$ rpki-client -vvf rpki.apnic.net/member_repository/A912698E/095F6C8C267C11F09677F80BC4F9AE02/XbdbLflNBEdKbl4tS3jMCEv8Kmw.mft File: XbdbLflNBEdKbl4tS3jMCEv8Kmw.mft (raw, json) Hash identifier: 9xCqlqpndH9Tc3bJmD8GKbYRC2Lixd1HbDc/UANIzVg= Subject key identifier: E8:5F:12:28:B6:F8:CC:9C:0E:E3:92:08:8C:79:68:E4:AA:A7:C1:D5 Authority key identifier: 5D:B7:5B:2D:F9:4D:04:47:4A:6E:5E:2D:4B:78:CC:08:4B:FC:2A:6C Certificate issuer: /CN=A912698E/serialNumber=5DB75B2DF94D04474A6E5E2D4B78CC084BFC2A6C Certificate serial: 08 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XbdbLflNBEdKbl4tS3jMCEv8Kmw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912698E/095F6C8C267C11F09677F80BC4F9AE02/XbdbLflNBEdKbl4tS3jMCEv8Kmw.mft Manifest number: 07 Signing time: Sat 10 May 2025 17:36:16 +0000 Manifest this update: Sat 10 May 2025 17:36:16 +0000 Manifest next update: Sat 17 May 2025 17:36:16 +0000 Files and hashes: 1: XbdbLflNBEdKbl4tS3jMCEv8Kmw.crl (hash: rr0e6ovdMlHyF1JCIQylCcoSI8duHT+ZAK3clAdym7c=) 2: 87087F00267E11F09183092AC4F9AE02.roa (hash: vPD3MBlV+VYxtTk5npGCIsRmwvlSAFp0uTh8dXUbHV8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912698E/095F6C8C267C11F09677F80BC4F9AE02/XbdbLflNBEdKbl4tS3jMCEv8Kmw.crl rsync://rpki.apnic.net/member_repository/A912698E/095F6C8C267C11F09677F80BC4F9AE02/XbdbLflNBEdKbl4tS3jMCEv8Kmw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XbdbLflNBEdKbl4tS3jMCEv8Kmw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 17:36:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912698E, serialNumber=5DB75B2DF94D04474A6E5E2D4B78CC084BFC2A6C Validity Not Before: May 10 17:36:16 2025 GMT Not After : May 17 17:36:16 2025 GMT Subject: CN=681f8e90-f45a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:f4:46:99:89:cc:32:06:0e:bb:e9:b1:81:c2: cf:84:f8:81:93:7d:01:3a:f7:74:22:cb:9f:a9:21: 2b:22:3e:26:e6:b2:3a:1a:15:f1:b4:eb:15:68:4f: b3:13:3f:b3:14:b4:88:97:94:c1:97:2d:37:c7:0a: 30:3d:68:67:da:48:d4:1f:65:fa:28:f2:1d:03:8e: ed:8d:c1:1a:8c:9a:6f:ff:3b:79:c3:75:66:67:7c: 34:03:68:51:46:b8:7f:57:25:bf:5e:6e:7b:2b:11: 99:d7:a8:92:c4:b6:d8:42:b5:0d:d1:28:17:1d:5f: 6b:b8:43:16:41:1c:83:4d:b4:66:8b:50:73:98:76: 98:11:a9:dd:1d:ab:f7:57:43:f1:de:7f:9c:87:6f: 48:ba:7f:33:82:a6:35:0a:e1:cb:a6:e0:2c:a7:64: 32:a0:be:8d:18:b7:c1:ee:72:93:95:82:03:9f:47: c8:20:72:04:49:56:44:54:6c:b9:30:f4:aa:43:9b: 15:bb:77:a6:1f:78:04:00:01:84:9c:d8:95:88:58: 09:59:a8:95:c1:bd:c8:2d:40:0e:25:14:8d:60:9d: db:48:87:c1:d3:de:9a:7d:cc:40:bf:04:9c:c9:a6: 0d:31:41:93:90:66:ae:45:21:6b:e5:23:97:1c:53: 4d:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:5F:12:28:B6:F8:CC:9C:0E:E3:92:08:8C:79:68:E4:AA:A7:C1:D5 X509v3 Authority Key Identifier: keyid:5D:B7:5B:2D:F9:4D:04:47:4A:6E:5E:2D:4B:78:CC:08:4B:FC:2A:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912698E/095F6C8C267C11F09677F80BC4F9AE02/XbdbLflNBEdKbl4tS3jMCEv8Kmw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XbdbLflNBEdKbl4tS3jMCEv8Kmw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912698E/095F6C8C267C11F09677F80BC4F9AE02/XbdbLflNBEdKbl4tS3jMCEv8Kmw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:f7:93:93:74:7b:aa:a5:ac:d7:f5:2e:84:26:94:15:ba:0e: b1:e5:85:db:e8:c5:39:8a:e0:35:dd:f9:47:0a:1d:09:21:42: 05:b7:bb:81:43:c2:b2:71:61:f4:c3:d1:83:d6:92:ab:d4:7f: 66:79:64:20:23:99:5c:1e:72:3a:9e:7c:7c:cd:cf:9d:4f:64: 0b:e9:d7:c8:80:ac:56:f7:1d:6a:41:c6:c4:73:e9:d8:89:fa: e0:ba:03:2e:df:7c:e2:af:07:e4:24:ea:e5:f6:53:63:c6:44: 9f:2e:ce:89:73:77:40:8d:96:03:03:0e:ff:80:46:e2:14:21: 2c:1b:91:bd:76:24:ce:cc:cc:c7:5f:cf:b7:58:da:e8:82:9d: 44:77:91:c3:13:e9:fe:70:9c:fa:18:8b:cf:4f:49:72:2d:85: c0:49:28:25:f0:0d:f3:c1:a0:3d:9b:e9:89:e3:1b:b9:c2:6e: 96:34:cf:cb:7c:92:09:1e:c8:c1:37:bb:a7:fe:73:ba:12:a9: b2:e3:97:58:94:e4:52:12:11:3e:6b:d0:3b:2d:de:8a:ed:21: 6c:94:48:55:7d:9a:08:09:8b:c4:e3:c9:d6:15:46:c7:d5:9c: 94:ff:9e:5e:00:57:c9:a6:42:b6:95:62:f1:3b:59:f0:7a:06: ec:6e:b9:01 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy Njk4RTExMC8GA1UEBRMoNURCNzVCMkRGOTREMDQ0NzRBNkU1RTJENEI3OENDMDg0 QkZDMkE2QzAeFw0yNTA1MTAxNzM2MTZaFw0yNTA1MTcxNzM2MTZaMBgxFjAUBgNV BAMTDTY4MWY4ZTkwLWY0NWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDL9EaZicwyBg676bGBws+E+IGTfQE693Qiy5+pISsiPibmsjoaFfG06xVoT7MT P7MUtIiXlMGXLTfHCjA9aGfaSNQfZfoo8h0Dju2NwRqMmm//O3nDdWZnfDQDaFFG uH9XJb9ebnsrEZnXqJLEtthCtQ3RKBcdX2u4QxZBHINNtGaLUHOYdpgRqd0dq/dX Q/Hef5yHb0i6fzOCpjUK4cum4CynZDKgvo0Yt8HucpOVggOfR8ggcgRJVkRUbLkw 9KpDmxW7d6YfeAQAAYSc2JWIWAlZqJXBvcgtQA4lFI1gndtIh8HT3pp9zEC/BJzJ pg0xQZOQZq5FIWvlI5ccU01JAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU6F8SKLb4 zJwO45IIjHlo5KqnwdUwHwYDVR0jBBgwFoAUXbdbLflNBEdKbl4tS3jMCEv8Kmww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI2OThFLzA5NUY2QzhDMjY3 QzExRjA5Njc3RjgwQkM0RjlBRTAyL1hiZGJMZmxOQkVkS2JsNHRTM2pNQ0V2OEtt dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWGJkYkxmbE5CRWRLYmw0dFMzak1DRXY4S213LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI2 OThFLzA5NUY2QzhDMjY3QzExRjA5Njc3RjgwQkM0RjlBRTAyL1hiZGJMZmxOQkVk S2JsNHRTM2pNQ0V2OEttdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEz3k5N0e6qlrNf1LoQmlBW6DrHlhdvoxTmK4DXd+UcKHQkhQgW3u4FD wrJxYfTD0YPWkqvUf2Z5ZCAjmVwecjqefHzNz51PZAvp18iArFb3HWpBxsRz6diJ +uC6Ay7ffOKvB+Qk6uX2U2PGRJ8uzolzd0CNlgMDDv+ARuIUISwbkb12JM7MzMdf z7dY2uiCnUR3kcMT6f5wnPoYi89PSXIthcBJKCXwDfPBoD2b6YnjG7nCbpY0z8t8 kgkeyME3u6f+c7oSqbLjl1iU5FISET5r0Dst3ortIWyUSFV9mggJi8TjydYVRsfV nJT/nl4AV8mmQraVYvE7WfB6BuxuuQE= -----END CERTIFICATE-----Generated at Sun May 11 04:38:16 2025 by rpki-client