjc2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgjBRb/pbqGElwOuvvTvor4MXoKtAiSMf0Gz13vIS2Xl1lZChIyMTR 6dc/m8u7CYzdxAqG53suz5UdKqJfg4gu5r4iZn/PmtHFxNnCyNrmkY4lkTcWj30A IK+jIDQ9EReHOaHOhx1CxKYRAAFTUC3qkIDzIZWuFlCBilSmi/UQUgcybKO6H106 dBl9EiGyZUy3eWovv86mBWTsAZPaEc3NCGqRHZzyx4h5LgDAZYqMEA3S62xTUtnu kTFF1UB9QDclD/OSUg6COaTSaLcWBQDyjA2BNZKoBNJzfUr0neDiK2L8TPSQptnG UekYncYkH+FTJ5x2iR+rDJ8z6J6NqmC3 -----END CERTIFICATE-----Generated at Mon Jun 2 20:10:15 2025 by rpki-client