$ rpki-client -vvf rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft File: xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft (raw, json) Hash identifier: OWiu15MvUO/TFzh2V2T7OVQmI2cesizuPY3D+PryRKU= Subject key identifier: 87:58:39:75:D1:FF:4C:73:2F:E3:96:E9:3B:87:1D:0E:3C:17:26:8E Authority key identifier: C4:A4:C3:54:35:8F:D4:82:3F:6E:C5:31:32:76:74:85:4C:86:C6:DF Certificate issuer: /CN=A918FD04/serialNumber=C4A4C354358FD4823F6EC531327674854C86C6DF Certificate serial: 0889 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xKTDVDWP1II_bsUxMnZ0hUyGxt8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft Manifest number: 1487 Signing time: Mon 12 May 2025 18:32:17 +0000 Manifest this update: Mon 12 May 2025 18:32:16 +0000 Manifest next update: Mon 19 May 2025 18:32:16 +0000 Files and hashes: 1: xKTDVDWP1II_bsUxMnZ0hUyGxt8.crl (hash: sQUMtSErIJDyGEbzj+EppD0KCitTfkpPhxqJih+S4z4=) 2: 7BBC1DD2040611EF909F6C3EC4F9AE02.roa (hash: PO0AZ1fTp3S5+kMx+XcNpi0qfLQExWGMHCA4bw3dxVs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.crl rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xKTDVDWP1II_bsUxMnZ0hUyGxt8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 18:32:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2185 (0x889) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FD04, serialNumber=C4A4C354358FD4823F6EC531327674854C86C6DF Validity Not Before: May 12 18:32:16 2025 GMT Not After : May 19 18:32:16 2025 GMT Subject: CN=68223eb0-1c4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ab:4c:d0:ea:d1:ca:b7:ce:63:c1:d0:b0:72: e2:ae:19:bf:e1:ca:91:d3:32:9e:77:50:2a:40:dc: d8:72:1f:b7:f6:2b:db:d4:23:ca:dc:81:f5:86:9c: 18:e1:97:2c:5a:f1:cc:69:d3:d8:c7:42:b3:a6:a1: 0b:82:9a:d9:0a:38:de:0e:5a:cb:84:db:f7:30:64: f2:31:69:ea:a4:20:e3:e4:62:91:92:e5:a2:3f:81: 30:9f:08:96:0c:03:21:90:4d:6c:75:12:6b:96:92: 6c:84:4f:e9:18:3f:b0:33:49:3f:0d:94:aa:08:fe: 45:4d:42:c8:af:f2:0f:ce:2b:ab:f5:b0:dc:2f:81: ba:47:7c:f4:37:4d:a3:15:9d:30:7e:82:bd:0d:e2: cf:74:95:7c:ce:e7:e1:89:76:2f:e6:32:3a:96:f5: a6:6b:28:0c:45:9e:5c:a1:4e:b0:31:ab:b4:ee:7c: da:d4:8b:a6:9b:eb:08:54:97:c5:7f:8f:5f:71:22: bf:3b:69:0d:dc:6f:51:eb:d1:43:d8:98:1e:ab:08: 8b:f2:e3:2d:68:18:21:4b:15:ef:82:c5:5a:e1:04: fc:5f:2c:2b:71:40:cd:a7:3a:a4:00:ea:e9:f5:b5: a4:51:ee:44:70:bf:84:d1:35:7f:47:84:fc:4e:b1: d7:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:58:39:75:D1:FF:4C:73:2F:E3:96:E9:3B:87:1D:0E:3C:17:26:8E X509v3 Authority Key Identifier: keyid:C4:A4:C3:54:35:8F:D4:82:3F:6E:C5:31:32:76:74:85:4C:86:C6:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xKTDVDWP1II_bsUxMnZ0hUyGxt8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:e3:ae:30:40:50:fc:30:f3:a8:87:0c:28:b3:e4:a6:81:5f: 88:d0:af:cd:3f:12:06:75:73:59:81:71:47:3c:d2:ae:42:f1: 5c:5f:51:59:d3:fa:9d:45:45:71:95:64:94:0e:c4:49:f8:0a: 29:09:c3:93:2f:f5:cf:50:a7:7b:c4:ce:9a:46:33:af:1c:7c: 92:ef:11:c5:69:fe:17:76:a4:cc:f7:3b:74:50:ba:7b:c4:e0: 15:3f:ef:1c:14:92:6f:d2:d2:8c:41:fa:05:a8:06:fe:cd:4e: 5e:d3:f0:80:b8:91:3e:64:4b:ef:5d:ce:b0:46:71:f8:94:f0: 53:6c:06:00:b1:c2:c4:d0:0a:74:00:e1:8a:c1:4e:c6:6b:e6: 01:83:7e:75:39:39:fd:34:c7:c6:5f:7b:e8:2f:d7:6b:98:f9: c1:72:1e:48:05:ea:97:8e:a8:23:76:df:54:96:34:eb:6b:0f: 70:4b:49:93:c4:2f:6b:5c:9c:5e:b7:be:19:fb:51:54:39:6d: 36:30:0e:9a:52:94:65:35:08:c7:1f:5e:4b:9b:24:27:84:6e: a0:7f:b1:bc:d5:40:4c:f8:5b:f1:49:e6:2d:e2:00:2b:64:27: 8d:21:ae:b9:94:f6:70:9f:28:08:8d:ab:cc:b9:2e:8c:d8:8a: 41:35:82:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZEMDQxMTAvBgNVBAUTKEM0QTRDMzU0MzU4RkQ0ODIzRjZFQzUzMTMyNzY3NDg1 NEM4NkM2REYwHhcNMjUwNTEyMTgzMjE2WhcNMjUwNTE5MTgzMjE2WjAYMRYwFAYD VQQDEw02ODIyM2ViMC0xYzRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA06tM0OrRyrfOY8HQsHLirhm/4cqR0zKed1AqQNzYch+39ivb1CPK3IH1hpwY 4ZcsWvHMadPYx0KzpqELgprZCjjeDlrLhNv3MGTyMWnqpCDj5GKRkuWiP4EwnwiW DAMhkE1sdRJrlpJshE/pGD+wM0k/DZSqCP5FTULIr/IPziur9bDcL4G6R3z0N02j FZ0wfoK9DeLPdJV8zufhiXYv5jI6lvWmaygMRZ5coU6wMau07nza1Iumm+sIVJfF f49fcSK/O2kN3G9R69FD2JgeqwiL8uMtaBghSxXvgsVa4QT8XywrcUDNpzqkAOrp 9bWkUe5EcL+E0TV/R4T8TrHXdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIdYOXXR /0xzL+OW6TuHHQ48FyaOMB8GA1UdIwQYMBaAFMSkw1Q1j9SCP27FMTJ2dIVMhsbf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkQwNC8wQUJCRjQ3MjBE RjIxMUVBOEVFODkxM0JDNEY5QUUwMi94S1REVkRXUDFJSV9ic1V4TW5aMGhVeUd4 dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hLVERWRFdQMUlJX2JzVXhNblowaFV5R3h0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkQwNC8wQUJCRjQ3MjBERjIxMUVBOEVFODkxM0JDNEY5QUUwMi94S1REVkRXUDFJ SV9ic1V4TW5aMGhVeUd4dDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAk464wQFD8MPOohwwos+SmgV+I0K/NPxIGdXNZgXFHPNKuQvFcX1FZ 0/qdRUVxlWSUDsRJ+AopCcOTL/XPUKd7xM6aRjOvHHyS7xHFaf4XdqTM9zt0ULp7 xOAVP+8cFJJv0tKMQfoFqAb+zU5e0/CAuJE+ZEvvXc6wRnH4lPBTbAYAscLE0Ap0 AOGKwU7Ga+YBg351OTn9NMfGX3voL9drmPnBch5IBeqXjqgjdt9UljTraw9wS0mT xC9rXJxet74Z+1FUOW02MA6aUpRlNQjHH15LmyQnhG6gf7G81UBM+FvxSeYt4gAr ZCeNIa65lPZwnygIjavMuS6M2IpBNYK5 -----END CERTIFICATE-----Generated at Wed May 14 07:21:30 2025 by rpki-client