$ rpki-client -vvf rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/XufPQ5pCIyMpgqLLTeVPN8cgWqk.mft File: XufPQ5pCIyMpgqLLTeVPN8cgWqk.mft (raw, json) Hash identifier: C84bV06Usq6jn8LQ2TGfjvFXbIf/LgtEacZD12NO4mQ= Subject key identifier: 37:18:5B:79:30:07:56:31:BF:99:CD:FD:94:1C:F7:96:B9:FE:9C:8A Authority key identifier: 5E:E7:CF:43:9A:42:23:23:29:82:A2:CB:4D:E5:4F:37:C7:20:5A:A9 Certificate issuer: /CN=A913AE78/serialNumber=5EE7CF439A4223232982A2CB4DE54F37C7205AA9 Certificate serial: 074C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XufPQ5pCIyMpgqLLTeVPN8cgWqk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/XufPQ5pCIyMpgqLLTeVPN8cgWqk.mft Manifest number: 0746 Signing time: Fri 30 May 2025 21:53:47 +0000 Manifest this update: Fri 30 May 2025 21:53:47 +0000 Manifest next update: Fri 06 Jun 2025 21:53:47 +0000 Files and hashes: 1: XufPQ5pCIyMpgqLLTeVPN8cgWqk.crl (hash: ofwtJG+H2ypAHpyrvNbDTE4LcYrRvO+OeIbrZ309Z/U=) 2: D6138A3C292A11EB9CEDCC26C4F9AE02.roa (hash: eaeoz8RqOSGEC4peCpxGpY2PbARdRPwT9kf9QvE/Y6E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/XufPQ5pCIyMpgqLLTeVPN8cgWqk.crl rsync://rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/XufPQ5pCIyMpgqLLTeVPN8cgWqk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XufPQ5pCIyMpgqLLTeVPN8cgWqk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:53:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1868 (0x74c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AE78, serialNumber=5EE7CF439A4223232982A2CB4DE54F37C7205AA9 Validity Not Before: May 30 21:53:47 2025 GMT Not After : Jun 6 21:53:47 2025 GMT Subject: CN=683a28eb-e0ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c4:f8:96:08:3f:92:cf:8e:52:b9:f3:20:58: c3:9d:af:24:09:9f:76:d9:18:0b:ea:ca:f8:ec:7a: d9:54:a0:da:8d:24:5a:1d:3d:ca:09:4c:d8:c8:66: e4:d2:b5:ac:02:78:04:93:94:e9:67:47:62:3a:ba: 2d:bb:18:37:9e:a2:71:a0:79:51:ea:9a:74:3b:13: 5d:94:50:ac:2b:a4:2c:ca:4e:58:7c:2b:36:c3:82: c6:ac:5b:1e:93:28:dc:f9:6f:e0:0f:90:4c:c0:a4: 65:48:cd:df:15:14:04:04:7e:3e:f9:05:e0:b5:21: 08:b1:35:89:93:d1:4e:c1:73:c6:76:39:22:38:63: 93:e4:0e:57:a9:eb:e6:36:36:19:32:63:0e:92:6e: 9e:93:84:65:c2:58:c3:b0:b4:a7:9b:1f:24:f5:f7: 02:93:a8:75:d9:38:e5:b0:84:9c:51:ee:91:92:e0: 50:82:2f:60:87:86:64:24:6a:c0:56:22:a4:44:6d: 2e:19:be:6f:73:c2:31:25:9b:f4:73:f5:14:57:44: 2a:e5:7f:74:33:fb:9a:a7:64:05:bb:a0:46:cf:c7: 9e:b6:0f:93:13:a5:7d:02:26:1b:65:29:6a:26:72: 28:af:bc:4d:84:ff:e0:42:24:d8:27:da:bb:25:87: b0:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:18:5B:79:30:07:56:31:BF:99:CD:FD:94:1C:F7:96:B9:FE:9C:8A X509v3 Authority Key Identifier: keyid:5E:E7:CF:43:9A:42:23:23:29:82:A2:CB:4D:E5:4F:37:C7:20:5A:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/XufPQ5pCIyMpgqLLTeVPN8cgWqk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XufPQ5pCIyMpgqLLTeVPN8cgWqk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/XufPQ5pCIyMpgqLLTeVPN8cgWqk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:30:e0:2e:d5:20:b9:9d:a8:b7:c2:13:93:57:88:70:a3:0b: 20:02:19:e4:93:81:5e:0d:9d:ce:31:c0:c8:cf:08:d1:31:a8: 37:de:2d:08:55:57:7c:52:ae:88:3c:85:65:03:3c:3e:5b:9f: e3:60:a8:b1:0a:74:02:d2:11:6e:35:f3:7e:31:1c:20:8c:87: 9c:4d:e8:4a:88:0d:46:a1:87:4d:f1:28:54:8b:2a:4a:95:35: 95:88:49:4e:17:0f:5b:ea:bb:d9:85:6e:e6:2e:4b:7d:68:a1: 55:84:a9:a3:34:c0:7f:b1:e3:9c:2c:af:8e:c9:90:b5:88:cf: 28:aa:23:d6:27:17:c9:e1:34:ad:1e:9d:e5:8f:3c:6c:e3:97: f5:5c:b3:07:30:de:11:8b:e2:6a:4a:60:0c:7d:de:f8:dd:fa: f2:12:c5:db:84:49:de:8d:fa:b0:51:a8:c6:f9:18:10:8e:53: a7:00:8c:73:b1:d5:2f:d1:a0:3b:33:62:5d:fa:1a:b6:df:03: f0:35:0d:cc:7f:f6:f2:34:bf:2d:69:c1:78:25:f9:73:b8:68: ab:c2:5a:37:43:f8:42:4c:5c:7c:f7:89:80:5c:02:36:9c:32: 37:eb:c9:6e:a1:ff:dc:20:d3:0f:26:fe:48:90:ce:14:1d:6a: 82:d2:3b:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB0wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FFNzgxMTAvBgNVBAUTKDVFRTdDRjQzOUE0MjIzMjMyOTgyQTJDQjRERTU0RjM3 QzcyMDVBQTkwHhcNMjUwNTMwMjE1MzQ3WhcNMjUwNjA2MjE1MzQ3WjAYMRYwFAYD VQQDEw02ODNhMjhlYi1lMGFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtsT4lgg/ks+OUrnzIFjDna8kCZ922RgL6sr47HrZVKDajSRaHT3KCUzYyGbk 0rWsAngEk5TpZ0diOrotuxg3nqJxoHlR6pp0OxNdlFCsK6Qsyk5YfCs2w4LGrFse kyjc+W/gD5BMwKRlSM3fFRQEBH4++QXgtSEIsTWJk9FOwXPGdjkiOGOT5A5Xqevm NjYZMmMOkm6ek4RlwljDsLSnmx8k9fcCk6h12TjlsIScUe6RkuBQgi9gh4ZkJGrA ViKkRG0uGb5vc8IxJZv0c/UUV0Qq5X90M/uap2QFu6BGz8eetg+TE6V9AiYbZSlq JnIor7xNhP/gQiTYJ9q7JYewMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDcYW3kw B1Yxv5nN/ZQc95a5/pyKMB8GA1UdIwQYMBaAFF7nz0OaQiMjKYKiy03lTzfHIFqp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUU3OC9GMUY0RDNDRTI5 MjkxMUVCOTRFMzhEMjZDNEY5QUUwMi9YdWZQUTVwQ0l5TXBncUxMVGVWUE44Y2dX cWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h1ZlBRNXBDSXlNcGdxTExUZVZQTjhjZ1dxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUU3OC9GMUY0RDNDRTI5MjkxMUVCOTRFMzhEMjZDNEY5QUUwMi9YdWZQUTVwQ0l5 TXBncUxMVGVWUE44Y2dXcWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOMOAu1SC5nai3whOTV4hwowsgAhnkk4FeDZ3OMcDIzwjRMag33i0I VVd8Uq6IPIVlAzw+W5/jYKixCnQC0hFuNfN+MRwgjIecTehKiA1GoYdN8ShUiypK lTWViElOFw9b6rvZhW7mLkt9aKFVhKmjNMB/seOcLK+OyZC1iM8oqiPWJxfJ4TSt Hp3ljzxs45f1XLMHMN4Ri+JqSmAMfd743fryEsXbhEnejfqwUajG+RgQjlOnAIxz sdUv0aA7M2Jd+hq23wPwNQ3Mf/byNL8tacF4JflzuGirwlo3Q/hCTFx894mAXAI2 nDI368luof/cINMPJv5IkM4UHWqC0jvj -----END CERTIFICATE-----Generated at Sat May 31 17:10:22 2025 by rpki-client