$ rpki-client -vvf rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.mft File: XrCY701WVcxmtq-Bw83kBi2ALzs.mft (raw, json) Hash identifier: NLkUufeawrL2T953LDBo5t7OqaamBEgbFwfH75Hy8mw= Subject key identifier: 7E:73:5D:16:FA:04:5B:9C:1D:B3:FA:50:3F:EC:72:86:58:D0:B6:0F Authority key identifier: 5E:B0:98:EF:4D:56:55:CC:66:B6:AF:81:C3:CD:E4:06:2D:80:2F:3B Certificate issuer: /CN=A919E3FB/serialNumber=5EB098EF4D5655CC66B6AF81C3CDE4062D802F3B Certificate serial: 04C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XrCY701WVcxmtq-Bw83kBi2ALzs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.mft Manifest number: 04BD Signing time: Mon 12 May 2025 23:38:47 +0000 Manifest this update: Mon 12 May 2025 23:38:47 +0000 Manifest next update: Mon 19 May 2025 23:38:47 +0000 Files and hashes: 1: XrCY701WVcxmtq-Bw83kBi2ALzs.crl (hash: TxvIg1Bqes+hx8N30x+uTFYS1X7x+UqDy1QpxHP+6qg=) 2: B4D8E692267111ECA0546981C4F9AE02.roa (hash: APl5b4vCPo52FjFgWioqB5D0vfXVOhLUTwuTuf6xSiY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.crl rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XrCY701WVcxmtq-Bw83kBi2ALzs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 23:38:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1218 (0x4c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E3FB, serialNumber=5EB098EF4D5655CC66B6AF81C3CDE4062D802F3B Validity Not Before: May 12 23:38:47 2025 GMT Not After : May 19 23:38:47 2025 GMT Subject: CN=68228687-43a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f0:42:ae:96:ea:40:e1:24:68:bd:b2:1c:42: 13:0f:67:7e:f5:71:9e:ca:ae:7b:25:85:24:bd:a3: 02:89:83:44:8b:0a:4f:e7:a7:e6:c3:cd:76:5d:cf: de:b4:c4:c7:7c:e0:7a:e9:75:f4:db:bc:97:f3:87: 45:72:18:77:a8:01:f5:30:33:0f:5f:34:85:78:03: 1a:6f:c0:de:00:4d:be:02:06:4c:e0:36:da:e2:bf: ba:87:32:3c:c7:f1:75:31:3c:ea:60:64:e1:46:ed: 8d:76:87:9a:20:2c:7c:da:12:54:e5:d9:0f:54:a9: 83:bb:e4:21:b6:d5:a3:df:69:c2:48:d2:1d:39:80: cb:6c:09:3e:ec:f9:bc:72:18:21:25:82:9b:f5:3a: bd:4e:ad:d6:c4:5e:37:66:42:3d:2d:7c:38:91:b3: ad:50:17:9d:4c:be:45:ca:20:88:db:e6:ce:11:98: 85:01:25:d1:74:ab:53:0f:68:55:5e:8e:05:b1:09: ac:ce:fe:d6:f4:71:d9:2f:f6:7d:a8:23:64:66:8d: 2f:19:7f:60:9a:76:92:11:83:a3:43:8b:2f:70:d6: 1e:2e:70:7c:94:17:81:97:e5:dc:7c:6d:74:d7:61: 3c:83:68:35:8e:ea:b1:8a:e0:de:46:4d:32:4e:a8: 94:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:73:5D:16:FA:04:5B:9C:1D:B3:FA:50:3F:EC:72:86:58:D0:B6:0F X509v3 Authority Key Identifier: keyid:5E:B0:98:EF:4D:56:55:CC:66:B6:AF:81:C3:CD:E4:06:2D:80:2F:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XrCY701WVcxmtq-Bw83kBi2ALzs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:64:ca:70:87:99:e6:76:0c:84:23:4d:b3:63:b9:5e:02:f9: 89:7e:27:e7:e2:01:0b:d7:1d:63:c7:c0:a4:0d:eb:ad:d8:ed: 69:8d:26:e1:60:2d:8e:60:fb:28:1d:45:47:7a:f9:a7:63:df: 24:03:07:44:0d:b3:29:d6:a8:57:eb:08:dc:34:de:86:c2:5d: 10:00:2f:8e:6d:fc:6a:fc:01:2f:fa:83:85:54:0b:b1:0e:2b: f0:54:76:6d:7e:34:8f:06:40:05:a7:be:71:fa:af:a1:ee:10: ff:64:54:08:f3:a6:70:d8:2c:75:7c:a6:4a:01:e5:6a:df:42: 79:c6:19:15:33:ee:8f:0b:ca:49:97:2e:22:60:4b:c1:fe:7c: 3f:b1:2b:2b:a3:c5:75:62:8b:67:b7:1a:e4:30:a3:ce:83:3a: 1b:02:9f:a9:4a:44:50:9d:33:ff:c1:91:1c:54:f3:06:d3:b7: 53:3b:80:12:30:9d:4c:81:a2:85:f4:d0:6b:a5:a0:4a:e4:01: 75:96:58:27:fd:58:f0:c1:95:0e:7c:7a:95:5e:b2:97:29:5d: ff:cf:82:b3:51:58:aa:bd:3c:80:ca:e2:db:be:c9:92:17:7d: d4:71:64:1c:86:a6:43:7c:f6:13:c5:5b:68:e2:c2:82:53:d2: a8:7d:d5:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUUzRkIxMTAvBgNVBAUTKDVFQjA5OEVGNEQ1NjU1Q0M2NkI2QUY4MUMzQ0RFNDA2 MkQ4MDJGM0IwHhcNMjUwNTEyMjMzODQ3WhcNMjUwNTE5MjMzODQ3WjAYMRYwFAYD VQQDEw02ODIyODY4Ny00M2E5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzPBCrpbqQOEkaL2yHEITD2d+9XGeyq57JYUkvaMCiYNEiwpP56fmw812Xc/e tMTHfOB66XX027yX84dFchh3qAH1MDMPXzSFeAMab8DeAE2+AgZM4Dba4r+6hzI8 x/F1MTzqYGThRu2NdoeaICx82hJU5dkPVKmDu+QhttWj32nCSNIdOYDLbAk+7Pm8 chghJYKb9Tq9Tq3WxF43ZkI9LXw4kbOtUBedTL5FyiCI2+bOEZiFASXRdKtTD2hV Xo4FsQmszv7W9HHZL/Z9qCNkZo0vGX9gmnaSEYOjQ4svcNYeLnB8lBeBl+XcfG10 12E8g2g1juqxiuDeRk0yTqiUnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH5zXRb6 BFucHbP6UD/scoZY0LYPMB8GA1UdIwQYMBaAFF6wmO9NVlXMZravgcPN5AYtgC87 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RTNGQi9GREQ0NEMyMjI2 NkUxMUVDQUMwOTdDN0JDNEY5QUUwMi9YckNZNzAxV1ZjeG10cS1Cdzgza0JpMkFM enMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hyQ1k3MDFXVmN4bXRxLUJ3ODNrQmkyQUx6cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RTNGQi9GREQ0NEMyMjI2NkUxMUVDQUMwOTdDN0JDNEY5QUUwMi9YckNZNzAxV1Zj eG10cS1Cdzgza0JpMkFMenMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtZMpwh5nmdgyEI02zY7leAvmJfifn4gEL1x1jx8CkDeut2O1pjSbh YC2OYPsoHUVHevmnY98kAwdEDbMp1qhX6wjcNN6Gwl0QAC+Obfxq/AEv+oOFVAux DivwVHZtfjSPBkAFp75x+q+h7hD/ZFQI86Zw2Cx1fKZKAeVq30J5xhkVM+6PC8pJ ly4iYEvB/nw/sSsro8V1YotntxrkMKPOgzobAp+pSkRQnTP/wZEcVPMG07dTO4AS MJ1MgaKF9NBrpaBK5AF1llgn/VjwwZUOfHqVXrKXKV3/z4KzUViqvTyAyuLbvsmS F33UcWQchqZDfPYTxVto4sKCU9KofdX8 -----END CERTIFICATE-----Generated at Wed May 14 20:18:50 2025 by rpki-client