$ rpki-client -vvf rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft File: XAq0JfK0I14cgVaDvWyOi3uAtyc.mft (raw, json) Hash identifier: 66ad0qxEx1Eg4YbRk9H/6QAwpSEAVpnvaNGjVpjt8C4= Subject key identifier: 45:52:28:46:83:62:8F:6A:5C:B3:CB:5F:BC:51:EE:94:5F:62:2C:79 Authority key identifier: 5C:0A:B4:25:F2:B4:23:5E:1C:81:56:83:BD:6C:8E:8B:7B:80:B7:27 Certificate issuer: /CN=A917F8A9/serialNumber=5C0AB425F2B4235E1C815683BD6C8E8B7B80B727 Certificate serial: 097B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft Manifest number: 0964 Signing time: Wed 14 May 2025 20:19:34 +0000 Manifest this update: Wed 14 May 2025 20:19:33 +0000 Manifest next update: Wed 21 May 2025 20:19:33 +0000 Files and hashes: 1: XAq0JfK0I14cgVaDvWyOi3uAtyc.crl (hash: 4EgXVfv6b+J12a69oDERvbkwf5WvoLfAWmWiRryZuuo=) 2: 83DC30E0D0DB11EA9336962FC4F9AE02.roa (hash: 1xpqucRPj2sGGfUlw/hjqGcWw2RAvQEPEvj1/o7DLww=) 3: 0774A2C894F211EAB30E7682C4F9AE02.roa (hash: Qe2k4Rmt8cYvrQ25NjhCj6HgTDQ2LTBczeZdX5NMi1Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.crl rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 20:19:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2427 (0x97b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F8A9, serialNumber=5C0AB425F2B4235E1C815683BD6C8E8B7B80B727 Validity Not Before: May 14 20:19:33 2025 GMT Not After : May 21 20:19:33 2025 GMT Subject: CN=6824fad5-97c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:77:a7:50:4b:a8:ac:b0:c9:ff:d0:bc:37:17: 05:6e:41:50:d6:cd:93:02:92:a2:a4:52:df:46:22: 6f:be:e6:ab:4c:21:e6:54:3c:fa:af:01:53:89:7d: 72:47:05:6e:09:9e:a6:17:bd:19:15:a0:4d:0e:31: 29:a1:2c:a7:5b:ad:82:55:d7:6b:fc:ae:81:91:ad: 4c:df:39:36:18:5f:89:de:8b:0d:72:25:02:77:3b: 0b:77:76:7a:55:44:51:0d:72:6e:ba:b9:17:5d:37: ef:03:75:c1:43:61:bf:65:d4:e3:7b:c0:6b:1e:fb: d6:e1:0b:de:e2:11:de:09:20:95:b4:05:4a:fc:4d: f7:07:ca:3d:45:6a:43:61:13:ad:8a:8f:6d:f3:70: 88:fb:44:2d:da:d2:8c:67:17:5a:3f:43:68:29:c0: 32:c6:51:72:81:02:01:97:34:c4:7a:4d:eb:49:04: 55:23:0d:14:a7:d0:e7:ad:af:65:7f:a4:84:ef:2a: 67:5a:99:aa:b9:bd:bf:b3:40:08:64:0d:49:0e:36: 14:04:e7:ee:61:c0:0a:3b:40:ef:ae:e9:22:b5:58: 36:1f:67:d0:36:f5:8b:66:03:4c:7e:d3:e4:85:a4: f1:0e:42:ec:0c:ef:9a:1a:0d:cd:95:be:37:1c:a5: 6d:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:52:28:46:83:62:8F:6A:5C:B3:CB:5F:BC:51:EE:94:5F:62:2C:79 X509v3 Authority Key Identifier: keyid:5C:0A:B4:25:F2:B4:23:5E:1C:81:56:83:BD:6C:8E:8B:7B:80:B7:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:09:46:09:4c:37:09:1f:99:7e:29:8c:7f:04:a0:f7:09:8a: 73:bf:a6:a4:8f:a4:28:4a:ed:c5:87:ca:0d:ac:63:63:68:9e: 85:48:6c:1a:a2:a2:38:4d:43:f6:3a:04:56:3b:35:82:9a:f3: bc:33:41:88:28:56:a5:54:dd:10:54:88:41:4c:bf:84:72:26: a7:9d:5c:34:e6:e5:20:d3:f7:c8:49:bd:59:f5:60:47:a1:c8: fd:8f:af:d7:0c:3c:2e:d9:87:a3:f9:7d:07:3c:03:7d:73:40: 41:64:99:54:2a:90:1b:1a:be:af:bb:8a:bd:f2:24:cd:19:12: e1:50:b2:0d:c9:98:c5:82:87:63:ab:b2:92:3d:42:41:52:c6: f6:e0:96:7f:64:5f:c3:25:d9:81:77:11:7f:f6:46:40:db:3e: 28:24:f4:98:89:67:ec:f2:e1:28:53:4a:3b:41:bd:5c:7a:63: 60:83:6f:69:31:c4:1a:1e:a2:99:75:35:e0:c9:1f:5e:fa:1a: 16:e0:1c:e3:c2:73:a2:6d:c4:9e:fc:86:b1:d1:06:4a:5e:c5: 5d:07:ca:38:ad:c3:b2:68:12:ba:1d:e5:41:ff:81:0b:51:04: 09:74:68:4a:c9:b9:cf:6e:1b:e2:5d:86:15:ea:86:f2:3b:72: ee:39:42:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCXswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y4QTkxMTAvBgNVBAUTKDVDMEFCNDI1RjJCNDIzNUUxQzgxNTY4M0JENkM4RThC N0I4MEI3MjcwHhcNMjUwNTE0MjAxOTMzWhcNMjUwNTIxMjAxOTMzWjAYMRYwFAYD VQQDEw02ODI0ZmFkNS05N2M5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu3enUEuorLDJ/9C8NxcFbkFQ1s2TApKipFLfRiJvvuarTCHmVDz6rwFTiX1y RwVuCZ6mF70ZFaBNDjEpoSynW62CVddr/K6Bka1M3zk2GF+J3osNciUCdzsLd3Z6 VURRDXJuurkXXTfvA3XBQ2G/ZdTje8BrHvvW4Qve4hHeCSCVtAVK/E33B8o9RWpD YROtio9t83CI+0Qt2tKMZxdaP0NoKcAyxlFygQIBlzTEek3rSQRVIw0Up9Dnra9l f6SE7ypnWpmqub2/s0AIZA1JDjYUBOfuYcAKO0DvrukitVg2H2fQNvWLZgNMftPk haTxDkLsDO+aGg3Nlb43HKVtHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEVSKEaD Yo9qXLPLX7xR7pRfYix5MB8GA1UdIwQYMBaAFFwKtCXytCNeHIFWg71sjot7gLcn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjhBOS8yQUEwNDMzMDk0 RjAxMUVBODNFRjFFN0RDNEY5QUUwMi9YQXEwSmZLMEkxNGNnVmFEdld5T2kzdUF0 eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hBcTBKZkswSTE0Y2dWYUR2V3lPaTN1QXR5Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjhBOS8yQUEwNDMzMDk0RjAxMUVBODNFRjFFN0RDNEY5QUUwMi9YQXEwSmZLMEkx NGNnVmFEdld5T2kzdUF0eWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWCUYJTDcJH5l+KYx/BKD3CYpzv6akj6QoSu3Fh8oNrGNjaJ6FSGwa oqI4TUP2OgRWOzWCmvO8M0GIKFalVN0QVIhBTL+EciannVw05uUg0/fISb1Z9WBH ocj9j6/XDDwu2Yej+X0HPAN9c0BBZJlUKpAbGr6vu4q98iTNGRLhULINyZjFgodj q7KSPUJBUsb24JZ/ZF/DJdmBdxF/9kZA2z4oJPSYiWfs8uEoU0o7Qb1cemNgg29p McQaHqKZdTXgyR9e+hoW4BzjwnOibcSe/Iax0QZKXsVdB8o4rcOyaBK6HeVB/4EL UQQJdGhKybnPbhviXYYV6obyO3LuOUK9 -----END CERTIFICATE-----Generated at Thu May 15 00:19:57 2025 by rpki-client