$ rpki-client -vvf rpki.apnic.net/member_repository/A918CA19/F802A4248CD911ED99097D0FC4F9AE02/xPkyLu6WcJ5CIcbdPOy4QDhPAgE.mft File: xPkyLu6WcJ5CIcbdPOy4QDhPAgE.mft (raw, json) Hash identifier: s6InbJeai+pzYTGY6u7xpuyHfft88DGHkfxHCfFnK54= Subject key identifier: F2:C9:11:1C:84:82:26:6B:26:09:66:61:CA:C6:3F:EF:AF:0D:1D:FC Authority key identifier: C4:F9:32:2E:EE:96:70:9E:42:21:C6:DD:3C:EC:B8:40:38:4F:02:01 Certificate issuer: /CN=A918CA19/serialNumber=C4F9322EEE96709E4221C6DD3CECB840384F0201 Certificate serial: 01BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPkyLu6WcJ5CIcbdPOy4QDhPAgE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918CA19/F802A4248CD911ED99097D0FC4F9AE02/xPkyLu6WcJ5CIcbdPOy4QDhPAgE.mft Manifest number: 01B8 Signing time: Tue 13 May 2025 02:21:56 +0000 Manifest this update: Tue 13 May 2025 02:21:56 +0000 Manifest next update: Tue 20 May 2025 02:21:56 +0000 Files and hashes: 1: xPkyLu6WcJ5CIcbdPOy4QDhPAgE.crl (hash: R+YvmqiHs9E/OSW9oNywy6Wwp1VNYOpyKdymprbv6Dw=) 2: AE94F8108CDD11ED8F7B6515C4F9AE02.roa (hash: RmJtDMkcxfQ3eQrKn0Yy1kaaLYDY2h9Y7DjrNYqUSm8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918CA19/F802A4248CD911ED99097D0FC4F9AE02/xPkyLu6WcJ5CIcbdPOy4QDhPAgE.crl rsync://rpki.apnic.net/member_repository/A918CA19/F802A4248CD911ED99097D0FC4F9AE02/xPkyLu6WcJ5CIcbdPOy4QDhPAgE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPkyLu6WcJ5CIcbdPOy4QDhPAgE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 02:21:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 443 (0x1bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918CA19, serialNumber=C4F9322EEE96709E4221C6DD3CECB840384F0201 Validity Not Before: May 13 02:21:56 2025 GMT Not After : May 20 02:21:56 2025 GMT Subject: CN=6822acc4-8330 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:20:a9:58:59:d3:e8:dd:2a:ee:ec:39:ec:1f: aa:69:de:86:2b:9f:f6:e9:a2:44:05:61:32:18:30: bb:c7:64:e6:45:76:df:0d:23:51:f2:63:e9:bb:1a: 66:d7:a8:f4:c3:41:9b:27:d8:d0:e8:cd:b4:88:22: 1b:36:19:9b:c5:7f:b4:52:5f:ec:9d:95:02:c8:20: 2b:a4:9a:4e:0c:12:78:82:0c:bd:49:d6:27:00:9f: 01:a1:a7:b6:ff:c0:12:c1:02:12:c6:0b:0a:43:a3: 1b:dd:03:36:c5:c0:99:88:ba:28:fa:00:d4:71:83: f2:f8:e6:2c:d8:d2:09:e9:64:70:73:eb:45:b7:16: 64:3c:ee:7b:28:dd:14:7e:4e:b4:56:f8:39:37:dc: 83:d3:7a:f6:cf:a0:f6:09:74:86:2d:51:44:b1:a1: c5:8b:b4:68:31:ff:7d:89:b7:bf:db:af:94:e8:97: 67:59:33:e4:9d:f3:13:5e:7b:6a:0a:5c:eb:60:7f: b2:72:77:da:81:ba:6b:88:98:0b:de:a1:d1:ea:a6: 55:89:cd:cd:a8:e0:77:4f:ea:5e:27:fd:53:ba:44: 37:69:dd:f3:f5:c4:33:6b:30:f9:a0:77:cf:be:73: d3:62:72:6b:2a:d9:de:11:8d:8f:35:2c:05:ba:6d: e6:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:C9:11:1C:84:82:26:6B:26:09:66:61:CA:C6:3F:EF:AF:0D:1D:FC X509v3 Authority Key Identifier: keyid:C4:F9:32:2E:EE:96:70:9E:42:21:C6:DD:3C:EC:B8:40:38:4F:02:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918CA19/F802A4248CD911ED99097D0FC4F9AE02/xPkyLu6WcJ5CIcbdPOy4QDhPAgE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPkyLu6WcJ5CIcbdPOy4QDhPAgE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918CA19/F802A4248CD911ED99097D0FC4F9AE02/xPkyLu6WcJ5CIcbdPOy4QDhPAgE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:3e:d4:b0:70:c3:03:49:1d:af:e6:2c:d7:24:57:7f:0b:c6: cd:4a:3b:70:37:fc:0d:74:bf:cf:51:1b:04:e3:36:99:2c:06: 3c:75:14:85:92:c1:ff:b4:f3:8d:d2:d2:f3:9a:33:e6:b7:58: d5:59:28:73:9f:a2:20:92:99:01:6d:5f:89:d6:41:31:a8:37: 6a:8e:9c:ae:41:0c:4b:6b:20:02:55:bd:43:0f:e8:a8:b2:28: 8e:aa:cd:31:d0:1e:76:b3:82:70:a7:59:96:dd:bf:f5:88:f9: 08:c6:9b:4d:72:76:36:71:92:56:fe:54:a7:68:cc:2c:da:2a: b1:10:70:45:68:47:c3:c3:25:0f:19:18:c5:6c:36:6c:79:9c: 55:ec:13:b2:69:e6:22:83:6b:dc:00:7c:70:ef:9e:02:5d:90: f2:16:4f:ec:55:77:7e:bf:f2:fb:ad:d0:0e:2c:3d:bf:b4:85: 04:b7:48:af:09:2a:50:c8:8f:31:b6:01:a1:ea:ca:ea:5a:64: c7:eb:78:a0:e5:60:ed:80:c0:43:cb:2d:d9:1d:3e:eb:2c:f1: 5d:9b:8a:67:6f:84:b8:86:3d:e0:b0:a1:6e:ac:11:1e:e4:d4: 92:fd:39:80:b1:ac:ef:b2:cf:f3:b1:0b:df:00:94:02:bb:9a: 05:5e:2c:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OENBMTkxMTAvBgNVBAUTKEM0RjkzMjJFRUU5NjcwOUU0MjIxQzZERDNDRUNCODQw Mzg0RjAyMDEwHhcNMjUwNTEzMDIyMTU2WhcNMjUwNTIwMDIyMTU2WjAYMRYwFAYD VQQDEw02ODIyYWNjNC04MzMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyCCpWFnT6N0q7uw57B+qad6GK5/26aJEBWEyGDC7x2TmRXbfDSNR8mPpuxpm 16j0w0GbJ9jQ6M20iCIbNhmbxX+0Ul/snZUCyCArpJpODBJ4ggy9SdYnAJ8Boae2 /8ASwQISxgsKQ6Mb3QM2xcCZiLoo+gDUcYPy+OYs2NIJ6WRwc+tFtxZkPO57KN0U fk60Vvg5N9yD03r2z6D2CXSGLVFEsaHFi7RoMf99ibe/26+U6JdnWTPknfMTXntq ClzrYH+ycnfagbpriJgL3qHR6qZVic3NqOB3T+peJ/1TukQ3ad3z9cQzazD5oHfP vnPTYnJrKtneEY2PNSwFum3mXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPLJERyE giZrJglmYcrGP++vDR38MB8GA1UdIwQYMBaAFMT5Mi7ulnCeQiHG3TzsuEA4TwIB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Q0ExOS9GODAyQTQyNDhD RDkxMUVEOTkwOTdEMEZDNEY5QUUwMi94UGt5THU2V2NKNUNJY2JkUE95NFFEaFBB Z0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hQa3lMdTZXY0o1Q0ljYmRQT3k0UURoUEFnRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Q0ExOS9GODAyQTQyNDhDRDkxMUVEOTkwOTdEMEZDNEY5QUUwMi94UGt5THU2V2NK NUNJY2JkUE95NFFEaFBBZ0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6PtSwcMMDSR2v5izXJFd/C8bNSjtwN/wNdL/PURsE4zaZLAY8dRSF ksH/tPON0tLzmjPmt1jVWShzn6IgkpkBbV+J1kExqDdqjpyuQQxLayACVb1DD+io siiOqs0x0B52s4Jwp1mW3b/1iPkIxptNcnY2cZJW/lSnaMws2iqxEHBFaEfDwyUP GRjFbDZseZxV7BOyaeYig2vcAHxw754CXZDyFk/sVXd+v/L7rdAOLD2/tIUEt0iv CSpQyI8xtgGh6srqWmTH63ig5WDtgMBDyy3ZHT7rLPFdm4pnb4S4hj3gsKFurBEe 5NSS/TmAsazvss/zsQvfAJQCu5oFXiyn -----END CERTIFICATE-----Generated at Wed May 14 16:25:32 2025 by rpki-client