$ rpki-client -vvf rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft File: XQ11AElW7cyrm4QnGnNA5jhV_4o.mft (raw, json) Hash identifier: XxuK8U0qukz8LR6EdjWCsekyJgxcOo26JonXVzyYIqo= Subject key identifier: 76:59:4A:68:5C:0A:2B:BF:4F:26:0D:88:A3:8E:DE:A3:AA:5D:94:FB Authority key identifier: 5D:0D:75:00:49:56:ED:CC:AB:9B:84:27:1A:73:40:E6:38:55:FF:8A Certificate issuer: /CN=A912BC39/serialNumber=5D0D75004956EDCCAB9B84271A7340E63855FF8A Certificate serial: 0714 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XQ11AElW7cyrm4QnGnNA5jhV_4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft Manifest number: 0708 Signing time: Wed 14 May 2025 21:58:59 +0000 Manifest this update: Wed 14 May 2025 21:58:59 +0000 Manifest next update: Wed 21 May 2025 21:58:59 +0000 Files and hashes: 1: XQ11AElW7cyrm4QnGnNA5jhV_4o.crl (hash: bliOTbisMxhJKxlVudrI3sTViXRk4W/nlIsYCFlfKFI=) 2: 8EBA772E3F2B11EB87759716C4F9AE02.roa (hash: IwbM0qanfV+e3+145YunmnHjT+laZw+y8+B4ZLa5xus=) 3: 688EAE1E8A1911EC94921D85C4F9AE02.roa (hash: l86iuU4A1knmyjZ3msJqjoeK6VLpJ7MZC8Ec9/M8Wvc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.crl rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XQ11AElW7cyrm4QnGnNA5jhV_4o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 21:58:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1812 (0x714) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BC39, serialNumber=5D0D75004956EDCCAB9B84271A7340E63855FF8A Validity Not Before: May 14 21:58:59 2025 GMT Not After : May 21 21:58:59 2025 GMT Subject: CN=68251223-ec18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:58:81:c2:ff:8b:b9:17:b7:1d:5a:c8:16:db: c1:cc:ec:c5:bd:91:14:0c:63:3b:31:b2:18:90:d0: 5c:bd:11:89:31:1f:52:3e:03:0a:23:78:79:ba:30: 30:0f:b2:ce:c1:d5:58:40:3d:2a:b0:55:a0:26:12: 95:3c:1c:f4:90:3b:f0:33:6e:f7:1f:6c:68:8f:3a: d3:d2:08:df:2c:e9:e8:2e:1e:4a:dc:3b:31:78:33: 9b:22:96:1d:48:d6:a4:e1:d7:2c:f5:4b:9e:9d:a0: 3e:d6:05:04:83:e2:59:ea:9a:9f:4e:94:03:c7:9d: 20:55:77:85:ee:df:b4:07:cf:8d:3e:64:ad:b0:7e: 2f:56:c8:f9:f3:ea:39:7f:7a:a2:40:6e:e7:39:d6: 6d:cb:9d:c6:a4:8b:52:b9:e6:61:36:49:b4:46:47: b0:be:38:fc:fa:92:7f:7c:03:8b:4a:01:84:95:7c: 98:0e:a3:a1:e1:da:46:da:63:13:0e:d2:c0:c2:1b: f1:51:83:f3:c0:88:3e:0f:fb:ae:e0:bc:d1:34:e9: 60:8c:e0:55:92:4b:64:2e:07:81:67:33:51:08:3c: 40:1b:86:43:97:f3:cb:3d:69:c1:b6:e1:8c:2e:00: 94:e3:70:5e:c4:6b:83:0f:51:9a:0f:88:69:5c:14: e6:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:59:4A:68:5C:0A:2B:BF:4F:26:0D:88:A3:8E:DE:A3:AA:5D:94:FB X509v3 Authority Key Identifier: keyid:5D:0D:75:00:49:56:ED:CC:AB:9B:84:27:1A:73:40:E6:38:55:FF:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XQ11AElW7cyrm4QnGnNA5jhV_4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:35:e6:7b:12:f2:3b:ef:19:fa:45:7c:01:de:11:17:cd:93: a8:8a:dc:5b:90:31:e4:31:0c:d4:d0:99:f7:cc:67:70:43:35: ea:a0:9a:86:28:95:b4:a2:7e:94:d9:68:61:79:64:ab:3d:d3: 4c:4f:18:53:e9:ac:15:e7:83:e7:5c:40:c6:85:e0:86:f3:4b: d3:5b:76:26:73:2a:ed:a1:00:73:de:b1:10:5a:c2:62:e4:9b: c1:a7:d2:95:e8:35:89:d9:3e:b2:ac:f4:2c:e9:a4:58:ac:6b: 2b:07:41:a2:c4:bb:f5:1c:65:33:b0:cf:a4:79:cd:db:bd:55: da:9d:29:1e:31:96:a6:4a:38:10:f3:ca:42:05:40:63:f9:f8: d0:ec:da:49:35:73:f2:c1:3a:e5:7a:93:28:a1:6e:5d:8e:7a: fa:04:a1:45:8c:a3:97:4f:4f:b9:c1:19:c2:95:d1:d2:e0:82: ab:df:7d:d0:bf:91:90:ac:98:8b:f9:87:3c:59:09:99:cd:40: cd:3c:af:0c:47:02:4a:90:23:1d:08:ed:c9:d2:31:70:b3:60: 4b:53:2b:b4:06:a5:48:49:cf:55:67:ff:1c:e0:1b:b1:98:3e: 50:f0:51:3f:32:80:ab:ce:02:3f:6a:a1:e1:0a:cc:79:fd:71: 21:81:fa:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBxQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJDMzkxMTAvBgNVBAUTKDVEMEQ3NTAwNDk1NkVEQ0NBQjlCODQyNzFBNzM0MEU2 Mzg1NUZGOEEwHhcNMjUwNTE0MjE1ODU5WhcNMjUwNTIxMjE1ODU5WjAYMRYwFAYD VQQDEw02ODI1MTIyMy1lYzE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArFiBwv+LuRe3HVrIFtvBzOzFvZEUDGM7MbIYkNBcvRGJMR9SPgMKI3h5ujAw D7LOwdVYQD0qsFWgJhKVPBz0kDvwM273H2xojzrT0gjfLOnoLh5K3DsxeDObIpYd SNak4dcs9UuenaA+1gUEg+JZ6pqfTpQDx50gVXeF7t+0B8+NPmStsH4vVsj58+o5 f3qiQG7nOdZty53GpItSueZhNkm0Rkewvjj8+pJ/fAOLSgGElXyYDqOh4dpG2mMT DtLAwhvxUYPzwIg+D/uu4LzRNOlgjOBVkktkLgeBZzNRCDxAG4ZDl/PLPWnBtuGM LgCU43BexGuDD1GaD4hpXBTmkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHZZSmhc Ciu/TyYNiKOO3qOqXZT7MB8GA1UdIwQYMBaAFF0NdQBJVu3Mq5uEJxpzQOY4Vf+K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkMzOS9CMzdCMTU4RTNG MjkxMUVCOUI5QTIzMTRDNEY5QUUwMi9YUTExQUVsVzdjeXJtNFFuR25OQTVqaFZf NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hRMTFBRWxXN2N5cm00UW5Hbk5BNWpoVl80by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkMzOS9CMzdCMTU4RTNGMjkxMUVCOUI5QTIzMTRDNEY5QUUwMi9YUTExQUVsVzdj eXJtNFFuR25OQTVqaFZfNG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLNeZ7EvI77xn6RXwB3hEXzZOoitxbkDHkMQzU0Jn3zGdwQzXqoJqG KJW0on6U2WhheWSrPdNMTxhT6awV54PnXEDGheCG80vTW3YmcyrtoQBz3rEQWsJi 5JvBp9KV6DWJ2T6yrPQs6aRYrGsrB0GixLv1HGUzsM+kec3bvVXanSkeMZamSjgQ 88pCBUBj+fjQ7NpJNXPywTrlepMooW5djnr6BKFFjKOXT0+5wRnCldHS4IKr333Q v5GQrJiL+Yc8WQmZzUDNPK8MRwJKkCMdCO3J0jFws2BLUyu0BqVISc9VZ/8c4Bux mD5Q8FE/MoCrzgI/aqHhCsx5/XEhgfqb -----END CERTIFICATE-----Generated at Fri May 16 07:31:14 2025 by rpki-client