$ rpki-client -vvf rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/R-xTv901EyDomyxUG6zdTY1SoLM.mft File: R-xTv901EyDomyxUG6zdTY1SoLM.mft (raw, json) Hash identifier: x48iLLJO3tH3OHbhcuvpehPIcAC6ArrVI4+xu1u+wYY= Subject key identifier: 23:74:27:E7:9C:3C:17:A1:76:12:E4:C4:D6:D8:05:69:97:E6:65:7C Authority key identifier: 47:EC:53:BF:DD:35:13:20:E8:9B:2C:54:1B:AC:DD:4D:8D:52:A0:B3 Certificate issuer: /CN=A9173DB5/serialNumber=47EC53BFDD351320E89B2C541BACDD4D8D52A0B3 Certificate serial: 066D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R-xTv901EyDomyxUG6zdTY1SoLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/R-xTv901EyDomyxUG6zdTY1SoLM.mft Manifest number: 0656 Signing time: Sun 08 Jun 2025 22:14:17 +0000 Manifest this update: Sun 08 Jun 2025 22:14:16 +0000 Manifest next update: Sun 15 Jun 2025 22:14:16 +0000 Files and hashes: 1: R-xTv901EyDomyxUG6zdTY1SoLM.crl (hash: aIkDJ2MY+p6+rJ498EuI7EXKBPdmQV0BgZZyqzm07Uw=) 2: A6556900C0DF11EE9BA7B27AC4F9AE02.roa (hash: NeA+haQWbT/+ES8jGn84EHKvHgzHqa/Dm5GM89PcoNg=) 3: 24D8D69CADAE11EBB6E7565AC4F9AE02.roa (hash: g8Lb40zN9J+dX+baJw4w7wBfRZECh6tNIBDlZG3Davc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/R-xTv901EyDomyxUG6zdTY1SoLM.crl rsync://rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/R-xTv901EyDomyxUG6zdTY1SoLM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R-xTv901EyDomyxUG6zdTY1SoLM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 15 Jun 2025 22:14:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1645 (0x66d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173DB5, serialNumber=47EC53BFDD351320E89B2C541BACDD4D8D52A0B3 Validity Not Before: Jun 8 22:14:16 2025 GMT Not After : Jun 15 22:14:16 2025 GMT Subject: CN=68460b39-566c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:50:1d:bf:5f:b0:f1:a8:65:ee:43:e6:46:c1: 8a:94:f1:e0:6c:5c:76:a4:d1:91:e1:42:7c:81:98: eb:c1:9b:ad:7d:b8:dd:0c:91:98:60:2e:9a:ce:18: df:23:7a:8c:17:fc:8e:db:b5:b2:7e:47:db:bc:63: 38:fc:63:a6:4c:f5:30:fe:43:3b:c6:53:6c:b8:e2: a0:29:23:8a:de:4b:3b:70:a4:f1:92:7a:91:36:1c: 0a:5e:cc:97:65:05:df:a5:ad:42:6e:cd:ba:e7:e8: f5:60:7f:13:95:28:e4:d2:c2:d3:75:61:d6:fe:31: 5f:66:08:55:f4:f5:3f:52:22:2f:4b:6e:17:70:e3: 42:14:e1:8d:19:10:43:2f:6b:e1:ae:68:46:2a:51: e9:89:06:da:90:d7:03:29:65:d6:01:d0:dd:98:f1: 82:f1:13:1d:e2:c5:01:2d:ed:8d:32:90:4e:ed:92: dc:32:7e:b0:f8:34:4d:dc:56:6b:07:ce:6c:a1:cd: ba:6a:0f:4c:76:0b:8b:6c:1f:dd:af:2a:d8:d2:cf: c3:47:11:0b:f2:25:d7:a3:e4:12:8d:41:a2:0e:0e: 27:3d:64:31:24:51:96:a3:96:65:bd:6c:50:0d:0f: 57:6c:32:4b:9f:72:1f:14:df:09:d2:52:5b:e1:71: a8:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:74:27:E7:9C:3C:17:A1:76:12:E4:C4:D6:D8:05:69:97:E6:65:7C X509v3 Authority Key Identifier: keyid:47:EC:53:BF:DD:35:13:20:E8:9B:2C:54:1B:AC:DD:4D:8D:52:A0:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/R-xTv901EyDomyxUG6zdTY1SoLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R-xTv901EyDomyxUG6zdTY1SoLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/R-xTv901EyDomyxUG6zdTY1SoLM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:49:ec:f9:a5:17:47:c5:e6:0d:1b:f9:37:de:99:2a:40:e4: a7:1f:51:91:3a:70:df:3a:81:49:b0:a3:b7:67:05:84:b9:ca: a6:5b:c4:ea:c5:dd:8f:65:25:68:4d:19:a2:6c:08:77:82:21: bb:24:f0:44:da:77:43:33:ff:a3:d4:63:38:f3:3b:9c:27:27: ac:4a:84:7f:37:03:88:c8:d1:07:d1:e0:a1:0c:26:71:6e:6b: 49:ca:a6:32:74:e1:6d:de:58:9d:46:9d:f1:4a:53:22:20:9e: 9d:cc:ca:09:2e:55:f6:bc:6d:03:d4:1f:c5:2b:17:1d:1d:59: 1d:e0:72:c4:cf:c0:0e:b0:ec:df:a0:5f:ed:ad:98:8c:3e:52: 63:ad:7e:d2:35:e0:38:12:c3:ef:df:88:32:40:22:33:b5:05: 68:6a:0d:4e:c6:b9:d1:f3:db:cd:af:b0:12:39:c8:22:39:5d: 61:27:2b:83:87:e2:2c:d4:dc:9a:40:c8:2e:22:ee:69:79:b7: 70:22:bd:73:fe:a1:b0:64:e2:dc:f9:54:06:ea:0c:a3:37:0a: e9:ad:f6:a9:6f:4c:e4:6b:a0:df:38:b5:89:fb:81:1a:1d:0a: f0:27:ab:14:a5:4c:28:1a:e5:db:88:f0:69:4b:18:6f:00:4a: 46:72:ec:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBm0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNEQjUxMTAvBgNVBAUTKDQ3RUM1M0JGREQzNTEzMjBFODlCMkM1NDFCQUNERDRE OEQ1MkEwQjMwHhcNMjUwNjA4MjIxNDE2WhcNMjUwNjE1MjIxNDE2WjAYMRYwFAYD VQQDEw02ODQ2MGIzOS01NjZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7lAdv1+w8ahl7kPmRsGKlPHgbFx2pNGR4UJ8gZjrwZutfbjdDJGYYC6azhjf I3qMF/yO27WyfkfbvGM4/GOmTPUw/kM7xlNsuOKgKSOK3ks7cKTxknqRNhwKXsyX ZQXfpa1Cbs265+j1YH8TlSjk0sLTdWHW/jFfZghV9PU/UiIvS24XcONCFOGNGRBD L2vhrmhGKlHpiQbakNcDKWXWAdDdmPGC8RMd4sUBLe2NMpBO7ZLcMn6w+DRN3FZr B85soc26ag9MdguLbB/dryrY0s/DRxEL8iXXo+QSjUGiDg4nPWQxJFGWo5ZlvWxQ DQ9XbDJLn3IfFN8J0lJb4XGoewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCN0J+ec PBehdhLkxNbYBWmX5mV8MB8GA1UdIwQYMBaAFEfsU7/dNRMg6JssVBus3U2NUqCz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0RCNS8wQzk5OUVDMDhG QTExMUVCQTIyMDY2MUVDNEY5QUUwMi9SLXhUdjkwMUV5RG9teXhVRzZ6ZFRZMVNv TE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1IteFR2OTAxRXlEb215eFVHNnpkVFkxU29MTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0RCNS8wQzk5OUVDMDhGQTExMUVCQTIyMDY2MUVDNEY5QUUwMi9SLXhUdjkwMUV5 RG9teXhVRzZ6ZFRZMVNvTE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6Sez5pRdHxeYNG/k33pkqQOSnH1GROnDfOoFJsKO3ZwWEucqmW8Tq xd2PZSVoTRmibAh3giG7JPBE2ndDM/+j1GM48zucJyesSoR/NwOIyNEH0eChDCZx bmtJyqYydOFt3lidRp3xSlMiIJ6dzMoJLlX2vG0D1B/FKxcdHVkd4HLEz8AOsOzf oF/trZiMPlJjrX7SNeA4EsPv34gyQCIztQVoag1OxrnR89vNr7ASOcgiOV1hJyuD h+Is1NyaQMguIu5pebdwIr1z/qGwZOLc+VQG6gyjNwrprfapb0zka6DfOLWJ+4Ea HQrwJ6sUpUwoGuXbiPBpSxhvAEpGcuzx -----END CERTIFICATE-----Generated at Thu Jun 12 20:35:42 2025 by rpki-client