$ rpki-client -vvf rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.mft File: x2h2G8gatP5_1EAVSCYcuocge-o.mft (raw, json) Hash identifier: uUDQ0p6o3jR1+rAHZzfkBhTPvEeVIpFfnpRQrHthLws= Subject key identifier: 78:C2:E4:4F:B6:C8:2D:94:46:7E:C2:BA:7D:20:8B:6B:2F:FF:43:3E Authority key identifier: C7:68:76:1B:C8:1A:B4:FE:7F:D4:40:15:48:26:1C:BA:87:20:7B:EA Certificate issuer: /CN=A9118022/serialNumber=C768761BC81AB4FE7FD4401548261CBA87207BEA Certificate serial: 0E25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x2h2G8gatP5_1EAVSCYcuocge-o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.mft Manifest number: 0E03 Signing time: Fri 30 May 2025 18:00:44 +0000 Manifest this update: Fri 30 May 2025 18:00:44 +0000 Manifest next update: Fri 06 Jun 2025 18:00:44 +0000 Files and hashes: 1: x2h2G8gatP5_1EAVSCYcuocge-o.crl (hash: ZapvTGEcEHINJZu3VVww4iniJziTEPl4BRZLH8iL8x8=) 2: 127D33EC027011EB98FEC44BC4F9AE02.roa (hash: WKzAcG2HI+Rmp0I06ZjLFib0fSkn15at9z87zdNmyk8=) 3: 1C99C7E021D911EB85DAFE71C4F9AE02.roa (hash: SWjsz2ZRwBkKRs3lCM8x1HuP6oZ8eAnIrMziwftZzas=) 4: 670DF186232111EB9896B783C4F9AE02.roa (hash: Uzh2H0WzqUhAdOejeRuGcUfDdr3mQiiZM4aNaZoNZlE=) 5: 1609CE067A4A11EB99C11F5FC4F9AE02.roa (hash: /6vaZiCWJmBFNJgiNOI49M1x4iJoUHYLtfB+8hNudBk=) 6: 1D93B82C21D911EB85DAFE71C4F9AE02.roa (hash: E9L/TTXk+Px8nGO4KJnm/ouPNchL+BTaTG1X0znr2Rg=) 7: 1BBE249C21D911EB85DAFE71C4F9AE02.roa (hash: EwzDgqgyP+42whL7/ceKehIKyd0tgvQ5kUq+8PMWfXY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.crl rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x2h2G8gatP5_1EAVSCYcuocge-o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 18:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3621 (0xe25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118022, serialNumber=C768761BC81AB4FE7FD4401548261CBA87207BEA Validity Not Before: May 30 18:00:44 2025 GMT Not After : Jun 6 18:00:44 2025 GMT Subject: CN=6839f24c-f34b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:80:2a:92:87:f2:90:54:8d:d6:8b:0c:31:ee: 65:d0:e2:8b:ab:fb:4a:12:5b:7b:b6:8f:b9:fa:75: a3:96:65:b2:5d:a6:25:2d:da:0a:e2:69:5b:2a:7a: 20:fc:c1:5d:45:c8:2c:83:34:bd:d6:9f:8d:ac:eb: 35:4e:9a:ec:dd:c4:24:12:ee:bd:3b:1d:2a:1a:06: 4b:05:ca:9f:f7:a9:7d:b7:db:ed:ba:5b:e9:85:50: 01:9a:10:fb:96:0d:9c:a3:83:22:95:89:18:6d:e3: d4:47:f0:55:6e:60:4f:b5:d6:2c:10:fb:1e:cd:d9: 81:f9:71:cd:5e:61:d4:7d:8e:cc:20:ba:7c:85:e5: 7a:75:69:3d:cb:43:53:ef:f3:ba:5c:e9:b1:a2:4f: b7:7b:11:22:b4:5a:e7:0c:df:3e:28:da:1e:5c:33: fd:c0:2a:2e:46:80:a4:8d:f0:3e:40:81:0a:a2:11: 6c:72:63:01:47:89:de:23:67:e9:5c:de:86:d1:dd: bf:50:0a:ff:60:c0:70:ec:a0:c6:c7:5c:fd:b9:64: 59:9c:ff:e1:7b:ad:91:d5:33:65:20:a6:7c:2c:59: 43:d5:4e:73:f5:09:10:95:3f:fd:e3:11:6f:b4:cd: 8f:bf:c3:a9:e7:de:36:ff:88:4e:54:b6:e7:5c:c0: 97:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:C2:E4:4F:B6:C8:2D:94:46:7E:C2:BA:7D:20:8B:6B:2F:FF:43:3E X509v3 Authority Key Identifier: keyid:C7:68:76:1B:C8:1A:B4:FE:7F:D4:40:15:48:26:1C:BA:87:20:7B:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x2h2G8gatP5_1EAVSCYcuocge-o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:90:18:52:ff:6c:74:cc:d8:fe:6f:a9:b6:77:14:51:ca:5f: ed:43:4b:bf:fc:af:3e:94:a2:4e:ac:7c:07:1d:2a:2d:a4:26: 86:86:d4:da:32:85:9d:dd:c8:d6:06:52:54:09:54:1d:80:8b: 0d:8f:93:68:03:28:98:2a:0e:15:a3:4b:cb:d3:41:1f:2d:36: 8b:f6:c9:83:f6:ea:a4:19:c3:d4:0c:ca:e8:9f:c3:da:6e:f9: 3a:f9:35:6a:bc:bb:2c:59:ae:ab:e2:52:f5:c8:52:49:2a:65: 1a:7a:ed:45:a7:43:73:e8:30:8a:cd:c7:e6:b5:62:37:60:c8: 83:f8:44:c1:ca:b6:3e:0c:67:73:e3:67:dd:99:88:b5:62:65: 85:8e:fc:16:0e:c8:66:5a:d1:14:31:24:23:97:c1:a4:39:92: 03:1b:72:bf:f0:00:30:b2:29:88:ef:82:67:a0:ad:a6:59:5d: e5:78:20:86:8d:e2:fe:12:7e:15:f5:99:7a:1c:00:7a:ec:ae: a7:a5:d6:91:0d:8a:d7:39:d9:e1:4a:84:ae:6e:b2:b6:80:c8: 1a:89:6a:b8:1f:81:36:f0:99:8c:b0:72:c9:a3:5f:8d:d6:7c: 64:b5:2c:65:33:16:0a:7b:27:d9:51:bc:64:5b:bb:03:d8:c0: a9:e8:06:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDiUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTgwMjIxMTAvBgNVBAUTKEM3Njg3NjFCQzgxQUI0RkU3RkQ0NDAxNTQ4MjYxQ0JB ODcyMDdCRUEwHhcNMjUwNTMwMTgwMDQ0WhcNMjUwNjA2MTgwMDQ0WjAYMRYwFAYD VQQDEw02ODM5ZjI0Yy1mMzRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtYAqkofykFSN1osMMe5l0OKLq/tKElt7to+5+nWjlmWyXaYlLdoK4mlbKnog /MFdRcgsgzS91p+NrOs1Tprs3cQkEu69Ox0qGgZLBcqf96l9t9vtulvphVABmhD7 lg2co4MilYkYbePUR/BVbmBPtdYsEPsezdmB+XHNXmHUfY7MILp8heV6dWk9y0NT 7/O6XOmxok+3exEitFrnDN8+KNoeXDP9wCouRoCkjfA+QIEKohFscmMBR4neI2fp XN6G0d2/UAr/YMBw7KDGx1z9uWRZnP/he62R1TNlIKZ8LFlD1U5z9QkQlT/94xFv tM2Pv8Op5942/4hOVLbnXMCX0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHjC5E+2 yC2URn7Cun0gi2sv/0M+MB8GA1UdIwQYMBaAFMdodhvIGrT+f9RAFUgmHLqHIHvq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODAyMi9DNjFDMjU2QUFE Q0MxMUU5QUM2NzJGNEJDNEY5QUUwMi94MmgyRzhnYXRQNV8xRUFWU0NZY3VvY2dl LW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3gyaDJHOGdhdFA1XzFFQVZTQ1ljdW9jZ2Utby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODAyMi9DNjFDMjU2QUFEQ0MxMUU5QUM2NzJGNEJDNEY5QUUwMi94MmgyRzhnYXRQ NV8xRUFWU0NZY3VvY2dlLW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgkBhS/2x0zNj+b6m2dxRRyl/tQ0u//K8+lKJOrHwHHSotpCaGhtTa MoWd3cjWBlJUCVQdgIsNj5NoAyiYKg4Vo0vL00EfLTaL9smD9uqkGcPUDMron8Pa bvk6+TVqvLssWa6r4lL1yFJJKmUaeu1Fp0Nz6DCKzcfmtWI3YMiD+ETByrY+DGdz 42fdmYi1YmWFjvwWDshmWtEUMSQjl8GkOZIDG3K/8AAwsimI74JnoK2mWV3leCCG jeL+En4V9Zl6HAB67K6npdaRDYrXOdnhSoSubrK2gMgaiWq4H4E28JmMsHLJo1+N 1nxktSxlMxYKeyfZUbxkW7sD2MCp6Aae -----END CERTIFICATE-----Generated at Sat May 31 16:35:58 2025 by rpki-client