$ rpki-client -vvf rpki.apnic.net/member_repository/A914D05C/DECE0F0A7BD511EBB9123D52C4F9AE02/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.mft File: xpOZsTLhrmsuoxFuFLEAHAgZ3ak.mft (raw, json) Hash identifier: eHvZlr+vyF3o7aBKtkexmGpLvjS8Go6EuFJxopca/y8= Subject key identifier: 26:81:D9:FB:54:78:01:C6:B8:F4:55:B4:2E:FE:D1:1F:2D:5B:6B:E7 Authority key identifier: C6:93:99:B1:32:E1:AE:6B:2E:A3:11:6E:14:B1:00:1C:08:19:DD:A9 Certificate issuer: /CN=A914D05C/serialNumber=C69399B132E1AE6B2EA3116E14B1001C0819DDA9 Certificate serial: 066D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D05C/DECE0F0A7BD511EBB9123D52C4F9AE02/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.mft Manifest number: 0668 Signing time: Mon 12 May 2025 22:08:55 +0000 Manifest this update: Mon 12 May 2025 22:08:55 +0000 Manifest next update: Mon 19 May 2025 22:08:55 +0000 Files and hashes: 1: xpOZsTLhrmsuoxFuFLEAHAgZ3ak.crl (hash: zkQ7BOLLnZM/dYYV+BFnCwZVFkVkC2IJ4GpVcRZPdcc=) 2: 546C2E447BD711EB8DB97853C4F9AE02.roa (hash: LymCYpP9ODjDnMZgIvd8/QCM8E6rGc1JYF+pBCdV8o4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D05C/DECE0F0A7BD511EBB9123D52C4F9AE02/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.crl rsync://rpki.apnic.net/member_repository/A914D05C/DECE0F0A7BD511EBB9123D52C4F9AE02/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 22:08:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1645 (0x66d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D05C, serialNumber=C69399B132E1AE6B2EA3116E14B1001C0819DDA9 Validity Not Before: May 12 22:08:55 2025 GMT Not After : May 19 22:08:55 2025 GMT Subject: CN=68227177-c930 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:f4:f7:f3:00:e4:7a:5f:9f:13:a8:ca:11:d7: c1:69:bd:d6:9a:23:87:82:11:d5:69:d7:4c:d3:0d: 52:2a:ed:5a:34:ca:3f:cc:3c:bf:a3:2c:cb:aa:78: 6d:34:a8:af:d2:57:26:52:2d:6d:3a:22:6c:77:b3: 2e:79:58:f5:dd:86:33:de:20:d7:8e:08:47:cc:bb: 5c:c6:d1:80:24:aa:a8:18:4a:a5:eb:3b:fe:92:db: 36:9a:31:ae:d3:af:f0:88:37:2a:1f:81:82:6a:33: 40:9f:4c:1e:1d:f6:c7:b8:3e:af:ae:b9:a9:e1:73: 10:bd:9e:20:31:a7:1b:48:79:00:aa:d9:73:f7:cf: a8:07:9b:55:83:de:98:e5:a4:35:b1:d2:0e:55:95: 88:d8:ce:6c:04:fd:6b:78:56:c5:dd:31:70:4a:30: 70:7b:e6:33:ca:35:b7:ab:f5:4e:a0:7e:2b:ff:2a: 25:e5:e5:c4:55:bf:85:86:b1:4f:c4:7c:05:c5:7e: b4:c7:3e:46:0b:12:41:fd:c8:45:bd:b2:57:49:16: 91:8c:f9:04:ae:77:f6:2e:d0:07:5f:44:3e:b6:a5: 91:88:3a:89:6f:c2:f7:bd:51:04:8e:c7:57:61:8a: 51:68:83:d1:f8:9b:2f:cd:15:7a:cb:b4:aa:72:3c: df:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:81:D9:FB:54:78:01:C6:B8:F4:55:B4:2E:FE:D1:1F:2D:5B:6B:E7 X509v3 Authority Key Identifier: keyid:C6:93:99:B1:32:E1:AE:6B:2E:A3:11:6E:14:B1:00:1C:08:19:DD:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D05C/DECE0F0A7BD511EBB9123D52C4F9AE02/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D05C/DECE0F0A7BD511EBB9123D52C4F9AE02/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:09:87:54:1a:df:1e:7e:47:e6:fb:93:fe:45:fe:ea:51:0a: b1:ae:29:0c:65:fa:9a:b4:de:f2:22:62:ce:3e:2a:53:a4:34: 05:d7:0a:56:1b:98:e6:00:a9:a3:fd:c2:2c:25:43:8e:04:48: 86:b1:66:c0:92:52:ea:e7:8a:1c:26:57:0c:07:df:1e:99:2d: 14:81:d0:c3:49:95:95:6a:db:6e:c5:41:15:2e:63:0d:e9:37: af:ac:62:4d:d0:b6:6d:48:e8:61:00:4c:be:02:46:c2:da:03: c3:ca:42:b5:9f:30:91:9a:ee:29:0f:7c:56:d7:15:c1:10:2d: 17:18:ff:9a:0a:ce:a9:d5:ef:a4:37:c8:c5:d4:94:81:a9:01: a5:d5:29:85:c6:ae:ce:c9:bd:ad:20:f6:2d:ea:a3:12:c9:ed: 28:dd:e1:48:50:3e:27:fb:68:a4:26:2d:42:ed:37:8f:3f:12: fa:d5:5f:cc:1b:99:1f:e6:d1:df:52:d2:21:db:ea:69:75:06: d4:af:d7:e1:6b:22:44:43:e6:b3:e0:6e:07:d0:8c:27:fa:c9: 42:f7:54:a8:9c:16:63:a5:64:0c:2f:6c:46:8a:2f:3e:99:96: 07:49:ba:0f:ff:b9:a1:58:7d:3b:46:3a:cc:5d:d2:c5:ed:f6: 5d:b4:55:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBm0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQwNUMxMTAvBgNVBAUTKEM2OTM5OUIxMzJFMUFFNkIyRUEzMTE2RTE0QjEwMDFD MDgxOUREQTkwHhcNMjUwNTEyMjIwODU1WhcNMjUwNTE5MjIwODU1WjAYMRYwFAYD VQQDEw02ODIyNzE3Ny1jOTMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3PT38wDkel+fE6jKEdfBab3WmiOHghHVaddM0w1SKu1aNMo/zDy/oyzLqnht NKiv0lcmUi1tOiJsd7MueVj13YYz3iDXjghHzLtcxtGAJKqoGEql6zv+kts2mjGu 06/wiDcqH4GCajNAn0weHfbHuD6vrrmp4XMQvZ4gMacbSHkAqtlz98+oB5tVg96Y 5aQ1sdIOVZWI2M5sBP1reFbF3TFwSjBwe+YzyjW3q/VOoH4r/yol5eXEVb+FhrFP xHwFxX60xz5GCxJB/chFvbJXSRaRjPkErnf2LtAHX0Q+tqWRiDqJb8L3vVEEjsdX YYpRaIPR+JsvzRV6y7SqcjzfUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCaB2ftU eAHGuPRVtC7+0R8tW2vnMB8GA1UdIwQYMBaAFMaTmbEy4a5rLqMRbhSxABwIGd2p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDA1Qy9ERUNFMEYwQTdC RDUxMUVCQjkxMjNENTJDNEY5QUUwMi94cE9ac1RMaHJtc3VveEZ1RkxFQUhBZ1oz YWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hwT1pzVExocm1zdW94RnVGTEVBSEFnWjNhay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDA1Qy9ERUNFMEYwQTdCRDUxMUVCQjkxMjNENTJDNEY5QUUwMi94cE9ac1RMaHJt c3VveEZ1RkxFQUhBZ1ozYWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClCYdUGt8efkfm+5P+Rf7qUQqxrikMZfqatN7yImLOPipTpDQF1wpW G5jmAKmj/cIsJUOOBEiGsWbAklLq54ocJlcMB98emS0UgdDDSZWVattuxUEVLmMN 6TevrGJN0LZtSOhhAEy+AkbC2gPDykK1nzCRmu4pD3xW1xXBEC0XGP+aCs6p1e+k N8jF1JSBqQGl1SmFxq7Oyb2tIPYt6qMSye0o3eFIUD4n+2ikJi1C7TePPxL61V/M G5kf5tHfUtIh2+ppdQbUr9fhayJEQ+az4G4H0Iwn+slC91SonBZjpWQML2xGii8+ mZYHSboP/7mhWH07RjrMXdLF7fZdtFW2 -----END CERTIFICATE-----Generated at Wed May 14 12:54:28 2025 by rpki-client