$ rpki-client -vvf rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.mft File: xI1E8RHZ9NyOPmStf5ZIZGHLn70.mft (raw, json) Hash identifier: FQeyz+FX4zfA1gG0e+WNT5d1LmwmCN/uUBzhKSpjurs= Subject key identifier: A8:E6:B9:83:A9:C1:5A:2D:6D:DC:02:AD:C1:A0:A8:F0:1C:93:D4:D9 Authority key identifier: C4:8D:44:F1:11:D9:F4:DC:8E:3E:64:AD:7F:96:48:64:61:CB:9F:BD Certificate issuer: /CN=A9181CA2/serialNumber=C48D44F111D9F4DC8E3E64AD7F96486461CB9FBD Certificate serial: 03B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xI1E8RHZ9NyOPmStf5ZIZGHLn70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.mft Manifest number: 03B3 Signing time: Tue 13 May 2025 00:29:54 +0000 Manifest this update: Tue 13 May 2025 00:29:54 +0000 Manifest next update: Tue 20 May 2025 00:29:54 +0000 Files and hashes: 1: xI1E8RHZ9NyOPmStf5ZIZGHLn70.crl (hash: 04rjNhXfi29MjnqY70s6LytcWOjloqBUfQdio1gr7Qw=) 2: 76391AA6995311EC8EAA8C59C4F9AE02.roa (hash: W7ot2zpw7zenj0ixyvV0R84xsbmbGiyY0szYoIQxijc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.crl rsync://rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xI1E8RHZ9NyOPmStf5ZIZGHLn70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 00:29:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 952 (0x3b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9181CA2, serialNumber=C48D44F111D9F4DC8E3E64AD7F96486461CB9FBD Validity Not Before: May 13 00:29:54 2025 GMT Not After : May 20 00:29:54 2025 GMT Subject: CN=68229282-9e10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:5f:6e:69:ab:90:d7:75:06:7a:ec:6f:06:90: 09:9a:1f:bd:80:27:f7:1b:45:f3:cf:d9:2b:94:d8: d5:7f:86:6e:89:68:bd:9d:80:83:1d:e5:98:58:59: ba:c2:01:69:24:0c:62:5a:2b:ea:76:7b:10:01:3b: fa:6e:06:cc:ea:c2:1f:a6:45:2e:9c:0b:5b:86:c6: 2d:d7:b3:3a:1f:27:6c:ea:44:77:61:09:a0:96:64: 90:74:cb:a4:40:d5:3b:87:fe:29:37:95:89:59:e2: 6f:4a:96:6b:1c:5a:86:05:1c:f4:07:fd:77:e5:e1: ac:85:c9:d2:b3:f1:bb:49:70:74:7f:b3:b5:00:8a: 3d:88:64:3a:4b:40:e8:1e:9f:f9:b0:e4:af:ec:c4: 37:8e:16:61:3e:65:eb:2e:cd:d8:52:83:40:7c:14: 22:5c:c3:88:0a:2f:ed:a3:f9:77:94:da:47:c8:c5: 09:9c:ed:27:c9:20:55:6a:32:03:10:69:b7:40:81: 0a:88:89:44:e1:56:b1:0f:36:0e:01:52:c6:78:a3: 8f:1b:6a:21:b8:d4:c3:a5:ad:50:c6:ef:85:aa:8a: 23:98:6a:04:18:a6:6f:dd:27:60:b7:18:47:70:96: a5:00:a9:30:6c:f0:3c:8a:c5:f2:47:74:1e:63:c8: ff:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:E6:B9:83:A9:C1:5A:2D:6D:DC:02:AD:C1:A0:A8:F0:1C:93:D4:D9 X509v3 Authority Key Identifier: keyid:C4:8D:44:F1:11:D9:F4:DC:8E:3E:64:AD:7F:96:48:64:61:CB:9F:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xI1E8RHZ9NyOPmStf5ZIZGHLn70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ca:e1:8e:a7:b3:50:f1:1a:8f:c4:24:73:03:58:59:1c:72:fd: cc:33:f3:95:fe:36:30:d7:0c:46:a7:e1:c7:f9:0e:33:05:b3: fa:b6:27:96:35:c2:4c:ec:53:5f:a3:bc:ca:80:35:3a:ae:01: 95:11:a6:7b:a4:54:a0:7e:00:ba:a0:97:0d:37:23:e5:06:3b: 35:33:54:48:12:43:83:5d:1e:3b:bb:af:d4:d4:e1:44:09:de: 94:09:84:be:57:12:f9:07:d7:0c:1f:10:4c:da:ff:f3:13:2e: 23:8d:d5:cf:ec:70:ae:fe:67:d3:39:f4:f7:c5:07:96:ba:c0: c8:36:99:9b:1a:1b:31:06:01:f1:a3:3e:36:dd:d7:aa:73:0d: 76:ce:b3:55:03:96:bd:5d:70:b0:19:d7:1e:9b:c7:60:5e:c7: 82:6e:e0:58:cb:0f:f9:2c:d3:c7:80:85:b3:2f:55:6f:3f:c7: 2e:99:c5:ca:0b:36:73:35:2c:cb:da:71:6c:fb:b0:79:2c:dc: 23:1a:89:33:bb:27:57:65:d9:fe:5c:03:bd:4b:5d:79:80:2b: 73:fc:6d:ca:65:9a:74:a8:cd:6e:61:67:2d:62:ce:48:83:51: ba:c6:67:a1:56:b5:13:0b:80:fe:7c:8a:10:1f:11:a7:6e:66: 47:19:8d:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA7gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODFDQTIxMTAvBgNVBAUTKEM0OEQ0NEYxMTFEOUY0REM4RTNFNjRBRDdGOTY0ODY0 NjFDQjlGQkQwHhcNMjUwNTEzMDAyOTU0WhcNMjUwNTIwMDAyOTU0WjAYMRYwFAYD VQQDEw02ODIyOTI4Mi05ZTEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyl9uaauQ13UGeuxvBpAJmh+9gCf3G0Xzz9krlNjVf4ZuiWi9nYCDHeWYWFm6 wgFpJAxiWivqdnsQATv6bgbM6sIfpkUunAtbhsYt17M6Hyds6kR3YQmglmSQdMuk QNU7h/4pN5WJWeJvSpZrHFqGBRz0B/135eGshcnSs/G7SXB0f7O1AIo9iGQ6S0Do Hp/5sOSv7MQ3jhZhPmXrLs3YUoNAfBQiXMOICi/to/l3lNpHyMUJnO0nySBVajID EGm3QIEKiIlE4VaxDzYOAVLGeKOPG2ohuNTDpa1Qxu+FqoojmGoEGKZv3SdgtxhH cJalAKkwbPA8isXyR3QeY8j/QwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKjmuYOp wVotbdwCrcGgqPAck9TZMB8GA1UdIwQYMBaAFMSNRPER2fTcjj5krX+WSGRhy5+9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MUNBMi83OTM2NUI4RThG MDcxMUVDOUVCMjMxNzBDNEY5QUUwMi94STFFOFJIWjlOeU9QbVN0ZjVaSVpHSExu NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hJMUU4UkhaOU55T1BtU3RmNVpJWkdITG43MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MUNBMi83OTM2NUI4RThGMDcxMUVDOUVCMjMxNzBDNEY5QUUwMi94STFFOFJIWjlO eU9QbVN0ZjVaSVpHSExuNzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDK4Y6ns1DxGo/EJHMDWFkccv3MM/OV/jYw1wxGp+HH+Q4zBbP6tieW NcJM7FNfo7zKgDU6rgGVEaZ7pFSgfgC6oJcNNyPlBjs1M1RIEkODXR47u6/U1OFE Cd6UCYS+VxL5B9cMHxBM2v/zEy4jjdXP7HCu/mfTOfT3xQeWusDINpmbGhsxBgHx oz423deqcw12zrNVA5a9XXCwGdcem8dgXseCbuBYyw/5LNPHgIWzL1VvP8cumcXK CzZzNSzL2nFs+7B5LNwjGokzuydXZdn+XAO9S115gCtz/G3KZZp0qM1uYWctYs5I g1G6xmehVrUTC4D+fIoQHxGnbmZHGY0N -----END CERTIFICATE-----Generated at Wed May 14 18:33:50 2025 by rpki-client