$ rpki-client -vvf rpki.apnic.net/member_repository/A913F927/AF5211FE00A211EA9A4E8A87C4F9AE02/xctXefg2BxxSgISGkWfLwa4IuRc.mft File: xctXefg2BxxSgISGkWfLwa4IuRc.mft (raw, json) Hash identifier: bGH997FrlKJxb2jb8Aa5Xgy1fUE4mPEvLbQKQBCDwPk= Subject key identifier: 85:A2:A1:26:32:45:79:BA:7F:AA:A8:32:31:99:C7:5E:EE:B8:2D:31 Authority key identifier: C5:CB:57:79:F8:36:07:1C:52:80:84:86:91:67:CB:C1:AE:08:B9:17 Certificate issuer: /CN=A913F927/serialNumber=C5CB5779F836071C528084869167CBC1AE08B917 Certificate serial: 0C4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xctXefg2BxxSgISGkWfLwa4IuRc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F927/AF5211FE00A211EA9A4E8A87C4F9AE02/xctXefg2BxxSgISGkWfLwa4IuRc.mft Manifest number: 0C4A Signing time: Sun 04 May 2025 18:13:32 +0000 Manifest this update: Sun 04 May 2025 18:13:31 +0000 Manifest next update: Sun 11 May 2025 18:13:31 +0000 Files and hashes: 1: xctXefg2BxxSgISGkWfLwa4IuRc.crl (hash: OotYfjVafHekM5sLCYsqPizOEYcZ9RvPetjvS0vXDBM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F927/AF5211FE00A211EA9A4E8A87C4F9AE02/xctXefg2BxxSgISGkWfLwa4IuRc.crl rsync://rpki.apnic.net/member_repository/A913F927/AF5211FE00A211EA9A4E8A87C4F9AE02/xctXefg2BxxSgISGkWfLwa4IuRc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xctXefg2BxxSgISGkWfLwa4IuRc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 18:13:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3151 (0xc4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F927, serialNumber=C5CB5779F836071C528084869167CBC1AE08B917 Validity Not Before: May 4 18:13:31 2025 GMT Not After : May 11 18:13:31 2025 GMT Subject: CN=6817ae4b-fac1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:d4:d0:47:5c:95:50:6a:79:f7:45:c1:05:a1: 35:1a:e6:3f:4e:99:1e:69:f6:cb:c6:9d:ea:f0:ab: 5c:b2:c0:b1:1f:ab:de:12:9f:5e:e2:99:9c:fa:d2: cd:06:7f:c6:2e:d7:36:e5:02:c9:05:78:56:0b:9c: b2:33:d9:e0:17:e5:cc:5d:de:88:10:c3:5e:60:92: 28:a0:ef:fc:d8:18:52:d9:f8:5e:0f:f7:73:82:89: c4:a4:d7:41:f1:7b:72:1c:07:25:f7:67:60:3e:01: 4f:ff:92:78:89:41:fe:a0:e3:7f:a3:a2:32:e5:6b: 59:ab:af:05:3a:bc:7f:f1:a7:70:12:2e:ef:11:e5: f5:6a:4b:11:47:59:21:09:a4:3d:2f:30:ce:4c:5a: a2:51:00:a7:14:6a:1f:43:32:f0:a2:63:ff:9c:88: 74:93:cf:1e:1f:14:a6:17:ee:5c:2f:a6:e6:17:d8: 2b:ab:59:17:61:2d:c0:84:d9:00:4b:1e:8d:54:5f: 9d:e8:01:fe:c1:98:77:3f:00:5d:aa:cb:89:84:cc: 15:63:b7:a9:72:0c:7a:e6:75:c8:7f:91:53:7e:89: 31:95:87:e1:75:49:55:1c:67:9f:a9:d9:af:c3:a6: bf:56:7f:35:15:ba:04:a9:b0:5f:15:96:e7:eb:7d: af:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:A2:A1:26:32:45:79:BA:7F:AA:A8:32:31:99:C7:5E:EE:B8:2D:31 X509v3 Authority Key Identifier: keyid:C5:CB:57:79:F8:36:07:1C:52:80:84:86:91:67:CB:C1:AE:08:B9:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F927/AF5211FE00A211EA9A4E8A87C4F9AE02/xctXefg2BxxSgISGkWfLwa4IuRc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xctXefg2BxxSgISGkWfLwa4IuRc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F927/AF5211FE00A211EA9A4E8A87C4F9AE02/xctXefg2BxxSgISGkWfLwa4IuRc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:3d:f8:1a:46:fd:44:81:f3:86:6f:f4:68:88:37:b7:c1:fb: 7b:35:a7:8c:e4:e5:59:cc:e9:8e:ee:3f:13:99:2a:5e:6b:74: 30:34:ff:ba:1f:55:98:41:5e:d1:b6:5d:3d:39:11:51:4a:00: 19:3d:fd:f0:c5:af:9a:46:9e:5f:36:17:52:8b:cc:87:36:61: 9a:c7:ab:a9:6a:32:b4:2c:80:7e:5e:a3:af:94:1f:43:81:db: e7:3b:32:4c:43:a9:c9:93:15:1f:a8:fe:44:45:1e:00:4b:61: b7:6c:88:01:92:bf:f1:01:4e:0a:3f:2f:f8:70:2b:1e:e1:8a: a0:31:fd:b0:58:a1:7b:80:c2:bf:c7:dd:2a:95:c5:7e:55:88: ab:70:cf:41:c6:20:25:80:c2:ba:b2:9c:a9:86:48:b6:50:fc: 42:50:00:1b:9f:79:f0:23:c8:21:29:9e:45:dc:fd:be:6f:ef: 6e:3a:dc:75:50:18:47:ff:9b:14:ba:78:7b:63:ea:df:59:af: e1:0a:57:88:ad:3b:ba:25:bb:c3:31:63:60:db:83:fd:1b:9a: 5b:ca:e8:a2:8c:77:45:81:7c:9b:ba:29:63:80:eb:8f:bd:fc: 05:e3:0a:55:d9:f3:33:ea:b4:7d:44:20:f5:41:d1:6a:fa:71: 77:e1:c4:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDE8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Y5MjcxMTAvBgNVBAUTKEM1Q0I1Nzc5RjgzNjA3MUM1MjgwODQ4NjkxNjdDQkMx QUUwOEI5MTcwHhcNMjUwNTA0MTgxMzMxWhcNMjUwNTExMTgxMzMxWjAYMRYwFAYD VQQDEw02ODE3YWU0Yi1mYWMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0NTQR1yVUGp590XBBaE1GuY/TpkeafbLxp3q8KtcssCxH6veEp9e4pmc+tLN Bn/GLtc25QLJBXhWC5yyM9ngF+XMXd6IEMNeYJIooO/82BhS2fheD/dzgonEpNdB 8XtyHAcl92dgPgFP/5J4iUH+oON/o6Iy5WtZq68FOrx/8adwEi7vEeX1aksRR1kh CaQ9LzDOTFqiUQCnFGofQzLwomP/nIh0k88eHxSmF+5cL6bmF9grq1kXYS3AhNkA Sx6NVF+d6AH+wZh3PwBdqsuJhMwVY7epcgx65nXIf5FTfokxlYfhdUlVHGefqdmv w6a/Vn81FboEqbBfFZbn632vSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIWioSYy RXm6f6qoMjGZx17uuC0xMB8GA1UdIwQYMBaAFMXLV3n4NgccUoCEhpFny8GuCLkX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjkyNy9BRjUyMTFGRTAw QTIxMUVBOUE0RThBODdDNEY5QUUwMi94Y3RYZWZnMkJ4eFNnSVNHa1dmTHdhNEl1 UmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hjdFhlZmcyQnh4U2dJU0drV2ZMd2E0SXVSYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjkyNy9BRjUyMTFGRTAwQTIxMUVBOUE0RThBODdDNEY5QUUwMi94Y3RYZWZnMkJ4 eFNnSVNHa1dmTHdhNEl1UmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIPfgaRv1EgfOGb/RoiDe3wft7NaeM5OVZzOmO7j8TmSpea3QwNP+6 H1WYQV7Rtl09ORFRSgAZPf3wxa+aRp5fNhdSi8yHNmGax6upajK0LIB+XqOvlB9D gdvnOzJMQ6nJkxUfqP5ERR4AS2G3bIgBkr/xAU4KPy/4cCse4YqgMf2wWKF7gMK/ x90qlcV+VYircM9BxiAlgMK6spyphki2UPxCUAAbn3nwI8ghKZ5F3P2+b+9uOtx1 UBhH/5sUunh7Y+rfWa/hCleIrTu6JbvDMWNg24P9G5pbyuiijHdFgXybuiljgOuP vfwF4wpV2fMz6rR9RCD1QdFq+nF34cTO -----END CERTIFICATE-----Generated at Mon May 5 03:32:11 2025 by rpki-client