$ rpki-client -vvf rpki.apnic.net/member_repository/A9164390/0E9354FCDC5C11E68E915E32C4F9AE02/xkM8SeY82SA1swfo95Y3YI_q2_U.mft File: xkM8SeY82SA1swfo95Y3YI_q2_U.mft (raw, json) Hash identifier: kBrUh2J0oAr3cYPeJA8zZP2cnJH+K4eHKOovUOr/gZY= Subject key identifier: 32:72:4A:B7:4C:D2:1C:7E:33:3A:3E:E8:5D:F8:01:40:36:8A:C9:69 Authority key identifier: C6:43:3C:49:E6:3C:D9:20:35:B3:07:E8:F7:96:37:60:8F:EA:DB:F5 Certificate issuer: /CN=A9164390/serialNumber=C6433C49E63CD92035B307E8F79637608FEADBF5 Certificate serial: 1CB9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xkM8SeY82SA1swfo95Y3YI_q2_U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164390/0E9354FCDC5C11E68E915E32C4F9AE02/xkM8SeY82SA1swfo95Y3YI_q2_U.mft Manifest number: 1C7D Signing time: Mon 12 May 2025 16:08:33 +0000 Manifest this update: Mon 12 May 2025 16:08:33 +0000 Manifest next update: Mon 19 May 2025 16:08:33 +0000 Files and hashes: 1: xkM8SeY82SA1swfo95Y3YI_q2_U.crl (hash: OOx8sSQb8EC2Tnly1tBvelj9mRLWCjrLO12+B/giv3c=) 2: 35D40EDE9F8511ECBE806D30C4F9AE02.roa (hash: Lk2qEHSCNbYOjvU+PcwacX3VW6CH6qyKSanfWEzTYmU=) 3: A149F286EFD311EFB37AB53EC4F9AE02.roa (hash: 7lOYsVaaqHqx4pgPOBBbAkvs7oMzJU4VOgvj6HMpoQE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164390/0E9354FCDC5C11E68E915E32C4F9AE02/xkM8SeY82SA1swfo95Y3YI_q2_U.crl rsync://rpki.apnic.net/member_repository/A9164390/0E9354FCDC5C11E68E915E32C4F9AE02/xkM8SeY82SA1swfo95Y3YI_q2_U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xkM8SeY82SA1swfo95Y3YI_q2_U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 16:08:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7353 (0x1cb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164390, serialNumber=C6433C49E63CD92035B307E8F79637608FEADBF5 Validity Not Before: May 12 16:08:33 2025 GMT Not After : May 19 16:08:33 2025 GMT Subject: CN=68221d01-f5a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:14:03:7c:14:2e:e0:c9:75:6c:32:62:19:fe: b8:31:01:30:66:69:fd:36:a1:3d:fb:3b:fd:21:42: 35:89:03:49:71:4e:63:21:8f:20:fe:10:43:bb:62: 88:89:5d:1d:63:56:f6:4c:3a:02:f5:3c:e8:bd:97: 25:e8:17:76:f6:da:61:71:0c:76:62:bf:17:94:8a: 64:53:88:fb:39:b3:b6:87:ab:d3:12:5e:ab:bc:43: 22:09:d4:78:f9:72:60:51:d1:27:55:f4:49:f1:7a: 14:ed:10:16:ec:24:b8:8c:f8:09:06:c6:f9:a0:50: 2e:c5:9f:1a:e8:d0:73:67:e0:ab:ca:13:5d:74:e7: 72:90:dd:34:fc:e1:10:0b:2e:ea:ff:3f:0c:a5:5c: f8:74:5e:5f:b4:4a:1f:53:5f:7e:89:29:16:60:5d: 05:ce:30:ba:58:4a:93:fc:44:19:a4:9e:08:e0:f2: 91:88:d8:e1:ae:a8:c6:b9:5c:48:37:91:d4:b5:95: f7:4f:da:62:9b:f6:19:ae:20:de:0c:6b:69:ee:b7: 23:3c:7f:95:9d:27:d2:20:21:03:d1:46:6b:da:a3: 0e:ef:96:32:6c:95:5d:e5:4c:b7:59:3f:ff:ea:36: 3e:b5:a4:77:37:48:98:f3:31:c0:b3:0a:e4:fc:42: 8e:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:72:4A:B7:4C:D2:1C:7E:33:3A:3E:E8:5D:F8:01:40:36:8A:C9:69 X509v3 Authority Key Identifier: keyid:C6:43:3C:49:E6:3C:D9:20:35:B3:07:E8:F7:96:37:60:8F:EA:DB:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164390/0E9354FCDC5C11E68E915E32C4F9AE02/xkM8SeY82SA1swfo95Y3YI_q2_U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xkM8SeY82SA1swfo95Y3YI_q2_U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164390/0E9354FCDC5C11E68E915E32C4F9AE02/xkM8SeY82SA1swfo95Y3YI_q2_U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:22:14:0d:06:2b:4f:2e:4a:4d:b2:ce:6c:02:18:9f:e0:d6: 05:10:b2:e9:c6:ff:ea:e8:7f:87:6c:d2:fc:84:cc:47:af:60: 26:1b:41:36:48:e5:06:d0:64:13:78:09:97:14:c6:66:61:a9: b4:26:08:99:22:53:78:e7:54:02:f3:5c:13:4c:10:6d:9a:01: 0c:83:e8:b6:f5:9a:bc:3c:eb:55:07:01:91:e0:02:84:31:44: c5:91:a4:1d:b7:90:b3:bd:bf:75:ed:0f:29:d2:fa:cb:bb:d3: 00:ee:bc:64:36:8f:01:79:1f:9d:28:84:a3:ea:ce:23:71:0e: 67:4c:62:84:a4:89:98:69:60:d1:77:2b:a6:08:f8:d0:42:dc: 9d:58:e4:e5:2d:31:ad:31:fa:19:5c:2f:77:e2:d9:c4:93:7a: 08:ba:3c:51:75:bb:9a:aa:bd:f1:e7:ac:93:97:ef:07:eb:39: 35:33:ad:54:e6:cb:8b:92:b1:d7:85:f6:1b:96:15:08:50:04: cd:46:59:ab:2e:7a:77:c9:92:61:48:d4:5a:a5:78:41:c9:99: 55:5b:47:c6:4d:1f:18:23:9c:36:97:0a:04:e3:b5:8d:c9:88: f0:91:6d:a1:62:f6:38:91:ae:3c:03:d7:7b:53:00:3d:aa:e5: 12:a8:9d:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHLkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQzOTAxMTAvBgNVBAUTKEM2NDMzQzQ5RTYzQ0Q5MjAzNUIzMDdFOEY3OTYzNzYw OEZFQURCRjUwHhcNMjUwNTEyMTYwODMzWhcNMjUwNTE5MTYwODMzWjAYMRYwFAYD VQQDEw02ODIyMWQwMS1mNWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnRQDfBQu4Ml1bDJiGf64MQEwZmn9NqE9+zv9IUI1iQNJcU5jIY8g/hBDu2KI iV0dY1b2TDoC9TzovZcl6Bd29tphcQx2Yr8XlIpkU4j7ObO2h6vTEl6rvEMiCdR4 +XJgUdEnVfRJ8XoU7RAW7CS4jPgJBsb5oFAuxZ8a6NBzZ+CryhNddOdykN00/OEQ Cy7q/z8MpVz4dF5ftEofU19+iSkWYF0FzjC6WEqT/EQZpJ4I4PKRiNjhrqjGuVxI N5HUtZX3T9pim/YZriDeDGtp7rcjPH+VnSfSICED0UZr2qMO75YybJVd5Uy3WT// 6jY+taR3N0iY8zHAswrk/EKOYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDJySrdM 0hx+Mzo+6F34AUA2islpMB8GA1UdIwQYMBaAFMZDPEnmPNkgNbMH6PeWN2CP6tv1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDM5MC8wRTkzNTRGQ0RD NUMxMUU2OEU5MTVFMzJDNEY5QUUwMi94a004U2VZODJTQTFzd2ZvOTVZM1lJX3Ey X1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hrTThTZVk4MlNBMXN3Zm85NVkzWUlfcTJfVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NDM5MC8wRTkzNTRGQ0RDNUMxMUU2OEU5MTVFMzJDNEY5QUUwMi94a004U2VZODJT QTFzd2ZvOTVZM1lJX3EyX1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjIhQNBitPLkpNss5sAhif4NYFELLpxv/q6H+HbNL8hMxHr2AmG0E2 SOUG0GQTeAmXFMZmYam0JgiZIlN451QC81wTTBBtmgEMg+i29Zq8POtVBwGR4AKE MUTFkaQdt5Czvb917Q8p0vrLu9MA7rxkNo8BeR+dKISj6s4jcQ5nTGKEpImYaWDR dyumCPjQQtydWOTlLTGtMfoZXC934tnEk3oIujxRdbuaqr3x56yTl+8H6zk1M61U 5suLkrHXhfYblhUIUATNRlmrLnp3yZJhSNRapXhByZlVW0fGTR8YI5w2lwoE47WN yYjwkW2hYvY4ka48A9d7UwA9quUSqJ2z -----END CERTIFICATE-----Generated at Wed May 14 10:28:23 2025 by rpki-client