$ rpki-client -vvf rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft File: XctT6r5qkI7KhlLekkgHxQnFLTA.mft (raw, json) Hash identifier: 3q+EvqWpKSy9EMeagKsBOCZ82qwL0juRSpmfMdkTNqE= Subject key identifier: A7:88:21:B0:C2:C7:60:E4:69:B5:EC:92:FE:AF:3E:4B:D2:0F:5D:3F Authority key identifier: 5D:CB:53:EA:BE:6A:90:8E:CA:86:52:DE:92:48:07:C5:09:C5:2D:30 Certificate issuer: /CN=A918560D/serialNumber=5DCB53EABE6A908ECA8652DE924807C509C52D30 Certificate serial: 0CE3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XctT6r5qkI7KhlLekkgHxQnFLTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft Manifest number: 0CDA Signing time: Wed 14 May 2025 18:14:40 +0000 Manifest this update: Wed 14 May 2025 18:14:39 +0000 Manifest next update: Wed 21 May 2025 18:14:39 +0000 Files and hashes: 1: XctT6r5qkI7KhlLekkgHxQnFLTA.crl (hash: oJLH8rwJ/dy7EmJumcO6q48ZibJSJ/K5EHooct0q85U=) 2: 41A8E738045111EA9C7DF516C4F9AE02.roa (hash: 549cEJi0czWRyHHS6o5u4NQ6YCs80VKq9MH5xptp8mg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.crl rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XctT6r5qkI7KhlLekkgHxQnFLTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 18:14:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3299 (0xce3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918560D, serialNumber=5DCB53EABE6A908ECA8652DE924807C509C52D30 Validity Not Before: May 14 18:14:39 2025 GMT Not After : May 21 18:14:39 2025 GMT Subject: CN=6824dd90-bcb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:c1:12:6e:06:cf:d6:16:4b:e1:0b:c9:c0:5b: 0f:29:51:f5:90:aa:34:53:a5:05:ff:d5:44:f4:bc: 08:49:d7:b7:fe:64:f2:57:86:e4:ce:5f:c0:e1:c2: 2c:73:a0:1f:4c:f5:ba:d1:fd:08:7c:f3:ee:5c:c0: b1:64:ed:39:cc:dd:b2:49:7c:8d:e1:7c:f9:68:0d: 61:8c:a1:40:ac:de:7a:a0:b9:1f:54:02:ec:ee:14: c1:b9:4d:69:a7:35:0a:b7:ef:53:79:fd:d7:86:b9: 42:20:4a:2c:0c:33:6e:31:d1:ed:fe:24:a8:e9:28: 9d:bb:de:dd:8e:46:ea:a0:19:b3:c9:d8:6a:8e:d7: ce:b0:12:27:f9:69:e8:e2:60:5b:7d:8d:47:f5:b7: 7c:52:ce:c6:5c:6e:70:13:23:1b:04:b0:ef:cf:3b: 60:a1:f7:30:cd:d3:83:45:ff:db:19:bf:72:3f:9d: e7:93:4f:6f:72:8e:3b:fc:d7:53:36:61:47:a2:8e: cd:3b:93:52:56:a9:ff:4a:86:2f:8a:e5:af:ec:e6: 17:9a:df:b3:d6:c3:55:4b:66:6e:f8:7f:02:12:0f: c2:2d:03:9e:6b:1c:b4:a5:c1:65:07:ec:4d:1e:02: df:08:40:e7:78:38:e3:12:5e:e3:7f:64:8d:01:f9: 00:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:88:21:B0:C2:C7:60:E4:69:B5:EC:92:FE:AF:3E:4B:D2:0F:5D:3F X509v3 Authority Key Identifier: keyid:5D:CB:53:EA:BE:6A:90:8E:CA:86:52:DE:92:48:07:C5:09:C5:2D:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XctT6r5qkI7KhlLekkgHxQnFLTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:26:db:61:10:b7:06:eb:51:79:2f:c4:79:cf:c0:c7:4b:ab: cf:1e:c9:c7:cd:ff:55:71:57:b5:35:13:6c:79:ba:66:33:5a: fe:38:1b:3e:7c:bc:69:ce:31:4c:db:9e:ba:a4:32:1a:51:30: b5:8a:05:7b:5f:2a:3f:80:c1:00:71:e0:fb:70:41:99:57:dd: 84:95:06:ba:8f:a8:36:6a:26:69:dc:cf:0e:52:33:9f:eb:d2: b9:4b:75:60:08:7f:a2:13:5a:de:d8:84:03:7d:65:c7:55:cf: 7a:34:75:a6:bd:52:7c:28:ea:4a:d8:2e:3d:2a:cf:df:0a:d6: 1b:75:c9:12:97:1f:d6:8b:84:dc:92:20:00:31:ba:ed:49:59: e9:58:0e:22:d5:e3:c0:8f:31:21:18:39:21:f8:20:c0:bc:d7: e0:a5:4b:09:d9:90:46:38:3d:91:b2:57:d8:4e:2d:61:53:20: 3f:1d:5c:f1:d7:93:99:f2:ad:02:30:eb:2e:da:76:5a:82:f4: cf:e8:f0:2c:c3:f4:95:f7:6d:e8:37:75:5d:af:99:ed:85:22: a7:c9:d0:5f:31:a1:3c:a6:44:2b:88:b2:6d:6f:1b:e1:38:a3: bc:38:e2:3f:53:13:fb:12:55:f0:d0:84:68:cd:ef:ab:03:bf: 26:9f:85:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU2MEQxMTAvBgNVBAUTKDVEQ0I1M0VBQkU2QTkwOEVDQTg2NTJERTkyNDgwN0M1 MDlDNTJEMzAwHhcNMjUwNTE0MTgxNDM5WhcNMjUwNTIxMTgxNDM5WjAYMRYwFAYD VQQDEw02ODI0ZGQ5MC1iY2I1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxsESbgbP1hZL4QvJwFsPKVH1kKo0U6UF/9VE9LwISde3/mTyV4bkzl/A4cIs c6AfTPW60f0IfPPuXMCxZO05zN2ySXyN4Xz5aA1hjKFArN56oLkfVALs7hTBuU1p pzUKt+9Tef3XhrlCIEosDDNuMdHt/iSo6Sidu97djkbqoBmzydhqjtfOsBIn+Wno 4mBbfY1H9bd8Us7GXG5wEyMbBLDvzztgofcwzdODRf/bGb9yP53nk09vco47/NdT NmFHoo7NO5NSVqn/SoYviuWv7OYXmt+z1sNVS2Zu+H8CEg/CLQOeaxy0pcFlB+xN HgLfCEDneDjjEl7jf2SNAfkABwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKeIIbDC x2DkabXskv6vPkvSD10/MB8GA1UdIwQYMBaAFF3LU+q+apCOyoZS3pJIB8UJxS0w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTYwRC9GNURDQTZENEU1 QjgxMUU5OEE3NjEyMEVDNEY5QUUwMi9YY3RUNnI1cWtJN0tobExla2tnSHhRbkZM VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hjdFQ2cjVxa0k3S2hsTGVra2dIeFFuRkxUQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTYwRC9GNURDQTZENEU1QjgxMUU5OEE3NjEyMEVDNEY5QUUwMi9YY3RUNnI1cWtJ N0tobExla2tnSHhRbkZMVEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXJtthELcG61F5L8R5z8DHS6vPHsnHzf9VcVe1NRNsebpmM1r+OBs+ fLxpzjFM2566pDIaUTC1igV7Xyo/gMEAceD7cEGZV92ElQa6j6g2aiZp3M8OUjOf 69K5S3VgCH+iE1re2IQDfWXHVc96NHWmvVJ8KOpK2C49Ks/fCtYbdckSlx/Wi4Tc kiAAMbrtSVnpWA4i1ePAjzEhGDkh+CDAvNfgpUsJ2ZBGOD2RslfYTi1hUyA/HVzx 15OZ8q0CMOsu2nZagvTP6PAsw/SV923oN3Vdr5nthSKnydBfMaE8pkQriLJtbxvh OKO8OOI/UxP7ElXw0IRoze+rA78mn4UO -----END CERTIFICATE-----Generated at Fri May 16 11:34:43 2025 by rpki-client