$ rpki-client -vvf rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.mft File: xPfznmL0ydeMXhL9wVGuTjK8mkI.mft (raw, json) Hash identifier: ozebWCIptPPjBLs5+YdUhD4VC7dI34l//28FswcjwnU= Subject key identifier: 13:22:A3:AF:8A:3A:4F:20:8F:42:54:90:75:AA:07:E1:1E:C5:75:CA Authority key identifier: C4:F7:F3:9E:62:F4:C9:D7:8C:5E:12:FD:C1:51:AE:4E:32:BC:9A:42 Certificate issuer: /CN=A914B29B/serialNumber=C4F7F39E62F4C9D78C5E12FDC151AE4E32BC9A42 Certificate serial: D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPfznmL0ydeMXhL9wVGuTjK8mkI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.mft Manifest number: CB Signing time: Sat 31 May 2025 05:22:15 +0000 Manifest this update: Sat 31 May 2025 05:22:15 +0000 Manifest next update: Sat 07 Jun 2025 05:22:15 +0000 Files and hashes: 1: xPfznmL0ydeMXhL9wVGuTjK8mkI.crl (hash: OrWQeK5YYFMqjO0afOQIX9RBGzFy4opoviZyeLvsc1A=) 2: 127604E20F8B11EF87FC5918C4F9AE02.roa (hash: 5edOTZ9WpkItw4RWOBwB3WoAQbD4XzuXBzAkLSr3s8Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.crl rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPfznmL0ydeMXhL9wVGuTjK8mkI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:22:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 208 (0xd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B29B, serialNumber=C4F7F39E62F4C9D78C5E12FDC151AE4E32BC9A42 Validity Not Before: May 31 05:22:15 2025 GMT Not After : Jun 7 05:22:15 2025 GMT Subject: CN=683a9207-c8e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:35:f6:0b:9b:61:84:d3:80:5b:95:d1:8f:6e: ff:87:38:21:86:f0:40:f8:87:f6:d8:9a:09:62:31: 0d:f6:b0:78:79:34:67:1f:7a:9f:1d:75:e2:3a:da: 0e:b1:47:c4:b7:f0:ed:d8:9f:54:34:b1:b7:90:92: 37:54:39:01:91:03:b1:27:fc:16:48:ea:74:b4:c9: e4:fb:bf:2e:77:5c:aa:14:7e:aa:ba:f5:db:b3:01: 95:5d:7e:8e:ab:72:b6:01:27:55:74:95:cc:ff:4a: 44:54:2a:41:4c:9d:17:fe:f5:6e:dc:18:4a:46:75: a8:1f:e0:98:fe:cd:49:b3:f3:49:8f:b7:77:d6:ee: f1:6e:ee:41:2e:6b:b5:82:dd:e6:e3:74:c7:ee:71: 1e:4a:3b:82:be:f1:ff:40:ac:93:7d:67:1f:8d:ae: a6:61:73:99:87:0a:33:d7:24:ca:b6:76:9f:f7:13: 4b:5e:f3:58:19:2e:47:97:8e:52:b5:2d:a8:52:a0: 46:ba:51:5f:82:d7:2d:8f:49:6f:61:35:0c:84:17: 30:10:c0:58:d4:c9:3d:c3:c3:ee:43:50:ba:f2:25: ea:1a:bf:bd:95:50:f3:53:c7:dd:e3:fa:84:b4:12: e7:f2:8a:ba:e2:23:ab:cf:7f:25:0a:c1:98:41:0f: 30:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:22:A3:AF:8A:3A:4F:20:8F:42:54:90:75:AA:07:E1:1E:C5:75:CA X509v3 Authority Key Identifier: keyid:C4:F7:F3:9E:62:F4:C9:D7:8C:5E:12:FD:C1:51:AE:4E:32:BC:9A:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPfznmL0ydeMXhL9wVGuTjK8mkI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:5d:8c:86:3d:88:5d:fa:3e:7f:05:a1:43:33:1d:e6:55:69: a7:6b:7f:ff:11:4f:26:9e:79:5a:1e:24:20:41:22:3b:73:85: a3:dc:0d:03:1f:5c:ca:94:c3:64:8e:bb:5a:2e:96:9e:e4:8f: e1:cd:41:06:3a:8b:3c:8a:47:e0:ba:cf:8d:fa:a5:56:e2:6f: f1:3f:cc:79:dd:2d:50:c7:01:0e:5d:c7:d4:c8:3d:df:5d:63: 4c:3e:86:88:6e:ee:85:ea:ec:7c:04:85:8c:f0:a2:02:1d:2e: 5e:9b:6c:37:97:a4:6a:69:81:1b:58:1f:d5:4b:48:d6:82:bf: 6d:78:98:e4:8d:97:f8:11:9a:06:53:d6:0b:fa:84:99:e4:5d: cc:f8:65:e0:ca:f7:32:8f:cb:bd:71:f1:5d:fd:ac:e1:71:94: 92:6f:41:15:39:25:36:8e:55:c8:15:27:3e:14:ab:8c:7a:ac: ac:a4:85:ba:b9:b6:56:87:d6:ff:24:e7:37:94:2a:7a:1c:ec: e9:70:89:d7:69:0e:e5:21:46:e0:c4:10:bf:3f:33:0f:a7:a7: 8d:18:dc:9b:3f:ce:c6:a7:ed:4b:7c:e3:cd:7a:91:81:d8:84: 25:42:f3:89:94:41:cb:9f:c4:b8:cf:ad:1f:2b:f7:ab:46:b4: 3a:8f:35:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEIyOUIxMTAvBgNVBAUTKEM0RjdGMzlFNjJGNEM5RDc4QzVFMTJGREMxNTFBRTRF MzJCQzlBNDIwHhcNMjUwNTMxMDUyMjE1WhcNMjUwNjA3MDUyMjE1WjAYMRYwFAYD VQQDEw02ODNhOTIwNy1jOGU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2zX2C5thhNOAW5XRj27/hzghhvBA+If22JoJYjEN9rB4eTRnH3qfHXXiOtoO sUfEt/Dt2J9UNLG3kJI3VDkBkQOxJ/wWSOp0tMnk+78ud1yqFH6quvXbswGVXX6O q3K2ASdVdJXM/0pEVCpBTJ0X/vVu3BhKRnWoH+CY/s1Js/NJj7d31u7xbu5BLmu1 gt3m43TH7nEeSjuCvvH/QKyTfWcfja6mYXOZhwoz1yTKtnaf9xNLXvNYGS5Hl45S tS2oUqBGulFfgtctj0lvYTUMhBcwEMBY1Mk9w8PuQ1C68iXqGr+9lVDzU8fd4/qE tBLn8oq64iOrz38lCsGYQQ8wTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBMio6+K Ok8gj0JUkHWqB+EexXXKMB8GA1UdIwQYMBaAFMT3855i9MnXjF4S/cFRrk4yvJpC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjI5Qi84QTNFMUQxQTBG ODIxMUVGODI2NkYwNUVDNEY5QUUwMi94UGZ6bm1MMHlkZU1YaEw5d1ZHdVRqSzht a0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hQZnpubUwweWRlTVhoTDl3Vkd1VGpLOG1rSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjI5Qi84QTNFMUQxQTBGODIxMUVGODI2NkYwNUVDNEY5QUUwMi94UGZ6bm1MMHlk ZU1YaEw5d1ZHdVRqSzhta0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcXYyGPYhd+j5/BaFDMx3mVWmna3//EU8mnnlaHiQgQSI7c4Wj3A0D H1zKlMNkjrtaLpae5I/hzUEGOos8ikfgus+N+qVW4m/xP8x53S1QxwEOXcfUyD3f XWNMPoaIbu6F6ux8BIWM8KICHS5em2w3l6RqaYEbWB/VS0jWgr9teJjkjZf4EZoG U9YL+oSZ5F3M+GXgyvcyj8u9cfFd/azhcZSSb0EVOSU2jlXIFSc+FKuMeqyspIW6 ubZWh9b/JOc3lCp6HOzpcInXaQ7lIUbgxBC/PzMPp6eNGNybP87Gp+1LfOPNepGB 2IQlQvOJlEHLn8S4z60fK/erRrQ6jzUw -----END CERTIFICATE-----Generated at Sat May 31 16:57:46 2025 by rpki-client