$ rpki-client -vvf rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.mft File: xiZYMphXjR1K9yc-vXkccjCjdEk.mft (raw, json) Hash identifier: pV8dXmxbwE4m8Z6arCPONMOZuDkeQedabrb48Kw7nig= Subject key identifier: E7:F7:32:1E:51:2B:37:E5:BB:B0:3F:EE:B0:9B:C9:06:FE:53:73:BA Authority key identifier: C6:26:58:32:98:57:8D:1D:4A:F7:27:3E:BD:79:1C:72:30:A3:74:49 Certificate issuer: /CN=A91186C2/serialNumber=C626583298578D1D4AF7273EBD791C7230A37449 Certificate serial: 40 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiZYMphXjR1K9yc-vXkccjCjdEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.mft Manifest number: 3F Signing time: Tue 13 May 2025 06:41:22 +0000 Manifest this update: Tue 13 May 2025 06:41:21 +0000 Manifest next update: Tue 20 May 2025 06:41:21 +0000 Files and hashes: 1: xiZYMphXjR1K9yc-vXkccjCjdEk.crl (hash: ub+Y5qP7LsSQ4xibgSdKf5R2EYwNXBtMuFPvh5DSXXw=) 2: 7DFFCDA4D17F11EF8FAE452BC4F9AE02.roa (hash: 8Wzv5veel/E+M5qspAlwBsfA0pAvjm21LyceiyRo5cA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.crl rsync://rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiZYMphXjR1K9yc-vXkccjCjdEk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64 (0x40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91186C2, serialNumber=C626583298578D1D4AF7273EBD791C7230A37449 Validity Not Before: May 13 06:41:21 2025 GMT Not After : May 20 06:41:21 2025 GMT Subject: CN=6822e991-5510 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:92:5c:0d:39:56:59:91:32:64:80:fb:0f:82: 89:43:1f:90:51:e3:85:7a:5a:16:75:c6:63:41:aa: a7:3e:ba:77:de:5d:11:c5:d9:a8:d9:1c:df:6d:98: 85:72:10:ec:91:29:ee:a9:73:28:6f:c7:f2:43:bd: d1:80:7b:0f:c8:84:11:0b:a7:c1:0f:f6:24:c1:65: 92:3b:c6:33:69:f2:b5:a2:09:ca:15:b1:e4:bc:18: 7f:3d:24:13:42:ac:18:80:e4:f3:9b:e7:a0:39:55: 90:16:33:a3:e7:34:67:fe:5c:36:bc:dd:29:4f:59: c9:78:97:fc:3b:81:e1:3e:12:ae:73:b2:fc:4c:0e: cf:88:cf:be:c5:ed:74:ae:3f:d5:33:9f:a9:cd:5c: 20:90:22:7f:e5:0d:ad:c3:2e:70:b0:be:8a:b3:75: 97:62:ab:be:be:08:25:f3:46:f7:af:b5:53:8d:e1: 45:0b:cc:90:51:b7:c1:b7:42:bb:2c:ca:72:12:20: 9e:e2:92:20:90:68:75:12:bb:5e:92:c3:f7:eb:99: c5:e9:dd:ac:70:5a:ad:d3:5d:23:7d:8d:7f:ab:19: fd:14:c8:45:b3:e4:ea:35:17:74:ec:79:13:84:2b: b8:f5:40:22:bc:8c:d6:76:f9:8c:8e:02:e5:0e:44: b2:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:F7:32:1E:51:2B:37:E5:BB:B0:3F:EE:B0:9B:C9:06:FE:53:73:BA X509v3 Authority Key Identifier: keyid:C6:26:58:32:98:57:8D:1D:4A:F7:27:3E:BD:79:1C:72:30:A3:74:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiZYMphXjR1K9yc-vXkccjCjdEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:5b:b5:f2:28:e2:78:c7:72:2e:4b:cd:61:f9:7c:a1:e3:fc: 97:fa:bf:27:d4:65:f8:0d:03:0c:63:cf:52:3c:2d:5b:d8:0e: 6b:05:bc:9a:0d:9e:98:8f:90:47:56:47:61:c1:23:35:db:2f: db:79:56:63:65:53:22:63:97:a1:e9:98:2f:98:61:53:c4:5b: 47:8d:ef:ec:bf:61:49:64:da:45:11:e0:e4:44:3b:51:2f:00: f6:f0:cb:bf:cb:36:c2:15:30:c0:a3:63:d9:59:a5:3c:c7:0e: 3c:1e:ca:90:0a:23:38:b0:a5:ff:2c:fe:af:b2:21:d7:62:cb: ad:f4:a1:1b:1f:69:e0:45:ee:40:18:27:81:96:b3:7e:7b:88: ab:86:c8:68:cc:fd:d0:17:c5:9a:42:f9:b1:25:78:5f:e1:c2: 7a:ee:95:ce:23:a3:79:46:9a:b0:e7:dd:2d:95:4b:ed:11:fa: 10:2b:c5:64:50:67:0a:f1:07:63:c2:16:d5:ec:83:2c:d0:92: 64:8e:1e:16:17:95:06:d4:55:c6:28:de:31:79:e3:51:32:c3: b6:37:0f:89:6d:bc:04:f4:59:54:91:e3:18:3e:ce:45:f6:8f: 0e:ee:dc:39:0a:4e:1e:0c:95:bf:1a:a3:07:ff:3a:21:c8:90: 7d:b9:35:66 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx ODZDMjExMC8GA1UEBRMoQzYyNjU4MzI5ODU3OEQxRDRBRjcyNzNFQkQ3OTFDNzIz MEEzNzQ0OTAeFw0yNTA1MTMwNjQxMjFaFw0yNTA1MjAwNjQxMjFaMBgxFjAUBgNV BAMTDTY4MjJlOTkxLTU1MTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJklwNOVZZkTJkgPsPgolDH5BR44V6WhZ1xmNBqqc+unfeXRHF2ajZHN9tmIVy EOyRKe6pcyhvx/JDvdGAew/IhBELp8EP9iTBZZI7xjNp8rWiCcoVseS8GH89JBNC rBiA5POb56A5VZAWM6PnNGf+XDa83SlPWcl4l/w7geE+Eq5zsvxMDs+Iz77F7XSu P9Uzn6nNXCCQIn/lDa3DLnCwvoqzdZdiq76+CCXzRvevtVON4UULzJBRt8G3Qrss ynISIJ7ikiCQaHUSu16Sw/frmcXp3axwWq3TXSN9jX+rGf0UyEWz5Oo1F3TseROE K7j1QCK8jNZ2+YyOAuUORLKHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU5/cyHlEr N+W7sD/usJvJBv5Tc7owHwYDVR0jBBgwFoAUxiZYMphXjR1K9yc+vXkccjCjdEkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE4NkMyLzFEMkYwNzI0RDE3 RjExRUZCMzg0NjkyOEM0RjlBRTAyL3hpWllNcGhYalIxSzl5Yy12WGtjY2pDamRF ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIveGlaWU1waFhqUjFLOXljLXZYa2NjakNqZEVrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE4 NkMyLzFEMkYwNzI0RDE3RjExRUZCMzg0NjkyOEM0RjlBRTAyL3hpWllNcGhYalIx Szl5Yy12WGtjY2pDamRFay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJxbtfIo4njHci5LzWH5fKHj/Jf6vyfUZfgNAwxjz1I8LVvYDmsFvJoN npiPkEdWR2HBIzXbL9t5VmNlUyJjl6HpmC+YYVPEW0eN7+y/YUlk2kUR4OREO1Ev APbwy7/LNsIVMMCjY9lZpTzHDjweypAKIziwpf8s/q+yIddiy630oRsfaeBF7kAY J4GWs357iKuGyGjM/dAXxZpC+bEleF/hwnrulc4jo3lGmrDn3S2VS+0R+hArxWRQ ZwrxB2PCFtXsgyzQkmSOHhYXlQbUVcYo3jF541Eyw7Y3D4ltvAT0WVSR4xg+zkX2 jw7u3DkKTh4Mlb8aowf/OiHIkH25NWY= -----END CERTIFICATE-----Generated at Tue May 13 11:37:28 2025 by rpki-client