$ rpki-client -vvf rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/XufPQ5pCIyMpgqLLTeVPN8cgWqk.mft File: XufPQ5pCIyMpgqLLTeVPN8cgWqk.mft (raw, json) Hash identifier: Ebr4CV0vWhHMuOe3/+zouwQ8cgKjqaRgcHgQrtCBahc= Subject key identifier: 67:D1:03:91:35:64:F2:48:B1:89:83:3B:A9:1E:DA:53:21:DB:2A:9C Authority key identifier: 5E:E7:CF:43:9A:42:23:23:29:82:A2:CB:4D:E5:4F:37:C7:20:5A:A9 Certificate issuer: /CN=A913AE78/serialNumber=5EE7CF439A4223232982A2CB4DE54F37C7205AA9 Certificate serial: 0734 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XufPQ5pCIyMpgqLLTeVPN8cgWqk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/XufPQ5pCIyMpgqLLTeVPN8cgWqk.mft Manifest number: 072E Signing time: Thu 10 Apr 2025 21:40:54 +0000 Manifest this update: Thu 10 Apr 2025 21:40:53 +0000 Manifest next update: Thu 17 Apr 2025 21:40:53 +0000 Files and hashes: 1: XufPQ5pCIyMpgqLLTeVPN8cgWqk.crl (hash: bKcGwRx6rhJOJTZqMUkOmheFgMf45VWIRELNiQuGmOM=) 2: D6138A3C292A11EB9CEDCC26C4F9AE02.roa (hash: eaeoz8RqOSGEC4peCpxGpY2PbARdRPwT9kf9QvE/Y6E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/XufPQ5pCIyMpgqLLTeVPN8cgWqk.crl rsync://rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/XufPQ5pCIyMpgqLLTeVPN8cgWqk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XufPQ5pCIyMpgqLLTeVPN8cgWqk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 21:40:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1844 (0x734) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AE78, serialNumber=5EE7CF439A4223232982A2CB4DE54F37C7205AA9 Validity Not Before: Apr 10 21:40:53 2025 GMT Not After : Apr 17 21:40:53 2025 GMT Subject: CN=67f83ae5-8eab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b0:46:c9:4c:f5:be:ef:55:88:aa:23:78:0f: cb:04:e0:d9:a9:27:4c:a2:09:f1:8c:93:8f:09:b3: c1:db:94:5d:c7:03:d3:d9:3d:6c:eb:7d:9a:ae:31: 0e:0e:e9:f1:f9:b8:43:c6:73:e4:12:7c:4d:c3:95: fd:84:2e:95:69:98:0f:d7:e8:e0:76:22:1e:ba:93: 5b:9f:1e:ae:ba:3d:18:1c:eb:f4:ee:68:4a:47:1c: 13:08:0d:95:0a:02:78:58:f5:1a:1f:ca:99:a0:c1: 36:8b:0e:20:45:e6:72:1e:0e:d1:91:7a:e7:33:48: 49:7e:5e:cc:23:69:0d:37:a0:10:78:66:6a:ce:81: 42:56:6b:eb:16:12:35:e7:b8:6b:dd:9f:29:f0:6c: fe:ac:58:ce:16:f5:e0:ce:73:16:ea:f3:35:bb:71: 66:ea:22:84:79:d4:82:6a:21:3a:4b:ea:9d:7d:05: 43:87:a7:8b:b9:08:45:dd:21:ff:0f:05:6f:c1:1f: 6b:d6:0f:1b:17:9b:4f:6b:d1:1f:36:12:89:5c:22: 9f:00:f0:b0:43:e5:4b:2d:01:f0:59:66:f0:b6:23: 20:ef:99:3d:e3:30:02:6a:56:85:bd:7a:72:56:c5: 7e:36:ee:7b:3c:ab:48:30:c4:60:bf:a5:93:fb:6d: 05:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:D1:03:91:35:64:F2:48:B1:89:83:3B:A9:1E:DA:53:21:DB:2A:9C X509v3 Authority Key Identifier: keyid:5E:E7:CF:43:9A:42:23:23:29:82:A2:CB:4D:E5:4F:37:C7:20:5A:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/XufPQ5pCIyMpgqLLTeVPN8cgWqk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XufPQ5pCIyMpgqLLTeVPN8cgWqk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/XufPQ5pCIyMpgqLLTeVPN8cgWqk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:f1:7e:1c:f0:d5:4a:7d:07:94:78:6c:21:13:16:de:d4:a0: 8a:58:c9:a7:4c:c8:41:c3:0a:8d:c6:4e:34:e7:ef:ab:80:ba: 75:eb:4c:94:46:e9:04:3b:9e:f4:10:ad:2f:1c:97:41:fe:77: 49:4f:4e:6e:20:88:60:dd:a5:ee:01:43:45:c0:c9:48:69:63: c7:4e:02:e6:b0:ac:a9:f6:37:5f:6a:5d:78:b4:5a:a1:c8:06: 40:60:c8:b5:72:94:ed:97:4b:19:6b:6e:2b:df:98:c5:4f:89: d2:42:8f:51:f9:2c:b4:5b:23:1b:16:41:2d:94:ed:42:81:bd: 8a:2c:8b:e4:ea:7d:b2:d0:a6:73:a0:04:00:e7:b1:a4:58:9f: d8:76:f9:00:be:2c:dd:f0:c1:b4:18:8e:7d:cc:0b:e6:bf:f3: 76:0a:e9:43:94:40:44:fe:a1:de:6e:6e:00:20:99:39:67:a8: 19:a1:c1:a2:65:86:ff:8f:c0:7b:73:7b:cc:f8:d1:b0:05:fe: 68:73:d0:1a:a9:d8:3d:aa:5f:79:26:6f:ef:51:6f:c3:10:74: 8c:03:07:0e:3f:fa:a1:c0:b2:63:a6:45:43:f0:2b:91:cf:66: 9e:7a:99:c2:29:c6:ee:91:75:1f:66:cd:a0:7c:56:ef:4e:00: eb:31:39:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBzQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FFNzgxMTAvBgNVBAUTKDVFRTdDRjQzOUE0MjIzMjMyOTgyQTJDQjRERTU0RjM3 QzcyMDVBQTkwHhcNMjUwNDEwMjE0MDUzWhcNMjUwNDE3MjE0MDUzWjAYMRYwFAYD VQQDEw02N2Y4M2FlNS04ZWFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvbBGyUz1vu9ViKojeA/LBODZqSdMognxjJOPCbPB25RdxwPT2T1s632arjEO Dunx+bhDxnPkEnxNw5X9hC6VaZgP1+jgdiIeupNbnx6uuj0YHOv07mhKRxwTCA2V CgJ4WPUaH8qZoME2iw4gReZyHg7RkXrnM0hJfl7MI2kNN6AQeGZqzoFCVmvrFhI1 57hr3Z8p8Gz+rFjOFvXgznMW6vM1u3Fm6iKEedSCaiE6S+qdfQVDh6eLuQhF3SH/ DwVvwR9r1g8bF5tPa9EfNhKJXCKfAPCwQ+VLLQHwWWbwtiMg75k94zACalaFvXpy VsV+Nu57PKtIMMRgv6WT+20F3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGfRA5E1 ZPJIsYmDO6ke2lMh2yqcMB8GA1UdIwQYMBaAFF7nz0OaQiMjKYKiy03lTzfHIFqp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUU3OC9GMUY0RDNDRTI5 MjkxMUVCOTRFMzhEMjZDNEY5QUUwMi9YdWZQUTVwQ0l5TXBncUxMVGVWUE44Y2dX cWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h1ZlBRNXBDSXlNcGdxTExUZVZQTjhjZ1dxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUU3OC9GMUY0RDNDRTI5MjkxMUVCOTRFMzhEMjZDNEY5QUUwMi9YdWZQUTVwQ0l5 TXBncUxMVGVWUE44Y2dXcWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBt8X4c8NVKfQeUeGwhExbe1KCKWMmnTMhBwwqNxk405++rgLp160yU RukEO570EK0vHJdB/ndJT05uIIhg3aXuAUNFwMlIaWPHTgLmsKyp9jdfal14tFqh yAZAYMi1cpTtl0sZa24r35jFT4nSQo9R+Sy0WyMbFkEtlO1Cgb2KLIvk6n2y0KZz oAQA57GkWJ/YdvkAvizd8MG0GI59zAvmv/N2CulDlEBE/qHebm4AIJk5Z6gZocGi ZYb/j8B7c3vM+NGwBf5oc9Aaqdg9ql95Jm/vUW/DEHSMAwcOP/qhwLJjpkVD8CuR z2aeepnCKcbukXUfZs2gfFbvTgDrMTlO -----END CERTIFICATE-----Generated at Sat Apr 12 17:50:26 2025 by rpki-client