$ rpki-client -vvf rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.mft File: xI1E8RHZ9NyOPmStf5ZIZGHLn70.mft (raw, json) Hash identifier: zvsYVvURE6tDihvs+C+82mP3LWbHkic5FLCIORJ4St0= Subject key identifier: 9E:D8:E9:11:4B:22:69:F5:BC:D4:A2:6E:7A:5B:43:69:2D:F5:6E:4A Authority key identifier: C4:8D:44:F1:11:D9:F4:DC:8E:3E:64:AD:7F:96:48:64:61:CB:9F:BD Certificate issuer: /CN=A9181CA2/serialNumber=C48D44F111D9F4DC8E3E64AD7F96486461CB9FBD Certificate serial: 03C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xI1E8RHZ9NyOPmStf5ZIZGHLn70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.mft Manifest number: 03BB Signing time: Sat 31 May 2025 00:52:07 +0000 Manifest this update: Sat 31 May 2025 00:52:07 +0000 Manifest next update: Sat 07 Jun 2025 00:52:07 +0000 Files and hashes: 1: xI1E8RHZ9NyOPmStf5ZIZGHLn70.crl (hash: yKey6knhQwY0l4kfgkU4rjmB/T1bUWL2agpQy6/nGl8=) 2: 76391AA6995311EC8EAA8C59C4F9AE02.roa (hash: W7ot2zpw7zenj0ixyvV0R84xsbmbGiyY0szYoIQxijc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.crl rsync://rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xI1E8RHZ9NyOPmStf5ZIZGHLn70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:52:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 960 (0x3c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9181CA2, serialNumber=C48D44F111D9F4DC8E3E64AD7F96486461CB9FBD Validity Not Before: May 31 00:52:07 2025 GMT Not After : Jun 7 00:52:07 2025 GMT Subject: CN=683a52b7-3fb6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:25:27:61:18:f6:8b:a1:cd:e8:da:8b:1d:4d: db:4a:10:f1:92:9f:91:65:cc:e3:93:f4:88:98:6c: 15:42:b5:61:a1:8f:77:6a:e6:24:8e:47:bb:28:90: 19:6b:d8:4d:af:1b:b5:87:ce:df:fc:7d:7c:f9:53: 3f:9c:7a:e4:b8:74:ad:34:8f:a1:58:1c:55:57:74: ad:14:bf:b9:de:2d:07:30:63:98:f0:bb:07:e3:97: 1a:61:a3:26:49:b7:f1:7b:ff:25:8d:58:2d:72:b8: de:2e:d8:4d:ea:7c:ab:c5:e3:aa:a9:70:cb:cc:ca: 77:a9:a2:10:95:b7:77:29:22:d3:3c:25:a6:d0:ca: 49:e4:56:ee:48:b6:a0:0f:a9:2e:39:b4:b5:e1:16: 16:14:4e:86:5e:f9:47:fc:9a:bd:b8:33:f1:7c:d7: a7:f7:ef:b7:2d:e1:e3:f8:8c:3f:92:32:e9:c9:1f: 8b:3a:29:f4:40:11:03:d6:35:f4:41:c7:21:6f:3c: 24:e9:75:25:30:33:79:b0:15:28:d5:50:4e:f6:ca: d8:a9:6e:f3:36:92:db:d9:c8:fb:42:4f:d0:f6:a3: cb:e5:7b:3a:92:36:b5:73:ce:db:e2:44:70:ec:5b: 81:25:d2:da:37:0d:db:ac:cb:90:96:dc:43:fd:b4: 20:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:D8:E9:11:4B:22:69:F5:BC:D4:A2:6E:7A:5B:43:69:2D:F5:6E:4A X509v3 Authority Key Identifier: keyid:C4:8D:44:F1:11:D9:F4:DC:8E:3E:64:AD:7F:96:48:64:61:CB:9F:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xI1E8RHZ9NyOPmStf5ZIZGHLn70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:e6:fe:2a:70:ce:aa:23:67:37:f9:03:13:09:e3:70:07:a5: 7c:66:84:57:e2:76:88:95:66:ad:84:e4:cb:04:e2:0c:36:4a: ab:50:18:e9:6a:57:8d:7e:7e:23:a6:fd:96:f0:e5:87:b8:bd: fa:2a:1e:d2:d9:2d:d2:c5:a8:a8:de:1c:9a:ec:08:a1:68:8d: fa:5c:9d:5d:53:c6:0b:07:d1:95:be:b4:d1:ac:2f:ce:d3:b8: b3:0f:fe:12:05:67:ee:77:78:77:e9:17:e0:dd:7e:9b:d0:f2: be:34:d0:aa:98:6d:5c:11:2c:64:73:4f:b3:dc:5f:91:67:9f: 6d:ec:d1:ab:8c:d0:cb:12:da:27:e6:3f:cb:5a:29:d8:ed:18: bf:f9:08:1a:9b:7c:23:66:c1:27:69:fc:ae:b6:98:b8:f6:1b: 04:a3:76:96:d6:0a:a4:d7:09:4d:4e:1e:93:9a:26:89:83:6e: f6:03:b2:cd:8d:a3:7e:6e:95:e5:8d:97:fd:33:50:6d:07:02: 3c:96:c6:66:e3:f3:c4:e2:2d:69:cc:db:68:1f:de:9d:84:43: 72:bc:15:7e:f3:0e:79:17:19:03:26:53:5f:5d:ff:b2:08:cc: 74:8e:58:60:8e:73:27:00:2a:80:1c:15:51:56:92:20:d2:ab: 84:90:d4:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA8AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODFDQTIxMTAvBgNVBAUTKEM0OEQ0NEYxMTFEOUY0REM4RTNFNjRBRDdGOTY0ODY0 NjFDQjlGQkQwHhcNMjUwNTMxMDA1MjA3WhcNMjUwNjA3MDA1MjA3WjAYMRYwFAYD VQQDEw02ODNhNTJiNy0zZmI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwSUnYRj2i6HN6NqLHU3bShDxkp+RZczjk/SImGwVQrVhoY93auYkjke7KJAZ a9hNrxu1h87f/H18+VM/nHrkuHStNI+hWBxVV3StFL+53i0HMGOY8LsH45caYaMm Sbfxe/8ljVgtcrjeLthN6nyrxeOqqXDLzMp3qaIQlbd3KSLTPCWm0MpJ5FbuSLag D6kuObS14RYWFE6GXvlH/Jq9uDPxfNen9++3LeHj+Iw/kjLpyR+LOin0QBED1jX0 Qcchbzwk6XUlMDN5sBUo1VBO9srYqW7zNpLb2cj7Qk/Q9qPL5Xs6kja1c87b4kRw 7FuBJdLaNw3brMuQltxD/bQgUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ7Y6RFL Imn1vNSibnpbQ2kt9W5KMB8GA1UdIwQYMBaAFMSNRPER2fTcjj5krX+WSGRhy5+9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MUNBMi83OTM2NUI4RThG MDcxMUVDOUVCMjMxNzBDNEY5QUUwMi94STFFOFJIWjlOeU9QbVN0ZjVaSVpHSExu NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hJMUU4UkhaOU55T1BtU3RmNVpJWkdITG43MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MUNBMi83OTM2NUI4RThGMDcxMUVDOUVCMjMxNzBDNEY5QUUwMi94STFFOFJIWjlO eU9QbVN0ZjVaSVpHSExuNzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBN5v4qcM6qI2c3+QMTCeNwB6V8ZoRX4naIlWathOTLBOIMNkqrUBjp aleNfn4jpv2W8OWHuL36Kh7S2S3Sxaio3hya7AihaI36XJ1dU8YLB9GVvrTRrC/O 07izD/4SBWfud3h36Rfg3X6b0PK+NNCqmG1cESxkc0+z3F+RZ59t7NGrjNDLEton 5j/LWinY7Ri/+Qgam3wjZsEnafyutpi49hsEo3aW1gqk1wlNTh6TmiaJg272A7LN jaN+bpXljZf9M1BtBwI8lsZm4/PE4i1pzNtoH96dhENyvBV+8w55FxkDJlNfXf+y CMx0jlhgjnMnACqAHBVRVpIg0quEkNSm -----END CERTIFICATE-----Generated at Sat May 31 17:22:11 2025 by rpki-client