$ rpki-client -vvf rpki.apnic.net/member_repository/A916B19D/D2695DDE111E11ED9B58FD14C4F9AE02/XEFCLE7PHfpomnDePAORsdR-Vew.mft File: XEFCLE7PHfpomnDePAORsdR-Vew.mft (raw, json) Hash identifier: xm44IwkDHSedq1gCPCDAPuHTocqW6kySgMVjVmTLAAU= Subject key identifier: C0:3F:55:2F:03:54:13:47:2C:FC:89:F7:DD:15:FE:37:3F:2C:52:91 Authority key identifier: 5C:41:42:2C:4E:CF:1D:FA:68:9A:70:DE:3C:03:91:B1:D4:7E:55:EC Certificate issuer: /CN=A916B19D/serialNumber=5C41422C4ECF1DFA689A70DE3C0391B1D47E55EC Certificate serial: 025F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEFCLE7PHfpomnDePAORsdR-Vew.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B19D/D2695DDE111E11ED9B58FD14C4F9AE02/XEFCLE7PHfpomnDePAORsdR-Vew.mft Manifest number: 025A Signing time: Tue 15 Apr 2025 01:28:43 +0000 Manifest this update: Tue 15 Apr 2025 01:28:43 +0000 Manifest next update: Tue 22 Apr 2025 01:28:43 +0000 Files and hashes: 1: XEFCLE7PHfpomnDePAORsdR-Vew.crl (hash: mOkun9IFlU5R1aSrXxEl8e0bt9zW+LKYn9k/FdLBUf4=) 2: D11B9044112011EDAC1D3B15C4F9AE02.roa (hash: jBBbANmuNZVxVrVIl9nOmJTDHehO/z/tNRNLXj+1oS0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B19D/D2695DDE111E11ED9B58FD14C4F9AE02/XEFCLE7PHfpomnDePAORsdR-Vew.crl rsync://rpki.apnic.net/member_repository/A916B19D/D2695DDE111E11ED9B58FD14C4F9AE02/XEFCLE7PHfpomnDePAORsdR-Vew.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEFCLE7PHfpomnDePAORsdR-Vew.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Apr 2025 01:28:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 607 (0x25f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B19D, serialNumber=5C41422C4ECF1DFA689A70DE3C0391B1D47E55EC Validity Not Before: Apr 15 01:28:43 2025 GMT Not After : Apr 22 01:28:43 2025 GMT Subject: CN=67fdb64b-2c1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:63:11:fc:15:1a:c4:67:f1:88:f3:e0:58:05: cf:fd:cd:66:b7:80:eb:de:9e:bd:c5:be:f0:74:46: c4:08:38:92:fa:d3:b7:4e:7d:58:29:59:70:a5:bd: 0a:0e:7b:93:29:4b:d4:01:39:cc:82:1d:eb:10:da: 43:8c:13:b7:8c:6a:99:32:e8:0b:37:e3:6c:aa:b3: b7:3f:33:28:ae:5b:6f:0f:ba:c5:1c:36:2b:e0:e2: 5b:6c:68:5e:07:ff:60:9a:2e:04:18:6d:19:9c:05: fa:30:dd:69:c3:b7:8d:fb:a8:c8:2e:d6:bc:8b:a3: 4a:19:16:5e:78:ee:b1:67:45:45:41:38:03:f5:a3: 4e:53:23:13:62:3a:84:a2:71:fa:c9:2f:32:8e:9b: 62:95:25:a7:b6:fc:c4:91:c4:cf:c6:32:f6:e3:b8: a5:ef:80:b0:c5:ed:ce:4d:08:d4:00:ea:cb:af:4e: 9b:7e:d6:91:71:9f:0f:db:8a:0c:12:5d:84:68:16: 1e:f4:93:0a:96:52:96:50:6a:87:57:1a:7e:8f:1a: c2:0b:44:de:53:20:1c:e8:ed:c0:d7:c2:b2:ba:34: 78:e0:de:63:1c:81:b0:c7:c3:ae:8c:ce:dc:c7:dd: 5b:af:ef:e5:cd:2e:f6:a9:84:ee:b3:9c:31:3b:48: 32:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:3F:55:2F:03:54:13:47:2C:FC:89:F7:DD:15:FE:37:3F:2C:52:91 X509v3 Authority Key Identifier: keyid:5C:41:42:2C:4E:CF:1D:FA:68:9A:70:DE:3C:03:91:B1:D4:7E:55:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B19D/D2695DDE111E11ED9B58FD14C4F9AE02/XEFCLE7PHfpomnDePAORsdR-Vew.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEFCLE7PHfpomnDePAORsdR-Vew.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B19D/D2695DDE111E11ED9B58FD14C4F9AE02/XEFCLE7PHfpomnDePAORsdR-Vew.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:14:f9:1b:cc:4a:bc:ba:75:df:e7:79:c9:c8:16:47:5a:66: 7f:5f:dd:ab:da:8b:91:d1:31:e9:b0:06:ae:d7:fe:68:90:9c: b0:8a:03:3a:a4:51:f9:2a:a6:42:e1:b2:d7:fd:89:27:c9:b6: 90:ae:7b:92:fd:44:cf:bc:18:26:93:62:64:fd:ad:3b:7d:6f: 89:2e:04:59:93:7f:7c:9d:7b:8d:eb:3c:2f:78:a8:22:75:e6: 48:8a:68:09:c0:17:ba:79:5d:91:df:bd:73:95:bc:9e:59:13: 0d:2e:3c:90:16:42:2f:cf:3d:ad:ca:89:65:d9:8b:2c:d1:61: 96:d0:b4:fa:ce:54:48:b3:e5:db:23:3c:32:88:6d:16:b6:ab: e3:33:74:67:03:c0:3a:00:17:f5:8f:79:ac:05:18:c7:a2:82: 1e:30:7c:70:e0:cd:7c:cb:c9:37:9e:df:28:1c:d9:87:8d:55: 0e:0c:06:eb:d4:b8:76:78:ed:22:ab:54:1c:73:90:0d:ec:fb: b9:27:8a:1c:ff:f9:2f:dc:65:d5:2c:03:22:48:b7:e4:bb:6a: e0:36:c9:f6:f0:35:16:ef:82:f5:ed:ae:a6:fb:2b:82:3e:34: 7b:8c:c9:3c:ab:da:3c:7a:bc:7c:a6:21:87:83:61:6a:a8:69: ae:57:a0:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAl8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIxOUQxMTAvBgNVBAUTKDVDNDE0MjJDNEVDRjFERkE2ODlBNzBERTNDMDM5MUIx RDQ3RTU1RUMwHhcNMjUwNDE1MDEyODQzWhcNMjUwNDIyMDEyODQzWjAYMRYwFAYD VQQDEw02N2ZkYjY0Yi0yYzFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtWMR/BUaxGfxiPPgWAXP/c1mt4Dr3p69xb7wdEbECDiS+tO3Tn1YKVlwpb0K DnuTKUvUATnMgh3rENpDjBO3jGqZMugLN+NsqrO3PzMorltvD7rFHDYr4OJbbGhe B/9gmi4EGG0ZnAX6MN1pw7eN+6jILta8i6NKGRZeeO6xZ0VFQTgD9aNOUyMTYjqE onH6yS8yjptilSWntvzEkcTPxjL247il74Cwxe3OTQjUAOrLr06bftaRcZ8P24oM El2EaBYe9JMKllKWUGqHVxp+jxrCC0TeUyAc6O3A18KyujR44N5jHIGwx8OujM7c x91br+/lzS72qYTus5wxO0gyAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMA/VS8D VBNHLPyJ990V/jc/LFKRMB8GA1UdIwQYMBaAFFxBQixOzx36aJpw3jwDkbHUflXs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjE5RC9EMjY5NURERTEx MUUxMUVEOUI1OEZEMTRDNEY5QUUwMi9YRUZDTEU3UEhmcG9tbkRlUEFPUnNkUi1W ZXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hFRkNMRTdQSGZwb21uRGVQQU9Sc2RSLVZldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjE5RC9EMjY5NURERTExMUUxMUVEOUI1OEZEMTRDNEY5QUUwMi9YRUZDTEU3UEhm cG9tbkRlUEFPUnNkUi1WZXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcFPkbzEq8unXf53nJyBZHWmZ/X92r2ouR0THpsAau1/5okJywigM6 pFH5KqZC4bLX/YknybaQrnuS/UTPvBgmk2Jk/a07fW+JLgRZk398nXuN6zwveKgi deZIimgJwBe6eV2R371zlbyeWRMNLjyQFkIvzz2tyoll2Yss0WGW0LT6zlRIs+Xb IzwyiG0WtqvjM3RnA8A6ABf1j3msBRjHooIeMHxw4M18y8k3nt8oHNmHjVUODAbr 1Lh2eO0iq1Qcc5AN7Pu5J4oc//kv3GXVLAMiSLfku2rgNsn28DUW74L17a6m+yuC PjR7jMk8q9o8erx8piGHg2FqqGmuV6Dh -----END CERTIFICATE-----Generated at Thu Apr 17 07:20:24 2025 by rpki-client