$ rpki-client -vvf rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft File: xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft (raw, json) Hash identifier: 9umO68hJbK6XZQrcm2YT1GNMr11BZmlzc8QZPVt6we8= Subject key identifier: AC:F5:AE:87:F1:40:D3:52:82:58:DA:FD:97:DC:52:9F:C2:EA:25:46 Authority key identifier: C5:45:25:E9:70:5B:D6:9D:61:42:4D:BE:E7:B0:49:3F:5F:D6:F0:A4 Certificate issuer: /CN=A912D1D5/serialNumber=C54525E9705BD69D61424DBEE7B0493F5FD6F0A4 Certificate serial: 01A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUUl6XBb1p1hQk2-57BJP1_W8KQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft Manifest number: 019B Signing time: Thu 15 May 2025 02:56:47 +0000 Manifest this update: Thu 15 May 2025 02:56:47 +0000 Manifest next update: Thu 22 May 2025 02:56:47 +0000 Files and hashes: 1: xUUl6XBb1p1hQk2-57BJP1_W8KQ.crl (hash: ejObmZm/UTh5ipT7fObMIvWuQ5NLYJ6WwYzMvZ+n6PE=) 2: 19E19DA0E5CE11EDB697BC74C4F9AE02.roa (hash: 8oKi9g3FW28uCT296akypss1lnTC3S8VPwt27zeBIKU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.crl rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUUl6XBb1p1hQk2-57BJP1_W8KQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 02:56:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 421 (0x1a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D1D5, serialNumber=C54525E9705BD69D61424DBEE7B0493F5FD6F0A4 Validity Not Before: May 15 02:56:47 2025 GMT Not After : May 22 02:56:47 2025 GMT Subject: CN=682557ef-3227 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ec:a7:f6:7d:b2:32:04:a2:91:d9:cd:20:d3: 51:44:76:ab:9a:45:7c:c0:0e:da:9f:29:62:e9:00: 55:14:fa:86:49:35:c0:b0:5c:a1:e1:c9:65:f5:69: 57:40:0e:91:0c:86:79:e1:4d:04:d0:fd:15:2c:6f: cb:29:20:d6:60:15:dd:ee:cb:ee:b8:94:cf:72:57: 7f:db:8d:95:b6:d5:da:6f:d2:24:59:36:29:98:dc: 47:57:cb:7d:de:bb:f4:50:f2:47:8e:5c:2d:94:4d: ed:9c:4c:18:2f:ef:db:1a:47:59:a6:9c:da:6a:4a: 61:e8:84:be:60:cc:49:d5:2c:59:2d:d6:d8:12:5a: 95:fe:0c:62:53:92:a9:78:53:e7:43:c8:7f:d8:2d: 24:06:d7:1c:1a:56:c2:9a:d1:37:7a:d8:c5:c8:45: 64:e0:84:38:b1:3c:60:a6:33:af:93:55:57:d8:95: cd:b4:df:09:65:89:a5:af:6f:22:32:17:e9:ab:74: 50:8a:6d:18:d6:c8:36:47:69:a5:e3:d8:f5:b0:c9: 0b:93:0e:59:cb:97:02:df:c0:f1:35:23:03:98:f8: 82:af:8f:d4:bf:b9:3b:ad:30:d8:d7:af:b7:af:43: a8:71:01:65:cd:a1:99:85:14:3c:c6:a0:ca:b6:f5: a3:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:F5:AE:87:F1:40:D3:52:82:58:DA:FD:97:DC:52:9F:C2:EA:25:46 X509v3 Authority Key Identifier: keyid:C5:45:25:E9:70:5B:D6:9D:61:42:4D:BE:E7:B0:49:3F:5F:D6:F0:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUUl6XBb1p1hQk2-57BJP1_W8KQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:b9:e3:22:79:63:d5:20:8a:f6:d2:08:cd:3c:f3:f8:89:58: 69:97:01:ea:d8:05:ac:2a:79:31:f6:0c:18:99:b3:cc:33:7c: 03:40:a7:7c:ff:e1:04:51:39:d3:e5:2b:f1:33:ce:7b:72:3d: a3:08:fd:41:9f:8d:54:33:4c:d6:1f:2d:98:94:d9:cc:8e:b3: 72:cd:32:8e:b8:6f:91:03:45:ab:06:78:68:a8:d4:6c:36:64: 05:ab:d9:12:59:7d:03:db:91:4b:41:f3:fe:75:87:4f:7b:0a: a2:b8:63:f9:0f:ba:03:8f:7a:60:fb:2f:19:64:be:02:b7:57: 65:0f:d2:04:89:40:2f:ff:9a:6d:8e:86:81:68:ef:53:53:30: a5:97:0f:48:2f:72:fe:6f:40:90:e3:37:35:53:0a:42:e1:29: 3d:87:c4:02:51:f1:30:cf:76:18:2a:3b:c4:72:cc:4c:31:41: e2:a3:f3:b3:f8:3f:d0:df:50:23:57:9a:e9:97:c4:1f:b0:2f: 8a:82:ac:99:20:44:03:df:b2:6c:26:bd:27:dd:d2:67:3e:01: fc:20:9a:0e:3a:08:fb:df:72:28:96:fc:e4:43:31:5b:7b:b9: 1b:80:d1:6b:45:e8:d8:ac:89:f5:88:77:2f:04:bc:f4:22:3b: 2c:56:b4:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQxRDUxMTAvBgNVBAUTKEM1NDUyNUU5NzA1QkQ2OUQ2MTQyNERCRUU3QjA0OTNG NUZENkYwQTQwHhcNMjUwNTE1MDI1NjQ3WhcNMjUwNTIyMDI1NjQ3WjAYMRYwFAYD VQQDEw02ODI1NTdlZi0zMjI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuuyn9n2yMgSikdnNINNRRHarmkV8wA7anyli6QBVFPqGSTXAsFyh4cll9WlX QA6RDIZ54U0E0P0VLG/LKSDWYBXd7svuuJTPcld/242VttXab9IkWTYpmNxHV8t9 3rv0UPJHjlwtlE3tnEwYL+/bGkdZppzaakph6IS+YMxJ1SxZLdbYElqV/gxiU5Kp eFPnQ8h/2C0kBtccGlbCmtE3etjFyEVk4IQ4sTxgpjOvk1VX2JXNtN8JZYmlr28i Mhfpq3RQim0Y1sg2R2ml49j1sMkLkw5Zy5cC38DxNSMDmPiCr4/Uv7k7rTDY16+3 r0OocQFlzaGZhRQ8xqDKtvWjEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKz1rofx QNNSglja/ZfcUp/C6iVGMB8GA1UdIwQYMBaAFMVFJelwW9adYUJNvuewST9f1vCk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDFENS8zNDMzNjFFRUND OEMxMUVEQTRDMUExNDNDNEY5QUUwMi94VVVsNlhCYjFwMWhRazItNTdCSlAxX1c4 S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hVVWw2WEJiMXAxaFFrMi01N0JKUDFfVzhLUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDFENS8zNDMzNjFFRUNDOEMxMUVEQTRDMUExNDNDNEY5QUUwMi94VVVsNlhCYjFw MWhRazItNTdCSlAxX1c4S1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUueMieWPVIIr20gjNPPP4iVhplwHq2AWsKnkx9gwYmbPMM3wDQKd8 /+EEUTnT5SvxM857cj2jCP1Bn41UM0zWHy2YlNnMjrNyzTKOuG+RA0WrBnhoqNRs NmQFq9kSWX0D25FLQfP+dYdPewqiuGP5D7oDj3pg+y8ZZL4Ct1dlD9IEiUAv/5pt joaBaO9TUzCllw9IL3L+b0CQ4zc1UwpC4Sk9h8QCUfEwz3YYKjvEcsxMMUHio/Oz +D/Q31AjV5rpl8QfsC+KgqyZIEQD37JsJr0n3dJnPgH8IJoOOgj733IolvzkQzFb e7kbgNFrRejYrIn1iHcvBLz0IjssVrRc -----END CERTIFICATE-----Generated at Thu May 15 12:47:44 2025 by rpki-client