$ rpki-client -vvf rpki.apnic.net/member_repository/A91490C8/CC2338DC6E5111EEA47E2B74C4F9AE02/MxjodUE2Qh4kSmxB3aXezBDaj4E.mft File: MxjodUE2Qh4kSmxB3aXezBDaj4E.mft (raw, json) Hash identifier: OMUJGeOyEIo/kVAImYYSIBW7zCbSQnr4u2Ojd8KUCfE= Subject key identifier: FF:45:54:DA:CC:B6:8F:F8:F2:E2:37:32:40:26:6C:58:1A:04:E8:26 Authority key identifier: 33:18:E8:75:41:36:42:1E:24:4A:6C:41:DD:A5:DE:CC:10:DA:8F:81 Certificate issuer: /CN=A91490C8/serialNumber=3318E8754136421E244A6C41DDA5DECC10DA8F81 Certificate serial: 012F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MxjodUE2Qh4kSmxB3aXezBDaj4E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91490C8/CC2338DC6E5111EEA47E2B74C4F9AE02/MxjodUE2Qh4kSmxB3aXezBDaj4E.mft Manifest number: 012D Signing time: Sat 31 May 2025 04:12:32 +0000 Manifest this update: Sat 31 May 2025 04:12:32 +0000 Manifest next update: Sat 07 Jun 2025 04:12:32 +0000 Files and hashes: 1: MxjodUE2Qh4kSmxB3aXezBDaj4E.crl (hash: JHX0lvEei1Ozz6d0oObF5NZo/mPascKgI3kEST5N3k4=) 2: 2201EFC86E5211EEB027A974C4F9AE02.roa (hash: 4nQ3/xG4CFEbotiusShRvyeKgM0UbijAal8OSC/u9HU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91490C8/CC2338DC6E5111EEA47E2B74C4F9AE02/MxjodUE2Qh4kSmxB3aXezBDaj4E.crl rsync://rpki.apnic.net/member_repository/A91490C8/CC2338DC6E5111EEA47E2B74C4F9AE02/MxjodUE2Qh4kSmxB3aXezBDaj4E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MxjodUE2Qh4kSmxB3aXezBDaj4E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:12:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 303 (0x12f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91490C8, serialNumber=3318E8754136421E244A6C41DDA5DECC10DA8F81 Validity Not Before: May 31 04:12:32 2025 GMT Not After : Jun 7 04:12:32 2025 GMT Subject: CN=683a81b0-e4ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:d8:d6:44:be:ca:7c:18:a7:ed:56:66:af:91: 02:ee:36:32:d8:a5:cd:f0:e9:be:ae:ad:f3:26:25: cf:18:a4:1a:a5:bb:89:45:a6:7c:06:da:2b:4f:d3: 15:d7:b5:e2:90:7f:8b:98:0d:12:b6:52:34:cf:1a: af:a1:f7:c5:5d:a2:bf:15:61:37:60:87:63:d7:d1: f9:c8:03:f8:4b:5f:a0:14:a0:e1:2f:08:0c:26:36: 19:33:b7:b0:f1:40:b2:54:8a:b3:9e:99:a9:2e:73: 57:a5:09:71:51:27:92:a9:12:cc:22:06:04:f4:f4: 6e:4b:41:e6:d8:63:60:e5:87:25:37:5b:a0:21:b8: e8:ca:9e:1e:91:81:3a:40:33:e4:ad:a0:b3:d3:30: 3c:fe:54:d4:fe:1d:11:e3:80:fc:e8:c9:b6:4b:d8: c5:c7:53:aa:a8:3f:30:a0:c5:c4:f7:5b:25:b1:a9: e2:b5:ae:c3:25:cd:d4:c2:f9:94:7f:49:6b:4e:33: a1:fd:f8:43:df:df:a2:3a:1d:b8:13:3e:24:9f:00: 6e:c9:48:c6:89:bb:08:c3:48:c3:16:0d:a6:7e:16: 9f:61:75:49:e9:67:42:e3:43:cf:04:c8:f0:81:9b: 73:0b:dc:93:7c:53:7d:ff:83:65:76:e8:28:12:05: fe:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:45:54:DA:CC:B6:8F:F8:F2:E2:37:32:40:26:6C:58:1A:04:E8:26 X509v3 Authority Key Identifier: keyid:33:18:E8:75:41:36:42:1E:24:4A:6C:41:DD:A5:DE:CC:10:DA:8F:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91490C8/CC2338DC6E5111EEA47E2B74C4F9AE02/MxjodUE2Qh4kSmxB3aXezBDaj4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MxjodUE2Qh4kSmxB3aXezBDaj4E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91490C8/CC2338DC6E5111EEA47E2B74C4F9AE02/MxjodUE2Qh4kSmxB3aXezBDaj4E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:09:f7:78:93:e3:80:7c:9d:a3:d9:b0:96:d4:34:19:b7:db: 41:68:9d:be:34:50:b2:59:70:84:8f:a5:7f:c0:ef:3d:7e:5d: 7e:70:ba:fe:9e:02:86:09:b5:d8:a7:5d:32:26:24:a5:94:4f: 40:29:93:33:11:a3:aa:4e:ae:28:63:af:5e:d3:79:fe:07:3b: 5b:78:d1:75:0c:cb:ef:65:2f:7a:17:23:a7:a0:e9:da:dc:a6: 63:91:7a:6c:02:9e:1f:35:60:bf:71:3f:c5:7e:92:98:95:6e: b4:a9:95:d9:ef:4d:61:4f:6a:1d:aa:be:a7:3a:72:ac:67:24: 67:49:3f:c6:11:1d:54:3e:77:08:fc:ab:c4:ed:9f:dd:5f:c5: 09:76:60:d8:77:43:17:70:3a:20:64:20:dc:98:6c:c9:2c:c6: 7f:90:48:89:5d:c5:4a:5b:6c:82:0d:fb:1d:d6:32:9f:c2:ca: f0:d7:f9:25:04:da:f3:68:d1:ef:65:ee:10:59:bd:69:9c:27: d7:e3:95:12:8d:a5:c1:63:bf:5c:68:dc:30:33:3e:1a:cb:37: de:2b:91:b0:1f:3d:5f:77:28:ea:38:dd:38:9e:e6:a3:71:53: b6:36:4b:c8:01:30:ea:d0:86:6b:6c:d6:53:3b:ff:75:ff:f3: 02:db:7e:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDkwQzgxMTAvBgNVBAUTKDMzMThFODc1NDEzNjQyMUUyNDRBNkM0MUREQTVERUND MTBEQThGODEwHhcNMjUwNTMxMDQxMjMyWhcNMjUwNjA3MDQxMjMyWjAYMRYwFAYD VQQDEw02ODNhODFiMC1lNGJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8tjWRL7KfBin7VZmr5EC7jYy2KXN8Om+rq3zJiXPGKQapbuJRaZ8BtorT9MV 17XikH+LmA0StlI0zxqvoffFXaK/FWE3YIdj19H5yAP4S1+gFKDhLwgMJjYZM7ew 8UCyVIqznpmpLnNXpQlxUSeSqRLMIgYE9PRuS0Hm2GNg5YclN1ugIbjoyp4ekYE6 QDPkraCz0zA8/lTU/h0R44D86Mm2S9jFx1OqqD8woMXE91slsanita7DJc3UwvmU f0lrTjOh/fhD39+iOh24Ez4knwBuyUjGibsIw0jDFg2mfhafYXVJ6WdC40PPBMjw gZtzC9yTfFN9/4NldugoEgX+bwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP9FVNrM to/48uI3MkAmbFgaBOgmMB8GA1UdIwQYMBaAFDMY6HVBNkIeJEpsQd2l3swQ2o+B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OTBDOC9DQzIzMzhEQzZF NTExMUVFQTQ3RTJCNzRDNEY5QUUwMi9NeGpvZFVFMlFoNGtTbXhCM2FYZXpCRGFq NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL014am9kVUUyUWg0a1NteEIzYVhlekJEYWo0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OTBDOC9DQzIzMzhEQzZFNTExMUVFQTQ3RTJCNzRDNEY5QUUwMi9NeGpvZFVFMlFo NGtTbXhCM2FYZXpCRGFqNEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApCfd4k+OAfJ2j2bCW1DQZt9tBaJ2+NFCyWXCEj6V/wO89fl1+cLr+ ngKGCbXYp10yJiSllE9AKZMzEaOqTq4oY69e03n+BztbeNF1DMvvZS96FyOnoOna 3KZjkXpsAp4fNWC/cT/FfpKYlW60qZXZ701hT2odqr6nOnKsZyRnST/GER1UPncI /KvE7Z/dX8UJdmDYd0MXcDogZCDcmGzJLMZ/kEiJXcVKW2yCDfsd1jKfwsrw1/kl BNrzaNHvZe4QWb1pnCfX45USjaXBY79caNwwMz4ayzfeK5GwHz1fdyjqON04nuaj cVO2NkvIATDq0IZrbNZTO/91//MC235p -----END CERTIFICATE-----Generated at Sat May 31 17:36:02 2025 by rpki-client