$ rpki-client -vvf rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.mft File: X8G2OMzN_5nWRFZVKcgHCGhomzE.mft (raw, json) Hash identifier: S51PQdDwQr2Xf28bglovAduCVa+U1faPVhX8Q84fXI8= Subject key identifier: 1F:7B:9B:91:36:27:11:81:00:4E:B5:7F:A5:92:2F:1B:C2:02:8B:2A Authority key identifier: 5F:C1:B6:38:CC:CD:FF:99:D6:44:56:55:29:C8:07:08:68:68:9B:31 Certificate issuer: /CN=A918E28E/serialNumber=5FC1B638CCCDFF99D644565529C8070868689B31 Certificate serial: 2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8G2OMzN_5nWRFZVKcgHCGhomzE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.mft Manifest number: 29 Signing time: Tue 13 May 2025 06:58:23 +0000 Manifest this update: Tue 13 May 2025 06:58:23 +0000 Manifest next update: Tue 20 May 2025 06:58:23 +0000 Files and hashes: 1: X8G2OMzN_5nWRFZVKcgHCGhomzE.crl (hash: YEz+tLq3vKm1cE/gklZTKJH0ozKwEYpKm5iXrVk0p6E=) 2: AA456842107211F09A9E631FC4F9AE02.roa (hash: BO96CEY+h3kyCGROfLPYwk1rs1fVmSzj2xY5TwnQPlM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.crl rsync://rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8G2OMzN_5nWRFZVKcgHCGhomzE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 06:58:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E28E, serialNumber=5FC1B638CCCDFF99D644565529C8070868689B31 Validity Not Before: May 13 06:58:23 2025 GMT Not After : May 20 06:58:23 2025 GMT Subject: CN=6822ed8f-4a40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:5e:c5:5c:42:55:7f:76:51:88:a4:30:33:b8: 86:71:84:bb:ea:da:29:27:ca:8c:bd:0d:9e:1f:e6: 93:f2:ed:13:d3:7e:8c:da:bc:7d:1f:fe:46:6c:93: 13:0b:5e:c8:04:24:6c:45:c0:99:17:53:c4:06:a7: 3c:3a:d9:71:8c:1c:c5:da:cc:f7:3c:0e:d1:94:7d: 6e:6a:bc:b0:65:8b:24:62:db:4a:4d:6c:f3:de:6c: d1:03:e1:6e:33:40:92:78:aa:16:86:e0:98:01:a5: f9:a7:ac:14:a8:7c:ef:ba:6d:b8:38:35:38:3e:4a: ce:67:bc:fb:2e:96:a1:a0:fe:d2:f9:19:fe:2f:7e: da:41:5b:c5:9d:42:fb:a4:84:b9:be:0a:18:02:15: 83:1e:ef:be:e7:d2:50:4f:84:6f:5f:95:33:e3:4a: d7:dc:f1:25:f7:8e:c9:57:15:59:72:2f:c6:76:9a: 13:e8:50:37:11:9e:94:28:1f:49:91:70:5b:9e:94: 1b:b4:23:47:dd:ee:04:66:ac:95:66:ca:53:cf:e7: 62:00:34:f2:2b:e0:53:39:9b:df:38:d7:de:29:af: 0a:8f:87:a7:5a:80:2f:e1:83:0d:89:25:e0:bc:f5: a2:01:9c:2a:01:72:6d:ec:b7:38:51:73:5a:30:d6: 87:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:7B:9B:91:36:27:11:81:00:4E:B5:7F:A5:92:2F:1B:C2:02:8B:2A X509v3 Authority Key Identifier: keyid:5F:C1:B6:38:CC:CD:FF:99:D6:44:56:55:29:C8:07:08:68:68:9B:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8G2OMzN_5nWRFZVKcgHCGhomzE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:02:c0:07:e8:57:cd:bc:99:d3:b2:bd:a3:8f:13:79:43:26: 2c:a8:15:f8:1a:c6:25:65:9e:a1:0e:42:ff:6c:3b:37:3a:83: 12:15:bb:1a:dc:70:a2:c5:6d:44:72:82:3a:20:52:aa:9a:4d: 6d:17:5d:f8:1c:b7:23:a8:f3:e8:2b:bc:f1:70:8c:bd:cf:9e: d9:61:77:ad:c2:38:89:57:d2:f7:4d:40:3b:5b:1a:1e:e8:69: 02:90:c6:b6:55:cd:14:12:6f:2a:c8:bd:76:e4:50:bb:e2:ff: 1f:a3:b2:24:8a:b7:6d:40:76:78:4d:d7:e3:48:d9:36:e0:d5: b4:1a:2f:91:02:92:6c:19:17:4e:e9:a6:00:e1:ec:54:1d:55: 75:6d:bc:65:0d:c5:b6:d0:89:30:55:3a:fd:99:70:4e:ec:aa: 7a:53:3e:4d:05:c9:11:a9:4f:e0:9f:e5:25:33:b5:e9:28:de: ee:89:5d:bd:fe:7e:36:60:e5:98:cf:1d:5f:d6:e0:ee:8d:76: ef:71:bf:01:d5:1a:b3:f7:b7:ed:95:a9:0f:70:8c:45:e4:f9: 20:1a:67:b2:db:4b:8e:62:6d:11:ae:c5:f7:ca:20:dc:6b:bb: a4:20:4f:eb:c7:71:2b:15:67:7b:45:d5:42:1a:06:74:ae:21: 15:90:3f:7c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RTI4RTExMC8GA1UEBRMoNUZDMUI2MzhDQ0NERkY5OUQ2NDQ1NjU1MjlDODA3MDg2 ODY4OUIzMTAeFw0yNTA1MTMwNjU4MjNaFw0yNTA1MjAwNjU4MjNaMBgxFjAUBgNV BAMTDTY4MjJlZDhmLTRhNDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCpXsVcQlV/dlGIpDAzuIZxhLvq2iknyoy9DZ4f5pPy7RPTfozavH0f/kZskxML XsgEJGxFwJkXU8QGpzw62XGMHMXazPc8DtGUfW5qvLBliyRi20pNbPPebNED4W4z QJJ4qhaG4JgBpfmnrBSofO+6bbg4NTg+Ss5nvPsulqGg/tL5Gf4vftpBW8WdQvuk hLm+ChgCFYMe777n0lBPhG9flTPjStfc8SX3jslXFVlyL8Z2mhPoUDcRnpQoH0mR cFuelBu0I0fd7gRmrJVmylPP52IANPIr4FM5m984194prwqPh6dagC/hgw2JJeC8 9aIBnCoBcm3stzhRc1ow1oezAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUH3ubkTYn EYEATrV/pZIvG8ICiyowHwYDVR0jBBgwFoAUX8G2OMzN/5nWRFZVKcgHCGhomzEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThFMjhFL0NEQTNBNzFFRjU5 QjExRUZBNEY1NzEyOEM0RjlBRTAyL1g4RzJPTXpOXzVuV1JGWlZLY2dIQ0dob216 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWDhHMk9Nek5fNW5XUkZaVktjZ0hDR2hvbXpFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThF MjhFL0NEQTNBNzFFRjU5QjExRUZBNEY1NzEyOEM0RjlBRTAyL1g4RzJPTXpOXzVu V1JGWlZLY2dIQ0dob216RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI0CwAfoV828mdOyvaOPE3lDJiyoFfgaxiVlnqEOQv9sOzc6gxIVuxrc cKLFbURygjogUqqaTW0XXfgctyOo8+grvPFwjL3Pntlhd63COIlX0vdNQDtbGh7o aQKQxrZVzRQSbyrIvXbkULvi/x+jsiSKt21AdnhN1+NI2Tbg1bQaL5ECkmwZF07p pgDh7FQdVXVtvGUNxbbQiTBVOv2ZcE7sqnpTPk0FyRGpT+Cf5SUzteko3u6JXb3+ fjZg5ZjPHV/W4O6Ndu9xvwHVGrP3t+2VqQ9wjEXk+SAaZ7LbS45ibRGuxffKINxr u6QgT+vHcSsVZ3tF1UIaBnSuIRWQP3w= -----END CERTIFICATE-----Generated at Tue May 13 15:26:14 2025 by rpki-client