$ rpki-client -vvf rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft File: XiM50eqvU0mhOKR5fagtDrTfqew.mft (raw, json) Hash identifier: 3tkqT8mL+AVpydeM9lcR7ERMR/D1w8FYbk0QcvMlZMo= Subject key identifier: 13:50:2C:23:3F:51:16:2D:E2:48:25:10:96:69:94:0C:28:70:CF:94 Authority key identifier: 5E:23:39:D1:EA:AF:53:49:A1:38:A4:79:7D:A8:2D:0E:B4:DF:A9:EC Certificate issuer: /CN=A918CFAD/serialNumber=5E2339D1EAAF5349A138A4797DA82D0EB4DFA9EC Certificate serial: A7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XiM50eqvU0mhOKR5fagtDrTfqew.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft Manifest number: A6 Signing time: Sat 15 Feb 2025 07:19:11 +0000 Manifest this update: Sat 15 Feb 2025 07:19:10 +0000 Manifest next update: Sat 22 Feb 2025 07:19:10 +0000 Files and hashes: 1: XiM50eqvU0mhOKR5fagtDrTfqew.crl (hash: ChBpeePnp8BEgsgSNOwkj2qcuR9QRXXsY1ZtAk9/1ig=) 2: D161B1F0EA0411EE98A86A13C4F9AE02.roa (hash: f2pihyA1YpP2RflE8vg3Re0S4oO3efRwgxKNq8an+xI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.crl rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XiM50eqvU0mhOKR5fagtDrTfqew.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 167 (0xa7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918CFAD Validity Not Before: Feb 15 07:19:10 2025 GMT Not After : Feb 22 07:19:10 2025 GMT Subject: CN=67b03fef-5289 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:42:32:d8:8f:c3:5a:50:33:34:e2:96:83:e7: 53:27:ea:22:0f:8f:ae:2b:a1:5c:57:78:f1:58:e9: 88:a2:8b:98:e3:07:74:a1:44:16:2c:6b:28:33:ce: 09:da:df:00:c3:85:3a:b1:06:27:75:cc:2c:36:8d: c8:0c:ad:57:fe:ff:ad:89:d9:82:9e:6b:b1:cd:f7: 44:8c:99:5c:d7:de:3e:40:43:6f:4f:c6:17:26:43: c9:97:19:62:df:8c:37:d1:98:16:5a:1c:a5:7e:b9: 80:5d:db:47:93:da:02:67:21:dc:a6:ad:b6:14:31: be:de:5c:6c:e1:c2:03:ab:ec:58:a4:b8:39:1e:2c: b4:e5:2f:53:4d:fb:48:79:da:13:76:0a:c0:4f:cc: a3:b7:c0:34:5d:26:49:2e:c4:f8:f0:d4:33:dc:0c: 6d:2b:db:25:03:b5:cc:30:c7:8b:b3:8c:d4:85:37: 29:f9:50:5d:61:81:19:df:44:02:c6:d7:ee:f4:94: fb:5b:da:e0:97:75:80:c2:bf:46:bf:23:f0:26:5a: 70:16:0c:16:65:77:41:67:aa:e6:65:f5:ab:48:54: 5f:b6:18:1f:cd:02:08:d4:bc:49:35:22:38:79:98: 85:40:19:57:3e:47:dc:07:e0:c7:cd:c8:7f:40:ff: e0:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:50:2C:23:3F:51:16:2D:E2:48:25:10:96:69:94:0C:28:70:CF:94 X509v3 Authority Key Identifier: keyid:5E:23:39:D1:EA:AF:53:49:A1:38:A4:79:7D:A8:2D:0E:B4:DF:A9:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XiM50eqvU0mhOKR5fagtDrTfqew.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:bd:c4:2e:81:b9:85:ba:71:46:1b:40:01:db:80:b5:83:2d: 5d:21:09:69:77:44:74:22:07:8a:0f:18:40:ad:30:70:5c:27: 9f:55:29:90:53:e2:c1:d2:0f:60:eb:dc:17:d2:e9:f5:dd:f6: 56:e7:d7:77:19:fd:57:31:bc:6c:f4:88:f0:78:68:e2:7b:e7: cb:7a:0b:44:6a:b6:91:1a:5d:a4:37:89:43:ae:25:68:81:f8: a3:56:fa:ee:e6:92:1b:f5:d7:c7:ef:43:dd:9d:70:20:e4:21: cb:b2:8a:84:f9:3e:e5:19:fe:2f:2b:81:45:30:3a:21:c2:bb: bb:e4:39:90:59:ea:d6:12:7c:c3:04:a4:a0:f8:6e:ba:e3:b1: d8:d9:a8:be:90:50:85:96:bb:98:37:d2:73:a8:60:62:4e:e0: 91:b0:9e:04:d1:c2:f5:ce:0d:44:2c:1a:87:49:f6:af:3b:9e: 03:03:61:62:e2:5f:a3:85:d1:3c:d4:dc:c4:7a:69:6d:c5:40: bf:23:ab:d1:ba:e4:8e:09:f1:93:ca:d8:e0:b5:56:4a:db:1f: 52:35:8b:f3:77:44:e7:7c:c3:9b:1f:bd:5a:ea:5d:dd:2a:6e: ce:70:59:36:2f:a2:87:05:79:1d:8f:42:a6:8c:df:ae:93:cf: 2b:f6:63:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OENGQUQxMTAvBgNVBAUTKDVFMjMzOUQxRUFBRjUzNDlBMTM4QTQ3OTdEQTgyRDBF QjRERkE5RUMwHhcNMjUwMjE1MDcxOTEwWhcNMjUwMjIyMDcxOTEwWjAYMRYwFAYD VQQDEw02N2IwM2ZlZi01Mjg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2EIy2I/DWlAzNOKWg+dTJ+oiD4+uK6FcV3jxWOmIoouY4wd0oUQWLGsoM84J 2t8Aw4U6sQYndcwsNo3IDK1X/v+tidmCnmuxzfdEjJlc194+QENvT8YXJkPJlxli 34w30ZgWWhylfrmAXdtHk9oCZyHcpq22FDG+3lxs4cIDq+xYpLg5Hiy05S9TTftI edoTdgrAT8yjt8A0XSZJLsT48NQz3AxtK9slA7XMMMeLs4zUhTcp+VBdYYEZ30QC xtfu9JT7W9rgl3WAwr9GvyPwJlpwFgwWZXdBZ6rmZfWrSFRfthgfzQII1LxJNSI4 eZiFQBlXPkfcB+DHzch/QP/g7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBNQLCM/ URYt4kglEJZplAwocM+UMB8GA1UdIwQYMBaAFF4jOdHqr1NJoTikeX2oLQ6036ns MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Q0ZBRC80QzkwMEYxQ0VB MDQxMUVFOTJEMTA2MTFDNEY5QUUwMi9YaU01MGVxdlUwbWhPS1I1ZmFndERyVGZx ZXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1hpTTUwZXF2VTBtaE9LUjVmYWd0RHJUZnFldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Q0ZBRC80QzkwMEYxQ0VBMDQxMUVFOTJEMTA2MTFDNEY5QUUwMi9YaU01MGVxdlUw bWhPS1I1ZmFndERyVGZxZXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQvcQugbmFunFGG0AB24C1gy1dIQlpd0R0IgeKDxhArTBwXCefVSmQ U+LB0g9g69wX0un13fZW59d3Gf1XMbxs9IjweGjie+fLegtEaraRGl2kN4lDriVo gfijVvru5pIb9dfH70PdnXAg5CHLsoqE+T7lGf4vK4FFMDohwru75DmQWerWEnzD BKSg+G6647HY2ai+kFCFlruYN9JzqGBiTuCRsJ4E0cL1zg1ELBqHSfavO54DA2Fi 4l+jhdE81NzEemltxUC/I6vRuuSOCfGTytjgtVZK2x9SNYvzd0TnfMObH71a6l3d Km7OcFk2L6KHBXkdj0KmjN+uk88r9mPT -----END CERTIFICATE-----Generated at Sun Feb 16 15:33:09 2025 by rpki-client