$ rpki-client -vvf rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.mft File: xG1ZE_bCUMau4vMnRTXOhmKVufo.mft (raw, json) Hash identifier: ZtWyanPbbma4LufY7L9FKrdhTGVLT0hNcRDtAUCSkMU= Subject key identifier: 84:EB:A6:2E:CA:11:BD:EB:05:D1:90:56:28:9E:44:79:52:65:98:58 Authority key identifier: C4:6D:59:13:F6:C2:50:C6:AE:E2:F3:27:45:35:CE:86:62:95:B9:FA Certificate issuer: /CN=A9148B83/serialNumber=C46D5913F6C250C6AEE2F3274535CE866295B9FA Certificate serial: 0658 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xG1ZE_bCUMau4vMnRTXOhmKVufo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.mft Manifest number: 064D Signing time: Fri 16 May 2025 22:49:16 +0000 Manifest this update: Fri 16 May 2025 22:49:15 +0000 Manifest next update: Fri 23 May 2025 22:49:15 +0000 Files and hashes: 1: xG1ZE_bCUMau4vMnRTXOhmKVufo.crl (hash: 4qxMwzQyPDnEImfWecTnjMnb/vbFzDDFRblvTR2bbT0=) 2: 65FE79B8885D11EB81454E41C4F9AE02.roa (hash: 327ah/e9fUSF5H9j9NGNYuwKtrueHyZEroURzg2Xyh8=) 3: 009E969E885C11EB88A7723DC4F9AE02.roa (hash: 10SP9rtLMhnfiCiDsyU/nUUSFenGWa1NBToGV5Ae6kE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.crl rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xG1ZE_bCUMau4vMnRTXOhmKVufo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 22:49:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1624 (0x658) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148B83, serialNumber=C46D5913F6C250C6AEE2F3274535CE866295B9FA Validity Not Before: May 16 22:49:15 2025 GMT Not After : May 23 22:49:15 2025 GMT Subject: CN=6827c0ec-a375 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:01:31:8b:14:c0:fd:dd:e8:1f:98:a0:23:9d: 6e:34:e4:22:d8:46:37:d9:87:48:4d:13:5e:95:23: 71:4a:38:71:14:17:73:70:ec:a4:f9:0a:5c:ea:9a: f1:ea:b5:f5:e7:cb:7f:e1:78:19:03:53:45:ba:eb: a0:9a:49:40:c0:12:21:46:d6:5c:f2:06:73:e9:1b: 6c:b5:38:94:92:73:64:35:b5:a0:ce:1a:15:73:d6: e4:eb:e3:2f:c0:af:56:9f:1c:ea:15:05:ea:d0:aa: 1d:55:65:b1:67:7c:ad:88:1a:30:79:18:23:1b:80: 14:9f:a0:48:f4:60:36:2d:70:b0:ee:e7:ff:e9:2f: 41:48:bc:a8:4e:01:e2:46:c7:6a:85:fe:f2:77:b5: 6f:dd:19:b8:a2:c8:51:71:dc:24:51:2f:ec:20:6f: 19:f2:29:16:cc:da:16:a1:f3:3d:38:fb:08:65:d7: 85:17:fd:07:54:8a:7e:35:21:fc:1c:a0:67:6f:8d: 6b:a3:26:b7:88:f1:c4:9e:46:66:17:5c:f7:f8:0b: 35:f1:53:80:9f:c6:68:48:53:8a:ea:d0:25:4b:8d: 4e:8d:e4:4e:6a:b0:b0:81:f6:d4:3a:4b:1e:46:96: a1:1f:c1:31:d9:32:88:0c:ec:1f:c8:ca:69:c5:9e: d0:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:EB:A6:2E:CA:11:BD:EB:05:D1:90:56:28:9E:44:79:52:65:98:58 X509v3 Authority Key Identifier: keyid:C4:6D:59:13:F6:C2:50:C6:AE:E2:F3:27:45:35:CE:86:62:95:B9:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xG1ZE_bCUMau4vMnRTXOhmKVufo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:46:5f:0a:79:c5:70:a6:4f:f6:84:6f:20:56:79:64:9c:13: 40:8e:b0:e5:36:4c:ac:22:a3:85:9f:ae:d5:0f:8a:76:1c:f6: c8:c8:17:9f:15:0b:36:9e:47:ee:31:d2:c0:ef:c6:5b:9b:6a: 33:13:05:47:6e:20:dc:6c:f7:65:4c:7f:17:a6:ab:17:ff:f4: f0:7f:d0:ab:41:04:44:c9:17:9e:22:94:73:2f:23:d7:52:65: 68:5b:dc:3d:67:50:cb:65:59:42:5c:c9:80:bb:bb:0d:74:64: 80:f4:9d:e7:61:c4:25:b7:b1:a5:09:0d:d8:0e:16:b0:c4:f8: dc:4b:76:07:1d:03:6c:94:75:71:39:51:13:13:00:53:82:db: 1f:7a:54:f2:b3:a6:3e:8e:a3:76:52:d9:23:47:66:bb:4e:6e: 97:2a:74:9f:d7:ab:9a:c4:0e:89:04:d5:63:c5:ac:20:2e:b6: 9d:dc:bc:54:1d:de:e2:7f:df:07:22:f5:1a:0f:b8:f1:82:4c: 69:79:c7:88:fe:6e:0d:93:04:9d:3b:55:fe:cd:b5:69:2b:7d: c1:34:5c:4d:a9:e3:64:32:70:78:57:e6:ba:c4:3c:3a:44:d3: 08:03:1f:4d:11:13:3b:9d:39:17:2c:62:af:d7:97:7b:96:92: 5e:08:c0:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhCODMxMTAvBgNVBAUTKEM0NkQ1OTEzRjZDMjUwQzZBRUUyRjMyNzQ1MzVDRTg2 NjI5NUI5RkEwHhcNMjUwNTE2MjI0OTE1WhcNMjUwNTIzMjI0OTE1WjAYMRYwFAYD VQQDEw02ODI3YzBlYy1hMzc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuAExixTA/d3oH5igI51uNOQi2EY32YdITRNelSNxSjhxFBdzcOyk+Qpc6prx 6rX158t/4XgZA1NFuuugmklAwBIhRtZc8gZz6RtstTiUknNkNbWgzhoVc9bk6+Mv wK9WnxzqFQXq0KodVWWxZ3ytiBoweRgjG4AUn6BI9GA2LXCw7uf/6S9BSLyoTgHi Rsdqhf7yd7Vv3Rm4oshRcdwkUS/sIG8Z8ikWzNoWofM9OPsIZdeFF/0HVIp+NSH8 HKBnb41roya3iPHEnkZmF1z3+As18VOAn8ZoSFOK6tAlS41OjeROarCwgfbUOkse RpahH8Ex2TKIDOwfyMppxZ7QtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFITrpi7K Eb3rBdGQViieRHlSZZhYMB8GA1UdIwQYMBaAFMRtWRP2wlDGruLzJ0U1zoZilbn6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEI4My83N0FBNDE0Njg3 RTExMUVCQjUwMUNCMjVDNEY5QUUwMi94RzFaRV9iQ1VNYXU0dk1uUlRYT2htS1Z1 Zm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hHMVpFX2JDVU1hdTR2TW5SVFhPaG1LVnVmby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEI4My83N0FBNDE0Njg3RTExMUVCQjUwMUNCMjVDNEY5QUUwMi94RzFaRV9iQ1VN YXU0dk1uUlRYT2htS1Z1Zm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjRl8KecVwpk/2hG8gVnlknBNAjrDlNkysIqOFn67VD4p2HPbIyBef FQs2nkfuMdLA78Zbm2ozEwVHbiDcbPdlTH8XpqsX//Twf9CrQQREyReeIpRzLyPX UmVoW9w9Z1DLZVlCXMmAu7sNdGSA9J3nYcQlt7GlCQ3YDhawxPjcS3YHHQNslHVx OVETEwBTgtsfelTys6Y+jqN2UtkjR2a7Tm6XKnSf16uaxA6JBNVjxawgLrad3LxU Hd7if98HIvUaD7jxgkxpeceI/m4NkwSdO1X+zbVpK33BNFxNqeNkMnB4V+a6xDw6 RNMIAx9NERM7nTkXLGKv15d7lpJeCMAW -----END CERTIFICATE-----Generated at Sat May 17 14:03:11 2025 by rpki-client