$ rpki-client -vvf rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.mft File: XJzBFCqQdWDNmfBuXdAt5OIulEU.mft (raw, json) Hash identifier: QHCvzizMzwwOJTxL5pLstMf15aVe9RJ78K/aNAsGl4U= Subject key identifier: A7:60:EC:24:49:6A:2A:5A:4B:A3:22:89:48:4A:54:16:D0:4F:C9:B6 Authority key identifier: 5C:9C:C1:14:2A:90:75:60:CD:99:F0:6E:5D:D0:2D:E4:E2:2E:94:45 Certificate issuer: /CN=A911636A/serialNumber=5C9CC1142A907560CD99F06E5DD02DE4E22E9445 Certificate serial: 01E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XJzBFCqQdWDNmfBuXdAt5OIulEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.mft Manifest number: 01DA Signing time: Tue 13 May 2025 02:06:09 +0000 Manifest this update: Tue 13 May 2025 02:06:09 +0000 Manifest next update: Tue 20 May 2025 02:06:09 +0000 Files and hashes: 1: XJzBFCqQdWDNmfBuXdAt5OIulEU.crl (hash: p7oR6196h7HzKVaBF1IVZ3HxrOcmZ7JSGcCwmw6mBD4=) 2: A3A7ADEAB19711EF8A23BC39C4F9AE02.roa (hash: Xxhg1IOUnWIosjBDDjlaAvNnXCEgOL/Rukp1auAELC4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.crl rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XJzBFCqQdWDNmfBuXdAt5OIulEU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 02:06:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 482 (0x1e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911636A, serialNumber=5C9CC1142A907560CD99F06E5DD02DE4E22E9445 Validity Not Before: May 13 02:06:09 2025 GMT Not After : May 20 02:06:09 2025 GMT Subject: CN=6822a911-d3f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:e4:14:08:fe:dc:bd:9e:4f:70:fe:bf:eb:59: aa:4b:75:1f:0e:a4:77:f1:7c:7a:72:7d:fe:fa:cb: 0f:a2:82:5d:6f:e3:7a:63:70:b3:89:d7:f3:96:09: b0:47:d6:96:38:f9:ba:22:e9:3c:72:d0:75:0f:9c: 06:45:b6:70:b4:85:25:8e:19:bb:6e:bf:f3:34:b8: 05:bd:93:2f:7c:cf:d3:ef:8d:d2:bf:cc:42:76:b4: ab:69:bc:10:2b:9f:b3:09:17:67:69:0d:db:2e:53: f8:a9:6c:e3:fd:ab:58:f5:25:81:91:2d:6a:19:15: 69:35:9e:6c:bd:40:a4:7c:a5:08:5b:14:24:e2:8b: fe:59:e3:c8:94:6f:3f:ae:69:53:13:7f:a0:8e:3c: 60:d9:36:01:c5:5e:29:cf:7c:c1:cc:c1:c1:90:50: 62:da:0c:a9:87:6e:ba:c0:70:59:3c:ef:89:3f:d5: 91:4f:90:36:25:89:dc:a6:9b:97:bd:d9:7e:f2:12: 47:0a:d9:77:e8:13:cf:3f:27:18:ee:04:38:f5:bb: 4c:91:8a:de:22:f6:73:ef:b3:15:65:72:85:a1:05: 1f:d0:a0:7d:01:7e:66:b6:02:d5:55:80:44:fd:77: ce:25:70:ee:9f:bf:30:a7:5a:30:42:9f:b9:b1:d4: ee:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:60:EC:24:49:6A:2A:5A:4B:A3:22:89:48:4A:54:16:D0:4F:C9:B6 X509v3 Authority Key Identifier: keyid:5C:9C:C1:14:2A:90:75:60:CD:99:F0:6E:5D:D0:2D:E4:E2:2E:94:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XJzBFCqQdWDNmfBuXdAt5OIulEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:16:0a:76:cd:09:16:63:99:39:b1:d9:71:96:c4:3f:d4:c6: ab:cc:ac:84:bc:8c:a6:8a:94:80:19:4e:ae:d0:96:47:d5:0b: 74:ad:bb:44:39:60:de:86:99:f3:4b:f9:3d:73:9b:e8:b4:ca: 41:29:c0:df:dd:7a:fd:76:11:d1:53:0a:d0:20:34:fb:4d:a1: da:38:de:58:1e:35:a7:d6:64:2e:12:3a:c5:72:4c:44:cb:24: 84:bb:04:b4:7d:7d:8d:30:d3:70:44:ba:50:aa:81:af:c7:4d: 79:ca:0f:2b:9c:40:b4:88:44:07:47:fa:02:50:82:59:b1:22: 3b:9b:a3:ca:43:fa:f3:6f:34:49:94:ea:34:8d:7d:09:d3:af: de:8c:03:51:f2:2e:f3:16:c0:ba:d4:1a:9d:a9:18:5e:11:7d: 65:a2:22:d4:ff:f9:90:c8:fd:ea:0a:2d:26:fd:2f:b9:62:59: 1a:72:04:48:08:33:d0:80:5c:f6:3d:84:c6:db:78:ae:84:6d: e3:61:6f:de:99:1c:8e:00:06:b3:7c:7b:58:f9:a9:f9:d6:99: e1:43:e7:82:0f:2c:d6:00:aa:c7:51:4a:6a:40:d8:f4:c3:fe: 79:0f:06:31:66:dd:87:27:18:b0:be:e5:db:f7:a9:18:73:d6: f7:33:27:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTYzNkExMTAvBgNVBAUTKDVDOUNDMTE0MkE5MDc1NjBDRDk5RjA2RTVERDAyREU0 RTIyRTk0NDUwHhcNMjUwNTEzMDIwNjA5WhcNMjUwNTIwMDIwNjA5WjAYMRYwFAYD VQQDEw02ODIyYTkxMS1kM2YzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAweQUCP7cvZ5PcP6/61mqS3UfDqR38Xx6cn3++ssPooJdb+N6Y3Czidfzlgmw R9aWOPm6Iuk8ctB1D5wGRbZwtIUljhm7br/zNLgFvZMvfM/T743Sv8xCdrSrabwQ K5+zCRdnaQ3bLlP4qWzj/atY9SWBkS1qGRVpNZ5svUCkfKUIWxQk4ov+WePIlG8/ rmlTE3+gjjxg2TYBxV4pz3zBzMHBkFBi2gyph266wHBZPO+JP9WRT5A2JYncppuX vdl+8hJHCtl36BPPPycY7gQ49btMkYreIvZz77MVZXKFoQUf0KB9AX5mtgLVVYBE /XfOJXDun78wp1owQp+5sdTuoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKdg7CRJ aipaS6MiiUhKVBbQT8m2MB8GA1UdIwQYMBaAFFycwRQqkHVgzZnwbl3QLeTiLpRF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjM2QS9CMEYzM0QyQTY2 RUUxMUVEQjNCNDFBNURDNEY5QUUwMi9YSnpCRkNxUWRXRE5tZkJ1WGRBdDVPSXVs RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hKekJGQ3FRZFdETm1mQnVYZEF0NU9JdWxFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjM2QS9CMEYzM0QyQTY2RUUxMUVEQjNCNDFBNURDNEY5QUUwMi9YSnpCRkNxUWRX RE5tZkJ1WGRBdDVPSXVsRVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCeFgp2zQkWY5k5sdlxlsQ/1MarzKyEvIymipSAGU6u0JZH1Qt0rbtE OWDehpnzS/k9c5votMpBKcDf3Xr9dhHRUwrQIDT7TaHaON5YHjWn1mQuEjrFckxE yySEuwS0fX2NMNNwRLpQqoGvx015yg8rnEC0iEQHR/oCUIJZsSI7m6PKQ/rzbzRJ lOo0jX0J06/ejANR8i7zFsC61BqdqRheEX1loiLU//mQyP3qCi0m/S+5YlkacgRI CDPQgFz2PYTG23iuhG3jYW/emRyOAAazfHtY+an51pnhQ+eCDyzWAKrHUUpqQNj0 w/55DwYxZt2HJxiwvuXb96kYc9b3Mye9 -----END CERTIFICATE-----Generated at Wed May 14 13:22:42 2025 by rpki-client