$ rpki-client -vvf rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.mft File: X8G2OMzN_5nWRFZVKcgHCGhomzE.mft (raw, json) Hash identifier: jj0+g6n8KFOnamO+rhc993Oo6IjNlqtdEqNK5fACPIc= Subject key identifier: 87:D8:B7:41:1D:2A:D6:AB:BA:66:93:FA:B6:40:BC:FE:8D:13:7E:74 Authority key identifier: 5F:C1:B6:38:CC:CD:FF:99:D6:44:56:55:29:C8:07:08:68:68:9B:31 Certificate issuer: /CN=A918E28E/serialNumber=5FC1B638CCCDFF99D644565529C8070868689B31 Certificate serial: 32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8G2OMzN_5nWRFZVKcgHCGhomzE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.mft Manifest number: 31 Signing time: Sat 31 May 2025 07:13:47 +0000 Manifest this update: Sat 31 May 2025 07:13:47 +0000 Manifest next update: Sat 07 Jun 2025 07:13:47 +0000 Files and hashes: 1: X8G2OMzN_5nWRFZVKcgHCGhomzE.crl (hash: MwbtSk6apbznhlHsKaNoglqAcbjuWOr95oh8JZMhZQw=) 2: AA456842107211F09A9E631FC4F9AE02.roa (hash: BO96CEY+h3kyCGROfLPYwk1rs1fVmSzj2xY5TwnQPlM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.crl rsync://rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8G2OMzN_5nWRFZVKcgHCGhomzE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:13:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50 (0x32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E28E, serialNumber=5FC1B638CCCDFF99D644565529C8070868689B31 Validity Not Before: May 31 07:13:47 2025 GMT Not After : Jun 7 07:13:47 2025 GMT Subject: CN=683aac2b-ee07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:67:61:9c:a4:49:e2:a1:ed:5b:8d:b1:74:cb: 83:31:b0:5a:6c:1b:95:0c:b7:2f:4e:8f:8e:83:df: 23:d8:58:73:08:0b:0a:73:86:99:37:f3:67:68:38: 94:62:2b:5b:48:9f:8a:b6:16:0e:d0:a1:8f:8d:ac: ac:57:5f:0b:04:7b:7a:bd:4c:43:b0:d4:63:5c:2c: b6:1b:a1:95:b0:eb:15:59:4f:f2:d0:b4:f1:25:25: ff:ea:05:d1:f4:21:9d:5a:16:4d:a5:a6:85:7e:5f: 90:44:91:37:ff:6e:17:d2:68:5b:49:83:78:0b:4c: af:b4:3c:a1:84:31:ae:2d:51:da:09:42:30:cb:96: cd:a7:f5:5f:0f:a4:70:de:c4:00:1b:15:a4:58:f2: 50:9d:d4:9e:0f:00:f2:b3:ae:ce:eb:ad:f4:3b:a7: 7d:4c:8a:61:23:8e:6d:ee:43:87:84:77:63:73:fa: f9:e2:c1:3d:68:98:f3:c7:6d:22:d7:15:75:01:19: 47:0a:84:28:fe:d1:da:88:9a:01:c0:c6:98:42:66: 66:27:8d:95:6b:d9:d3:8c:59:86:d7:4d:e9:09:29: 70:27:d7:e5:b4:08:1f:bd:dc:d3:a0:a1:d8:25:99: 3c:f4:37:99:73:30:42:a5:ae:c2:3a:75:ac:cb:c2: fa:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:D8:B7:41:1D:2A:D6:AB:BA:66:93:FA:B6:40:BC:FE:8D:13:7E:74 X509v3 Authority Key Identifier: keyid:5F:C1:B6:38:CC:CD:FF:99:D6:44:56:55:29:C8:07:08:68:68:9B:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8G2OMzN_5nWRFZVKcgHCGhomzE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:ab:2b:79:61:67:9b:f8:48:5f:61:bb:7e:90:44:49:ad:da: 97:ed:31:b6:75:85:f8:2b:a1:b7:26:df:11:cc:35:e3:04:8c: 81:c0:b0:ac:58:14:04:36:d0:3c:b2:0c:2c:24:4c:61:85:62: ac:99:40:58:1d:26:95:48:9f:78:69:03:39:b9:16:b6:ca:a7: 22:f3:99:f9:41:21:18:b0:77:af:ab:f7:47:2c:88:11:6a:18: 03:60:e2:45:ba:d9:62:02:35:5c:8e:c3:26:a9:85:52:e1:3c: 0d:3e:0b:82:99:7c:ed:fe:fd:0c:0d:df:05:b1:9b:b6:7d:2e: 3e:01:67:28:26:01:e2:52:97:9c:7c:e9:75:6b:48:3f:a5:c0: ea:18:9f:a7:8e:5c:fd:ff:a3:5f:f0:4d:c6:4f:7d:2d:e1:71: c8:d1:f4:2d:bc:d3:79:65:b5:3b:31:e7:d9:66:0e:55:fc:a4: 2c:73:22:37:74:d0:d2:54:67:29:22:e4:20:2a:bb:17:af:4c: d0:1e:a8:41:77:81:63:ed:56:76:78:da:89:cb:f4:ee:4a:22: 19:bc:9c:56:a6:38:f3:d8:c0:c9:17:10:82:e8:f0:86:d9:18: be:34:1c:13:11:c5:69:4e:91:97:30:29:5c:bb:5d:98:39:a3: 6f:ef:bb:f1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RTI4RTExMC8GA1UEBRMoNUZDMUI2MzhDQ0NERkY5OUQ2NDQ1NjU1MjlDODA3MDg2 ODY4OUIzMTAeFw0yNTA1MzEwNzEzNDdaFw0yNTA2MDcwNzEzNDdaMBgxFjAUBgNV BAMTDTY4M2FhYzJiLWVlMDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCeZ2GcpEnioe1bjbF0y4MxsFpsG5UMty9Oj46D3yPYWHMICwpzhpk382doOJRi K1tIn4q2Fg7QoY+NrKxXXwsEe3q9TEOw1GNcLLYboZWw6xVZT/LQtPElJf/qBdH0 IZ1aFk2lpoV+X5BEkTf/bhfSaFtJg3gLTK+0PKGEMa4tUdoJQjDLls2n9V8PpHDe xAAbFaRY8lCd1J4PAPKzrs7rrfQ7p31MimEjjm3uQ4eEd2Nz+vniwT1omPPHbSLX FXUBGUcKhCj+0dqImgHAxphCZmYnjZVr2dOMWYbXTekJKXAn1+W0CB+93NOgodgl mTz0N5lzMEKlrsI6dazLwvoFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUh9i3QR0q 1qu6ZpP6tkC8/o0TfnQwHwYDVR0jBBgwFoAUX8G2OMzN/5nWRFZVKcgHCGhomzEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThFMjhFL0NEQTNBNzFFRjU5 QjExRUZBNEY1NzEyOEM0RjlBRTAyL1g4RzJPTXpOXzVuV1JGWlZLY2dIQ0dob216 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWDhHMk9Nek5fNW5XUkZaVktjZ0hDR2hvbXpFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThF MjhFL0NEQTNBNzFFRjU5QjExRUZBNEY1NzEyOEM0RjlBRTAyL1g4RzJPTXpOXzVu V1JGWlZLY2dIQ0dob216RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACKrK3lhZ5v4SF9hu36QREmt2pftMbZ1hfgrobcm3xHMNeMEjIHAsKxY FAQ20DyyDCwkTGGFYqyZQFgdJpVIn3hpAzm5FrbKpyLzmflBIRiwd6+r90csiBFq GANg4kW62WICNVyOwyaphVLhPA0+C4KZfO3+/QwN3wWxm7Z9Lj4BZygmAeJSl5x8 6XVrSD+lwOoYn6eOXP3/o1/wTcZPfS3hccjR9C2803lltTsx59lmDlX8pCxzIjd0 0NJUZyki5CAquxevTNAeqEF3gWPtVnZ42onL9O5KIhm8nFamOPPYwMkXEILo8IbZ GL40HBMRxWlOkZcwKVy7XZg5o2/vu/E= -----END CERTIFICATE-----Generated at Sat May 31 17:10:15 2025 by rpki-client