$ rpki-client -vvf rpki.apnic.net/member_repository/A9142812/C1E5DD1E807B11EBA83AC01DC4F9AE02/XEWtAAu9UKcPk6XLcLZmgKUo7cA.mft File: XEWtAAu9UKcPk6XLcLZmgKUo7cA.mft (raw, json) Hash identifier: 2/S+Utbhz8a0vaVP2ThhyGa8SA0DSU7wRXqFN8ueLSc= Subject key identifier: 5E:22:0C:3E:65:F8:BF:32:F5:09:30:93:4F:56:68:C9:9E:91:83:A8 Authority key identifier: 5C:45:AD:00:0B:BD:50:A7:0F:93:A5:CB:70:B6:66:80:A5:28:ED:C0 Certificate issuer: /CN=A9142812/serialNumber=5C45AD000BBD50A70F93A5CB70B66680A528EDC0 Certificate serial: 0672 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEWtAAu9UKcPk6XLcLZmgKUo7cA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142812/C1E5DD1E807B11EBA83AC01DC4F9AE02/XEWtAAu9UKcPk6XLcLZmgKUo7cA.mft Manifest number: 0666 Signing time: Fri 30 May 2025 22:37:56 +0000 Manifest this update: Fri 30 May 2025 22:37:56 +0000 Manifest next update: Fri 06 Jun 2025 22:37:56 +0000 Files and hashes: 1: XEWtAAu9UKcPk6XLcLZmgKUo7cA.crl (hash: eqk13vTVxhMe1BMIu7N5yqtx1oSIbPA/EBagmD5EI2Y=) 2: 9ADBEC30DA6411EF95F32A7FC4F9AE02.roa (hash: Ode9C1rjZZ48xy/QuIzg9S8zoYsoG2CKnN/yX25u2gs=) 3: 9BE20420DA6411EF95F32A7FC4F9AE02.roa (hash: p4MgzG+OXWtv9vZOtFXE4K9GjNanwMoHoivstYkkSaU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142812/C1E5DD1E807B11EBA83AC01DC4F9AE02/XEWtAAu9UKcPk6XLcLZmgKUo7cA.crl rsync://rpki.apnic.net/member_repository/A9142812/C1E5DD1E807B11EBA83AC01DC4F9AE02/XEWtAAu9UKcPk6XLcLZmgKUo7cA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEWtAAu9UKcPk6XLcLZmgKUo7cA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:37:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1650 (0x672) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142812, serialNumber=5C45AD000BBD50A70F93A5CB70B66680A528EDC0 Validity Not Before: May 30 22:37:56 2025 GMT Not After : Jun 6 22:37:56 2025 GMT Subject: CN=683a3344-f210 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:47:16:59:47:53:13:2d:2c:a9:35:d0:af:9f: b8:32:6b:48:5a:1b:cb:fa:cf:f6:e5:e0:96:ba:e5: f0:b0:74:7d:9d:3b:91:2f:c7:cd:4b:5a:b4:4c:ba: fb:fe:97:fb:34:e9:0c:33:65:50:7c:cb:e0:81:81: 08:76:b6:01:62:f8:ee:c5:72:ff:db:17:ba:2a:16: 52:ff:10:fa:27:55:4a:88:f7:1f:c9:df:25:e5:d3: b2:75:e1:b9:a3:2b:71:90:ba:36:f3:35:6f:5f:55: 4f:7f:34:5e:fa:8f:34:be:46:ba:c2:25:ad:57:b8: e8:38:d7:fc:7f:2f:1a:d5:8e:04:a5:a0:12:68:b7: 91:15:d7:4c:73:b9:ce:d5:04:ea:e9:f1:2e:18:08: 0e:6b:59:12:3d:7d:3b:af:a9:07:a5:03:eb:4e:a0: c5:2a:df:b8:31:1c:ee:17:9b:6c:dc:71:3c:6e:4c: a1:0f:ac:ed:9a:0d:40:db:e3:d6:98:0b:28:50:c9: 86:0d:f6:0b:b6:4a:d8:52:9b:b1:4c:b0:a9:ba:b5: 1f:12:e6:25:9d:54:45:51:64:69:24:d9:08:7d:ef: 0c:77:24:a0:41:95:74:69:59:cd:56:34:af:86:1a: 60:92:a4:bf:64:38:43:43:7e:c0:4c:9d:b5:db:61: 0a:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:22:0C:3E:65:F8:BF:32:F5:09:30:93:4F:56:68:C9:9E:91:83:A8 X509v3 Authority Key Identifier: keyid:5C:45:AD:00:0B:BD:50:A7:0F:93:A5:CB:70:B6:66:80:A5:28:ED:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142812/C1E5DD1E807B11EBA83AC01DC4F9AE02/XEWtAAu9UKcPk6XLcLZmgKUo7cA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEWtAAu9UKcPk6XLcLZmgKUo7cA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142812/C1E5DD1E807B11EBA83AC01DC4F9AE02/XEWtAAu9UKcPk6XLcLZmgKUo7cA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:ff:97:e0:a1:64:81:ae:4a:67:72:3b:ef:9a:33:29:d8:ed: bd:f7:c2:74:2c:f3:be:69:fb:37:a8:0e:b8:6a:cd:4a:65:6d: 0f:87:cf:53:ef:6c:c9:14:00:c7:f7:b7:2d:ee:0b:ba:d1:9b: 04:6f:d3:7c:4f:21:79:9d:86:eb:63:62:19:41:94:7d:a6:cf: 7e:f3:8a:15:62:76:1d:c8:d4:49:ef:20:83:36:aa:a4:a9:99: d9:3e:7f:e1:98:40:37:18:d6:1a:35:16:2a:cb:e7:f2:54:d5: 80:12:72:60:39:ee:95:79:db:07:18:eb:e5:2e:cb:38:89:2b: 15:48:88:57:62:75:a3:f5:5f:0c:cc:23:e6:28:57:4e:9e:e4: 93:fd:60:09:dd:95:1f:82:0b:8f:92:eb:ec:3f:f6:3c:00:2b: 5f:e0:11:6a:bc:f7:1a:75:d5:37:f7:3a:bc:ad:eb:14:80:fd: 03:07:06:a2:fe:1c:57:1a:15:d5:0b:bd:c6:3d:7e:06:0f:74: 4e:58:df:5e:7c:49:86:73:2f:37:95:b3:13:44:6e:a5:9f:af: 8d:9f:22:b9:75:90:8e:e2:5f:dd:24:98:28:6f:23:ce:bd:66: 2e:9f:4e:a8:39:a7:f2:95:00:0c:0b:5a:49:49:89:99:0c:03: 8f:86:21:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDI4MTIxMTAvBgNVBAUTKDVDNDVBRDAwMEJCRDUwQTcwRjkzQTVDQjcwQjY2Njgw QTUyOEVEQzAwHhcNMjUwNTMwMjIzNzU2WhcNMjUwNjA2MjIzNzU2WjAYMRYwFAYD VQQDEw02ODNhMzM0NC1mMjEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxkcWWUdTEy0sqTXQr5+4MmtIWhvL+s/25eCWuuXwsHR9nTuRL8fNS1q0TLr7 /pf7NOkMM2VQfMvggYEIdrYBYvjuxXL/2xe6KhZS/xD6J1VKiPcfyd8l5dOydeG5 oytxkLo28zVvX1VPfzRe+o80vka6wiWtV7joONf8fy8a1Y4EpaASaLeRFddMc7nO 1QTq6fEuGAgOa1kSPX07r6kHpQPrTqDFKt+4MRzuF5ts3HE8bkyhD6ztmg1A2+PW mAsoUMmGDfYLtkrYUpuxTLCpurUfEuYlnVRFUWRpJNkIfe8MdySgQZV0aVnNVjSv hhpgkqS/ZDhDQ37ATJ2122EKEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF4iDD5l +L8y9Qkwk09WaMmekYOoMB8GA1UdIwQYMBaAFFxFrQALvVCnD5Oly3C2ZoClKO3A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjgxMi9DMUU1REQxRTgw N0IxMUVCQTgzQUMwMURDNEY5QUUwMi9YRVd0QUF1OVVLY1BrNlhMY0xabWdLVW83 Y0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hFV3RBQXU5VUtjUGs2WExjTFptZ0tVbzdjQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjgxMi9DMUU1REQxRTgwN0IxMUVCQTgzQUMwMURDNEY5QUUwMi9YRVd0QUF1OVVL Y1BrNlhMY0xabWdLVW83Y0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBr/5fgoWSBrkpncjvvmjMp2O2998J0LPO+afs3qA64as1KZW0Ph89T 72zJFADH97ct7gu60ZsEb9N8TyF5nYbrY2IZQZR9ps9+84oVYnYdyNRJ7yCDNqqk qZnZPn/hmEA3GNYaNRYqy+fyVNWAEnJgOe6VedsHGOvlLss4iSsVSIhXYnWj9V8M zCPmKFdOnuST/WAJ3ZUfgguPkuvsP/Y8ACtf4BFqvPcaddU39zq8resUgP0DBwai /hxXGhXVC73GPX4GD3ROWN9efEmGcy83lbMTRG6ln6+NnyK5dZCO4l/dJJgobyPO vWYun06oOafylQAMC1pJSYmZDAOPhiGx -----END CERTIFICATE-----Generated at Sat May 31 17:17:31 2025 by rpki-client