$ rpki-client -vvf rpki.apnic.net/member_repository/A918FEF6/1986B9D832FE11EB85BAD157C4F9AE02/sXBCw3IXHA9BRv78RNHbqlIjhxs.mft File: sXBCw3IXHA9BRv78RNHbqlIjhxs.mft (raw, json) Hash identifier: 2o7F3XaG6hA8mG+uiAgOpoWQ/NFhq05hh9xQeVvR/hQ= Subject key identifier: 97:6C:6F:6A:72:71:9B:CE:77:BF:0B:57:EB:20:08:0D:10:96:FE:E8 Authority key identifier: B1:70:42:C3:72:17:1C:0F:41:46:FE:FC:44:D1:DB:AA:52:23:87:1B Certificate issuer: /CN=A918FEF6/serialNumber=B17042C372171C0F4146FEFC44D1DBAA5223871B Certificate serial: 0728 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sXBCw3IXHA9BRv78RNHbqlIjhxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FEF6/1986B9D832FE11EB85BAD157C4F9AE02/sXBCw3IXHA9BRv78RNHbqlIjhxs.mft Manifest number: 0723 Signing time: Wed 14 May 2025 21:52:46 +0000 Manifest this update: Wed 14 May 2025 21:52:45 +0000 Manifest next update: Wed 21 May 2025 21:52:45 +0000 Files and hashes: 1: sXBCw3IXHA9BRv78RNHbqlIjhxs.crl (hash: wk7fPZvHFFXfGmZdXk9yStei45lmx/5tXWpYtm7u05o=) 2: 3A9A3904330011EBA08B865DC4F9AE02.roa (hash: 3vNGkA3tCUjQbATswchBY3GI0Vd54z+gZRifmc/PxUs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FEF6/1986B9D832FE11EB85BAD157C4F9AE02/sXBCw3IXHA9BRv78RNHbqlIjhxs.crl rsync://rpki.apnic.net/member_repository/A918FEF6/1986B9D832FE11EB85BAD157C4F9AE02/sXBCw3IXHA9BRv78RNHbqlIjhxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sXBCw3IXHA9BRv78RNHbqlIjhxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 21:52:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1832 (0x728) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FEF6, serialNumber=B17042C372171C0F4146FEFC44D1DBAA5223871B Validity Not Before: May 14 21:52:45 2025 GMT Not After : May 21 21:52:45 2025 GMT Subject: CN=682510ad-4977 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:2c:63:af:86:22:06:50:44:bd:2f:cc:a1:c1: 36:4f:91:62:b3:5d:3e:68:2b:3b:e5:c2:34:27:04: 33:9e:d0:d9:16:00:9b:98:2d:c2:6a:e6:5b:2a:68: 11:82:b7:84:89:3e:5f:90:a7:5c:6d:8e:72:6c:bf: c5:bb:25:06:16:a3:45:b3:b8:fc:9e:84:8f:b6:33: dd:0e:fb:55:38:97:5c:78:d6:c6:f2:76:68:53:1b: 64:0d:cc:11:98:b7:4a:dd:d2:76:7f:d4:86:74:a6: 57:87:64:2b:88:fb:ca:39:7c:51:14:d7:34:c8:dd: 44:96:84:e0:8c:67:a7:07:b1:71:cc:a7:b4:21:e2: f3:4d:45:1d:10:55:e1:4a:e1:a9:15:ab:66:2b:48: 6b:09:6f:a8:7d:3c:ce:97:b5:71:0d:ff:08:82:33: 0a:0f:3f:ad:f1:58:64:4c:b5:7e:5e:ee:e3:7d:e4: 2f:17:8e:f3:87:f1:64:b4:6d:64:96:67:ba:79:f6: 77:ac:35:3d:6a:f5:33:b0:7c:70:64:da:23:90:a8: 81:d8:00:0f:88:e7:a3:d5:63:d5:89:3f:4e:00:72: f1:9c:82:67:03:f3:0e:e4:46:e8:bf:58:eb:14:13: 0f:ae:55:54:e2:05:88:1d:5d:7a:ff:fe:dd:1d:ed: b2:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:6C:6F:6A:72:71:9B:CE:77:BF:0B:57:EB:20:08:0D:10:96:FE:E8 X509v3 Authority Key Identifier: keyid:B1:70:42:C3:72:17:1C:0F:41:46:FE:FC:44:D1:DB:AA:52:23:87:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FEF6/1986B9D832FE11EB85BAD157C4F9AE02/sXBCw3IXHA9BRv78RNHbqlIjhxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sXBCw3IXHA9BRv78RNHbqlIjhxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FEF6/1986B9D832FE11EB85BAD157C4F9AE02/sXBCw3IXHA9BRv78RNHbqlIjhxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:14:18:3d:4d:3e:97:c8:96:e3:24:56:f7:bd:25:65:22:93: ef:d2:14:ab:25:90:5f:3a:92:49:5f:7b:2b:2d:3f:f4:13:c7: 7e:a2:f8:1c:dc:56:3b:e5:cf:0b:0d:0f:c7:7a:6a:85:36:96: dd:b2:f1:57:d8:e6:53:e1:e7:4f:d1:6d:c1:ed:e7:03:d4:15: a0:27:d0:64:46:43:f8:63:a9:c6:c2:dd:0e:23:4c:b4:09:4e: 84:2f:5e:c7:28:0d:54:89:df:a6:98:f9:f4:c2:84:25:1a:fb: 02:2b:76:82:a3:5c:64:3e:01:a3:ef:d6:2d:46:04:34:e4:23: 97:a0:34:62:e9:6b:cd:6b:3c:35:c3:c3:ac:8d:00:86:66:46: 39:19:f0:f8:63:d9:4a:a8:24:1e:49:17:b3:52:f7:29:f3:af: ad:c2:00:04:6d:00:0f:95:98:9e:b8:95:6b:6e:19:37:70:e8: 95:39:e7:16:75:33:3c:04:57:a6:07:a5:fc:22:93:c4:78:e4: f6:1e:1c:b0:32:2a:43:e3:18:ba:d4:3e:fd:f7:70:c3:4f:ba: 90:c0:f7:aa:4a:59:24:d7:66:ee:98:5b:d0:c3:8b:bd:bd:b1: 48:7a:9a:14:5b:ac:4f:7a:3f:ca:09:bc:c4:be:88:57:e2:4a: 8d:b0:bf:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBygwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZFRjYxMTAvBgNVBAUTKEIxNzA0MkMzNzIxNzFDMEY0MTQ2RkVGQzQ0RDFEQkFB NTIyMzg3MUIwHhcNMjUwNTE0MjE1MjQ1WhcNMjUwNTIxMjE1MjQ1WjAYMRYwFAYD VQQDEw02ODI1MTBhZC00OTc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvyxjr4YiBlBEvS/MocE2T5Fis10+aCs75cI0JwQzntDZFgCbmC3CauZbKmgR greEiT5fkKdcbY5ybL/FuyUGFqNFs7j8noSPtjPdDvtVOJdceNbG8nZoUxtkDcwR mLdK3dJ2f9SGdKZXh2QriPvKOXxRFNc0yN1EloTgjGenB7FxzKe0IeLzTUUdEFXh SuGpFatmK0hrCW+ofTzOl7VxDf8IgjMKDz+t8VhkTLV+Xu7jfeQvF47zh/FktG1k lme6efZ3rDU9avUzsHxwZNojkKiB2AAPiOej1WPViT9OAHLxnIJnA/MO5Ebov1jr FBMPrlVU4gWIHV16//7dHe2ycwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJdsb2py cZvOd78LV+sgCA0Qlv7oMB8GA1UdIwQYMBaAFLFwQsNyFxwPQUb+/ETR26pSI4cb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkVGNi8xOTg2QjlEODMy RkUxMUVCODVCQUQxNTdDNEY5QUUwMi9zWEJDdzNJWEhBOUJSdjc4Uk5IYnFsSWpo eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NYQkN3M0lYSEE5QlJ2NzhSTkhicWxJamh4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkVGNi8xOTg2QjlEODMyRkUxMUVCODVCQUQxNTdDNEY5QUUwMi9zWEJDdzNJWEhB OUJSdjc4Uk5IYnFsSWpoeHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWFBg9TT6XyJbjJFb3vSVlIpPv0hSrJZBfOpJJX3srLT/0E8d+ovgc 3FY75c8LDQ/HemqFNpbdsvFX2OZT4edP0W3B7ecD1BWgJ9BkRkP4Y6nGwt0OI0y0 CU6EL17HKA1Uid+mmPn0woQlGvsCK3aCo1xkPgGj79YtRgQ05COXoDRi6WvNazw1 w8OsjQCGZkY5GfD4Y9lKqCQeSRezUvcp86+twgAEbQAPlZieuJVrbhk3cOiVOecW dTM8BFemB6X8IpPEeOT2HhywMipD4xi61D7993DDT7qQwPeqSlkk12bumFvQw4u9 vbFIepoUW6xPej/KCbzEvohX4kqNsL8g -----END CERTIFICATE-----Generated at Fri May 16 06:08:55 2025 by rpki-client