$ rpki-client -vvf rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.mft File: xxUx0l-AVI9bZR-GSTJfPI_YWTk.mft (raw, json) Hash identifier: 5XYKZe0iTGfBszHPMHMm5EAikgLdUoBab1kyVPRegno= Subject key identifier: 46:00:A8:BA:6B:54:B8:28:4C:2E:79:FE:29:A7:20:71:BF:82:9A:23 Authority key identifier: C7:15:31:D2:5F:80:54:8F:5B:65:1F:86:49:32:5F:3C:8F:D8:59:39 Certificate issuer: /CN=A915786A/serialNumber=C71531D25F80548F5B651F8649325F3C8FD85939 Certificate serial: 0BE0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xxUx0l-AVI9bZR-GSTJfPI_YWTk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.mft Manifest number: 0BD5 Signing time: Mon 12 May 2025 18:39:25 +0000 Manifest this update: Mon 12 May 2025 18:39:25 +0000 Manifest next update: Mon 19 May 2025 18:39:25 +0000 Files and hashes: 1: xxUx0l-AVI9bZR-GSTJfPI_YWTk.crl (hash: 52oc2mCIlrMrRpaS4KCXGZVOS2gxiMaf0YzkgZ1ge0Y=) 2: 7A7B776A1F0E11EA92AA6824C4F9AE02.roa (hash: vuAfqS+oupAqLtbWHhdz3OsiJgWg5sczosdrHd8kXwo=) 3: FBFF89FC3AC611EEB790D485C4F9AE02.roa (hash: DQuIcDvil4xhDWRcyNWiHmLcTyjG0SYLvwiCuCDmI90=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.crl rsync://rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xxUx0l-AVI9bZR-GSTJfPI_YWTk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 18:39:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3040 (0xbe0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915786A, serialNumber=C71531D25F80548F5B651F8649325F3C8FD85939 Validity Not Before: May 12 18:39:25 2025 GMT Not After : May 19 18:39:25 2025 GMT Subject: CN=6822405d-2c95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:00:9c:b2:aa:2e:97:6b:c6:91:c8:48:e9:65: 20:3d:bd:0a:49:3d:ac:62:06:de:49:27:c0:dd:30: f0:ce:1c:43:ab:e6:48:44:3f:8f:4d:5f:b4:a8:47: c4:94:c5:4b:10:98:c6:04:43:ec:49:27:5c:1b:c1: 37:bd:b9:cf:2a:38:e0:39:e1:fd:9b:dc:80:c4:24: 35:77:bb:dc:fb:5a:93:c7:89:5e:e8:a0:e6:7a:d0: f8:d6:fb:a2:89:7e:9b:f5:8c:56:c7:a3:9a:a1:75: 99:88:03:cb:41:88:f2:4b:00:5d:3b:d2:de:39:c1: ef:5f:72:c2:7b:89:f3:30:5a:5d:f7:15:72:e7:bc: 4e:08:80:9d:e5:fa:06:3d:3c:1b:51:83:6d:fa:98: 3a:4c:df:62:5f:43:3f:17:3e:af:2d:45:43:40:71: a6:30:c3:f8:eb:21:3a:ed:b4:81:8d:45:e1:80:1e: 1f:db:46:47:a0:eb:76:4b:97:11:13:04:53:86:63: ce:3d:ca:c2:a3:d5:a5:4a:06:d3:c7:83:50:97:27: a0:d6:fe:6d:a9:2b:89:35:c9:2c:58:61:08:96:b9: de:a4:12:88:63:28:df:07:d1:c7:bc:02:7a:04:2c: 5e:dd:2f:33:32:ff:30:8d:a1:fc:14:c1:d3:64:44: 8e:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:00:A8:BA:6B:54:B8:28:4C:2E:79:FE:29:A7:20:71:BF:82:9A:23 X509v3 Authority Key Identifier: keyid:C7:15:31:D2:5F:80:54:8F:5B:65:1F:86:49:32:5F:3C:8F:D8:59:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xxUx0l-AVI9bZR-GSTJfPI_YWTk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:ff:80:b2:cd:c0:6c:24:ea:90:1f:be:bd:dc:37:8f:0a:5d: 5c:04:0c:64:21:1b:12:9c:57:7c:ac:c7:c4:7d:6c:64:43:2b: ae:51:a0:fa:1a:de:d0:b9:f1:48:22:9b:c7:d0:51:be:92:93: da:72:ea:52:4c:e0:2f:49:dc:4a:e0:03:43:58:71:35:3a:42: a7:b0:96:f1:b7:ec:d3:e4:87:02:6a:1b:14:e0:56:d0:e0:bd: c7:ce:8f:ad:c9:c4:d8:b3:e3:3d:64:04:6a:d7:74:26:8d:da: fd:21:a4:95:dc:6d:e4:c9:80:72:c8:79:c1:39:af:dc:54:44: c8:c8:a3:5d:8d:5b:db:27:47:22:fd:f2:4e:99:7a:2e:48:29: 65:48:04:eb:7f:8f:a5:4b:ea:b2:87:5a:e2:de:49:55:83:93: 89:94:22:b0:76:07:cd:50:cb:01:48:ff:b8:5b:0f:0f:ce:c8: b1:2c:bd:b0:28:aa:07:de:6d:81:74:76:fe:56:f0:cb:c7:67: e0:7d:a3:55:0b:1b:29:60:ad:59:08:23:7a:58:8d:fe:f4:77: 47:04:82:de:7d:2a:f2:d4:09:64:7a:2d:49:e7:43:f9:9f:81: af:0f:90:ca:9d:2f:9d:11:d9:5a:e4:38:97:d6:ce:54:0e:0e: 21:a3:bd:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc4NkExMTAvBgNVBAUTKEM3MTUzMUQyNUY4MDU0OEY1QjY1MUY4NjQ5MzI1RjND OEZEODU5MzkwHhcNMjUwNTEyMTgzOTI1WhcNMjUwNTE5MTgzOTI1WjAYMRYwFAYD VQQDEw02ODIyNDA1ZC0yYzk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuACcsqoul2vGkchI6WUgPb0KST2sYgbeSSfA3TDwzhxDq+ZIRD+PTV+0qEfE lMVLEJjGBEPsSSdcG8E3vbnPKjjgOeH9m9yAxCQ1d7vc+1qTx4le6KDmetD41vui iX6b9YxWx6OaoXWZiAPLQYjySwBdO9LeOcHvX3LCe4nzMFpd9xVy57xOCICd5foG PTwbUYNt+pg6TN9iX0M/Fz6vLUVDQHGmMMP46yE67bSBjUXhgB4f20ZHoOt2S5cR EwRThmPOPcrCo9WlSgbTx4NQlyeg1v5tqSuJNcksWGEIlrnepBKIYyjfB9HHvAJ6 BCxe3S8zMv8wjaH8FMHTZESOjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEYAqLpr VLgoTC55/imnIHG/gpojMB8GA1UdIwQYMBaAFMcVMdJfgFSPW2UfhkkyXzyP2Fk5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Nzg2QS8xMjZERkM5NjFB NTUxMUVBODgwNDIyMTFDNEY5QUUwMi94eFV4MGwtQVZJOWJaUi1HU1RKZlBJX1lX VGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h4VXgwbC1BVkk5YlpSLUdTVEpmUElfWVdUay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Nzg2QS8xMjZERkM5NjFBNTUxMUVBODgwNDIyMTFDNEY5QUUwMi94eFV4MGwtQVZJ OWJaUi1HU1RKZlBJX1lXVGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6/4CyzcBsJOqQH7693DePCl1cBAxkIRsSnFd8rMfEfWxkQyuuUaD6 Gt7QufFIIpvH0FG+kpPacupSTOAvSdxK4ANDWHE1OkKnsJbxt+zT5IcCahsU4FbQ 4L3Hzo+tycTYs+M9ZARq13Qmjdr9IaSV3G3kyYByyHnBOa/cVETIyKNdjVvbJ0ci /fJOmXouSCllSATrf4+lS+qyh1ri3klVg5OJlCKwdgfNUMsBSP+4Ww8PzsixLL2w KKoH3m2BdHb+VvDLx2fgfaNVCxspYK1ZCCN6WI3+9HdHBILefSry1Alkei1J50P5 n4GvD5DKnS+dEdla5DiX1s5UDg4ho71o -----END CERTIFICATE-----Generated at Wed May 14 08:30:58 2025 by rpki-client