$ rpki-client -vvf rpki.apnic.net/member_repository/A918C774/579887B61D9911E29E2F098408B02CD2/2xinykRiG1ZTwgBDlHaz8qOAhT4.mft File: 2xinykRiG1ZTwgBDlHaz8qOAhT4.mft (raw, json) Hash identifier: SUFlIHF+VI6LTaHczS1MpFbesKE8h5Eh8SkyjU0s564= Subject key identifier: D1:24:8C:8A:97:4F:77:BC:A4:0A:4B:9A:EA:B9:F8:73:65:BE:2E:94 Authority key identifier: DB:18:A7:CA:44:62:1B:56:53:C2:00:43:94:76:B3:F2:A3:80:85:3E Certificate issuer: /CN=A918C774/serialNumber=DB18A7CA44621B5653C200439476B3F2A380853E Certificate serial: 3491 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xinykRiG1ZTwgBDlHaz8qOAhT4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C774/579887B61D9911E29E2F098408B02CD2/2xinykRiG1ZTwgBDlHaz8qOAhT4.mft Manifest number: 348B Signing time: Sat 31 May 2025 14:54:23 +0000 Manifest this update: Sat 31 May 2025 14:54:22 +0000 Manifest next update: Sat 07 Jun 2025 14:54:22 +0000 Files and hashes: 1: 2xinykRiG1ZTwgBDlHaz8qOAhT4.crl (hash: rpetlKBqnkOcRHq9sOM10m380rBAv/eQC/Tbu5+ta+E=) 2: 0458A9A409FB11EA8742F60AC4F9AE02.roa (hash: 3MU65ygEf1r2eIYg+fVLMHTs4lWxF35EpdxMw38lBRc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C774/579887B61D9911E29E2F098408B02CD2/2xinykRiG1ZTwgBDlHaz8qOAhT4.crl rsync://rpki.apnic.net/member_repository/A918C774/579887B61D9911E29E2F098408B02CD2/2xinykRiG1ZTwgBDlHaz8qOAhT4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xinykRiG1ZTwgBDlHaz8qOAhT4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 14:54:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13457 (0x3491) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C774, serialNumber=DB18A7CA44621B5653C200439476B3F2A380853E Validity Not Before: May 31 14:54:22 2025 GMT Not After : Jun 7 14:54:22 2025 GMT Subject: CN=683b181e-ca01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:68:b5:4c:b4:21:6b:97:33:c8:79:9e:43:55: 03:aa:04:a7:32:93:74:49:01:29:d5:46:2f:45:e2: 94:fb:1a:c9:09:a7:f2:88:19:ee:a3:c6:a6:a4:f2: 5b:9e:31:23:f3:f6:ad:83:94:b1:e6:9d:da:05:96: ce:42:47:f4:dd:02:f8:45:d0:4b:e6:e1:17:6e:49: d6:d3:22:76:19:5b:ed:a3:36:79:0d:16:b4:a9:1a: d1:c9:89:f9:33:01:b3:a3:33:03:ee:d0:49:dc:77: 53:eb:46:4c:c5:17:fe:e0:e9:a5:46:ec:d8:e7:9b: 60:88:3c:b3:64:20:9e:ec:fd:1a:72:1d:74:df:2a: e9:17:de:5a:40:dc:3a:88:4d:a5:d3:82:e6:f5:b8: 11:c8:49:17:17:9a:15:62:60:8e:1e:95:8c:a7:ee: f7:d5:8e:3e:6b:c7:ab:5a:13:be:d7:e9:cb:56:64: b6:76:84:89:e5:bd:24:64:f8:23:64:1a:1a:19:44: 00:7c:92:18:d3:d3:0e:5a:e8:4b:d8:79:82:b2:ce: b0:db:ce:4b:16:96:4c:81:a8:43:e2:3d:c8:ff:01: 30:84:28:53:ba:94:9d:fc:2a:7d:57:f1:f3:32:14: 82:ac:97:f1:ed:c2:e5:60:85:97:fe:05:b1:62:56: 72:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:24:8C:8A:97:4F:77:BC:A4:0A:4B:9A:EA:B9:F8:73:65:BE:2E:94 X509v3 Authority Key Identifier: keyid:DB:18:A7:CA:44:62:1B:56:53:C2:00:43:94:76:B3:F2:A3:80:85:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C774/579887B61D9911E29E2F098408B02CD2/2xinykRiG1ZTwgBDlHaz8qOAhT4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xinykRiG1ZTwgBDlHaz8qOAhT4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C774/579887B61D9911E29E2F098408B02CD2/2xinykRiG1ZTwgBDlHaz8qOAhT4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:05:02:15:3b:f8:2f:d4:0f:07:81:3f:65:d6:46:f4:8e:a1: 1b:ec:52:52:c9:e6:8e:b1:c6:16:2d:37:69:ae:11:d3:83:92: a5:0e:78:64:5e:ae:9b:ac:5f:fa:04:11:70:e6:23:77:1b:dc: 72:82:93:9a:46:9b:4f:59:46:7c:b9:cb:65:b5:94:8d:3b:ba: 74:8d:51:b1:51:b6:fb:b0:c3:0a:4c:37:2b:e1:01:c0:19:c4: 27:63:c8:ff:b6:36:76:0e:39:70:1d:8a:2a:cf:ce:b8:48:1b: 42:93:2f:6b:0f:ab:88:d5:64:ac:04:50:f1:5c:92:82:4d:7d: dc:cf:fc:6c:f0:46:f2:7f:7d:11:02:c0:74:e3:b9:f0:a2:eb: 70:26:b5:92:36:1c:2e:67:75:ea:96:76:fc:aa:75:01:a9:8b: d4:6f:3f:58:f0:60:4f:13:25:96:9e:d0:ef:bb:57:bb:fd:dc: ea:6a:67:38:2c:29:9b:29:87:38:5a:db:74:d8:f1:f4:6e:4c: 8a:b8:b0:47:2e:86:fa:b3:76:1b:81:4c:16:02:ce:c3:d8:e5: d3:0d:cd:f9:3f:d1:a2:7f:e6:a3:16:03:9b:36:e1:51:b0:32: 1f:e4:dc:70:91:36:3c:eb:0c:be:a7:b9:84:89:5f:5d:3d:c8: 37:c3:f8:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEM3NzQxMTAvBgNVBAUTKERCMThBN0NBNDQ2MjFCNTY1M0MyMDA0Mzk0NzZCM0Yy QTM4MDg1M0UwHhcNMjUwNTMxMTQ1NDIyWhcNMjUwNjA3MTQ1NDIyWjAYMRYwFAYD VQQDEw02ODNiMTgxZS1jYTAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Wi1TLQha5czyHmeQ1UDqgSnMpN0SQEp1UYvReKU+xrJCafyiBnuo8ampPJb njEj8/atg5Sx5p3aBZbOQkf03QL4RdBL5uEXbknW0yJ2GVvtozZ5DRa0qRrRyYn5 MwGzozMD7tBJ3HdT60ZMxRf+4OmlRuzY55tgiDyzZCCe7P0ach103yrpF95aQNw6 iE2l04Lm9bgRyEkXF5oVYmCOHpWMp+731Y4+a8erWhO+1+nLVmS2doSJ5b0kZPgj ZBoaGUQAfJIY09MOWuhL2HmCss6w285LFpZMgahD4j3I/wEwhChTupSd/Cp9V/Hz MhSCrJfx7cLlYIWX/gWxYlZyRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNEkjIqX T3e8pApLmuq5+HNlvi6UMB8GA1UdIwQYMBaAFNsYp8pEYhtWU8IAQ5R2s/KjgIU+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Qzc3NC81Nzk4ODdCNjFE OTkxMUUyOUUyRjA5ODQwOEIwMkNEMi8yeGlueWtSaUcxWlR3Z0JEbEhhejhxT0Fo VDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ4aW55a1JpRzFaVHdnQkRsSGF6OHFPQWhUNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Qzc3NC81Nzk4ODdCNjFEOTkxMUUyOUUyRjA5ODQwOEIwMkNEMi8yeGlueWtSaUcx WlR3Z0JEbEhhejhxT0FoVDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHBQIVO/gv1A8HgT9l1kb0jqEb7FJSyeaOscYWLTdprhHTg5KlDnhk Xq6brF/6BBFw5iN3G9xygpOaRptPWUZ8uctltZSNO7p0jVGxUbb7sMMKTDcr4QHA GcQnY8j/tjZ2DjlwHYoqz864SBtCky9rD6uI1WSsBFDxXJKCTX3cz/xs8Ebyf30R AsB047nwoutwJrWSNhwuZ3Xqlnb8qnUBqYvUbz9Y8GBPEyWWntDvu1e7/dzqamc4 LCmbKYc4Wtt02PH0bkyKuLBHLob6s3YbgUwWAs7D2OXTDc35P9Gif+ajFgObNuFR sDIf5NxwkTY86wy+p7mEiV9dPcg3w/hI -----END CERTIFICATE-----Generated at Sat May 31 17:34:26 2025 by rpki-client