$ rpki-client -vvf rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft File: xNdQnlMs4vbky06OXDwia6MVTm8.mft (raw, json) Hash identifier: 9eL3ZBsp/n9XD9w+6cWmNamkAKSEj0wvL7w/hazlqP8= Subject key identifier: C5:1B:02:36:D0:C3:D3:D3:F5:C0:59:4C:AE:43:CD:7D:6B:E1:71:E9 Authority key identifier: C4:D7:50:9E:53:2C:E2:F6:E4:CB:4E:8E:5C:3C:22:6B:A3:15:4E:6F Certificate issuer: /CN=A912AF0B/serialNumber=C4D7509E532CE2F6E4CB4E8E5C3C226BA3154E6F Certificate serial: 1095 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNdQnlMs4vbky06OXDwia6MVTm8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft Manifest number: 107A Signing time: Mon 12 May 2025 17:17:15 +0000 Manifest this update: Mon 12 May 2025 17:17:15 +0000 Manifest next update: Mon 19 May 2025 17:17:15 +0000 Files and hashes: 1: xNdQnlMs4vbky06OXDwia6MVTm8.crl (hash: TNKGj3mMgnFnQ35DcmPmBwGfaiHtlYJt59bHmcZJQEE=) 2: 21151EF0A8C411EC8F560C42C4F9AE02.roa (hash: eTNVjRr/aSchkaouKrk/Oq/42y0wRZtV7uyB0zYEbrA=) 3: 1803FFC65E5F11EBBE37FA4CC4F9AE02.roa (hash: eUt1E2TLbdx/xbzWyASK22uYzePTztkTbdss+ADEaLg=) 4: 9FC6F664BE2A11EFA17DA82CC4F9AE02.roa (hash: AaORu8sCMwbv8JHtt5/RekZXiyN9Tg46Q6eaQZHNsHU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.crl rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNdQnlMs4vbky06OXDwia6MVTm8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 17:17:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4245 (0x1095) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912AF0B, serialNumber=C4D7509E532CE2F6E4CB4E8E5C3C226BA3154E6F Validity Not Before: May 12 17:17:15 2025 GMT Not After : May 19 17:17:15 2025 GMT Subject: CN=68222d1b-a146 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:12:e2:f1:e6:12:44:b1:83:45:77:eb:80:74: 49:75:ba:71:99:80:f0:af:ae:4e:46:fe:9e:58:6f: 05:b9:a5:5d:38:65:fe:87:d4:b8:ee:7b:5c:95:27: ae:95:96:cc:71:f5:0b:db:15:04:24:e3:d9:d8:24: 8c:1b:c7:b2:f5:fd:3f:04:77:c3:f0:48:a7:7e:e3: 8c:c6:c9:4b:f7:1d:96:b3:26:6a:4d:40:2a:d7:dc: 55:d1:f8:d0:1f:6c:2c:74:5f:87:36:5b:89:ea:38: 03:f0:98:15:f2:6e:2d:2e:3d:b0:73:7d:96:17:47: 42:bd:31:50:b2:8f:42:6e:b2:f6:7b:f9:58:11:1b: 05:9d:dc:c9:58:3e:18:47:14:bb:49:a0:45:64:2a: 6e:eb:de:2c:41:3d:da:bf:eb:2d:ff:7c:0f:e3:b6: 50:a0:44:14:64:8f:a6:10:34:2f:15:5a:27:58:32: 57:9d:7e:9e:d7:be:bc:0c:2b:43:36:f8:3d:4c:cf: d0:31:3d:23:e5:6f:de:a6:83:ca:1e:74:f4:bd:28: 07:57:1e:79:1b:c5:26:83:ea:b8:ef:79:28:04:7c: 6a:3a:96:b3:9c:9e:c5:47:9a:7c:22:5f:42:8b:c0: 5d:6a:b0:c1:00:eb:68:7f:65:bd:b0:93:b4:c8:02: 5f:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:1B:02:36:D0:C3:D3:D3:F5:C0:59:4C:AE:43:CD:7D:6B:E1:71:E9 X509v3 Authority Key Identifier: keyid:C4:D7:50:9E:53:2C:E2:F6:E4:CB:4E:8E:5C:3C:22:6B:A3:15:4E:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNdQnlMs4vbky06OXDwia6MVTm8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:be:d1:c2:3c:6a:ce:98:15:9d:b1:70:b3:31:90:78:21:7b: 80:fa:a7:ac:25:df:29:ad:38:eb:15:6e:fa:70:18:e1:4e:ad: f8:ae:7f:10:15:00:fb:00:23:21:b8:21:e3:9f:b0:f2:3c:f0: d5:1c:e9:03:1a:73:65:00:6d:c5:1d:90:59:6a:56:b0:c5:e8: a3:54:88:3e:57:b9:42:08:65:5f:8c:7e:60:37:80:75:b7:72: 5a:65:28:7f:95:75:24:27:77:a4:97:83:b2:c0:40:6f:c2:f3: 13:b6:c0:1d:4c:34:f0:f1:2c:41:21:b5:16:60:61:6a:3c:9b: d6:26:aa:2c:cc:09:a6:1c:ce:a3:81:6e:d0:da:c8:6e:d7:97: ce:2f:fb:29:ec:35:31:22:5a:29:0c:ae:a9:25:91:47:6b:56: 82:d1:46:c1:bb:88:86:d5:0c:cf:15:df:a8:6b:26:70:7b:6b: 98:3f:bd:9e:50:35:17:0e:45:c9:2a:f1:4d:99:4f:b9:5a:43: f1:52:e3:8a:82:b4:11:29:7e:cb:af:b4:12:22:25:8e:23:3e: 9d:9f:f9:58:5b:56:6d:7c:17:ae:cf:34:a8:f6:3b:75:a5:51: 0f:76:b6:76:1e:94:fe:70:36:94:d5:2f:40:6e:47:5c:d2:a8: 9d:62:1b:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkFGMEIxMTAvBgNVBAUTKEM0RDc1MDlFNTMyQ0UyRjZFNENCNEU4RTVDM0MyMjZC QTMxNTRFNkYwHhcNMjUwNTEyMTcxNzE1WhcNMjUwNTE5MTcxNzE1WjAYMRYwFAYD VQQDEw02ODIyMmQxYi1hMTQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvxLi8eYSRLGDRXfrgHRJdbpxmYDwr65ORv6eWG8FuaVdOGX+h9S47ntclSeu lZbMcfUL2xUEJOPZ2CSMG8ey9f0/BHfD8EinfuOMxslL9x2WsyZqTUAq19xV0fjQ H2wsdF+HNluJ6jgD8JgV8m4tLj2wc32WF0dCvTFQso9CbrL2e/lYERsFndzJWD4Y RxS7SaBFZCpu694sQT3av+st/3wP47ZQoEQUZI+mEDQvFVonWDJXnX6e1768DCtD Nvg9TM/QMT0j5W/epoPKHnT0vSgHVx55G8Umg+q473koBHxqOpaznJ7FR5p8Il9C i8BdarDBAOtof2W9sJO0yAJfuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMUbAjbQ w9PT9cBZTK5DzX1r4XHpMB8GA1UdIwQYMBaAFMTXUJ5TLOL25MtOjlw8ImujFU5v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQUYwQi9CNTk0MTlEMjMy RUQxMUU5OUM5NTRDMjRDNEY5QUUwMi94TmRRbmxNczR2Ymt5MDZPWER3aWE2TVZU bTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hOZFFubE1zNHZia3kwNk9YRHdpYTZNVlRtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QUYwQi9CNTk0MTlEMjMyRUQxMUU5OUM5NTRDMjRDNEY5QUUwMi94TmRRbmxNczR2 Ymt5MDZPWER3aWE2TVZUbTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFvtHCPGrOmBWdsXCzMZB4IXuA+qesJd8prTjrFW76cBjhTq34rn8Q FQD7ACMhuCHjn7DyPPDVHOkDGnNlAG3FHZBZalawxeijVIg+V7lCCGVfjH5gN4B1 t3JaZSh/lXUkJ3ekl4OywEBvwvMTtsAdTDTw8SxBIbUWYGFqPJvWJqoszAmmHM6j gW7Q2shu15fOL/sp7DUxIlopDK6pJZFHa1aC0UbBu4iG1QzPFd+oayZwe2uYP72e UDUXDkXJKvFNmU+5WkPxUuOKgrQRKX7Lr7QSIiWOIz6dn/lYW1ZtfBeuzzSo9jt1 pVEPdrZ2HpT+cDaU1S9Abkdc0qidYhu4 -----END CERTIFICATE-----Generated at Tue May 13 22:32:01 2025 by rpki-client