$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft File: XwTABfKMKFbHu_R2uRxioC8vxRw.mft (raw, json) Hash identifier: 4dXRq4fOkvnU6KGdVi8TTwUJUWem6yPaA9GWlnrWGY4= Subject key identifier: 73:26:4A:4E:88:F6:48:01:C2:AC:A9:D6:56:97:38:B2:9E:7F:2D:C9 Authority key identifier: 5F:04:C0:05:F2:8C:28:56:C7:BB:F4:76:B9:1C:62:A0:2F:2F:C5:1C Certificate issuer: /CN=A915A0FB/serialNumber=5F04C005F28C2856C7BBF476B91C62A02F2FC51C Certificate serial: 86 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XwTABfKMKFbHu_R2uRxioC8vxRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft Manifest number: 84 Signing time: Thu 13 Mar 2025 04:15:28 +0000 Manifest this update: Thu 13 Mar 2025 04:15:27 +0000 Manifest next update: Thu 20 Mar 2025 04:15:27 +0000 Files and hashes: 1: XwTABfKMKFbHu_R2uRxioC8vxRw.crl (hash: Vv3tw61cDjLPJRfyT/5+ucjs1kSleVQo9WhPDMfst1o=) 2: 900F4ADA440611EF85166C30C4F9AE02.roa (hash: jYgy4yMQyKQf5VxNbJ2NKQFUgnsZsFyOqLwxVUIrb0I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.crl rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XwTABfKMKFbHu_R2uRxioC8vxRw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 04:15:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 134 (0x86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0FB Validity Not Before: Mar 13 04:15:27 2025 GMT Not After : Mar 20 04:15:27 2025 GMT Subject: CN=67d25be0-9989 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ff:dd:2e:d8:97:a2:f0:90:bd:b4:83:74:bf: 71:76:61:e7:d8:d5:02:77:a8:c8:27:3a:c4:e3:76: 24:40:14:93:4f:de:73:a1:4f:c9:0e:59:6a:14:9c: 48:47:ce:d3:96:17:ac:09:fe:7b:93:e5:11:69:10: 91:08:27:14:24:1d:2b:8d:7a:e2:74:31:bb:0c:76: e9:92:47:15:7c:80:64:3c:7a:ef:20:c5:ec:c0:5c: 58:6d:2a:40:d4:bf:b8:f4:ed:47:60:a5:89:0c:7f: 35:e9:df:2e:c0:b1:01:67:90:4f:91:e3:9a:3f:97: ef:31:dc:b8:51:8e:ec:b2:4f:78:8b:63:f1:13:df: 52:17:cc:f0:36:eb:5b:11:d3:77:10:e6:5c:66:41: d0:95:d2:82:fa:5c:af:e6:d2:d3:4b:38:08:78:10: a8:ae:09:ac:b9:70:62:b3:fc:17:14:b0:a3:fe:01: 53:85:c3:19:e3:7a:39:25:69:08:1f:fc:b3:3f:eb: 01:56:6e:f0:65:08:24:c5:ec:9b:97:94:3d:5d:81: 35:3a:b0:78:52:95:f0:d2:a4:3e:9a:25:d2:92:ff: ca:02:09:4e:47:4c:03:a2:db:5a:ec:e6:88:66:17: aa:c5:a7:1f:2c:b1:3f:d1:8d:71:4c:0c:05:eb:fc: d6:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:26:4A:4E:88:F6:48:01:C2:AC:A9:D6:56:97:38:B2:9E:7F:2D:C9 X509v3 Authority Key Identifier: keyid:5F:04:C0:05:F2:8C:28:56:C7:BB:F4:76:B9:1C:62:A0:2F:2F:C5:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XwTABfKMKFbHu_R2uRxioC8vxRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:45:5b:9c:08:55:2b:75:df:45:a3:f2:1b:d3:94:91:92:75: d3:96:a0:d4:6f:65:e2:24:e1:45:f2:40:de:e7:b9:ca:da:4b: 3e:9c:88:ef:3a:cb:13:ea:0b:d0:cd:f3:e4:89:67:d4:2d:1f: ad:b0:4a:2f:dc:be:fe:99:99:ae:64:8c:cf:27:14:65:d7:8a: 60:1b:82:b8:a3:f3:a2:0b:48:75:8f:6e:06:9c:37:c9:f4:e7: 09:5a:47:c3:44:be:91:63:76:4d:53:c1:2e:0e:59:b4:56:f0: e8:dd:f3:dd:fe:42:5c:c2:fc:8a:0d:12:bf:66:6d:0e:04:02: 12:fd:45:a5:8c:e1:d7:7a:94:35:c8:58:fd:c1:1e:37:65:b2: d8:e7:0a:01:41:ca:1a:3e:65:2f:77:37:0d:06:eb:29:34:b3: 01:66:cc:ad:7c:7a:f5:61:cc:bf:41:f4:d0:42:c0:92:da:bd: c0:9e:ee:76:51:d8:e7:40:03:95:8a:34:b0:27:f5:58:5e:7b: 0b:b0:25:b7:c5:df:78:c2:02:5e:87:be:b3:de:08:39:a4:e3: 7d:67:56:7e:a0:55:2d:13:8b:c6:cd:8f:5e:85:d9:d2:3a:1b: 1b:37:f7:2d:dd:55:aa:2f:09:a7:4b:2a:e8:bb:40:c9:de:f1: 6d:f4:05:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEwRkIxMTAvBgNVBAUTKDVGMDRDMDA1RjI4QzI4NTZDN0JCRjQ3NkI5MUM2MkEw MkYyRkM1MUMwHhcNMjUwMzEzMDQxNTI3WhcNMjUwMzIwMDQxNTI3WjAYMRYwFAYD VQQDEw02N2QyNWJlMC05OTg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtv/dLtiXovCQvbSDdL9xdmHn2NUCd6jIJzrE43YkQBSTT95zoU/JDllqFJxI R87TlhesCf57k+URaRCRCCcUJB0rjXridDG7DHbpkkcVfIBkPHrvIMXswFxYbSpA 1L+49O1HYKWJDH816d8uwLEBZ5BPkeOaP5fvMdy4UY7ssk94i2PxE99SF8zwNutb EdN3EOZcZkHQldKC+lyv5tLTSzgIeBCorgmsuXBis/wXFLCj/gFThcMZ43o5JWkI H/yzP+sBVm7wZQgkxeybl5Q9XYE1OrB4UpXw0qQ+miXSkv/KAglOR0wDotta7OaI ZheqxacfLLE/0Y1xTAwF6/zWAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHMmSk6I 9kgBwqyp1laXOLKefy3JMB8GA1UdIwQYMBaAFF8EwAXyjChWx7v0drkcYqAvL8Uc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBGQi9FMTcxOTM2MjNE OEQxMUVGODcwNTNCMEZDNEY5QUUwMi9Yd1RBQmZLTUtGYkh1X1IydVJ4aW9DOHZ4 UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1h3VEFCZktNS0ZiSHVfUjJ1Unhpb0M4dnhSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTBGQi9FMTcxOTM2MjNEOEQxMUVGODcwNTNCMEZDNEY5QUUwMi9Yd1RBQmZLTUtG Ykh1X1IydVJ4aW9DOHZ4UncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7RVucCFUrdd9Fo/Ib05SRknXTlqDUb2XiJOFF8kDe57nK2ks+nIjv OssT6gvQzfPkiWfULR+tsEov3L7+mZmuZIzPJxRl14pgG4K4o/OiC0h1j24GnDfJ 9OcJWkfDRL6RY3ZNU8EuDlm0VvDo3fPd/kJcwvyKDRK/Zm0OBAIS/UWljOHXepQ1 yFj9wR43ZbLY5woBQcoaPmUvdzcNBuspNLMBZsytfHr1Ycy/QfTQQsCS2r3Anu52 UdjnQAOVijSwJ/VYXnsLsCW3xd94wgJeh76z3gg5pON9Z1Z+oFUtE4vGzY9ehdnS OhsbN/ct3VWqLwmnSyrou0DJ3vFt9AUN -----END CERTIFICATE-----Generated at Thu Mar 13 21:31:00 2025 by rpki-client