$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft File: XwTABfKMKFbHu_R2uRxioC8vxRw.mft (raw, json) Hash identifier: ighve9aBcWiTdLjPN4LS5TwcOgyKvjEM0clNGiJYjuU= Subject key identifier: 44:C8:7F:E5:3D:EA:63:CA:8F:89:A0:0F:88:AD:56:6A:65:B1:37:67 Authority key identifier: 5F:04:C0:05:F2:8C:28:56:C7:BB:F4:76:B9:1C:62:A0:2F:2F:C5:1C Certificate issuer: /CN=A915A0FB/serialNumber=5F04C005F28C2856C7BBF476B91C62A02F2FC51C Certificate serial: A5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XwTABfKMKFbHu_R2uRxioC8vxRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft Manifest number: A3 Signing time: Tue 13 May 2025 04:58:30 +0000 Manifest this update: Tue 13 May 2025 04:58:30 +0000 Manifest next update: Tue 20 May 2025 04:58:30 +0000 Files and hashes: 1: XwTABfKMKFbHu_R2uRxioC8vxRw.crl (hash: 8cbTHFkXKt/9AwslnHvWqICW9nsrWXBq5GkoBaksiKw=) 2: 900F4ADA440611EF85166C30C4F9AE02.roa (hash: jYgy4yMQyKQf5VxNbJ2NKQFUgnsZsFyOqLwxVUIrb0I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.crl rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XwTABfKMKFbHu_R2uRxioC8vxRw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 165 (0xa5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0FB, serialNumber=5F04C005F28C2856C7BBF476B91C62A02F2FC51C Validity Not Before: May 13 04:58:30 2025 GMT Not After : May 20 04:58:30 2025 GMT Subject: CN=6822d176-3259 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:39:79:0b:7f:30:ce:3a:07:11:e8:a1:4e:b7: 76:b5:74:a7:4f:ae:1d:07:6b:23:a2:c3:c5:11:a3: ef:1b:31:df:8b:36:e9:4f:9d:f3:47:3b:3e:7a:80: dd:44:ad:4b:fe:f9:c4:58:09:3a:48:a6:5f:be:2b: 2e:6b:81:c6:33:de:d4:78:0b:5d:ee:5d:70:41:42: bb:c8:ba:b2:01:85:fe:82:c1:b1:d5:c3:21:0c:a7: 6f:1c:d4:71:56:ec:b3:5d:ef:18:ab:ce:ba:40:ec: 6e:74:65:11:07:91:1a:b2:39:ec:d8:7d:e0:9f:74: 2d:eb:ed:55:18:c4:08:41:46:13:4b:63:54:f5:a7: 2f:8f:6c:6c:fc:5c:06:33:9d:f5:02:11:15:0e:0a: eb:f8:48:8f:8c:96:0b:14:96:f6:5e:da:a0:f6:a7: af:e0:d2:96:8f:45:87:21:d1:35:72:36:e4:15:f0: a7:50:19:6f:26:d9:54:e7:04:4b:d6:4b:fc:38:2b: 90:fc:ba:65:f5:2e:5b:0e:c1:70:8a:b4:84:dc:23: b3:70:23:c0:57:4a:3c:9a:08:7d:38:ff:30:c8:93: 87:c5:49:b4:22:99:35:36:88:95:5b:b1:ac:c8:fc: 0a:2e:05:8a:cf:2c:b9:e9:ba:f3:e1:cf:c4:f7:b6: 76:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:C8:7F:E5:3D:EA:63:CA:8F:89:A0:0F:88:AD:56:6A:65:B1:37:67 X509v3 Authority Key Identifier: keyid:5F:04:C0:05:F2:8C:28:56:C7:BB:F4:76:B9:1C:62:A0:2F:2F:C5:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XwTABfKMKFbHu_R2uRxioC8vxRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:89:95:8c:e9:e6:55:a4:79:cc:86:be:ef:56:d2:7e:1b:6e: a1:75:bb:a7:20:d6:fa:b9:0d:5d:1e:d0:38:3f:85:8b:45:89: 39:27:93:3f:0a:60:7d:d0:cd:28:69:25:1d:d0:ca:14:82:df: 04:33:2f:4c:39:11:a6:7a:05:88:19:70:ab:0c:eb:a1:67:1e: dd:05:4f:fd:3a:3d:be:41:66:49:69:9a:de:45:95:59:57:ca: 55:67:16:2f:64:f4:6e:4d:ab:24:af:49:bc:ed:d8:88:6a:a4: 73:3b:6e:d6:f3:0d:4c:4f:7e:dd:e2:93:d9:b2:6e:22:48:84: 59:8a:13:3f:4a:3a:22:2d:8c:fb:ef:6c:31:18:6f:ad:f5:80: a3:39:c1:8a:1f:c9:58:66:cf:1d:6c:bc:3b:a8:17:3b:b9:d5: 0b:f6:b5:28:d5:da:d3:87:97:9f:3c:0d:8d:f7:08:69:7c:6c: 44:c8:47:6f:35:4d:f2:67:8d:0a:3c:53:5b:70:fe:88:5d:51: 56:bf:67:22:a2:67:a9:ea:fe:9d:78:03:ee:96:cd:04:e8:06: 35:2a:9c:79:a8:e3:98:4b:69:29:69:40:9c:ba:c7:ff:25:07: be:50:2f:f2:83:b6:0b:9f:90:61:ba:84:9c:09:80:a0:6d:e4: dd:01:b4:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEwRkIxMTAvBgNVBAUTKDVGMDRDMDA1RjI4QzI4NTZDN0JCRjQ3NkI5MUM2MkEw MkYyRkM1MUMwHhcNMjUwNTEzMDQ1ODMwWhcNMjUwNTIwMDQ1ODMwWjAYMRYwFAYD VQQDEw02ODIyZDE3Ni0zMjU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmTl5C38wzjoHEeihTrd2tXSnT64dB2sjosPFEaPvGzHfizbpT53zRzs+eoDd RK1L/vnEWAk6SKZfvisua4HGM97UeAtd7l1wQUK7yLqyAYX+gsGx1cMhDKdvHNRx VuyzXe8Yq866QOxudGURB5Easjns2H3gn3Qt6+1VGMQIQUYTS2NU9acvj2xs/FwG M531AhEVDgrr+EiPjJYLFJb2Xtqg9qev4NKWj0WHIdE1cjbkFfCnUBlvJtlU5wRL 1kv8OCuQ/Lpl9S5bDsFwirSE3COzcCPAV0o8mgh9OP8wyJOHxUm0Ipk1NoiVW7Gs yPwKLgWKzyy56brz4c/E97Z2lQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFETIf+U9 6mPKj4mgD4itVmplsTdnMB8GA1UdIwQYMBaAFF8EwAXyjChWx7v0drkcYqAvL8Uc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBGQi9FMTcxOTM2MjNE OEQxMUVGODcwNTNCMEZDNEY5QUUwMi9Yd1RBQmZLTUtGYkh1X1IydVJ4aW9DOHZ4 UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1h3VEFCZktNS0ZiSHVfUjJ1Unhpb0M4dnhSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTBGQi9FMTcxOTM2MjNEOEQxMUVGODcwNTNCMEZDNEY5QUUwMi9Yd1RBQmZLTUtG Ykh1X1IydVJ4aW9DOHZ4UncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDiZWM6eZVpHnMhr7vVtJ+G26hdbunINb6uQ1dHtA4P4WLRYk5J5M/ CmB90M0oaSUd0MoUgt8EMy9MORGmegWIGXCrDOuhZx7dBU/9Oj2+QWZJaZreRZVZ V8pVZxYvZPRuTaskr0m87diIaqRzO27W8w1MT37d4pPZsm4iSIRZihM/SjoiLYz7 72wxGG+t9YCjOcGKH8lYZs8dbLw7qBc7udUL9rUo1drTh5efPA2N9whpfGxEyEdv NU3yZ40KPFNbcP6IXVFWv2ciomep6v6deAPuls0E6AY1Kpx5qOOYS2kpaUCcusf/ JQe+UC/yg7YLn5BhuoScCYCgbeTdAbTH -----END CERTIFICATE-----Generated at Tue May 13 15:24:12 2025 by rpki-client