$ rpki-client -vvf rpki.apnic.net/member_repository/A913CC0C/8425856A835711EEABEB2A3FC4F9AE02/rXZeStXAqz70hB0-NIQoC-rLzC0.mft File: rXZeStXAqz70hB0-NIQoC-rLzC0.mft (raw, json) Hash identifier: GRtA5cwOUZH1USlUYLt9erESF6H48BKA6ek0inAYIQA= Subject key identifier: 0D:D5:5D:A1:FB:4E:BB:99:81:50:26:7F:29:59:D6:FB:B1:40:4F:F6 Authority key identifier: AD:76:5E:4A:D5:C0:AB:3E:F4:84:1D:3E:34:84:28:0B:EA:CB:CC:2D Certificate issuer: /CN=A913CC0C/serialNumber=AD765E4AD5C0AB3EF4841D3E3484280BEACBCC2D Certificate serial: 0129 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXZeStXAqz70hB0-NIQoC-rLzC0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913CC0C/8425856A835711EEABEB2A3FC4F9AE02/rXZeStXAqz70hB0-NIQoC-rLzC0.mft Manifest number: 0123 Signing time: Sat 31 May 2025 04:20:51 +0000 Manifest this update: Sat 31 May 2025 04:20:50 +0000 Manifest next update: Sat 07 Jun 2025 04:20:50 +0000 Files and hashes: 1: rXZeStXAqz70hB0-NIQoC-rLzC0.crl (hash: yb+l/Ktu5e+3xOHdBURKe+7iBvNHT6Sw80jcyksoAAM=) 2: 1DD8238C836E11EEBBF2912FC4F9AE02.roa (hash: x3typY+Rz1v7YQKoz8/eFq0vzVSoB9fMyJducWo5h8o=) 3: 791E1D14836E11EEAD2B0731C4F9AE02.roa (hash: Zs0S8blgDDMs3jrlGY37AkPWRyP83xeb73R0yUfKf24=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913CC0C/8425856A835711EEABEB2A3FC4F9AE02/rXZeStXAqz70hB0-NIQoC-rLzC0.crl rsync://rpki.apnic.net/member_repository/A913CC0C/8425856A835711EEABEB2A3FC4F9AE02/rXZeStXAqz70hB0-NIQoC-rLzC0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXZeStXAqz70hB0-NIQoC-rLzC0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 297 (0x129) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913CC0C, serialNumber=AD765E4AD5C0AB3EF4841D3E3484280BEACBCC2D Validity Not Before: May 31 04:20:50 2025 GMT Not After : Jun 7 04:20:50 2025 GMT Subject: CN=683a83a2-430d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:df:a0:7e:9c:70:29:11:a1:ed:7f:05:ea:a3: 35:74:62:4a:6a:61:09:18:1d:84:93:ff:fd:be:fe: fb:b3:16:52:3c:94:cd:bd:07:c6:83:18:03:9a:c3: 78:b6:af:c3:eb:de:2b:ad:d4:40:58:47:a0:a6:2f: 51:b3:10:c1:ce:20:22:a9:c0:ed:a4:a0:71:ca:59: fb:6c:9d:d0:c6:f9:43:4e:29:3f:c0:ec:a6:ec:86: 7c:1c:2c:48:b7:a8:f0:43:41:84:a5:7b:ba:07:8b: 6e:13:84:51:eb:d7:80:57:52:d8:bd:9c:da:12:10: 29:52:38:37:51:49:f7:55:97:e9:64:89:c0:78:aa: 68:1e:c9:ef:71:22:69:bd:60:00:fe:63:00:f0:14: 13:94:7b:6f:a2:ed:44:9c:bc:e6:4e:89:fe:93:1a: 09:c0:53:d5:ad:88:14:77:3d:5f:73:e8:e9:11:6f: 1a:b3:21:41:a4:81:5f:5c:51:e1:92:de:0a:ec:04: 5b:c7:f8:82:e4:f2:ae:fc:a3:82:d3:29:7d:e1:b8: d1:65:3b:cc:94:eb:ab:27:de:ff:e7:1a:2e:c6:30: 4a:db:f5:71:8e:11:c3:f3:07:e3:34:6f:f4:9e:20: 42:0f:b0:4c:c5:94:b5:ce:1f:d5:b7:9b:56:f4:7e: 45:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:D5:5D:A1:FB:4E:BB:99:81:50:26:7F:29:59:D6:FB:B1:40:4F:F6 X509v3 Authority Key Identifier: keyid:AD:76:5E:4A:D5:C0:AB:3E:F4:84:1D:3E:34:84:28:0B:EA:CB:CC:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913CC0C/8425856A835711EEABEB2A3FC4F9AE02/rXZeStXAqz70hB0-NIQoC-rLzC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXZeStXAqz70hB0-NIQoC-rLzC0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913CC0C/8425856A835711EEABEB2A3FC4F9AE02/rXZeStXAqz70hB0-NIQoC-rLzC0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:6f:a2:fb:77:40:55:8a:32:7f:b0:ef:b1:c3:01:a6:32:08: ab:9f:e7:82:63:1d:52:d1:f5:5e:1c:72:0c:ed:60:d5:7a:a9: 41:46:2d:19:7f:b5:39:1d:7b:b3:09:c9:20:ac:ae:33:df:ee: e3:ed:64:66:f8:24:67:67:c9:f1:0f:7b:40:ed:19:f6:0b:04: 22:37:c4:e3:6e:95:3e:fe:a7:1c:7a:75:1f:aa:35:96:af:5e: de:ce:aa:dd:b0:fe:3b:cb:04:4f:fa:4a:b8:f8:53:79:38:60: e9:98:d1:0b:82:72:03:a8:32:81:67:0d:fa:3c:3b:c4:83:d4: d6:41:75:56:96:72:7c:d5:6b:19:3a:d5:3c:1f:d6:16:e1:16: 3e:53:df:a6:e1:c0:ca:42:fa:f4:d2:f8:af:6a:e1:30:cf:47: 7c:1a:f6:91:c2:d7:af:ab:f5:9f:d7:e2:1b:61:10:9a:52:7a: cf:ef:ab:de:94:5d:9b:ce:33:eb:20:89:f4:2c:6d:f7:fc:25: 4f:00:eb:73:ae:34:07:3e:75:dc:b4:57:3f:4e:a6:1e:67:c6: 95:20:c2:ab:dc:7a:81:8c:2b:d6:13:31:c7:05:dd:ff:96:34: d8:50:d7:bb:6f:b3:4d:03:05:fc:3d:65:d4:1a:da:74:c4:24: 82:f8:48:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0NDMEMxMTAvBgNVBAUTKEFENzY1RTRBRDVDMEFCM0VGNDg0MUQzRTM0ODQyODBC RUFDQkNDMkQwHhcNMjUwNTMxMDQyMDUwWhcNMjUwNjA3MDQyMDUwWjAYMRYwFAYD VQQDEw02ODNhODNhMi00MzBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA89+gfpxwKRGh7X8F6qM1dGJKamEJGB2Ek//9vv77sxZSPJTNvQfGgxgDmsN4 tq/D694rrdRAWEegpi9RsxDBziAiqcDtpKBxyln7bJ3QxvlDTik/wOym7IZ8HCxI t6jwQ0GEpXu6B4tuE4RR69eAV1LYvZzaEhApUjg3UUn3VZfpZInAeKpoHsnvcSJp vWAA/mMA8BQTlHtvou1EnLzmTon+kxoJwFPVrYgUdz1fc+jpEW8asyFBpIFfXFHh kt4K7ARbx/iC5PKu/KOC0yl94bjRZTvMlOurJ97/5xouxjBK2/VxjhHD8wfjNG/0 niBCD7BMxZS1zh/Vt5tW9H5FgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA3VXaH7 TruZgVAmfylZ1vuxQE/2MB8GA1UdIwQYMBaAFK12XkrVwKs+9IQdPjSEKAvqy8wt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQ0MwQy84NDI1ODU2QTgz NTcxMUVFQUJFQjJBM0ZDNEY5QUUwMi9yWFplU3RYQXF6NzBoQjAtTklRb0Mtckx6 QzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JYWmVTdFhBcXo3MGhCMC1OSVFvQy1yTHpDMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz Q0MwQy84NDI1ODU2QTgzNTcxMUVFQUJFQjJBM0ZDNEY5QUUwMi9yWFplU3RYQXF6 NzBoQjAtTklRb0Mtckx6QzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDIb6L7d0BVijJ/sO+xwwGmMgirn+eCYx1S0fVeHHIM7WDVeqlBRi0Z f7U5HXuzCckgrK4z3+7j7WRm+CRnZ8nxD3tA7Rn2CwQiN8TjbpU+/qccenUfqjWW r17ezqrdsP47ywRP+kq4+FN5OGDpmNELgnIDqDKBZw36PDvEg9TWQXVWlnJ81WsZ OtU8H9YW4RY+U9+m4cDKQvr00vivauEwz0d8GvaRwtevq/Wf1+IbYRCaUnrP76ve lF2bzjPrIIn0LG33/CVPAOtzrjQHPnXctFc/TqYeZ8aVIMKr3HqBjCvWEzHHBd3/ ljTYUNe7b7NNAwX8PWXUGtp0xCSC+EjA -----END CERTIFICATE-----Generated at Sat May 31 14:46:33 2025 by rpki-client