$ rpki-client -vvf rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.mft File: xiGEgVH3l79yMQfxTWLGeiE6U-M.mft (raw, json) Hash identifier: bey4TYkOgkXOyFl/7XHpc2oe+wZxzKqoc2qKQ3FMHLM= Subject key identifier: 42:90:AA:A8:08:E5:D5:EB:0D:79:63:02:47:90:0B:53:2C:86:2B:F2 Authority key identifier: C6:21:84:81:51:F7:97:BF:72:31:07:F1:4D:62:C6:7A:21:3A:53:E3 Certificate issuer: /CN=A915EBC8/serialNumber=C621848151F797BF723107F14D62C67A213A53E3 Certificate serial: 01BE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiGEgVH3l79yMQfxTWLGeiE6U-M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.mft Manifest number: 019B Signing time: Sun 11 May 2025 02:38:48 +0000 Manifest this update: Sun 11 May 2025 02:38:47 +0000 Manifest next update: Sun 18 May 2025 02:38:47 +0000 Files and hashes: 1: xiGEgVH3l79yMQfxTWLGeiE6U-M.crl (hash: MCONQ5EA7QMvbX91sxwBTvXfmllL/bcCLJ26+EWw47M=) 2: AC61350A4E3C11EF9286040CC4F9AE02.roa (hash: TUo7uv4rXTA0iRyimVV1a57fjFNt5Gy9xOb0XovcHoI=) 3: 781637A8FADD11EE880BF37DC4F9AE02.roa (hash: NHs0+oLxPl8uuJffLMiSnsDVJyHvtsfXj9mt3FT2mqU=) 4: 9BB3FAB6CCB511EE8612FB18C4F9AE02.roa (hash: AeF6+orX99LwnbHGZiB851tFWKGqrAIMqoROhOgxFpw=) 5: 7755D5B2FADD11EE880BF37DC4F9AE02.roa (hash: 7c9RXUhll7RjmfKdCACTxBkSEfUtF0muR2dkJbiSbMQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.crl rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiGEgVH3l79yMQfxTWLGeiE6U-M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 02:38:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 446 (0x1be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915EBC8, serialNumber=C621848151F797BF723107F14D62C67A213A53E3 Validity Not Before: May 11 02:38:47 2025 GMT Not After : May 18 02:38:47 2025 GMT Subject: CN=68200db8-f361 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:3e:56:41:f1:56:9b:37:56:c1:23:6b:d3:e4: ef:cc:86:12:d9:3c:b9:83:f5:9b:7c:f4:90:21:5a: 36:88:2a:07:79:18:6a:a2:40:39:2b:10:a4:01:f2: e3:cd:ad:c4:5b:49:f4:9b:00:64:62:34:29:07:cb: 51:4d:bd:10:28:3b:6b:81:16:54:51:da:c7:e6:7e: 50:19:19:f7:d0:5a:f1:0d:bd:7a:93:f3:df:6a:61: be:d3:08:6d:ab:1b:b4:43:19:af:19:04:9b:f0:b1: 31:43:91:d9:20:24:98:04:8a:37:61:ab:35:8d:25: 50:8a:fc:b9:cd:ed:30:45:b8:c2:21:7d:b3:ba:a3: e2:d7:86:71:49:fd:06:3b:1b:f0:b0:00:eb:9d:77: 19:89:2b:02:82:27:97:1a:79:71:b0:89:ec:2d:24: 5b:e7:6c:88:d9:6a:51:53:ff:3e:d1:76:b5:18:da: 9b:dd:15:6d:48:74:37:70:7b:27:dc:a3:b2:0d:8c: 19:e1:21:78:d7:a0:a4:96:a4:38:5a:4f:95:de:56: 41:10:24:7c:b5:4d:7c:a6:38:7e:e2:bc:32:49:bb: a5:dc:11:d8:40:8b:46:f9:24:8f:fc:2f:22:29:9a: c8:0f:80:be:0e:7d:48:f0:f6:16:fd:72:97:11:3d: 3e:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:90:AA:A8:08:E5:D5:EB:0D:79:63:02:47:90:0B:53:2C:86:2B:F2 X509v3 Authority Key Identifier: keyid:C6:21:84:81:51:F7:97:BF:72:31:07:F1:4D:62:C6:7A:21:3A:53:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiGEgVH3l79yMQfxTWLGeiE6U-M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:d4:b0:47:0e:71:23:40:39:a0:cf:63:b6:74:a8:ff:a1:13: dd:9f:9a:24:fc:aa:68:05:bc:b5:f0:a8:5c:2a:46:1a:c2:b0: 7a:d6:9b:16:71:bd:33:a8:4a:c6:fb:23:6a:3c:72:5d:93:99: 5c:3f:db:a6:cf:ae:db:41:95:96:20:ef:d2:e0:ee:b3:9f:be: cc:6a:75:ee:73:b1:ed:ed:e4:d8:75:54:b1:50:66:d9:5c:c9: bd:5c:c9:bb:6d:2f:95:41:26:24:de:3b:2b:f0:cf:08:05:39: 3f:21:7f:a8:ca:e1:27:47:a5:6c:eb:3d:8d:3a:0b:f0:c6:99: 10:30:85:48:f9:b1:d7:9d:0e:01:f3:c5:6d:3e:ec:01:95:55: 2a:e2:a0:6a:e5:28:fb:4d:ce:b4:db:09:39:44:81:2d:9d:12: 94:81:37:b7:a8:80:f8:9c:a7:57:23:f4:ac:5a:5b:8b:1d:fc: 65:4f:b5:8f:7b:fa:22:05:16:e9:53:df:0a:69:4f:c0:51:8b: b0:76:27:a8:b9:27:e1:21:ae:5a:60:fd:3c:61:32:74:c4:22: 36:c1:b7:ba:b6:80:01:95:a7:10:e3:4b:33:da:e0:b9:b0:ef: d5:e1:af:80:ce:35:6d:7c:79:0f:0b:15:0d:fb:56:20:b6:4b: f8:f1:6d:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAb4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUVCQzgxMTAvBgNVBAUTKEM2MjE4NDgxNTFGNzk3QkY3MjMxMDdGMTRENjJDNjdB MjEzQTUzRTMwHhcNMjUwNTExMDIzODQ3WhcNMjUwNTE4MDIzODQ3WjAYMRYwFAYD VQQDEw02ODIwMGRiOC1mMzYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtT5WQfFWmzdWwSNr0+TvzIYS2Ty5g/WbfPSQIVo2iCoHeRhqokA5KxCkAfLj za3EW0n0mwBkYjQpB8tRTb0QKDtrgRZUUdrH5n5QGRn30FrxDb16k/PfamG+0wht qxu0QxmvGQSb8LExQ5HZICSYBIo3Yas1jSVQivy5ze0wRbjCIX2zuqPi14ZxSf0G OxvwsADrnXcZiSsCgieXGnlxsInsLSRb52yI2WpRU/8+0Xa1GNqb3RVtSHQ3cHsn 3KOyDYwZ4SF416CklqQ4Wk+V3lZBECR8tU18pjh+4rwySbul3BHYQItG+SSP/C8i KZrID4C+Dn1I8PYW/XKXET0+6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEKQqqgI 5dXrDXljAkeQC1MshivyMB8GA1UdIwQYMBaAFMYhhIFR95e/cjEH8U1ixnohOlPj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RUJDOC81ODk4MjBDMkVG MDIxMUVEOEMyREQ5MUZDNEY5QUUwMi94aUdFZ1ZIM2w3OXlNUWZ4VFdMR2VpRTZV LU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hpR0VnVkgzbDc5eU1RZnhUV0xHZWlFNlUtTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RUJDOC81ODk4MjBDMkVGMDIxMUVEOEMyREQ5MUZDNEY5QUUwMi94aUdFZ1ZIM2w3 OXlNUWZ4VFdMR2VpRTZVLU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAy1LBHDnEjQDmgz2O2dKj/oRPdn5ok/KpoBby18KhcKkYawrB61psW cb0zqErG+yNqPHJdk5lcP9umz67bQZWWIO/S4O6zn77ManXuc7Ht7eTYdVSxUGbZ XMm9XMm7bS+VQSYk3jsr8M8IBTk/IX+oyuEnR6Vs6z2NOgvwxpkQMIVI+bHXnQ4B 88VtPuwBlVUq4qBq5Sj7Tc602wk5RIEtnRKUgTe3qID4nKdXI/SsWluLHfxlT7WP e/oiBRbpU98KaU/AUYuwdieouSfhIa5aYP08YTJ0xCI2wbe6toABlacQ40sz2uC5 sO/V4a+AzjVtfHkPCxUN+1Ygtkv48W1a -----END CERTIFICATE-----Generated at Sun May 11 20:04:08 2025 by rpki-client