$ rpki-client -vvf rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft File: xCIPUDVWR7fICyzovHEmqsLiLTc.mft (raw, json) Hash identifier: +ceP8WHQ1rDkXXOqi5/r7S1veT0xp73eEZqdnhEj26Y= Subject key identifier: BA:71:84:13:C3:AC:01:2A:19:88:05:83:4C:5A:F2:7A:35:3A:35:D2 Authority key identifier: C4:22:0F:50:35:56:47:B7:C8:0B:2C:E8:BC:71:26:AA:C2:E2:2D:37 Certificate issuer: /CN=A919D64D/serialNumber=C4220F50355647B7C80B2CE8BC7126AAC2E22D37 Certificate serial: 34B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft Manifest number: 349E Signing time: Sat 31 May 2025 14:18:28 +0000 Manifest this update: Sat 31 May 2025 14:18:27 +0000 Manifest next update: Sat 07 Jun 2025 14:18:27 +0000 Files and hashes: 1: xCIPUDVWR7fICyzovHEmqsLiLTc.crl (hash: C00Conu5qsExTnSuK2gc9aaknardsU8JVhbSG+PGBm4=) 2: 2C5F8752A10D11EFB9BE8476C4F9AE02.roa (hash: Iv390Bd/MJyqbzwOB0bqCA/PrLBJuVtYX/m4XRUDX5k=) 3: 8C2774CA0F3511EF93020023C4F9AE02.roa (hash: jfY5GTg8hmmhErbL9iwX+gxSO1reSXWac9mVO/Xqq1g=) 4: D7ABA864DFE611ED8872DE0EC4F9AE02.roa (hash: 6UO6N8yoyg6+8CvpDMt8iCmfSbV26PbG92dRF9r0otc=) 5: F8E58782A10C11EFA3C0F375C4F9AE02.roa (hash: joxi3OaPnE1De2CkoKX8c3yAH5f2DPtnnESV+trPxbM=) 6: 24C4305A7CD911EEB0B4C962C4F9AE02.roa (hash: 0Wsr5VamrOSe1PRZDclYr+ROoB9PidSlGQIwmrfuBe4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.crl rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 14:18:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13492 (0x34b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D64D, serialNumber=C4220F50355647B7C80B2CE8BC7126AAC2E22D37 Validity Not Before: May 31 14:18:27 2025 GMT Not After : Jun 7 14:18:27 2025 GMT Subject: CN=683b0fb4-b1d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:84:d1:7a:10:2f:c6:e0:f7:e5:2b:36:f8:35: ec:96:cb:2c:26:75:b4:2d:0f:90:67:4a:ee:4a:f2: 06:75:3c:92:b7:4a:1c:05:98:a1:15:9c:f3:00:ec: 5e:17:5f:21:8b:56:28:57:35:dc:76:49:02:9f:d0: dd:2d:20:41:63:76:65:f6:e3:36:88:f3:23:03:b7: 31:f5:b6:30:5b:67:0f:f1:8e:c4:6a:7c:b7:43:74: 32:0e:57:db:ce:c9:83:57:67:98:36:89:77:57:80: 10:b5:b0:39:7c:c4:eb:29:2f:35:ca:22:a1:83:1c: e6:71:a8:12:ad:d1:2c:48:1b:9e:f4:4e:5e:c8:d8: e6:13:23:ad:d7:3d:84:ef:b5:73:79:2c:39:2b:39: d7:91:9a:15:e0:6f:fe:d1:17:b0:ca:af:d6:11:21: 53:7e:3e:b0:6f:0d:62:70:17:b4:62:29:99:ec:6c: 49:32:56:aa:a9:f6:6c:81:56:74:6e:59:24:8b:db: cb:71:c3:fc:1d:2c:a4:20:34:eb:73:24:e5:03:46: fc:f3:b4:df:dd:5b:5e:db:b2:2f:1a:b4:68:42:58: 30:71:98:55:3d:c4:46:8c:c3:59:ae:d3:19:08:a8: 82:92:ac:66:39:cb:3b:4e:85:e8:7c:4b:2e:c8:7a: 1d:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:71:84:13:C3:AC:01:2A:19:88:05:83:4C:5A:F2:7A:35:3A:35:D2 X509v3 Authority Key Identifier: keyid:C4:22:0F:50:35:56:47:B7:C8:0B:2C:E8:BC:71:26:AA:C2:E2:2D:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:e8:e1:04:76:d4:60:65:37:12:0a:b2:15:6a:fb:64:ce:ec: d1:7f:2d:47:e6:9b:7a:21:a9:b7:02:0d:1a:65:e6:10:12:e7: de:6b:c8:f0:41:76:c9:3d:1d:98:43:c0:ed:36:33:52:96:a7: b0:e8:5b:6f:98:7a:09:2a:d3:f7:f9:56:98:29:08:54:76:24: 6e:98:b1:7f:9c:fc:09:ab:1d:26:e0:ca:ad:0f:5d:e1:a4:02: 0f:9b:a1:b0:47:58:82:3b:aa:63:c9:db:77:77:b8:9f:40:0d: 10:29:56:2b:98:6a:d2:e5:69:4f:b6:8d:12:e4:56:5f:b4:84: 47:c5:7e:2d:a8:93:b2:6e:bc:88:95:04:b9:f1:0a:ea:0f:e2: 63:60:b5:36:00:32:88:24:15:2a:b5:5b:c7:40:98:e6:d2:8d: fe:5a:1a:e5:6d:7a:b0:e2:98:a3:f6:bb:5b:11:9a:0a:7b:53: c2:25:d0:4c:f7:bb:19:00:e0:b4:fe:f0:98:cf:78:12:d1:c9: 05:e1:05:cd:71:cc:84:93:8c:f2:5c:aa:7c:51:93:cf:67:92: 6c:ce:58:3b:62:31:f5:c7:16:7c:0f:31:a9:ba:94:df:22:8a: 85:61:e7:76:bb:6d:12:99:30:2d:a9:00:04:3e:4b:df:9b:c4: e3:34:42:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQ2NEQxMTAvBgNVBAUTKEM0MjIwRjUwMzU1NjQ3QjdDODBCMkNFOEJDNzEyNkFB QzJFMjJEMzcwHhcNMjUwNTMxMTQxODI3WhcNMjUwNjA3MTQxODI3WjAYMRYwFAYD VQQDEw02ODNiMGZiNC1iMWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAroTRehAvxuD35Ss2+DXslsssJnW0LQ+QZ0ruSvIGdTySt0ocBZihFZzzAOxe F18hi1YoVzXcdkkCn9DdLSBBY3Zl9uM2iPMjA7cx9bYwW2cP8Y7Eany3Q3QyDlfb zsmDV2eYNol3V4AQtbA5fMTrKS81yiKhgxzmcagSrdEsSBue9E5eyNjmEyOt1z2E 77VzeSw5KznXkZoV4G/+0Rewyq/WESFTfj6wbw1icBe0YimZ7GxJMlaqqfZsgVZ0 blkki9vLccP8HSykIDTrcyTlA0b887Tf3Vte27IvGrRoQlgwcZhVPcRGjMNZrtMZ CKiCkqxmOcs7ToXofEsuyHod7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLpxhBPD rAEqGYgFg0xa8no1OjXSMB8GA1UdIwQYMBaAFMQiD1A1Vke3yAss6LxxJqrC4i03 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDY0RC9EOTMzM0ZFNDFE NkUxMUUyQTg1MDgwQjAwOEIwMkNEMi94Q0lQVURWV1I3ZklDeXpvdkhFbXFzTGlM VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hDSVBVRFZXUjdmSUN5em92SEVtcXNMaUxUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDY0RC9EOTMzM0ZFNDFENkUxMUUyQTg1MDgwQjAwOEIwMkNEMi94Q0lQVURWV1I3 ZklDeXpvdkhFbXFzTGlMVGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBB6OEEdtRgZTcSCrIVavtkzuzRfy1H5pt6Iam3Ag0aZeYQEufea8jw QXbJPR2YQ8DtNjNSlqew6FtvmHoJKtP3+VaYKQhUdiRumLF/nPwJqx0m4MqtD13h pAIPm6GwR1iCO6pjydt3d7ifQA0QKVYrmGrS5WlPto0S5FZftIRHxX4tqJOybryI lQS58QrqD+JjYLU2ADKIJBUqtVvHQJjm0o3+WhrlbXqw4pij9rtbEZoKe1PCJdBM 97sZAOC0/vCYz3gS0ckF4QXNccyEk4zyXKp8UZPPZ5Jszlg7YjH1xxZ8DzGpupTf IoqFYed2u20SmTAtqQAEPkvfm8TjNEL7 -----END CERTIFICATE-----Generated at Sat May 31 16:31:26 2025 by rpki-client