$ rpki-client -vvf rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft File: XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft (raw, json) Hash identifier: xC4E4VoNH475c+ECzJbFCLURfzsF08ZkjsSrSGyKmrY= Subject key identifier: CE:65:CE:43:D5:F1:0B:DD:82:88:8B:C0:99:EA:C9:30:A6:F2:2A:3F Authority key identifier: 5C:5A:4F:AE:4A:F0:1F:FD:C9:27:53:55:CC:BA:B8:C8:10:18:9F:54 Certificate issuer: /CN=A918B0B9/serialNumber=5C5A4FAE4AF01FFDC9275355CCBAB8C810189F54 Certificate serial: 0997 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft Manifest number: 0981 Signing time: Wed 14 May 2025 20:16:36 +0000 Manifest this update: Wed 14 May 2025 20:16:36 +0000 Manifest next update: Wed 21 May 2025 20:16:36 +0000 Files and hashes: 1: XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.crl (hash: opq4elf8pXGgo2Dn+Ud2ww/KhVzDKWZywdM0aFp2ujw=) 2: 52F955A89B1511EA9BEFA53BC4F9AE02.roa (hash: 5fp5xPdrf28AzhElrO+JWN/gejEYqnFXoStD/HGk1zI=) 3: BED54F1A9B1611EA939F5A3FC4F9AE02.roa (hash: sHHQTYQ4Ee+qL1FSRc7R4PCypgoLoQnfR9k5950BZKI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.crl rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 20:16:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2455 (0x997) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B0B9, serialNumber=5C5A4FAE4AF01FFDC9275355CCBAB8C810189F54 Validity Not Before: May 14 20:16:36 2025 GMT Not After : May 21 20:16:36 2025 GMT Subject: CN=6824fa24-f931 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:03:a6:d6:59:18:da:73:44:93:a7:3e:26:ba: d7:62:7c:6c:0b:75:6f:cf:67:ae:92:75:7d:ac:0c: 7a:bd:57:75:a6:8a:57:0b:70:18:d5:0e:25:8a:aa: 61:ea:33:e6:15:42:08:45:90:e9:78:30:88:aa:c8: e0:fb:79:8e:97:4a:67:b0:fe:9a:1e:e1:7d:f4:1f: 1f:b7:4b:d4:b7:a6:b9:9f:34:6f:31:a9:84:00:01: 20:8f:37:fe:91:28:07:bf:f3:00:c5:d4:06:fd:b0: 0f:a7:28:db:8b:ad:3d:e5:22:84:b3:eb:18:6d:d5: e4:be:d0:cc:ff:31:0b:ad:f9:23:68:e2:8c:27:00: 32:73:e7:7f:af:fa:b8:94:77:8b:5e:b9:4a:93:46: 61:70:19:8e:9e:46:8d:8b:ee:08:7d:0c:77:9a:0e: 38:e0:a8:ec:dc:22:20:a9:d3:d4:cc:d5:c4:fb:29: 30:a5:d6:5e:f5:45:58:70:9e:88:b3:34:f4:11:33: bf:3f:2f:b9:bd:aa:10:2e:af:df:b8:3b:64:5e:f4: 54:a1:5c:48:aa:88:82:8d:11:94:f9:2a:5a:07:5e: be:b5:0b:92:53:a8:07:96:ef:16:54:52:41:ce:ff: d0:f6:8b:6b:55:fa:6e:58:90:9d:f2:00:be:b4:84: c5:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:65:CE:43:D5:F1:0B:DD:82:88:8B:C0:99:EA:C9:30:A6:F2:2A:3F X509v3 Authority Key Identifier: keyid:5C:5A:4F:AE:4A:F0:1F:FD:C9:27:53:55:CC:BA:B8:C8:10:18:9F:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:06:f2:5c:18:82:20:0d:1f:c4:6c:c5:00:4a:b6:7e:ac:1a: b4:c9:1e:ab:9f:5d:0d:8a:ac:a2:36:43:b4:c5:96:df:4d:c9: 57:38:44:be:22:64:35:5e:63:58:a3:25:80:cb:1b:14:63:0c: 93:73:74:96:16:2c:e9:27:ad:e4:b7:22:e2:f0:24:f0:21:96: 6f:fc:92:b4:82:7d:c8:3b:b1:52:da:00:cb:1a:0d:a6:84:29: 16:23:e4:c2:79:50:d2:1e:ff:b3:21:17:a5:83:6d:98:e3:f9: 97:c7:91:51:d3:d5:03:5b:de:1a:4a:3e:e5:35:dc:67:01:e7: 17:29:f9:05:7f:18:a0:70:e4:85:ed:87:02:35:36:17:51:72: dd:02:3b:05:d4:9a:33:8a:31:03:26:64:e2:c2:00:5a:98:57: c1:73:2c:52:9b:01:8b:12:8d:20:b8:2c:4b:2c:8b:07:03:57: be:2c:4e:2e:a8:fb:6f:4e:60:fa:bb:cf:cf:bd:fb:f3:49:82: 0a:8d:4b:ee:24:87:60:a8:49:ec:67:de:e2:41:d7:70:59:8a: 4f:49:c8:46:8c:ec:40:69:7c:bc:62:e0:e0:06:4d:a3:9f:e2: 07:30:f8:96:fa:50:20:7f:10:ea:12:87:5b:56:1a:0f:a8:fa: 58:6d:ad:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCZcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEIwQjkxMTAvBgNVBAUTKDVDNUE0RkFFNEFGMDFGRkRDOTI3NTM1NUNDQkFCOEM4 MTAxODlGNTQwHhcNMjUwNTE0MjAxNjM2WhcNMjUwNTIxMjAxNjM2WjAYMRYwFAYD VQQDEw02ODI0ZmEyNC1mOTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqAOm1lkY2nNEk6c+JrrXYnxsC3Vvz2euknV9rAx6vVd1popXC3AY1Q4liqph 6jPmFUIIRZDpeDCIqsjg+3mOl0pnsP6aHuF99B8ft0vUt6a5nzRvMamEAAEgjzf+ kSgHv/MAxdQG/bAPpyjbi6095SKEs+sYbdXkvtDM/zELrfkjaOKMJwAyc+d/r/q4 lHeLXrlKk0ZhcBmOnkaNi+4IfQx3mg444Kjs3CIgqdPUzNXE+ykwpdZe9UVYcJ6I szT0ETO/Py+5vaoQLq/fuDtkXvRUoVxIqoiCjRGU+SpaB16+tQuSU6gHlu8WVFJB zv/Q9otrVfpuWJCd8gC+tITFtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM5lzkPV 8QvdgoiLwJnqyTCm8io/MB8GA1UdIwQYMBaAFFxaT65K8B/9ySdTVcy6uMgQGJ9U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjBCOS85Q0JGM0Q5MDhG QTAxMUVBQUE5QkJBMThDNEY5QUUwMi9YRnBQcmtyd0hfM0pKMU5WekxxNHlCQVlu MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hGcFBya3J3SF8zSkoxTlZ6THE0eUJBWW4xUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjBCOS85Q0JGM0Q5MDhGQTAxMUVBQUE5QkJBMThDNEY5QUUwMi9YRnBQcmtyd0hf M0pKMU5WekxxNHlCQVluMVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0BvJcGIIgDR/EbMUASrZ+rBq0yR6rn10NiqyiNkO0xZbfTclXOES+ ImQ1XmNYoyWAyxsUYwyTc3SWFizpJ63ktyLi8CTwIZZv/JK0gn3IO7FS2gDLGg2m hCkWI+TCeVDSHv+zIRelg22Y4/mXx5FR09UDW94aSj7lNdxnAecXKfkFfxigcOSF 7YcCNTYXUXLdAjsF1JozijEDJmTiwgBamFfBcyxSmwGLEo0guCxLLIsHA1e+LE4u qPtvTmD6u8/PvfvzSYIKjUvuJIdgqEnsZ97iQddwWYpPSchGjOxAaXy8YuDgBk2j n+IHMPiW+lAgfxDqEodbVhoPqPpYba3Q -----END CERTIFICATE-----Generated at Thu May 15 17:58:10 2025 by rpki-client