$ rpki-client -vvf rpki.apnic.net/member_repository/A918FEF6/1986B9D832FE11EB85BAD157C4F9AE02/sXBCw3IXHA9BRv78RNHbqlIjhxs.mft File: sXBCw3IXHA9BRv78RNHbqlIjhxs.mft (raw, json) Hash identifier: G7J46+P2iawDGNPDIozCxu0gl7sCeqGRlnJ0hr7yCTk= Subject key identifier: E2:52:BC:EC:B0:B3:18:74:8A:BE:E3:3E:39:07:5F:06:30:BF:83:C9 Authority key identifier: B1:70:42:C3:72:17:1C:0F:41:46:FE:FC:44:D1:DB:AA:52:23:87:1B Certificate issuer: /CN=A918FEF6/serialNumber=B17042C372171C0F4146FEFC44D1DBAA5223871B Certificate serial: 0733 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sXBCw3IXHA9BRv78RNHbqlIjhxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FEF6/1986B9D832FE11EB85BAD157C4F9AE02/sXBCw3IXHA9BRv78RNHbqlIjhxs.mft Manifest number: 072E Signing time: Fri 06 Jun 2025 21:50:54 +0000 Manifest this update: Fri 06 Jun 2025 21:50:53 +0000 Manifest next update: Fri 13 Jun 2025 21:50:53 +0000 Files and hashes: 1: sXBCw3IXHA9BRv78RNHbqlIjhxs.crl (hash: ky8rlUnHQKd3avZ9BzEAZVOW2OqR7+N6wcaQK8NAdbI=) 2: 3A9A3904330011EBA08B865DC4F9AE02.roa (hash: 3vNGkA3tCUjQbATswchBY3GI0Vd54z+gZRifmc/PxUs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FEF6/1986B9D832FE11EB85BAD157C4F9AE02/sXBCw3IXHA9BRv78RNHbqlIjhxs.crl rsync://rpki.apnic.net/member_repository/A918FEF6/1986B9D832FE11EB85BAD157C4F9AE02/sXBCw3IXHA9BRv78RNHbqlIjhxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sXBCw3IXHA9BRv78RNHbqlIjhxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 21:50:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1843 (0x733) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FEF6, serialNumber=B17042C372171C0F4146FEFC44D1DBAA5223871B Validity Not Before: Jun 6 21:50:53 2025 GMT Not After : Jun 13 21:50:53 2025 GMT Subject: CN=684362bd-4482 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:b1:0b:a3:9d:9b:21:b9:ee:9c:ec:d5:5d:7b: 49:9e:b2:b1:32:8f:49:84:35:9f:fc:56:7c:38:19: 94:ad:0f:6f:74:88:fd:93:8d:0d:74:a9:95:84:86: 61:41:01:76:57:d1:d5:cf:7f:22:43:55:e8:0e:12: fc:95:85:18:32:3e:46:ce:7c:41:99:4b:0b:c4:25: 73:9e:f5:3a:41:f0:11:6f:1a:45:58:c6:dc:dd:44: 6c:43:36:3f:9b:82:33:5c:ea:98:25:de:63:6c:a8: ac:8d:8c:3b:87:10:32:4c:82:90:3c:23:8c:44:39: 5e:55:2c:0d:b2:d2:85:5d:c6:41:91:fb:08:b5:61: 40:7d:c8:05:cd:c3:87:30:21:9a:1e:05:b6:04:0d: a9:e6:59:ab:ca:0b:f5:e6:d6:02:ed:9b:6a:84:f5: 54:c8:76:e5:9c:82:01:03:ec:01:bd:e7:7c:66:7e: 3b:b0:82:ad:7f:15:c2:2d:4d:b7:18:19:98:3b:26: 29:d4:ad:7b:28:79:b3:b3:8a:c9:3e:55:eb:3f:03: 10:0e:da:2a:a9:5d:bf:f3:30:08:ca:3b:26:a9:15: 68:06:c4:4c:2b:f3:81:46:ae:74:34:db:42:9c:16: 6f:f9:dc:f3:0b:3a:66:fc:a2:07:36:d1:73:24:4d: 36:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:52:BC:EC:B0:B3:18:74:8A:BE:E3:3E:39:07:5F:06:30:BF:83:C9 X509v3 Authority Key Identifier: keyid:B1:70:42:C3:72:17:1C:0F:41:46:FE:FC:44:D1:DB:AA:52:23:87:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FEF6/1986B9D832FE11EB85BAD157C4F9AE02/sXBCw3IXHA9BRv78RNHbqlIjhxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sXBCw3IXHA9BRv78RNHbqlIjhxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FEF6/1986B9D832FE11EB85BAD157C4F9AE02/sXBCw3IXHA9BRv78RNHbqlIjhxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:e6:2b:40:57:aa:0c:6a:a4:45:e6:5a:f4:d9:0e:e0:7c:2a: 34:bb:e2:40:04:ad:fb:07:16:89:88:3c:fa:aa:da:d8:61:86: 1c:f1:aa:f7:c3:83:eb:f0:50:2c:52:7c:9b:95:7c:8c:33:ea: b7:ce:46:2b:3f:c4:9e:6b:ae:bc:45:66:50:8d:be:c7:1c:5d: ff:17:cc:26:6a:b8:5c:47:9d:56:3d:d9:1c:74:03:d6:f5:0f: 0b:e4:29:c6:a4:8a:9a:f2:59:45:e6:4d:1e:20:61:16:df:dc: cc:3d:01:22:f9:65:ec:c1:67:4e:f9:69:ff:7d:96:c0:f0:b6: 9c:8b:13:c0:6c:8a:71:fb:3a:f4:d8:f6:1d:6e:08:1d:0d:51: 4f:08:43:00:6e:2e:9d:67:c0:6c:79:9f:2f:d1:80:09:12:7c: e7:f2:32:16:c0:24:49:47:48:23:8e:44:99:c4:f3:7d:b1:40: 3b:fb:bb:ad:b5:b7:0e:7e:e5:3d:25:0a:64:8b:b9:f5:b2:a9: 34:4f:c7:51:89:db:d6:f6:30:06:72:26:d9:c1:80:a2:5d:a3: 91:ec:05:d0:85:4f:d6:8f:c8:cc:08:3a:37:1a:f1:9c:12:65: 5f:4e:b2:e6:08:87:9c:cd:9e:2b:7b:92:bd:b9:20:5b:78:40: 34:f9:0d:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBzMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZFRjYxMTAvBgNVBAUTKEIxNzA0MkMzNzIxNzFDMEY0MTQ2RkVGQzQ0RDFEQkFB NTIyMzg3MUIwHhcNMjUwNjA2MjE1MDUzWhcNMjUwNjEzMjE1MDUzWjAYMRYwFAYD VQQDEw02ODQzNjJiZC00NDgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1LELo52bIbnunOzVXXtJnrKxMo9JhDWf/FZ8OBmUrQ9vdIj9k40NdKmVhIZh QQF2V9HVz38iQ1XoDhL8lYUYMj5GznxBmUsLxCVznvU6QfARbxpFWMbc3URsQzY/ m4IzXOqYJd5jbKisjYw7hxAyTIKQPCOMRDleVSwNstKFXcZBkfsItWFAfcgFzcOH MCGaHgW2BA2p5lmrygv15tYC7ZtqhPVUyHblnIIBA+wBved8Zn47sIKtfxXCLU23 GBmYOyYp1K17KHmzs4rJPlXrPwMQDtoqqV2/8zAIyjsmqRVoBsRMK/OBRq50NNtC nBZv+dzzCzpm/KIHNtFzJE024wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOJSvOyw sxh0ir7jPjkHXwYwv4PJMB8GA1UdIwQYMBaAFLFwQsNyFxwPQUb+/ETR26pSI4cb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkVGNi8xOTg2QjlEODMy RkUxMUVCODVCQUQxNTdDNEY5QUUwMi9zWEJDdzNJWEhBOUJSdjc4Uk5IYnFsSWpo eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NYQkN3M0lYSEE5QlJ2NzhSTkhicWxJamh4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkVGNi8xOTg2QjlEODMyRkUxMUVCODVCQUQxNTdDNEY5QUUwMi9zWEJDdzNJWEhB OUJSdjc4Uk5IYnFsSWpoeHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAH5itAV6oMaqRF5lr02Q7gfCo0u+JABK37BxaJiDz6qtrYYYYc8ar3 w4Pr8FAsUnyblXyMM+q3zkYrP8Sea668RWZQjb7HHF3/F8wmarhcR51WPdkcdAPW 9Q8L5CnGpIqa8llF5k0eIGEW39zMPQEi+WXswWdO+Wn/fZbA8LacixPAbIpx+zr0 2PYdbggdDVFPCEMAbi6dZ8BseZ8v0YAJEnzn8jIWwCRJR0gjjkSZxPN9sUA7+7ut tbcOfuU9JQpki7n1sqk0T8dRidvW9jAGcibZwYCiXaOR7AXQhU/Wj8jMCDo3GvGc EmVfTrLmCIeczZ4re5K9uSBbeEA0+Q3m -----END CERTIFICATE-----Generated at Sat Jun 7 13:06:27 2025 by rpki-client