$ rpki-client -vvf rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft File: XiM50eqvU0mhOKR5fagtDrTfqew.mft (raw, json) Hash identifier: vmvqJVQvrXq2yEqvbNXAw4nBXpaenEgXkMXh2aYZNQc= Subject key identifier: 07:FD:60:C4:F7:60:C2:34:26:08:85:71:DB:34:5B:50:12:D4:E2:00 Authority key identifier: 5E:23:39:D1:EA:AF:53:49:A1:38:A4:79:7D:A8:2D:0E:B4:DF:A9:EC Certificate issuer: /CN=A918CFAD/serialNumber=5E2339D1EAAF5349A138A4797DA82D0EB4DFA9EC Certificate serial: B4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XiM50eqvU0mhOKR5fagtDrTfqew.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft Manifest number: B3 Signing time: Thu 13 Mar 2025 04:06:25 +0000 Manifest this update: Thu 13 Mar 2025 04:06:25 +0000 Manifest next update: Thu 20 Mar 2025 04:06:25 +0000 Files and hashes: 1: XiM50eqvU0mhOKR5fagtDrTfqew.crl (hash: PRPtamTL13djx+Zwfp8KOSvpSaHKfqnWn+7Od52olqU=) 2: D161B1F0EA0411EE98A86A13C4F9AE02.roa (hash: f2pihyA1YpP2RflE8vg3Re0S4oO3efRwgxKNq8an+xI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.crl rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XiM50eqvU0mhOKR5fagtDrTfqew.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 04:06:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 180 (0xb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918CFAD Validity Not Before: Mar 13 04:06:25 2025 GMT Not After : Mar 20 04:06:25 2025 GMT Subject: CN=67d259c1-055e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:01:95:d0:7e:05:7d:14:d0:a1:e8:49:0b:d1: 62:6f:da:86:91:22:d1:8d:a6:1d:6e:2d:73:50:76: 73:68:e0:7a:89:5e:07:9f:8e:47:ea:5d:c4:14:ee: f1:0b:40:1d:f1:98:53:96:06:22:ab:b7:f0:6f:14: f9:c7:65:fe:aa:12:b8:bc:85:f2:9b:68:58:3f:15: b4:e0:bd:19:f4:9a:f7:09:5c:23:47:24:de:2c:7b: 8c:0b:14:91:11:7e:64:0e:4c:f8:e3:61:59:34:50: 01:47:5f:dc:20:d5:0c:a0:20:cf:ce:b0:98:c0:a8: 2d:dd:63:4c:df:29:73:54:83:5c:39:ad:e1:4a:da: 04:4a:ff:cf:c2:f9:7f:a6:43:9b:24:cd:ac:83:19: 07:58:0a:63:21:99:06:03:2d:e8:f0:bd:5b:c6:0d: 6f:8d:de:d8:84:ef:03:8f:a8:49:f9:49:5d:9b:1e: ba:b6:d6:1e:e9:33:67:fe:3b:e2:4c:a1:c8:41:ec: d3:29:a7:4f:dc:b3:57:05:05:c5:ff:f1:5d:df:96: 8c:ee:3d:e4:94:49:ef:8f:3b:30:67:66:ec:67:40: d1:b3:33:99:08:6a:62:3c:bb:7f:74:8c:f6:c7:70: a8:9b:e0:79:7b:9b:1e:af:d7:5e:3a:f2:30:8e:86: 35:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:FD:60:C4:F7:60:C2:34:26:08:85:71:DB:34:5B:50:12:D4:E2:00 X509v3 Authority Key Identifier: keyid:5E:23:39:D1:EA:AF:53:49:A1:38:A4:79:7D:A8:2D:0E:B4:DF:A9:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XiM50eqvU0mhOKR5fagtDrTfqew.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:a1:2d:dd:6d:e2:bf:cd:fb:91:0d:2d:61:ed:02:47:88:9c: 46:5b:fa:ea:bc:89:3a:a0:65:5b:4d:3a:07:1f:65:25:e1:1b: a3:02:a2:6b:76:39:3a:64:a6:20:4c:de:5a:e2:18:15:e8:d0: 8f:82:44:ec:30:f4:21:f7:12:c0:0d:5c:de:72:8c:96:f0:89: 67:0a:06:4c:26:4c:94:61:d0:6b:65:78:39:11:ea:95:fb:01: 94:74:94:dd:da:da:b4:c1:77:d6:b2:70:2e:79:8c:9b:d4:63: ae:35:ac:72:c2:7c:2f:3f:bf:4c:ad:53:16:3e:ab:1f:ee:0b: cc:b6:eb:ee:6f:3b:17:06:18:00:cf:66:5f:b5:84:65:dd:36: cf:c1:91:61:86:fa:79:a0:2b:42:1e:65:1b:14:8b:bc:49:9d: e2:ad:db:e8:b5:1e:f8:a6:14:a3:46:7d:d0:b5:dd:87:54:89: 3a:da:8c:d3:da:3e:76:f2:1a:04:1e:f3:f5:b3:ea:bb:73:66: dd:98:8a:98:65:45:f5:78:4f:a0:20:02:bb:d4:f2:9a:21:02: b2:46:0f:5b:9a:19:9b:a5:a9:f9:05:83:4a:06:c9:fa:41:6c: ba:9f:06:9d:8b:5b:ee:fe:ec:c9:d6:65:32:44:75:f0:c4:76: 33:49:b7:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OENGQUQxMTAvBgNVBAUTKDVFMjMzOUQxRUFBRjUzNDlBMTM4QTQ3OTdEQTgyRDBF QjRERkE5RUMwHhcNMjUwMzEzMDQwNjI1WhcNMjUwMzIwMDQwNjI1WjAYMRYwFAYD VQQDEw02N2QyNTljMS0wNTVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsgGV0H4FfRTQoehJC9Fib9qGkSLRjaYdbi1zUHZzaOB6iV4Hn45H6l3EFO7x C0Ad8ZhTlgYiq7fwbxT5x2X+qhK4vIXym2hYPxW04L0Z9Jr3CVwjRyTeLHuMCxSR EX5kDkz442FZNFABR1/cINUMoCDPzrCYwKgt3WNM3ylzVINcOa3hStoESv/Pwvl/ pkObJM2sgxkHWApjIZkGAy3o8L1bxg1vjd7YhO8Dj6hJ+Uldmx66ttYe6TNn/jvi TKHIQezTKadP3LNXBQXF//Fd35aM7j3klEnvjzswZ2bsZ0DRszOZCGpiPLt/dIz2 x3Com+B5e5ser9deOvIwjoY18QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAf9YMT3 YMI0JgiFcds0W1AS1OIAMB8GA1UdIwQYMBaAFF4jOdHqr1NJoTikeX2oLQ6036ns MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Q0ZBRC80QzkwMEYxQ0VB MDQxMUVFOTJEMTA2MTFDNEY5QUUwMi9YaU01MGVxdlUwbWhPS1I1ZmFndERyVGZx ZXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1hpTTUwZXF2VTBtaE9LUjVmYWd0RHJUZnFldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Q0ZBRC80QzkwMEYxQ0VBMDQxMUVFOTJEMTA2MTFDNEY5QUUwMi9YaU01MGVxdlUw bWhPS1I1ZmFndERyVGZxZXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkoS3dbeK/zfuRDS1h7QJHiJxGW/rqvIk6oGVbTToHH2Ul4RujAqJr djk6ZKYgTN5a4hgV6NCPgkTsMPQh9xLADVzecoyW8IlnCgZMJkyUYdBrZXg5EeqV +wGUdJTd2tq0wXfWsnAueYyb1GOuNaxywnwvP79MrVMWPqsf7gvMtuvubzsXBhgA z2ZftYRl3TbPwZFhhvp5oCtCHmUbFIu8SZ3irdvotR74phSjRn3Qtd2HVIk62ozT 2j528hoEHvP1s+q7c2bdmIqYZUX1eE+gIAK71PKaIQKyRg9bmhmbpan5BYNKBsn6 QWy6nwadi1vu/uzJ1mUyRHXwxHYzSbcq -----END CERTIFICATE-----Generated at Thu Mar 13 21:31:42 2025 by rpki-client