$ rpki-client -vvf rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.mft File: xiGEgVH3l79yMQfxTWLGeiE6U-M.mft (raw, json) Hash identifier: DsDyJ71v188wqQ/2w61WultdvGR85ZiXhTuZ8O+w5y0= Subject key identifier: 2D:66:8F:F0:43:2C:AC:DF:EF:D2:6A:24:FB:CE:75:FB:34:EB:8A:05 Authority key identifier: C6:21:84:81:51:F7:97:BF:72:31:07:F1:4D:62:C6:7A:21:3A:53:E3 Certificate issuer: /CN=A915EBC8/serialNumber=C621848151F797BF723107F14D62C67A213A53E3 Certificate serial: 01A8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiGEgVH3l79yMQfxTWLGeiE6U-M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.mft Manifest number: 0189 Signing time: Thu 10 Apr 2025 08:08:13 +0000 Manifest this update: Thu 10 Apr 2025 08:08:12 +0000 Manifest next update: Thu 17 Apr 2025 08:08:12 +0000 Files and hashes: 1: xiGEgVH3l79yMQfxTWLGeiE6U-M.crl (hash: aqOPh07WE0m2FWD3alKoMDL/772ympwCdwSXJ0Triq0=) 2: AC61350A4E3C11EF9286040CC4F9AE02.roa (hash: VTBBeIL614sb0peUfvHZkHID2F5SKe0xhRwPmtOmjLM=) 3: 781637A8FADD11EE880BF37DC4F9AE02.roa (hash: UkUpU1afkgtg1CQHu61ZJeRImk8QtltSVX5opIK6H/k=) 4: 9BB3FAB6CCB511EE8612FB18C4F9AE02.roa (hash: c9KG9vpN1QmGvwjTf9PDbnl/EQ1PMVZ2QmsDIyegpZw=) 5: 7755D5B2FADD11EE880BF37DC4F9AE02.roa (hash: kzfyShpZyRgXv5qW19HVktsh3HfmhmaLBtleNFL05u8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.crl rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiGEgVH3l79yMQfxTWLGeiE6U-M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 424 (0x1a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915EBC8 Validity Not Before: Apr 10 08:08:12 2025 GMT Not After : Apr 17 08:08:12 2025 GMT Subject: CN=67f77c6c-2704 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:af:52:96:4c:af:f9:27:57:f3:ab:84:46:a8: 85:31:e8:1c:c8:ce:2d:37:c8:c0:91:b5:57:d9:da: a8:c3:6b:37:0b:0f:fb:0c:41:0b:16:45:85:2b:06: 6e:f9:cd:a5:39:22:25:38:ce:3c:d1:90:5a:19:2a: 4c:06:0b:ed:55:ea:98:d1:21:58:07:96:28:2e:2d: d3:b4:9a:22:27:53:65:50:92:1f:4b:26:29:e2:99: 98:e4:78:9f:b8:e5:cf:76:2a:40:e9:5a:c6:26:fd: d0:1f:d3:60:63:2e:ec:3d:99:eb:1e:73:5c:f5:ee: 7e:40:16:8b:7c:e9:9b:bf:43:61:f4:54:e1:d0:9f: 2c:cb:f0:a3:8d:b7:5d:03:3e:8b:11:b4:35:4a:26: ac:c8:75:80:4c:66:05:b5:63:5e:ea:5f:03:2d:bd: df:73:59:22:11:e8:bc:88:b6:85:77:af:9a:7f:bc: 97:82:ee:8c:d9:f8:39:89:44:2f:bb:76:04:6d:f9: 20:d8:e8:d4:c1:3e:b2:03:d2:a8:94:d2:f1:1c:41: 74:19:a1:c9:3a:4e:50:f4:70:14:48:d8:5a:a9:c9: 35:12:90:cd:d7:e2:df:4e:03:b2:f8:c8:a8:c3:a5: 5a:b4:0b:b0:0c:b7:d6:ce:c2:b1:ef:85:1d:56:cd: 18:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:66:8F:F0:43:2C:AC:DF:EF:D2:6A:24:FB:CE:75:FB:34:EB:8A:05 X509v3 Authority Key Identifier: keyid:C6:21:84:81:51:F7:97:BF:72:31:07:F1:4D:62:C6:7A:21:3A:53:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiGEgVH3l79yMQfxTWLGeiE6U-M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:b1:7e:08:ee:e6:fb:a2:c8:e1:10:f5:84:ef:bd:e0:06:ea: 02:67:44:57:4a:43:24:20:7f:7b:89:31:82:d1:a5:f9:32:ed: f6:d4:7f:a7:ab:57:ec:c1:a2:d0:16:48:97:8e:3c:64:55:2e: ce:15:5e:93:b7:af:93:43:96:ca:78:3a:89:2e:a3:d5:dd:e7: 11:cb:9a:80:b8:f6:d4:1e:7f:c6:8d:2a:ac:fd:c3:ae:bc:c9: d3:79:64:76:61:c1:d0:cd:5d:9d:e7:87:9d:b1:73:ca:29:0a: 6d:d2:20:56:67:ca:11:f2:40:25:cf:5c:24:fb:49:69:9f:ed: 19:1c:dc:65:19:2f:3f:15:83:29:6a:d3:c8:b8:23:94:97:c7: 91:56:8b:41:b7:92:d9:dd:b4:17:f3:47:18:86:fa:6d:2c:82: 32:0b:85:4b:59:4f:a8:08:7e:e3:23:0e:b9:d2:7b:98:00:7d: af:33:fc:97:52:44:dd:6a:ea:31:38:79:86:b0:06:50:a6:9e: 5b:e2:a1:91:14:f3:1a:4e:c0:04:36:91:76:44:0e:29:6f:33: cf:8b:8d:fd:2c:85:82:86:de:0c:55:eb:7e:52:7d:2c:10:5a: 5c:e6:73:79:b1:da:58:03:3d:be:91:0f:ae:ef:bd:a1:89:d6: fb:9e:fd:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAagwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUVCQzgxMTAvBgNVBAUTKEM2MjE4NDgxNTFGNzk3QkY3MjMxMDdGMTRENjJDNjdB MjEzQTUzRTMwHhcNMjUwNDEwMDgwODEyWhcNMjUwNDE3MDgwODEyWjAYMRYwFAYD VQQDEw02N2Y3N2M2Yy0yNzA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqa9Slkyv+SdX86uERqiFMegcyM4tN8jAkbVX2dqow2s3Cw/7DEELFkWFKwZu +c2lOSIlOM480ZBaGSpMBgvtVeqY0SFYB5YoLi3TtJoiJ1NlUJIfSyYp4pmY5Hif uOXPdipA6VrGJv3QH9NgYy7sPZnrHnNc9e5+QBaLfOmbv0Nh9FTh0J8sy/Cjjbdd Az6LEbQ1SiasyHWATGYFtWNe6l8DLb3fc1kiEei8iLaFd6+af7yXgu6M2fg5iUQv u3YEbfkg2OjUwT6yA9KolNLxHEF0GaHJOk5Q9HAUSNhaqck1EpDN1+LfTgOy+Mio w6VatAuwDLfWzsKx74UdVs0YgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC1mj/BD LKzf79JqJPvOdfs064oFMB8GA1UdIwQYMBaAFMYhhIFR95e/cjEH8U1ixnohOlPj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RUJDOC81ODk4MjBDMkVG MDIxMUVEOEMyREQ5MUZDNEY5QUUwMi94aUdFZ1ZIM2w3OXlNUWZ4VFdMR2VpRTZV LU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hpR0VnVkgzbDc5eU1RZnhUV0xHZWlFNlUtTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RUJDOC81ODk4MjBDMkVGMDIxMUVEOEMyREQ5MUZDNEY5QUUwMi94aUdFZ1ZIM2w3 OXlNUWZ4VFdMR2VpRTZVLU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCesX4I7ub7osjhEPWE773gBuoCZ0RXSkMkIH97iTGC0aX5Mu321H+n q1fswaLQFkiXjjxkVS7OFV6Tt6+TQ5bKeDqJLqPV3ecRy5qAuPbUHn/GjSqs/cOu vMnTeWR2YcHQzV2d54edsXPKKQpt0iBWZ8oR8kAlz1wk+0lpn+0ZHNxlGS8/FYMp atPIuCOUl8eRVotBt5LZ3bQX80cYhvptLIIyC4VLWU+oCH7jIw650nuYAH2vM/yX UkTdauoxOHmGsAZQpp5b4qGRFPMaTsAENpF2RA4pbzPPi439LIWCht4MVet+Un0s EFpc5nN5sdpYAz2+kQ+u772hidb7nv3W -----END CERTIFICATE-----Generated at Thu Apr 10 21:30:53 2025 by rpki-client