$ rpki-client -vvf rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.mft File: X8J5LPRAuFeDnWiKcLYPB2KrqzU.mft (raw, json) Hash identifier: Efie9Mn6W1F3pJlFXuEU58cJZVLoOBBOrNw6LjA/BA0= Subject key identifier: F1:65:EC:D8:D3:65:6F:D4:8B:7D:50:5A:4D:2A:19:86:BF:8B:E8:78 Authority key identifier: 5F:C2:79:2C:F4:40:B8:57:83:9D:68:8A:70:B6:0F:07:62:AB:AB:35 Certificate issuer: /CN=A9170304/serialNumber=5FC2792CF440B857839D688A70B60F0762ABAB35 Certificate serial: 3498 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.mft Manifest number: 348F Signing time: Sat 31 May 2025 14:38:41 +0000 Manifest this update: Sat 31 May 2025 14:38:40 +0000 Manifest next update: Sat 07 Jun 2025 14:38:40 +0000 Files and hashes: 1: X8J5LPRAuFeDnWiKcLYPB2KrqzU.crl (hash: hVgpQclH88TW/h6O/OsHXWTOkQYzbtZeJYUo2uw7wrc=) 2: 6D106CEE3AA011EB963B4842C4F9AE02.roa (hash: m1Ja+K+BQF88h58Y18w9A7vu3WiRuOsB65pKsql8BvI=) 3: 3A304DB4F54411EE8FF34627C4F9AE02.roa (hash: Zl4gUZhHt66LNUFLaLmernm+th1hHU0/5O3LszjxBds=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.crl rsync://rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 14:38:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13464 (0x3498) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170304, serialNumber=5FC2792CF440B857839D688A70B60F0762ABAB35 Validity Not Before: May 31 14:38:40 2025 GMT Not After : Jun 7 14:38:40 2025 GMT Subject: CN=683b1470-2c17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:dd:d3:94:84:8e:4a:26:78:c7:f0:1e:54:be: 06:f5:eb:65:39:37:d2:3c:1a:7d:19:a8:c6:8e:11: f9:c8:59:9a:0a:20:ca:7b:62:0e:82:17:8a:d3:09: d9:7b:d0:da:a2:66:6a:12:14:7c:04:89:0a:da:6d: e3:2a:fc:8f:29:68:82:bb:c3:57:d4:d7:25:15:ca: e9:71:f8:c9:6b:dc:10:55:4a:43:b0:c8:fa:10:5f: b6:85:10:4c:08:66:a0:ec:96:3a:26:c0:0e:b7:af: ad:9b:bb:7d:92:1e:6d:cf:4d:23:1c:da:77:bd:78: 49:98:fb:6b:4f:5f:b4:29:76:53:81:77:2e:be:7e: 44:ce:b3:b9:2a:c3:2d:64:b3:44:c0:bb:29:9f:e1: 67:af:42:3e:02:15:06:ba:a1:41:e7:58:8f:47:54: 02:16:bb:9d:ae:d3:e1:10:7f:1d:51:42:ec:f9:e4: 1c:72:8e:c1:ad:6d:be:54:08:c9:81:95:bf:e2:83: 32:53:bf:86:63:2d:f7:09:f5:e2:ed:81:a9:54:0d: 66:01:71:54:c4:cc:84:e3:09:ef:89:42:f9:63:fb: 80:4f:61:0e:28:ed:fa:1b:ce:ca:b6:62:03:bb:fb: 80:a6:9e:c5:cd:d1:5f:9c:ef:3e:4e:1b:2c:10:c4: ae:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:65:EC:D8:D3:65:6F:D4:8B:7D:50:5A:4D:2A:19:86:BF:8B:E8:78 X509v3 Authority Key Identifier: keyid:5F:C2:79:2C:F4:40:B8:57:83:9D:68:8A:70:B6:0F:07:62:AB:AB:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:d9:92:05:80:a1:6d:f8:81:60:ac:64:82:3b:6c:64:3e:9c: 88:84:b3:80:71:5c:0e:cb:44:e5:13:9a:59:7c:8b:55:5d:ef: 00:48:02:90:7b:7d:98:be:55:81:2c:7f:69:82:4d:00:69:0b: bf:a8:f9:9f:d7:53:30:3e:f7:22:24:a6:a8:d9:85:98:13:13: 4a:3f:22:64:bf:78:a2:7d:81:ad:c0:bd:59:e7:a6:a3:ad:ae: 8e:02:76:ec:bc:4c:a0:83:d6:26:5b:59:36:51:3d:c3:f8:ea: 36:a1:fb:da:ab:97:06:35:9e:f9:a4:8a:67:54:cb:0c:68:4d: 4e:02:b6:f4:3e:90:bc:93:cd:a4:cf:1c:79:c6:af:6e:82:11: 74:de:9d:b3:36:a1:64:d8:61:52:1a:d0:23:c5:f8:7d:9b:6b: fe:42:aa:a4:f5:9a:9d:55:9f:18:40:28:a5:4a:d0:01:a1:63: df:5a:3d:bd:43:cb:6c:b8:bc:e6:5d:89:86:17:ad:94:08:a3: c1:52:37:61:cc:64:e2:26:70:c4:9c:83:05:51:32:aa:10:8f: 13:b8:98:98:23:e7:05:76:f7:4f:d5:d0:1a:57:d1:c2:d5:f0: ad:2c:59:4f:76:fa:5d:0c:e0:a6:af:99:f5:6a:40:89:fc:00: 80:3b:f9:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzAzMDQxMTAvBgNVBAUTKDVGQzI3OTJDRjQ0MEI4NTc4MzlENjg4QTcwQjYwRjA3 NjJBQkFCMzUwHhcNMjUwNTMxMTQzODQwWhcNMjUwNjA3MTQzODQwWjAYMRYwFAYD VQQDEw02ODNiMTQ3MC0yYzE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo93TlISOSiZ4x/AeVL4G9etlOTfSPBp9GajGjhH5yFmaCiDKe2IOgheK0wnZ e9DaomZqEhR8BIkK2m3jKvyPKWiCu8NX1NclFcrpcfjJa9wQVUpDsMj6EF+2hRBM CGag7JY6JsAOt6+tm7t9kh5tz00jHNp3vXhJmPtrT1+0KXZTgXcuvn5EzrO5KsMt ZLNEwLspn+Fnr0I+AhUGuqFB51iPR1QCFrudrtPhEH8dUULs+eQcco7BrW2+VAjJ gZW/4oMyU7+GYy33CfXi7YGpVA1mAXFUxMyE4wnviUL5Y/uAT2EOKO36G87KtmID u/uApp7FzdFfnO8+ThssEMSuwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPFl7NjT ZW/Ui31QWk0qGYa/i+h4MB8GA1UdIwQYMBaAFF/CeSz0QLhXg51oinC2Dwdiq6s1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDMwNC9BQjgyNDlCMjFE OEUxMUUyQjE4MjI2RUQwOEIwMkNEMi9YOEo1TFBSQXVGZURuV2lLY0xZUEIyS3Jx elUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g4SjVMUFJBdUZlRG5XaUtjTFlQQjJLcnF6VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDMwNC9BQjgyNDlCMjFEOEUxMUUyQjE4MjI2RUQwOEIwMkNEMi9YOEo1TFBSQXVG ZURuV2lLY0xZUEIyS3JxelUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBF2ZIFgKFt+IFgrGSCO2xkPpyIhLOAcVwOy0TlE5pZfItVXe8ASAKQ e32YvlWBLH9pgk0AaQu/qPmf11MwPvciJKao2YWYExNKPyJkv3iifYGtwL1Z56aj ra6OAnbsvEygg9YmW1k2UT3D+Oo2ofvaq5cGNZ75pIpnVMsMaE1OArb0PpC8k82k zxx5xq9ughF03p2zNqFk2GFSGtAjxfh9m2v+Qqqk9ZqdVZ8YQCilStABoWPfWj29 Q8tsuLzmXYmGF62UCKPBUjdhzGTiJnDEnIMFUTKqEI8TuJiYI+cFdvdP1dAaV9HC 1fCtLFlPdvpdDOCmr5n1akCJ/ACAO/kt -----END CERTIFICATE-----Generated at Sat May 31 17:56:28 2025 by rpki-client