$ rpki-client -vvf rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.mft File: X8G2OMzN_5nWRFZVKcgHCGhomzE.mft (raw, json) Hash identifier: j9c1BplNA6lGrujcrZUEJtzV5TGg5TEsWt9XdIyjQeI= Subject key identifier: 2F:81:56:1A:58:74:A2:34:4E:9C:B5:D6:77:83:D3:E0:32:75:AC:30 Authority key identifier: 5F:C1:B6:38:CC:CD:FF:99:D6:44:56:55:29:C8:07:08:68:68:9B:31 Certificate issuer: /CN=A918E28E/serialNumber=5FC1B638CCCDFF99D644565529C8070868689B31 Certificate serial: 11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8G2OMzN_5nWRFZVKcgHCGhomzE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.mft Manifest number: 11 Signing time: Sat 29 Mar 2025 07:21:36 +0000 Manifest this update: Sat 29 Mar 2025 07:21:36 +0000 Manifest next update: Sat 05 Apr 2025 07:21:36 +0000 Files and hashes: 1: X8G2OMzN_5nWRFZVKcgHCGhomzE.crl (hash: 5x8KAXK4r3pTqmxq1grmrIfDXpuD7gVy/7q10eQ6JZE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.crl rsync://rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8G2OMzN_5nWRFZVKcgHCGhomzE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17 (0x11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E28E Validity Not Before: Mar 29 07:21:36 2025 GMT Not After : Apr 5 07:21:36 2025 GMT Subject: CN=67e79f80-8d49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:4b:a0:0c:d9:05:d4:ef:aa:35:9a:09:e0:ff: 10:30:de:6b:ef:ba:0d:14:aa:c4:ff:9a:56:c4:86: 1f:9a:80:16:dd:2c:1b:32:f0:4c:41:e7:58:7d:d6: cf:3d:4d:9f:d9:6a:a2:dc:ef:87:e4:52:04:df:f2: 26:e3:e7:b6:c6:68:0c:20:40:f6:4a:08:cf:14:d2: bc:68:e0:53:b5:56:d0:a4:24:17:7c:df:c9:df:27: 7f:12:bd:52:a4:24:60:2f:9b:00:18:8b:d4:7c:46: 37:76:53:a3:c3:70:aa:c1:3a:a9:cb:26:e3:a5:9a: d2:cf:02:90:52:35:46:18:e4:a5:b3:99:cb:59:f3: af:04:7b:f9:3b:fe:d5:84:ed:aa:8b:04:7d:9b:3f: 2f:d5:b9:6a:1d:19:6c:8d:de:37:29:04:a3:32:0a: 6a:18:1c:ba:f7:82:e2:c9:46:e4:14:70:8a:43:28: 63:ea:1e:35:a8:d4:32:89:8e:27:b3:4e:17:8d:dd: 67:c1:82:de:1e:6d:9a:08:c1:1b:f0:a9:e8:c8:fa: b5:30:ad:8a:f1:df:15:14:67:0a:f7:c8:e0:1e:b8: ba:47:7b:a2:64:ef:84:eb:85:85:62:4b:ce:6b:04: c6:1c:d7:95:16:9e:73:e4:39:6e:1e:a0:f4:e2:d2: 56:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:81:56:1A:58:74:A2:34:4E:9C:B5:D6:77:83:D3:E0:32:75:AC:30 X509v3 Authority Key Identifier: keyid:5F:C1:B6:38:CC:CD:FF:99:D6:44:56:55:29:C8:07:08:68:68:9B:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8G2OMzN_5nWRFZVKcgHCGhomzE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:2e:56:71:c6:65:91:e1:7c:52:c9:5c:30:1d:96:63:66:f7: 87:eb:05:e0:4f:28:7b:8b:89:76:88:69:fe:d0:73:fb:89:76: f2:ea:e9:56:b1:73:ff:54:b5:09:5e:69:47:45:66:d4:66:b2: 32:8b:dd:89:d7:fe:1b:16:6a:2d:2e:33:1f:4b:ac:62:ae:70: 48:ca:77:e5:f3:87:91:14:2c:89:16:5f:c5:05:af:ba:00:cb: fa:62:52:58:26:93:f7:9c:88:eb:ec:ac:62:3e:bb:d5:72:5e: 2f:16:28:bd:aa:4b:21:dd:49:dd:a9:d5:7b:db:eb:47:2d:93: 8b:5e:e9:ec:a1:82:f6:c6:47:90:6f:78:38:0c:8c:e3:44:12: 84:39:37:63:ed:0d:5e:5b:f8:0f:0c:b1:09:a7:ba:eb:92:9d: 13:ca:f1:93:d0:da:76:04:a0:9a:5a:ec:b7:c4:83:88:b9:09: 7a:c6:c5:35:51:fe:1b:52:f0:fc:2b:ab:dd:7f:c5:7f:77:08: 9d:6b:c1:79:f7:1a:7d:f2:2a:a3:f6:b3:57:b4:4f:58:41:55: 4d:4e:75:51:26:17:85:ff:cc:69:ce:3e:fd:f9:46:2b:b5:01: c9:fa:8a:76:00:75:f3:9d:c0:d4:da:c2:82:79:b7:a2:4a:96: 32:37:05:cb -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBETANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RTI4RTExMC8GA1UEBRMoNUZDMUI2MzhDQ0NERkY5OUQ2NDQ1NjU1MjlDODA3MDg2 ODY4OUIzMTAeFw0yNTAzMjkwNzIxMzZaFw0yNTA0MDUwNzIxMzZaMBgxFjAUBgNV BAMTDTY3ZTc5ZjgwLThkNDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2S6AM2QXU76o1mgng/xAw3mvvug0UqsT/mlbEhh+agBbdLBsy8ExB51h91s89 TZ/ZaqLc74fkUgTf8ibj57bGaAwgQPZKCM8U0rxo4FO1VtCkJBd838nfJ38SvVKk JGAvmwAYi9R8Rjd2U6PDcKrBOqnLJuOlmtLPApBSNUYY5KWzmctZ868Ee/k7/tWE 7aqLBH2bPy/VuWodGWyN3jcpBKMyCmoYHLr3guLJRuQUcIpDKGPqHjWo1DKJjiez TheN3WfBgt4ebZoIwRvwqejI+rUwrYrx3xUUZwr3yOAeuLpHe6Jk74TrhYViS85r BMYc15UWnnPkOW4eoPTi0lY/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUL4FWGlh0 ojROnLXWd4PT4DJ1rDAwHwYDVR0jBBgwFoAUX8G2OMzN/5nWRFZVKcgHCGhomzEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThFMjhFL0NEQTNBNzFFRjU5 QjExRUZBNEY1NzEyOEM0RjlBRTAyL1g4RzJPTXpOXzVuV1JGWlZLY2dIQ0dob216 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWDhHMk9Nek5fNW5XUkZaVktjZ0hDR2hvbXpFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThF MjhFL0NEQTNBNzFFRjU5QjExRUZBNEY1NzEyOEM0RjlBRTAyL1g4RzJPTXpOXzVu V1JGWlZLY2dIQ0dob216RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE4uVnHGZZHhfFLJXDAdlmNm94frBeBPKHuLiXaIaf7Qc/uJdvLq6Vax c/9UtQleaUdFZtRmsjKL3YnX/hsWai0uMx9LrGKucEjKd+Xzh5EULIkWX8UFr7oA y/piUlgmk/eciOvsrGI+u9VyXi8WKL2qSyHdSd2p1Xvb60ctk4te6eyhgvbGR5Bv eDgMjONEEoQ5N2PtDV5b+A8MsQmnuuuSnRPK8ZPQ2nYEoJpa7LfEg4i5CXrGxTVR /htS8Pwrq91/xX93CJ1rwXn3Gn3yKqP2s1e0T1hBVU1OdVEmF4X/zGnOPv35Riu1 Acn6inYAdfOdwNTawoJ5t6JKljI3Bcs= -----END CERTIFICATE-----Generated at Fri Apr 4 22:06:33 2025 by rpki-client