$ rpki-client -vvf rpki.apnic.net/member_repository/A914DB69/DA860CC86E5C11EE9C013361C4F9AE02/-XxrnwabbALLPY6tWvc-UGwIyjg.mft File: -XxrnwabbALLPY6tWvc-UGwIyjg.mft (raw, json) Hash identifier: ZBVLsLUubQPdghBvhpqdHYvPy757GWBnPfs/Cu2MlWs= Subject key identifier: 5E:F4:6D:A2:D0:D4:B2:92:2E:1B:2B:52:18:B4:25:0F:F9:C0:04:56 Authority key identifier: F9:7C:6B:9F:06:9B:6C:02:CB:3D:8E:AD:5A:F7:3E:50:6C:08:CA:38 Certificate issuer: /CN=A914DB69/serialNumber=F97C6B9F069B6C02CB3D8EAD5AF73E506C08CA38 Certificate serial: 012A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XxrnwabbALLPY6tWvc-UGwIyjg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DB69/DA860CC86E5C11EE9C013361C4F9AE02/-XxrnwabbALLPY6tWvc-UGwIyjg.mft Manifest number: 0126 Signing time: Wed 07 May 2025 03:52:14 +0000 Manifest this update: Wed 07 May 2025 03:52:13 +0000 Manifest next update: Wed 14 May 2025 03:52:13 +0000 Files and hashes: 1: -XxrnwabbALLPY6tWvc-UGwIyjg.crl (hash: u5CgLk5/Nh7nw/pFpPB2PJ6jiL6wmBkn9nQ6kv0XoGw=) 2: C4AA7A3A6E5F11EE9F66E967C4F9AE02.roa (hash: B+UIB58IevJFHi1QUj4sqmfL/RMK0LGyhhucuugtqng=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DB69/DA860CC86E5C11EE9C013361C4F9AE02/-XxrnwabbALLPY6tWvc-UGwIyjg.crl rsync://rpki.apnic.net/member_repository/A914DB69/DA860CC86E5C11EE9C013361C4F9AE02/-XxrnwabbALLPY6tWvc-UGwIyjg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XxrnwabbALLPY6tWvc-UGwIyjg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 23:16:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 298 (0x12a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DB69, serialNumber=F97C6B9F069B6C02CB3D8EAD5AF73E506C08CA38 Validity Not Before: May 7 03:52:13 2025 GMT Not After : May 14 03:52:13 2025 GMT Subject: CN=681ad8ed-1f68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:69:f8:c3:b8:e2:35:ca:14:b6:27:74:49:e5: 95:9b:93:a1:10:8e:9f:92:ec:24:0f:83:10:b9:e0: 8a:8f:24:2b:94:61:3a:ee:3f:a9:3c:63:ad:66:e2: b0:05:33:6e:79:67:85:52:b6:57:cd:05:ef:14:76: 93:59:32:c4:b4:bc:a9:e7:9f:01:43:7a:5f:f5:8a: a7:64:84:c2:6f:b7:aa:ba:84:fd:c6:3b:bc:fc:1c: a0:c0:72:45:e5:06:a9:02:30:de:1d:6f:fa:2f:78: b3:bb:01:e6:eb:2e:11:df:02:b8:9e:e4:92:19:95: 86:f8:dd:0d:a7:23:6a:59:8c:d8:a5:0d:68:3c:5b: 53:7e:11:c1:bc:88:da:d8:fa:c4:db:33:3e:25:6f: 5a:3e:2e:5f:8a:0d:56:ac:d8:b2:3e:2f:e5:56:43: 3c:ac:6b:16:48:db:03:f6:f5:32:ff:f2:9f:6f:94: fe:54:5b:78:8c:db:bf:9b:4b:6e:36:42:8d:53:9d: 60:8f:e3:ad:b4:e6:5c:42:77:ad:30:eb:e1:cf:c3: 68:52:f4:03:4e:24:da:13:ae:69:45:a0:c4:e9:22: 99:e6:13:49:8c:2f:ce:96:78:df:e8:bd:f7:c8:0d: c5:8d:2b:5e:36:11:7c:a4:16:4d:1f:7f:bf:1e:8d: 37:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:F4:6D:A2:D0:D4:B2:92:2E:1B:2B:52:18:B4:25:0F:F9:C0:04:56 X509v3 Authority Key Identifier: keyid:F9:7C:6B:9F:06:9B:6C:02:CB:3D:8E:AD:5A:F7:3E:50:6C:08:CA:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DB69/DA860CC86E5C11EE9C013361C4F9AE02/-XxrnwabbALLPY6tWvc-UGwIyjg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XxrnwabbALLPY6tWvc-UGwIyjg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DB69/DA860CC86E5C11EE9C013361C4F9AE02/-XxrnwabbALLPY6tWvc-UGwIyjg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:74:69:aa:42:f2:fc:f4:64:67:01:6a:1f:13:87:fb:f0:80: c0:85:06:8f:73:1b:70:6d:37:a7:4d:60:63:73:83:a2:a5:ed: f7:2c:7c:39:15:52:25:a1:39:32:b3:f1:89:87:9e:24:83:c9: 2f:c4:52:ec:db:6f:f8:97:c9:cd:96:e2:09:f0:02:80:81:46: e8:2d:52:d1:5b:af:98:72:24:41:5e:13:7a:fc:ba:51:cb:10: 99:bf:43:0f:04:1d:41:fd:3b:2d:6a:f7:1e:f5:2e:99:bc:85: a7:3c:14:4d:cc:8a:62:d6:86:6c:da:dc:c0:a3:89:05:ec:b5: 5e:b2:3d:e7:70:6c:91:2d:9f:36:47:0e:30:70:15:07:83:09: f3:8c:9d:b0:b1:58:23:01:de:68:ad:3b:ba:83:4a:13:42:91: 5b:0b:49:bf:88:6e:8e:15:79:06:66:f4:f2:65:94:f9:d6:8b: 43:8e:3e:36:1a:c3:06:40:83:10:f4:33:21:12:72:a7:e9:fc: 9d:cc:b7:5c:d3:8a:eb:85:69:40:32:6e:b3:71:b1:6b:7d:c0: 7c:3f:b1:2b:a7:b2:19:df:4a:5d:17:a3:69:a6:d5:8e:c5:91: 59:4d:9d:ac:4b:dc:de:42:6d:6c:ff:b0:0a:08:ff:c9:21:96: 2e:49:b8:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERCNjkxMTAvBgNVBAUTKEY5N0M2QjlGMDY5QjZDMDJDQjNEOEVBRDVBRjczRTUw NkMwOENBMzgwHhcNMjUwNTA3MDM1MjEzWhcNMjUwNTE0MDM1MjEzWjAYMRYwFAYD VQQDEw02ODFhZDhlZC0xZjY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAumn4w7jiNcoUtid0SeWVm5OhEI6fkuwkD4MQueCKjyQrlGE67j+pPGOtZuKw BTNueWeFUrZXzQXvFHaTWTLEtLyp558BQ3pf9YqnZITCb7equoT9xju8/BygwHJF 5QapAjDeHW/6L3izuwHm6y4R3wK4nuSSGZWG+N0NpyNqWYzYpQ1oPFtTfhHBvIja 2PrE2zM+JW9aPi5fig1WrNiyPi/lVkM8rGsWSNsD9vUy//Kfb5T+VFt4jNu/m0tu NkKNU51gj+OttOZcQnetMOvhz8NoUvQDTiTaE65pRaDE6SKZ5hNJjC/Olnjf6L33 yA3FjSteNhF8pBZNH3+/Ho03UwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF70baLQ 1LKSLhsrUhi0JQ/5wARWMB8GA1UdIwQYMBaAFPl8a58Gm2wCyz2OrVr3PlBsCMo4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REI2OS9EQTg2MENDODZF NUMxMUVFOUMwMTMzNjFDNEY5QUUwMi8tWHhybndhYmJBTExQWTZ0V3ZjLVVHd0l5 amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1YeHJud2FiYkFMTFBZNnRXdmMtVUd3SXlqZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 REI2OS9EQTg2MENDODZFNUMxMUVFOUMwMTMzNjFDNEY5QUUwMi8tWHhybndhYmJB TExQWTZ0V3ZjLVVHd0l5amcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsdGmqQvL89GRnAWofE4f78IDAhQaPcxtwbTenTWBjc4Oipe33LHw5 FVIloTkys/GJh54kg8kvxFLs22/4l8nNluIJ8AKAgUboLVLRW6+YciRBXhN6/LpR yxCZv0MPBB1B/Tstavce9S6ZvIWnPBRNzIpi1oZs2tzAo4kF7LVesj3ncGyRLZ82 Rw4wcBUHgwnzjJ2wsVgjAd5orTu6g0oTQpFbC0m/iG6OFXkGZvTyZZT51otDjj42 GsMGQIMQ9DMhEnKn6fydzLdc04rrhWlAMm6zcbFrfcB8P7Erp7IZ30pdF6NpptWO xZFZTZ2sS9zeQm1s/7AKCP/JIZYuSbi9 -----END CERTIFICATE-----Generated at Wed May 7 11:51:08 2025 by rpki-client