$ rpki-client -vvf rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft File: XAq0JfK0I14cgVaDvWyOi3uAtyc.mft (raw, json) Hash identifier: 2hXF8Eq+DMkjDYiiQPwnCiAfm3Gleklhsntm/5q1pxw= Subject key identifier: 55:26:F4:9C:80:12:9D:6E:40:92:FC:8A:15:A4:DF:6C:C8:98:8D:DB Authority key identifier: 5C:0A:B4:25:F2:B4:23:5E:1C:81:56:83:BD:6C:8E:8B:7B:80:B7:27 Certificate issuer: /CN=A917F8A9/serialNumber=5C0AB425F2B4235E1C815683BD6C8E8B7B80B727 Certificate serial: 0984 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft Manifest number: 096D Signing time: Fri 30 May 2025 21:00:20 +0000 Manifest this update: Fri 30 May 2025 21:00:19 +0000 Manifest next update: Fri 06 Jun 2025 21:00:19 +0000 Files and hashes: 1: XAq0JfK0I14cgVaDvWyOi3uAtyc.crl (hash: +yVjEJIsWunU6yEAN2QR/m5uypl5YUX2CFo8Iff3ttI=) 2: 83DC30E0D0DB11EA9336962FC4F9AE02.roa (hash: 1xpqucRPj2sGGfUlw/hjqGcWw2RAvQEPEvj1/o7DLww=) 3: 0774A2C894F211EAB30E7682C4F9AE02.roa (hash: Qe2k4Rmt8cYvrQ25NjhCj6HgTDQ2LTBczeZdX5NMi1Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.crl rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2436 (0x984) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F8A9, serialNumber=5C0AB425F2B4235E1C815683BD6C8E8B7B80B727 Validity Not Before: May 30 21:00:19 2025 GMT Not After : Jun 6 21:00:19 2025 GMT Subject: CN=683a1c63-7b8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:56:ab:e5:c1:b0:a6:d2:fe:ff:5a:6f:64:24: 20:b6:ca:bf:87:7a:40:67:74:ce:c2:66:60:a8:02: ce:68:70:db:c9:60:a9:8b:ba:fb:e8:5a:3e:32:47: e2:40:80:f3:87:c8:d0:e3:04:8c:d0:d2:27:0c:a2: 55:88:33:6e:b9:85:aa:39:64:27:ba:02:09:d4:6a: 4b:98:44:20:06:b6:05:c8:25:6c:47:75:57:a3:8b: ed:34:55:b4:88:3b:4f:d8:ed:45:a5:01:00:62:1b: bd:e2:8e:33:80:4c:2d:99:ee:00:9a:8f:9b:a2:25: b8:e4:ba:8d:f0:36:fa:52:e2:ea:14:f2:d3:4b:b8: 9c:ab:1e:5f:b1:5f:5f:b0:25:34:66:5b:ff:4c:d4: ae:bd:dd:c1:9d:3c:84:52:7d:b0:56:0d:eb:e1:7f: a4:15:36:ff:d2:1f:b3:f8:5c:d2:4d:80:c6:58:cd: a2:39:1f:04:80:f1:6f:12:b5:85:83:bb:11:29:65: 54:f3:2c:b6:c4:20:e9:f9:db:92:07:31:e5:b1:e0: 69:4a:98:1a:a9:d3:02:a1:46:c8:4f:ea:de:9a:a1: b9:f7:a0:c2:27:94:21:36:c7:7a:b8:bf:89:89:44: a2:f3:2e:2a:46:54:fa:f6:9e:af:04:e3:1f:5c:63: 0c:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:26:F4:9C:80:12:9D:6E:40:92:FC:8A:15:A4:DF:6C:C8:98:8D:DB X509v3 Authority Key Identifier: keyid:5C:0A:B4:25:F2:B4:23:5E:1C:81:56:83:BD:6C:8E:8B:7B:80:B7:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:b7:4c:20:20:cc:9a:79:14:2c:55:8a:4d:3c:2a:03:fc:c7: 41:cb:08:af:7c:0b:77:ed:27:85:8d:dc:aa:54:36:55:df:69: df:17:95:c8:a0:ba:58:a5:a9:58:86:ed:9b:24:4f:e7:65:6e: 0b:a3:a5:b4:7e:d8:15:ae:72:cb:ba:51:01:40:1d:cb:04:a8: b8:d0:ea:c6:af:f7:53:d7:0f:c6:71:b5:bf:5b:5c:c9:10:1b: 12:30:1b:d5:6e:31:4b:4b:27:7e:8f:5c:36:bb:c2:c0:5d:2b: a2:16:0e:b9:ca:9c:d6:62:7a:e3:f9:b7:5a:bd:d3:cf:94:3a: 15:e0:fb:e5:7b:fb:f5:8a:c3:56:65:88:1d:04:d6:7b:94:71: e8:0c:2e:c3:b5:12:c4:62:9b:78:75:a4:57:5c:34:69:99:ae: 83:ca:0a:50:d9:aa:d8:f9:f9:da:7b:19:c3:74:a3:07:20:da: dd:2b:a2:7a:d4:f3:25:7c:db:7a:f2:8f:2b:6e:87:eb:1c:54: 50:06:fe:74:0b:7f:dc:9d:e1:9f:98:b4:19:47:ae:53:70:3c: 57:57:1e:a0:a8:1f:32:f1:2c:c3:5a:f3:1d:26:bf:f8:9d:64: bd:49:13:03:d3:c4:e7:36:ca:3c:17:f4:0f:88:2c:d3:2a:db: 92:3a:0c:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCYQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y4QTkxMTAvBgNVBAUTKDVDMEFCNDI1RjJCNDIzNUUxQzgxNTY4M0JENkM4RThC N0I4MEI3MjcwHhcNMjUwNTMwMjEwMDE5WhcNMjUwNjA2MjEwMDE5WjAYMRYwFAYD VQQDEw02ODNhMWM2My03YjhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoFar5cGwptL+/1pvZCQgtsq/h3pAZ3TOwmZgqALOaHDbyWCpi7r76Fo+Mkfi QIDzh8jQ4wSM0NInDKJViDNuuYWqOWQnugIJ1GpLmEQgBrYFyCVsR3VXo4vtNFW0 iDtP2O1FpQEAYhu94o4zgEwtme4Amo+boiW45LqN8Db6UuLqFPLTS7icqx5fsV9f sCU0Zlv/TNSuvd3BnTyEUn2wVg3r4X+kFTb/0h+z+FzSTYDGWM2iOR8EgPFvErWF g7sRKWVU8yy2xCDp+duSBzHlseBpSpgaqdMCoUbIT+remqG596DCJ5QhNsd6uL+J iUSi8y4qRlT69p6vBOMfXGMMCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFUm9JyA Ep1uQJL8ihWk32zImI3bMB8GA1UdIwQYMBaAFFwKtCXytCNeHIFWg71sjot7gLcn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjhBOS8yQUEwNDMzMDk0 RjAxMUVBODNFRjFFN0RDNEY5QUUwMi9YQXEwSmZLMEkxNGNnVmFEdld5T2kzdUF0 eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hBcTBKZkswSTE0Y2dWYUR2V3lPaTN1QXR5Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjhBOS8yQUEwNDMzMDk0RjAxMUVBODNFRjFFN0RDNEY5QUUwMi9YQXEwSmZLMEkx NGNnVmFEdld5T2kzdUF0eWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLt0wgIMyaeRQsVYpNPCoD/MdBywivfAt37SeFjdyqVDZV32nfF5XI oLpYpalYhu2bJE/nZW4Lo6W0ftgVrnLLulEBQB3LBKi40OrGr/dT1w/GcbW/W1zJ EBsSMBvVbjFLSyd+j1w2u8LAXSuiFg65ypzWYnrj+bdavdPPlDoV4Pvle/v1isNW ZYgdBNZ7lHHoDC7DtRLEYpt4daRXXDRpma6DygpQ2arY+fnaexnDdKMHINrdK6J6 1PMlfNt68o8rbofrHFRQBv50C3/cneGfmLQZR65TcDxXVx6gqB8y8SzDWvMdJr/4 nWS9SRMD08TnNso8F/QPiCzTKtuSOgwc -----END CERTIFICATE-----Generated at Sat May 31 17:28:54 2025 by rpki-client