$ rpki-client -vvf rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.mft File: xPuRgT57oJnZHpxIFyCUuZBcDxE.mft (raw, json) Hash identifier: I4VCY0+YoQ8Sx5LDLxl48kTNwTg3IlSiF09WSdlR9o4= Subject key identifier: EA:0F:AB:94:FA:32:FF:61:BA:22:A8:FA:6B:66:E6:21:D7:47:2E:7F Authority key identifier: C4:FB:91:81:3E:7B:A0:99:D9:1E:9C:48:17:20:94:B9:90:5C:0F:11 Certificate issuer: /CN=A919B3BC/serialNumber=C4FB91813E7BA099D91E9C48172094B9905C0F11 Certificate serial: 1E25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPuRgT57oJnZHpxIFyCUuZBcDxE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.mft Manifest number: 1E07 Signing time: Wed 14 May 2025 16:11:24 +0000 Manifest this update: Wed 14 May 2025 16:11:23 +0000 Manifest next update: Wed 21 May 2025 16:11:23 +0000 Files and hashes: 1: xPuRgT57oJnZHpxIFyCUuZBcDxE.crl (hash: 8cGt7McYCSHYO2Q4etO1TfW3ZJYx7LwQ4jFmGsnbZz0=) 2: 6553E9461A0611F08E7AD42AC4F9AE02.roa (hash: f1rUI1t3KqdGMKeqiBAUTM/laLwJwP3gycWHTBm/djM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.crl rsync://rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPuRgT57oJnZHpxIFyCUuZBcDxE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 16:11:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7717 (0x1e25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B3BC, serialNumber=C4FB91813E7BA099D91E9C48172094B9905C0F11 Validity Not Before: May 14 16:11:23 2025 GMT Not After : May 21 16:11:23 2025 GMT Subject: CN=6824c0ab-4223 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:2b:44:c9:cc:b0:cf:14:94:28:1b:5a:29:2d: d1:34:fb:8f:9d:8a:b7:3b:f3:83:be:2c:55:f1:9f: 95:5f:ad:54:b7:75:09:40:4f:91:b0:63:b5:ba:ad: 51:76:68:fd:ad:d6:89:a6:cf:61:c3:9a:55:79:3c: 2c:b7:f5:d5:a0:97:23:f8:2f:04:57:d7:90:6a:52: fc:a2:d1:50:57:f9:89:33:7e:f5:3f:82:fb:53:42: fa:28:89:9d:52:1f:e6:47:62:b3:43:54:3a:14:8a: 89:49:08:d9:7a:39:4b:59:07:a0:81:24:d2:aa:c9: d5:ee:26:97:04:03:aa:22:ea:76:75:4d:4b:4a:6d: 6d:c6:09:5d:29:9a:b8:df:ef:6a:cc:f3:6f:57:9a: bd:bf:20:14:71:ac:78:23:23:52:7f:fc:20:35:c0: 12:b7:28:b7:93:46:26:c2:14:91:2a:f4:ba:e5:90: d2:5d:da:dc:b7:8e:05:13:40:00:31:62:3d:ae:d5: 5d:d3:e5:d9:75:54:2c:b8:c3:fc:0c:bf:c1:cd:53: 94:4a:c4:8e:44:ce:16:2f:20:1c:d1:6b:6c:aa:16: f3:c3:3e:c3:f3:e4:0d:41:a1:6b:df:02:5d:37:cd: da:84:c3:08:76:d9:73:8d:77:d6:71:ab:eb:99:c4: ae:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:0F:AB:94:FA:32:FF:61:BA:22:A8:FA:6B:66:E6:21:D7:47:2E:7F X509v3 Authority Key Identifier: keyid:C4:FB:91:81:3E:7B:A0:99:D9:1E:9C:48:17:20:94:B9:90:5C:0F:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPuRgT57oJnZHpxIFyCUuZBcDxE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:b0:f1:a4:67:84:88:63:db:32:81:2f:d2:87:be:90:06:78: 68:3e:cb:74:e2:7e:11:25:21:26:9f:04:ed:a9:e2:dc:da:a4: 67:6f:84:62:74:48:31:50:1f:97:37:b6:25:19:64:9d:82:f7: de:20:6d:e3:c2:12:4b:b1:2a:b2:fa:b0:0e:10:8f:d6:ba:46: 38:dd:39:5f:bc:41:bb:05:28:ac:59:60:6d:a0:e8:72:6e:e0: 74:57:51:9f:a4:13:4d:78:85:f6:a5:a7:66:9b:45:6a:f5:17: 0d:55:ee:4d:6f:a6:ef:1a:c3:8c:16:31:15:7c:86:59:8c:b8: 46:37:71:eb:90:55:dd:ef:ab:3b:a5:7d:7a:93:d8:f8:b8:70: bd:13:cd:26:8c:97:ed:8c:d5:87:44:7c:64:a2:5f:af:6d:10: 6a:8c:ac:31:3d:b4:7b:7d:44:a7:a2:38:6c:da:89:d1:ff:7c: 70:2b:e3:4a:a7:df:cf:e3:46:f9:fd:1e:73:4c:65:34:4a:bf: 52:87:f9:d4:94:d7:c8:82:d9:6f:70:dd:f5:2c:2a:34:33:47: 48:9e:33:79:19:aa:79:a7:f6:c0:44:37:34:d4:fc:a9:9f:17: ff:21:b2:9e:a9:52:fb:c3:42:64:ff:d2:b5:c8:39:13:bc:d9: 37:07:7e:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHiUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUIzQkMxMTAvBgNVBAUTKEM0RkI5MTgxM0U3QkEwOTlEOTFFOUM0ODE3MjA5NEI5 OTA1QzBGMTEwHhcNMjUwNTE0MTYxMTIzWhcNMjUwNTIxMTYxMTIzWjAYMRYwFAYD VQQDEw02ODI0YzBhYi00MjIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyCtEycywzxSUKBtaKS3RNPuPnYq3O/ODvixV8Z+VX61Ut3UJQE+RsGO1uq1R dmj9rdaJps9hw5pVeTwst/XVoJcj+C8EV9eQalL8otFQV/mJM371P4L7U0L6KImd Uh/mR2KzQ1Q6FIqJSQjZejlLWQeggSTSqsnV7iaXBAOqIup2dU1LSm1txgldKZq4 3+9qzPNvV5q9vyAUcax4IyNSf/wgNcAStyi3k0YmwhSRKvS65ZDSXdrct44FE0AA MWI9rtVd0+XZdVQsuMP8DL/BzVOUSsSORM4WLyAc0Wtsqhbzwz7D8+QNQaFr3wJd N83ahMMIdtlzjXfWcavrmcSuAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOoPq5T6 Mv9huiKo+mtm5iHXRy5/MB8GA1UdIwQYMBaAFMT7kYE+e6CZ2R6cSBcglLmQXA8R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjNCQy8zODEyNDRGRThG OUIxMUU2QkVDNUNCMjVDNEY5QUUwMi94UHVSZ1Q1N29KblpIcHhJRnlDVXVaQmNE eEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hQdVJnVDU3b0puWkhweElGeUNVdVpCY0R4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QjNCQy8zODEyNDRGRThGOUIxMUU2QkVDNUNCMjVDNEY5QUUwMi94UHVSZ1Q1N29K blpIcHhJRnlDVXVaQmNEeEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2sPGkZ4SIY9sygS/Sh76QBnhoPst04n4RJSEmnwTtqeLc2qRnb4Ri dEgxUB+XN7YlGWSdgvfeIG3jwhJLsSqy+rAOEI/WukY43TlfvEG7BSisWWBtoOhy buB0V1GfpBNNeIX2padmm0Vq9RcNVe5Nb6bvGsOMFjEVfIZZjLhGN3HrkFXd76s7 pX16k9j4uHC9E80mjJftjNWHRHxkol+vbRBqjKwxPbR7fUSnojhs2onR/3xwK+NK p9/P40b5/R5zTGU0Sr9Sh/nUlNfIgtlvcN31LCo0M0dInjN5Gap5p/bARDc01Pyp nxf/IbKeqVL7w0Jk/9K1yDkTvNk3B36g -----END CERTIFICATE-----Generated at Thu May 15 03:56:35 2025 by rpki-client