$ rpki-client -vvf rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.mft File: X-srwGbHr1fSafdXM_D_g-mQOaM.mft (raw, json) Hash identifier: SJnwxrtTcBtJRPzqO4AE3y211FANXZDaMCPQIRRbZqo= Subject key identifier: 88:70:09:2E:35:A0:F3:E8:47:C5:47:AB:8C:07:43:F0:BB:BD:01:8C Authority key identifier: 5F:EB:2B:C0:66:C7:AF:57:D2:69:F7:57:33:F0:FF:83:E9:90:39:A3 Certificate issuer: /CN=A914E8BF/serialNumber=5FEB2BC066C7AF57D269F75733F0FF83E99039A3 Certificate serial: 0163 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-srwGbHr1fSafdXM_D_g-mQOaM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.mft Manifest number: 0154 Signing time: Tue 13 May 2025 03:31:00 +0000 Manifest this update: Tue 13 May 2025 03:31:00 +0000 Manifest next update: Tue 20 May 2025 03:31:00 +0000 Files and hashes: 1: X-srwGbHr1fSafdXM_D_g-mQOaM.crl (hash: ynxUlTF4AluYCvwwnizZWlJVaiOpGxaaP9XAvro4q90=) 2: D060B5C4B9EA11EFBB71A952C4F9AE02.roa (hash: RH2tA+pDkL65URt1jd9V89/t/7TTanl0u6hNZrCKG3I=) 3: C7D74E2CB9EA11EFBCC89752C4F9AE02.roa (hash: 3zCR20o/KfK/K9C/wTlGB6P7rn/kp0/zxFVVdoqdb8g=) 4: BD8EB1A8B9EA11EF8A218C52C4F9AE02.roa (hash: mR/q70Jk2CRrQySn0SCNQ9Ok1ptByPEBAf3/SOp/6zs=) 5: A16CA728B9EA11EFACF35552C4F9AE02.roa (hash: LIplw0gjYt5TLtVYJx2JRQCdxPLCfIKOl8NOlftLuUc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.crl rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-srwGbHr1fSafdXM_D_g-mQOaM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 03:30:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 355 (0x163) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E8BF, serialNumber=5FEB2BC066C7AF57D269F75733F0FF83E99039A3 Validity Not Before: May 13 03:31:00 2025 GMT Not After : May 20 03:31:00 2025 GMT Subject: CN=6822bcf4-06db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:d5:70:0c:c3:1a:63:5c:42:1f:f8:c6:7f:0d: 78:a9:93:fa:a2:ac:1d:6c:53:9e:0f:a9:20:6f:4a: 0b:ec:95:16:50:e1:4a:63:c7:cf:7f:fe:05:99:d1: 56:2a:23:9d:53:6a:0c:3b:47:e8:10:c3:36:11:f9: d2:d8:25:c3:88:87:f3:e4:3e:54:fa:7c:68:f9:92: 03:a5:6a:4d:4b:99:12:ca:0e:77:85:28:08:8f:bd: 3e:68:2f:c7:01:18:40:50:6f:91:0e:60:51:64:83: 25:4d:d4:e7:4f:d9:fb:f5:86:b2:9f:64:ff:99:e1: d4:48:08:6b:69:d0:25:d1:2b:3c:5e:54:97:b7:90: ed:2a:be:2f:63:75:48:da:de:7e:ce:f4:cb:8c:b5: 04:9a:8f:b7:09:87:45:fa:01:eb:4c:71:ff:38:cd: 81:f1:b0:64:07:42:ad:30:b1:c3:6f:56:4a:1c:82: 2d:d3:87:f2:42:8d:e5:43:7c:58:25:b7:83:f2:8f: b6:d6:bb:d9:4c:56:da:88:89:eb:c9:e1:ea:96:b7: d9:a9:aa:49:17:ce:a9:3d:67:90:04:82:0a:c0:25: 8c:eb:57:a6:e4:a6:c0:1d:70:b0:73:17:c3:d9:8c: 34:d1:73:20:7e:b5:e6:dc:20:7a:6d:1e:6d:58:8f: 69:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:70:09:2E:35:A0:F3:E8:47:C5:47:AB:8C:07:43:F0:BB:BD:01:8C X509v3 Authority Key Identifier: keyid:5F:EB:2B:C0:66:C7:AF:57:D2:69:F7:57:33:F0:FF:83:E9:90:39:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-srwGbHr1fSafdXM_D_g-mQOaM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:80:3e:de:29:7f:b4:3a:ce:b9:36:5b:cd:27:15:09:4d:4e: b6:0a:83:9e:f6:60:86:e4:82:87:f0:be:28:fd:25:51:49:74: e5:13:03:f3:42:b9:14:4d:02:df:cb:3d:29:92:28:9c:7c:5a: 90:c5:a5:57:17:01:9e:22:53:6d:83:61:4d:d5:a2:e5:77:cc: 92:32:a7:4f:c7:18:62:24:8c:70:20:b0:c2:c4:56:0f:b2:33: 33:d6:92:a5:d2:ce:20:9a:ae:f7:36:c0:92:83:25:60:ac:1f: 6c:e2:c6:ac:bd:3f:40:5b:13:77:af:72:7c:85:9f:9f:6e:73: 94:6e:ae:fc:b9:b3:bb:18:3f:38:5c:6a:f7:eb:d7:a4:c9:30: 82:a0:3d:e8:61:f3:15:e9:ca:87:5f:2c:44:d5:71:3f:b4:d8: 45:4c:6a:12:5b:90:92:1d:95:bc:78:f0:a2:85:b2:a8:a3:de: eb:b9:9b:f6:a6:10:96:22:fa:35:22:d1:32:30:93:38:a6:86: 37:1e:71:9e:66:6a:88:48:9d:38:f9:54:75:79:45:1b:d1:2f: ab:6c:eb:24:54:a7:1f:62:83:4f:bf:b2:8e:e6:fe:d7:1b:5c: ec:e9:51:bc:ea:92:99:9f:f4:83:34:28:50:f4:d8:ae:e9:0f: 7a:fb:95:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU4QkYxMTAvBgNVBAUTKDVGRUIyQkMwNjZDN0FGNTdEMjY5Rjc1NzMzRjBGRjgz RTk5MDM5QTMwHhcNMjUwNTEzMDMzMTAwWhcNMjUwNTIwMDMzMTAwWjAYMRYwFAYD VQQDEw02ODIyYmNmNC0wNmRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtdVwDMMaY1xCH/jGfw14qZP6oqwdbFOeD6kgb0oL7JUWUOFKY8fPf/4FmdFW KiOdU2oMO0foEMM2EfnS2CXDiIfz5D5U+nxo+ZIDpWpNS5kSyg53hSgIj70+aC/H ARhAUG+RDmBRZIMlTdTnT9n79Yayn2T/meHUSAhradAl0Ss8XlSXt5DtKr4vY3VI 2t5+zvTLjLUEmo+3CYdF+gHrTHH/OM2B8bBkB0KtMLHDb1ZKHIIt04fyQo3lQ3xY JbeD8o+21rvZTFbaiInryeHqlrfZqapJF86pPWeQBIIKwCWM61em5KbAHXCwcxfD 2Yw00XMgfrXm3CB6bR5tWI9pRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIhwCS41 oPPoR8VHq4wHQ/C7vQGMMB8GA1UdIwQYMBaAFF/rK8Bmx69X0mn3VzPw/4PpkDmj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RThCRi9CMzg5Q0YzODQx QTcxMUVFOTJFNUIzNzhDNEY5QUUwMi9YLXNyd0diSHIxZlNhZmRYTV9EX2ctbVFP YU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gtc3J3R2JIcjFmU2FmZFhNX0RfZy1tUU9hTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RThCRi9CMzg5Q0YzODQxQTcxMUVFOTJFNUIzNzhDNEY5QUUwMi9YLXNyd0diSHIx ZlNhZmRYTV9EX2ctbVFPYU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCigD7eKX+0Os65NlvNJxUJTU62CoOe9mCG5IKH8L4o/SVRSXTlEwPz QrkUTQLfyz0pkiicfFqQxaVXFwGeIlNtg2FN1aLld8ySMqdPxxhiJIxwILDCxFYP sjMz1pKl0s4gmq73NsCSgyVgrB9s4sasvT9AWxN3r3J8hZ+fbnOUbq78ubO7GD84 XGr369ekyTCCoD3oYfMV6cqHXyxE1XE/tNhFTGoSW5CSHZW8ePCihbKoo97ruZv2 phCWIvo1ItEyMJM4poY3HnGeZmqISJ04+VR1eUUb0S+rbOskVKcfYoNPv7KO5v7X G1zs6VG86pKZn/SDNChQ9Niu6Q96+5X8 -----END CERTIFICATE-----Generated at Tue May 13 14:54:10 2025 by rpki-client