$ rpki-client -vvf rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.mft File: X-BMlXpsvFQKNPRT0T4_gFDI9O4.mft (raw, json) Hash identifier: LMHqnqJhcKquIBGG/8bDAM8PyqWqHby+iVzRvyK1EgI= Subject key identifier: 4B:A8:42:B6:4A:BC:16:78:9C:F8:63:E4:C7:2F:AB:9A:14:50:B2:00 Authority key identifier: 5F:E0:4C:95:7A:6C:BC:54:0A:34:F4:53:D1:3E:3F:80:50:C8:F4:EE Certificate issuer: /CN=A918A51B/serialNumber=5FE04C957A6CBC540A34F453D13E3F8050C8F4EE Certificate serial: 01B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-BMlXpsvFQKNPRT0T4_gFDI9O4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.mft Manifest number: 01AB Signing time: Sun 11 May 2025 02:12:08 +0000 Manifest this update: Sun 11 May 2025 02:12:07 +0000 Manifest next update: Sun 18 May 2025 02:12:07 +0000 Files and hashes: 1: X-BMlXpsvFQKNPRT0T4_gFDI9O4.crl (hash: B7i0fA3jN/jqUPnEpbJC8s4Et4IRfmw07uh6Oeia4kU=) 2: 6B9615FCD6E311EE94842842C4F9AE02.roa (hash: 9FynllD8H+NI8HSEXg9Jjmq002CiTaGo7ZssucPUw/c=) 3: 6A9D79ECD6E311EE94842842C4F9AE02.roa (hash: pf/aq5LQ2SyN9nQK//wVXk1HeFtnOQFOhE/br9mZqh4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.crl rsync://rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-BMlXpsvFQKNPRT0T4_gFDI9O4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 02:12:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 434 (0x1b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A51B, serialNumber=5FE04C957A6CBC540A34F453D13E3F8050C8F4EE Validity Not Before: May 11 02:12:07 2025 GMT Not After : May 18 02:12:07 2025 GMT Subject: CN=68200778-79ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:65:09:1e:6f:e7:97:6f:9f:60:92:f1:d5:f0: 50:95:13:d5:59:ea:93:99:7e:bc:ca:69:6f:02:33: 38:69:46:26:30:80:92:df:34:5e:f0:7f:d0:44:25: e9:d9:9e:d4:99:05:c6:52:0c:fa:c5:1a:dc:bb:f0: de:c5:72:35:aa:12:8b:09:91:3b:e0:8e:97:7d:7a: 90:ba:f9:10:bb:7f:cd:08:28:22:c3:46:8f:63:ac: 46:4f:e8:1d:b9:2d:50:8d:41:e7:44:40:80:e3:00: ce:3a:a3:2d:c0:73:a0:c6:91:b3:a9:a7:b1:70:c1: 6b:07:9d:98:1d:a2:65:ba:4a:2b:28:a9:42:d0:72: 00:e2:24:04:1e:b7:64:d5:dd:7a:49:c3:20:85:d3: 3c:83:3c:36:b7:4a:d3:63:96:f7:45:4a:cc:37:28: ef:45:21:de:9a:c9:c1:ab:9b:e0:e2:0f:5b:07:ed: dc:13:e8:5f:e0:1c:68:69:d0:ab:92:19:64:43:34: db:4c:57:31:0e:d1:e3:e8:10:95:fb:ca:4c:b2:6e: 6f:ee:06:5b:6c:97:c5:d3:5d:be:4a:35:49:a8:df: e0:4c:1f:5a:80:4c:94:de:69:e6:ad:08:b5:ad:5c: e3:81:f8:fb:a6:93:12:29:50:8f:35:5d:ec:a9:50: 9c:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:A8:42:B6:4A:BC:16:78:9C:F8:63:E4:C7:2F:AB:9A:14:50:B2:00 X509v3 Authority Key Identifier: keyid:5F:E0:4C:95:7A:6C:BC:54:0A:34:F4:53:D1:3E:3F:80:50:C8:F4:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-BMlXpsvFQKNPRT0T4_gFDI9O4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:03:8e:43:d8:bd:75:d6:e8:47:81:85:bd:a4:d5:36:7a:04: f6:68:00:7f:a6:e8:7f:7c:c7:50:01:64:8f:f5:45:ce:ff:ae: cb:00:50:1e:23:62:07:1e:e3:a2:d4:84:14:97:74:18:c1:48: 49:bb:03:29:b0:2e:02:d5:fb:e4:19:81:cb:5c:91:b7:a4:9e: 60:e1:f8:ab:89:c8:76:e5:68:d5:22:16:1f:8a:09:1b:cd:e4: 24:73:96:d1:b1:0b:6e:8d:49:a2:60:bc:da:d6:be:26:33:99: a1:36:fe:2b:f2:b3:34:62:1c:16:3c:d3:f0:e2:f4:f9:f7:af: ce:1a:9b:e8:04:ae:20:24:91:45:a2:ca:a7:31:2a:c6:85:23: 33:75:1c:8b:0e:79:94:0f:70:54:08:12:14:a7:d2:11:aa:67: 93:89:8a:1e:ef:ed:b5:42:59:a4:d2:71:86:ec:83:4f:37:17: 26:b7:a2:42:f3:63:6f:ae:a4:03:c9:b6:a5:50:61:aa:31:49: 62:d4:9a:82:50:0e:93:79:1f:5d:99:48:d0:ee:86:ac:ce:31: 95:8e:2d:78:a3:1d:01:0a:91:dc:2f:66:80:e5:68:1c:5b:13: ef:e5:84:a6:50:72:1d:74:d1:90:45:9b:a5:65:4d:f6:20:59: 5f:1a:1b:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEE1MUIxMTAvBgNVBAUTKDVGRTA0Qzk1N0E2Q0JDNTQwQTM0RjQ1M0QxM0UzRjgw NTBDOEY0RUUwHhcNMjUwNTExMDIxMjA3WhcNMjUwNTE4MDIxMjA3WjAYMRYwFAYD VQQDEw02ODIwMDc3OC03OWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx2UJHm/nl2+fYJLx1fBQlRPVWeqTmX68ymlvAjM4aUYmMICS3zRe8H/QRCXp 2Z7UmQXGUgz6xRrcu/DexXI1qhKLCZE74I6XfXqQuvkQu3/NCCgiw0aPY6xGT+gd uS1QjUHnRECA4wDOOqMtwHOgxpGzqaexcMFrB52YHaJlukorKKlC0HIA4iQEHrdk 1d16ScMghdM8gzw2t0rTY5b3RUrMNyjvRSHemsnBq5vg4g9bB+3cE+hf4BxoadCr khlkQzTbTFcxDtHj6BCV+8pMsm5v7gZbbJfF012+SjVJqN/gTB9agEyU3mnmrQi1 rVzjgfj7ppMSKVCPNV3sqVCcbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEuoQrZK vBZ4nPhj5Mcvq5oUULIAMB8GA1UdIwQYMBaAFF/gTJV6bLxUCjT0U9E+P4BQyPTu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTUxQi8wMENBOThGMkEx QTUxMUVEOTEyMzIyNTRDNEY5QUUwMi9YLUJNbFhwc3ZGUUtOUFJUMFQ0X2dGREk5 TzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gtQk1sWHBzdkZRS05QUlQwVDRfZ0ZESTlPNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTUxQi8wMENBOThGMkExQTUxMUVEOTEyMzIyNTRDNEY5QUUwMi9YLUJNbFhwc3ZG UUtOUFJUMFQ0X2dGREk5TzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6A45D2L111uhHgYW9pNU2egT2aAB/puh/fMdQAWSP9UXO/67LAFAe I2IHHuOi1IQUl3QYwUhJuwMpsC4C1fvkGYHLXJG3pJ5g4firich25WjVIhYfigkb zeQkc5bRsQtujUmiYLza1r4mM5mhNv4r8rM0YhwWPNPw4vT596/OGpvoBK4gJJFF osqnMSrGhSMzdRyLDnmUD3BUCBIUp9IRqmeTiYoe7+21Qlmk0nGG7INPNxcmt6JC 82NvrqQDybalUGGqMUli1JqCUA6TeR9dmUjQ7oaszjGVji14ox0BCpHcL2aA5Wgc WxPv5YSmUHIddNGQRZulZU32IFlfGhvU -----END CERTIFICATE-----Generated at Mon May 12 19:45:48 2025 by rpki-client