$ rpki-client -vvf rpki.apnic.net/member_repository/A914F870/C924246AD7E211EFAF0B3B7DC4F9AE02/XVXxUJtvA0JNKUT4Efhpk4CZu7w.mft File: XVXxUJtvA0JNKUT4Efhpk4CZu7w.mft (raw, json) Hash identifier: KGg0WfD5mw7dFbA2U+sonw7kzpdyy/YL1CBOITAAVWM= Subject key identifier: 9D:1E:2C:9D:E1:B6:B9:86:32:A4:FC:70:3D:7D:CB:30:72:54:7F:72 Authority key identifier: 5D:55:F1:50:9B:6F:03:42:4D:29:44:F8:11:F8:69:93:80:99:BB:BC Certificate issuer: /CN=A914F870/serialNumber=5D55F1509B6F03424D2944F811F869938099BBBC Certificate serial: 3D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XVXxUJtvA0JNKUT4Efhpk4CZu7w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F870/C924246AD7E211EFAF0B3B7DC4F9AE02/XVXxUJtvA0JNKUT4Efhpk4CZu7w.mft Manifest number: 3C Signing time: Thu 15 May 2025 06:49:36 +0000 Manifest this update: Thu 15 May 2025 06:49:35 +0000 Manifest next update: Thu 22 May 2025 06:49:35 +0000 Files and hashes: 1: XVXxUJtvA0JNKUT4Efhpk4CZu7w.crl (hash: nU2mKQX3/X+EIPhuuQtJ5ALbL+3cRvW1ukYMrQN3RFY=) 2: 212A832AD7E311EF86266212C4F9AE02.roa (hash: OADH0Zf3ANJ0fVSGo4++5SGmG3UFA33H5Jy/cHOt0/k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F870/C924246AD7E211EFAF0B3B7DC4F9AE02/XVXxUJtvA0JNKUT4Efhpk4CZu7w.crl rsync://rpki.apnic.net/member_repository/A914F870/C924246AD7E211EFAF0B3B7DC4F9AE02/XVXxUJtvA0JNKUT4Efhpk4CZu7w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XVXxUJtvA0JNKUT4Efhpk4CZu7w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 06:49:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61 (0x3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F870, serialNumber=5D55F1509B6F03424D2944F811F869938099BBBC Validity Not Before: May 15 06:49:35 2025 GMT Not After : May 22 06:49:35 2025 GMT Subject: CN=68258e80-18c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:1b:63:c8:28:7b:97:60:da:fa:19:57:4d:63: 9e:be:3f:a2:3e:2d:84:28:41:ad:3d:a2:32:53:82: 85:6b:ea:52:50:86:55:a0:10:53:3f:06:c4:25:65: 93:b9:e7:c3:3f:1f:0f:df:78:b1:cf:4d:4f:e2:46: 87:4f:b0:2f:92:53:f5:c8:a8:e0:2d:a3:59:a7:47: 69:f9:7c:a3:ab:c5:10:7d:f0:a4:64:7e:3f:16:b5: 36:55:1d:e8:28:1a:70:54:9a:b2:aa:40:5a:e0:79: cd:eb:f6:09:88:4b:14:87:e5:d8:1f:94:ef:c2:e2: 8b:c1:7f:2f:97:ad:f5:b2:cb:af:49:82:53:5c:ff: 91:a7:bf:23:45:13:32:53:78:d5:c1:ad:71:71:5b: df:b3:72:45:88:0f:35:dc:0a:95:6e:52:36:5a:04: 77:87:8f:45:d4:71:ea:b8:2b:16:4b:7e:0b:87:ae: 06:2c:f8:0b:86:a4:47:66:41:a0:6a:79:44:b0:5d: ab:21:d3:20:d7:e3:e9:4a:35:a2:52:d0:c5:02:3c: 20:a7:4c:97:a2:4c:08:1e:cb:da:a8:2c:32:4d:d7: 18:42:03:9b:4b:74:18:5a:fe:6b:ce:ec:6e:77:30: 0a:d6:52:c6:00:3f:80:65:72:ef:d1:31:f3:a2:c8: 98:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:1E:2C:9D:E1:B6:B9:86:32:A4:FC:70:3D:7D:CB:30:72:54:7F:72 X509v3 Authority Key Identifier: keyid:5D:55:F1:50:9B:6F:03:42:4D:29:44:F8:11:F8:69:93:80:99:BB:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F870/C924246AD7E211EFAF0B3B7DC4F9AE02/XVXxUJtvA0JNKUT4Efhpk4CZu7w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XVXxUJtvA0JNKUT4Efhpk4CZu7w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F870/C924246AD7E211EFAF0B3B7DC4F9AE02/XVXxUJtvA0JNKUT4Efhpk4CZu7w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:53:03:81:ba:16:0a:06:2e:47:b7:60:52:11:54:0a:6a:ab: 04:2b:a2:0d:65:f3:d8:e6:48:b1:d3:09:39:cd:3d:cd:75:2b: 1c:c4:16:f1:b4:17:c6:fe:0f:be:c6:58:60:6b:7d:d2:38:dd: 93:0c:3b:23:4d:48:f3:53:78:dd:2e:fd:f9:6b:c3:5c:8d:42: e0:6d:fd:e7:d2:d1:41:71:00:ab:92:6f:de:55:c0:f3:0c:5c: 4d:08:91:0d:5c:a8:de:4f:ff:ec:44:b5:66:48:49:31:3f:c2: 39:74:24:dc:f5:ee:d2:80:2f:80:4e:c5:93:22:dd:ce:1b:b8: fb:c2:9d:2e:28:2c:7c:7e:e9:71:e6:ca:72:1b:2a:a6:0a:65: 28:36:72:d8:6d:3f:29:b3:7a:6e:46:f8:bc:29:e2:f3:5d:51: 92:2c:39:18:55:8e:96:55:b4:fd:c2:24:8d:3b:b8:93:0d:41: ea:78:48:2f:7d:10:76:a1:5c:4f:f0:47:f2:7f:3e:cb:34:a4: e7:8c:38:f5:b8:1d:b1:3c:d3:1c:c3:d0:5f:1e:63:4d:ca:5e: 82:99:fe:6f:44:99:21:3f:55:5e:c4:00:7c:20:40:1e:35:97: e2:52:2c:ab:b1:de:5e:64:86:78:18:4d:b2:38:6a:75:c7:5f: bc:b7:f5:65 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 Rjg3MDExMC8GA1UEBRMoNUQ1NUYxNTA5QjZGMDM0MjREMjk0NEY4MTFGODY5OTM4 MDk5QkJCQzAeFw0yNTA1MTUwNjQ5MzVaFw0yNTA1MjIwNjQ5MzVaMBgxFjAUBgNV BAMTDTY4MjU4ZTgwLTE4YzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDaG2PIKHuXYNr6GVdNY56+P6I+LYQoQa09ojJTgoVr6lJQhlWgEFM/BsQlZZO5 58M/Hw/feLHPTU/iRodPsC+SU/XIqOAto1mnR2n5fKOrxRB98KRkfj8WtTZVHego GnBUmrKqQFrgec3r9gmISxSH5dgflO/C4ovBfy+XrfWyy69JglNc/5GnvyNFEzJT eNXBrXFxW9+zckWIDzXcCpVuUjZaBHeHj0XUceq4KxZLfguHrgYs+AuGpEdmQaBq eUSwXash0yDX4+lKNaJS0MUCPCCnTJeiTAgey9qoLDJN1xhCA5tLdBha/mvO7G53 MArWUsYAP4Blcu/RMfOiyJhRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUnR4sneG2 uYYypPxwPX3LMHJUf3IwHwYDVR0jBBgwFoAUXVXxUJtvA0JNKUT4Efhpk4CZu7ww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRGODcwL0M5MjQyNDZBRDdF MjExRUZBRjBCM0I3REM0RjlBRTAyL1hWWHhVSnR2QTBKTktVVDRFZmhwazRDWnU3 dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWFZYeFVKdHZBMEpOS1VUNEVmaHBrNENadTd3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRG ODcwL0M5MjQyNDZBRDdFMjExRUZBRjBCM0I3REM0RjlBRTAyL1hWWHhVSnR2QTBK TktVVDRFZmhwazRDWnU3dy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADtTA4G6FgoGLke3YFIRVApqqwQrog1l89jmSLHTCTnNPc11KxzEFvG0 F8b+D77GWGBrfdI43ZMMOyNNSPNTeN0u/flrw1yNQuBt/efS0UFxAKuSb95VwPMM XE0IkQ1cqN5P/+xEtWZISTE/wjl0JNz17tKAL4BOxZMi3c4buPvCnS4oLHx+6XHm ynIbKqYKZSg2cthtPymzem5G+Lwp4vNdUZIsORhVjpZVtP3CJI07uJMNQep4SC99 EHahXE/wR/J/Pss0pOeMOPW4HbE80xzD0F8eY03KXoKZ/m9EmSE/VV7EAHwgQB41 l+JSLKux3l5khngYTbI4anXHX7y39WU= -----END CERTIFICATE-----Generated at Fri May 16 15:15:11 2025 by rpki-client