$ rpki-client -vvf rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft File: xNdQnlMs4vbky06OXDwia6MVTm8.mft (raw, json) Hash identifier: 3wEsDBtxjBh5rEfo9RUqQzCN9ulsw+Tv/JtHEF8u7vs= Subject key identifier: 12:F1:5A:C5:E8:A1:92:8F:25:20:8B:27:12:3D:1D:94:68:5A:F8:4F Authority key identifier: C4:D7:50:9E:53:2C:E2:F6:E4:CB:4E:8E:5C:3C:22:6B:A3:15:4E:6F Certificate issuer: /CN=A912AF0B/serialNumber=C4D7509E532CE2F6E4CB4E8E5C3C226BA3154E6F Certificate serial: 108C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNdQnlMs4vbky06OXDwia6MVTm8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft Manifest number: 1071 Signing time: Thu 24 Apr 2025 17:21:54 +0000 Manifest this update: Thu 24 Apr 2025 17:21:53 +0000 Manifest next update: Thu 01 May 2025 17:21:53 +0000 Files and hashes: 1: xNdQnlMs4vbky06OXDwia6MVTm8.crl (hash: nTU3c6wqX8F06mQMZ+FK/w2Gil9gPjIzNZJevoom71M=) 2: 21151EF0A8C411EC8F560C42C4F9AE02.roa (hash: eTNVjRr/aSchkaouKrk/Oq/42y0wRZtV7uyB0zYEbrA=) 3: 1803FFC65E5F11EBBE37FA4CC4F9AE02.roa (hash: eUt1E2TLbdx/xbzWyASK22uYzePTztkTbdss+ADEaLg=) 4: 9FC6F664BE2A11EFA17DA82CC4F9AE02.roa (hash: AaORu8sCMwbv8JHtt5/RekZXiyN9Tg46Q6eaQZHNsHU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.crl rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNdQnlMs4vbky06OXDwia6MVTm8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:21:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4236 (0x108c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912AF0B, serialNumber=C4D7509E532CE2F6E4CB4E8E5C3C226BA3154E6F Validity Not Before: Apr 24 17:21:53 2025 GMT Not After : May 1 17:21:53 2025 GMT Subject: CN=680a7332-faab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ba:88:a6:36:ff:ed:7c:26:cc:ac:2a:a8:28: 28:aa:ed:0b:b7:5e:d8:f7:93:c4:72:58:17:fe:f3: c8:22:20:0c:ea:07:60:8e:a8:a9:69:be:f1:de:21: e9:e1:b3:10:ce:2d:fb:2d:6e:2d:c2:f3:47:44:e5: 83:01:51:15:59:90:a2:4e:6a:2e:34:02:ab:6d:95: b2:3f:7e:35:55:35:ef:75:e2:6a:bb:92:48:0d:38: 20:20:4f:6f:7d:fc:b1:d7:b7:65:57:74:5c:89:1b: 71:be:88:33:93:82:c7:d0:5c:df:b5:79:06:b3:f7: e9:e2:80:ca:dc:1a:2d:d0:f1:1b:b9:fd:ee:b9:09: 91:52:04:7b:cf:20:6d:f2:06:ae:1c:65:0e:ce:1c: fe:9d:96:8e:67:c8:9e:5b:c4:e2:97:a5:b7:94:f5: 89:ff:98:6f:70:55:db:7b:cb:9b:70:e1:bd:a5:5a: 34:94:46:b1:58:69:e1:2f:0c:b8:f9:f5:d9:4a:95: d3:bf:98:8b:ea:4a:49:27:2a:01:7d:e6:c2:21:09: 30:6f:be:9f:92:9c:d4:50:4f:e1:a6:fa:22:1e:9a: bb:c4:ef:3c:d1:1f:d9:b9:9a:b2:a8:7d:9c:6e:c8: 22:28:7b:37:18:66:c4:e6:d3:3b:84:1d:e1:6b:22: fc:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:F1:5A:C5:E8:A1:92:8F:25:20:8B:27:12:3D:1D:94:68:5A:F8:4F X509v3 Authority Key Identifier: keyid:C4:D7:50:9E:53:2C:E2:F6:E4:CB:4E:8E:5C:3C:22:6B:A3:15:4E:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNdQnlMs4vbky06OXDwia6MVTm8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:9d:c3:76:48:a4:a3:b2:9f:85:bb:d1:80:ec:fb:f0:fc:54: a1:90:79:2a:40:6e:47:ba:65:4a:5d:31:0b:ea:32:50:ac:10: 8c:62:5a:fe:28:63:35:61:98:47:9a:47:86:ec:b7:23:69:b9: 76:6d:d8:b8:c1:f1:e2:f3:b9:fc:88:52:d3:9b:9f:78:a7:ba: c5:d2:76:66:68:da:a3:b9:ed:2f:96:8f:5f:48:3f:42:1c:f7: a9:3e:6f:54:03:37:d0:5e:15:28:32:06:d8:08:2c:ed:6a:d0: 35:72:a9:cd:55:39:c7:f9:b3:e5:f8:fc:4e:48:92:38:a9:f5: 1a:c5:d5:4a:69:b3:ec:7a:ac:de:f8:6e:12:65:cc:db:c0:ba: 4d:75:94:47:c5:fb:e5:09:3f:dc:29:b5:1b:2a:d4:82:f4:81: 51:38:ee:f8:cc:e1:6c:db:f6:35:92:99:46:23:47:d1:13:94: 6f:f9:eb:e1:83:eb:45:0b:b0:74:b3:2f:23:81:99:ee:60:e5: d6:d2:8c:96:aa:2c:eb:af:e5:bb:3b:97:2f:79:a8:2f:d1:ce: 01:15:a8:cc:79:99:b0:0d:16:83:ef:f3:88:d5:07:90:49:dc: 15:5a:44:0f:d2:d7:ab:06:18:6a:3e:bd:f3:44:6e:92:58:dc: 91:e1:3c:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkFGMEIxMTAvBgNVBAUTKEM0RDc1MDlFNTMyQ0UyRjZFNENCNEU4RTVDM0MyMjZC QTMxNTRFNkYwHhcNMjUwNDI0MTcyMTUzWhcNMjUwNTAxMTcyMTUzWjAYMRYwFAYD VQQDEw02ODBhNzMzMi1mYWFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy7qIpjb/7XwmzKwqqCgoqu0Lt17Y95PEclgX/vPIIiAM6gdgjqipab7x3iHp 4bMQzi37LW4twvNHROWDAVEVWZCiTmouNAKrbZWyP341VTXvdeJqu5JIDTggIE9v ffyx17dlV3RciRtxvogzk4LH0FzftXkGs/fp4oDK3Bot0PEbuf3uuQmRUgR7zyBt 8gauHGUOzhz+nZaOZ8ieW8Til6W3lPWJ/5hvcFXbe8ubcOG9pVo0lEaxWGnhLwy4 +fXZSpXTv5iL6kpJJyoBfebCIQkwb76fkpzUUE/hpvoiHpq7xO880R/ZuZqyqH2c bsgiKHs3GGbE5tM7hB3hayL8NQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBLxWsXo oZKPJSCLJxI9HZRoWvhPMB8GA1UdIwQYMBaAFMTXUJ5TLOL25MtOjlw8ImujFU5v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQUYwQi9CNTk0MTlEMjMy RUQxMUU5OUM5NTRDMjRDNEY5QUUwMi94TmRRbmxNczR2Ymt5MDZPWER3aWE2TVZU bTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hOZFFubE1zNHZia3kwNk9YRHdpYTZNVlRtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QUYwQi9CNTk0MTlEMjMyRUQxMUU5OUM5NTRDMjRDNEY5QUUwMi94TmRRbmxNczR2 Ymt5MDZPWER3aWE2TVZUbTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClncN2SKSjsp+Fu9GA7Pvw/FShkHkqQG5HumVKXTEL6jJQrBCMYlr+ KGM1YZhHmkeG7Lcjabl2bdi4wfHi87n8iFLTm594p7rF0nZmaNqjue0vlo9fSD9C HPepPm9UAzfQXhUoMgbYCCztatA1cqnNVTnH+bPl+PxOSJI4qfUaxdVKabPseqze +G4SZczbwLpNdZRHxfvlCT/cKbUbKtSC9IFROO74zOFs2/Y1kplGI0fRE5Rv+evh g+tFC7B0sy8jgZnuYOXW0oyWqizrr+W7O5cveagv0c4BFajMeZmwDRaD7/OI1QeQ SdwVWkQP0terBhhqPr3zRG6SWNyR4Tyg -----END CERTIFICATE-----Generated at Sat Apr 26 14:08:13 2025 by rpki-client