$ rpki-client -vvf rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.mft File: xw3ieKt3JtKco6jAJAeqW64S7Ao.mft (raw, json) Hash identifier: 60QnMspTjHsiAfaC2Yem+7hitZqiZjXg7tXzSgf2oBM= Subject key identifier: 95:EA:FF:C4:42:A1:9D:AA:E4:DA:67:A7:8F:32:5B:40:32:A7:4C:7D Authority key identifier: C7:0D:E2:78:AB:77:26:D2:9C:A3:A8:C0:24:07:AA:5B:AE:12:EC:0A Certificate issuer: /CN=A918D323/serialNumber=C70DE278AB7726D29CA3A8C02407AA5BAE12EC0A Certificate serial: CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xw3ieKt3JtKco6jAJAeqW64S7Ao.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.mft Manifest number: C6 Signing time: Sun 11 May 2025 04:39:08 +0000 Manifest this update: Sun 11 May 2025 04:39:07 +0000 Manifest next update: Sun 18 May 2025 04:39:07 +0000 Files and hashes: 1: xw3ieKt3JtKco6jAJAeqW64S7Ao.crl (hash: XWJWrn8s7+uPCngGLgTvVat1yIpXBm7ysn3RPeEyzy4=) 2: CC166DAC0A0811EFBE7E465EC4F9AE02.roa (hash: C3Ga1a9eb1Df3VllPQUKdb207TqBrmGNq5XYCS2u3O0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.crl rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xw3ieKt3JtKco6jAJAeqW64S7Ao.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 04:39:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 203 (0xcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D323, serialNumber=C70DE278AB7726D29CA3A8C02407AA5BAE12EC0A Validity Not Before: May 11 04:39:07 2025 GMT Not After : May 18 04:39:07 2025 GMT Subject: CN=682029eb-1b4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f4:60:13:06:9b:09:74:56:cd:60:d2:d6:02: f3:9f:01:02:9b:b0:11:b6:4b:58:4a:41:3c:dc:ad: 7a:57:6a:04:dc:9a:b5:09:8b:e6:45:8e:a6:ac:f1: f2:04:b6:4a:8e:c0:c2:2b:8a:a1:21:f2:22:54:fa: e1:17:cd:9b:7e:d8:0f:e8:a4:b3:fb:71:ad:8d:43: be:5c:9a:7b:69:bc:b4:59:75:f1:65:ef:d5:f0:4d: 9d:b3:66:23:bd:f5:31:ba:c6:a1:8e:d9:2b:64:ad: da:0d:c5:b7:25:3c:b5:04:34:d3:5f:24:66:2c:79: c2:7f:24:d9:ab:30:53:2a:5c:b2:65:9d:b7:85:4c: a1:00:39:fa:b2:44:74:2b:00:ee:94:6f:c4:77:d4: ac:24:41:f7:8e:55:b4:b8:2f:b0:2a:62:3f:81:9a: 1b:53:f9:c3:29:0c:91:87:2e:6e:5e:e4:dc:ae:76: 60:06:2e:66:d7:c3:7b:6d:de:a0:db:ac:7c:4f:e2: 37:00:1d:fe:e2:1c:06:6c:45:02:5d:12:1e:5e:8d: f6:f3:92:ac:72:90:69:34:2c:08:ad:85:fc:8d:ce: f0:d5:09:3f:5e:68:fe:82:d0:cc:90:3b:fe:52:f8: f3:af:9c:6a:38:ae:62:4c:76:26:59:d3:b8:f8:8f: 57:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:EA:FF:C4:42:A1:9D:AA:E4:DA:67:A7:8F:32:5B:40:32:A7:4C:7D X509v3 Authority Key Identifier: keyid:C7:0D:E2:78:AB:77:26:D2:9C:A3:A8:C0:24:07:AA:5B:AE:12:EC:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xw3ieKt3JtKco6jAJAeqW64S7Ao.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:c8:8b:76:87:05:d3:9c:94:01:7d:4a:c6:b7:8f:01:95:80: a1:1e:89:5a:2f:1f:ed:bc:41:8e:9c:1d:2e:de:50:cd:f9:01: cc:47:43:7e:02:e7:65:21:c1:fc:57:e0:d1:24:b4:af:1e:64: 11:86:4e:ff:36:f8:0b:93:3c:77:58:9c:6b:b2:5e:41:b3:1e: 52:b3:3b:cd:7b:7b:d2:c7:e0:31:ba:cf:7e:db:4c:a9:0a:c8: 99:b6:26:d2:c0:a8:03:b2:0f:0d:d1:11:c7:6e:e1:69:87:1e: f7:01:f8:a0:03:c1:24:01:37:54:c3:f7:d2:a5:73:97:cb:c8: e0:a7:a0:16:54:17:df:b6:dc:75:4b:90:14:85:df:61:e0:d7: b0:3f:eb:98:d8:9b:5a:6f:06:f8:81:30:22:8c:33:a0:f3:fc: f6:48:b4:73:8c:c8:f7:98:b3:04:81:19:12:8e:7f:b2:44:71: 4d:88:1f:8c:d3:07:0c:4e:cf:4d:4c:26:9a:da:89:37:27:53: 94:5e:c3:47:e1:72:91:6b:d7:2c:5b:aa:85:ac:a7:48:b6:54: 99:f0:c3:d4:c7:aa:ba:49:ca:ee:db:6f:52:e9:d3:6a:c3:f1: 02:32:73:ce:82:8e:9b:43:b4:00:80:58:10:de:e7:f2:27:29: c0:26:0a:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQzMjMxMTAvBgNVBAUTKEM3MERFMjc4QUI3NzI2RDI5Q0EzQThDMDI0MDdBQTVC QUUxMkVDMEEwHhcNMjUwNTExMDQzOTA3WhcNMjUwNTE4MDQzOTA3WjAYMRYwFAYD VQQDEw02ODIwMjllYi0xYjRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu/RgEwabCXRWzWDS1gLznwECm7ARtktYSkE83K16V2oE3Jq1CYvmRY6mrPHy BLZKjsDCK4qhIfIiVPrhF82bftgP6KSz+3GtjUO+XJp7aby0WXXxZe/V8E2ds2Yj vfUxusahjtkrZK3aDcW3JTy1BDTTXyRmLHnCfyTZqzBTKlyyZZ23hUyhADn6skR0 KwDulG/Ed9SsJEH3jlW0uC+wKmI/gZobU/nDKQyRhy5uXuTcrnZgBi5m18N7bd6g 26x8T+I3AB3+4hwGbEUCXRIeXo3285KscpBpNCwIrYX8jc7w1Qk/Xmj+gtDMkDv+ Uvjzr5xqOK5iTHYmWdO4+I9XXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJXq/8RC oZ2q5Npnp48yW0Ayp0x9MB8GA1UdIwQYMBaAFMcN4nirdybSnKOowCQHqluuEuwK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDMyMy8yMjBBMUZEODA5 RUIxMUVGQkM0RDE1MzRDNEY5QUUwMi94dzNpZUt0M0p0S2NvNmpBSkFlcVc2NFM3 QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h3M2llS3QzSnRLY282akFKQWVxVzY0UzdBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDMyMy8yMjBBMUZEODA5RUIxMUVGQkM0RDE1MzRDNEY5QUUwMi94dzNpZUt0M0p0 S2NvNmpBSkFlcVc2NFM3QW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlyIt2hwXTnJQBfUrGt48BlYChHolaLx/tvEGOnB0u3lDN+QHMR0N+ AudlIcH8V+DRJLSvHmQRhk7/NvgLkzx3WJxrsl5Bsx5SszvNe3vSx+Axus9+20yp CsiZtibSwKgDsg8N0RHHbuFphx73AfigA8EkATdUw/fSpXOXy8jgp6AWVBffttx1 S5AUhd9h4NewP+uY2Jtabwb4gTAijDOg8/z2SLRzjMj3mLMEgRkSjn+yRHFNiB+M 0wcMTs9NTCaa2ok3J1OUXsNH4XKRa9csW6qFrKdItlSZ8MPUx6q6Scru229S6dNq w/ECMnPOgo6bQ7QAgFgQ3ufyJynAJgoz -----END CERTIFICATE-----Generated at Mon May 12 11:23:04 2025 by rpki-client