$ rpki-client -vvf rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft File: xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft (raw, json) Hash identifier: KHp5Hw45M8psakK6idwcybwpuc0FvJ99soTZZUl4CF8= Subject key identifier: A3:41:FA:D4:02:1C:EC:AD:FB:D7:CD:9D:0A:B9:E5:5B:05:15:2B:E5 Authority key identifier: C5:45:25:E9:70:5B:D6:9D:61:42:4D:BE:E7:B0:49:3F:5F:D6:F0:A4 Certificate issuer: /CN=A912D1D5/serialNumber=C54525E9705BD69D61424DBEE7B0493F5FD6F0A4 Certificate serial: 0198 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUUl6XBb1p1hQk2-57BJP1_W8KQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft Manifest number: 018F Signing time: Fri 25 Apr 2025 02:45:18 +0000 Manifest this update: Fri 25 Apr 2025 02:45:17 +0000 Manifest next update: Fri 02 May 2025 02:45:17 +0000 Files and hashes: 1: xUUl6XBb1p1hQk2-57BJP1_W8KQ.crl (hash: LYn8AvTMULHaJ7cGr5+WbBmJZ9dLLJX5izmQlVUfATU=) 2: 19E19DA0E5CE11EDB697BC74C4F9AE02.roa (hash: E+oIn482BPyJkmibWcETKP/96GJSMoGPWaphK0YLOX4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.crl rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUUl6XBb1p1hQk2-57BJP1_W8KQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:45:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 408 (0x198) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D1D5, serialNumber=C54525E9705BD69D61424DBEE7B0493F5FD6F0A4 Validity Not Before: Apr 25 02:45:17 2025 GMT Not After : May 2 02:45:17 2025 GMT Subject: CN=680af73e-a978 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:de:97:1f:85:a5:de:66:44:46:3f:59:6b:b2: df:c5:b8:a0:15:06:34:df:14:80:58:87:fd:d2:9d: a5:4d:b0:0b:5e:10:d6:13:3b:ef:16:fe:cc:97:6f: 26:30:94:9b:73:18:fb:2a:48:65:ee:30:0a:14:67: c9:e8:63:76:af:4a:28:2b:30:07:cb:df:64:3a:98: ff:45:93:c8:6f:ea:1b:72:cc:8d:92:81:d2:9a:2f: 7b:e0:aa:7a:9b:f5:5d:df:4b:3b:24:fd:0c:34:06: 24:65:61:c5:8a:e7:73:8d:a2:73:8f:16:74:bf:e4: 42:ec:73:c1:af:e3:a4:4a:2d:d7:cd:90:11:e7:df: 27:41:f5:cb:b5:f7:72:22:2c:bf:c3:f5:3b:29:18: c0:d5:8f:cd:c8:3f:00:07:c1:53:ee:1b:65:ba:c0: 95:26:de:0b:1a:3d:26:e2:5b:df:cd:71:78:7f:4b: 0c:89:51:ff:fa:fe:d8:95:16:7f:10:77:35:cb:c1: a1:1e:fc:e4:b9:6a:8b:e6:fa:da:19:37:aa:61:1b: 49:89:e5:58:6d:e8:96:52:d3:09:e3:3a:76:57:c1: ea:e5:7d:5b:29:ec:e5:e3:b3:24:3b:42:cc:9f:07: 24:96:53:6a:0e:1a:83:b9:0f:bb:cd:3f:f9:f4:bc: 9b:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:41:FA:D4:02:1C:EC:AD:FB:D7:CD:9D:0A:B9:E5:5B:05:15:2B:E5 X509v3 Authority Key Identifier: keyid:C5:45:25:E9:70:5B:D6:9D:61:42:4D:BE:E7:B0:49:3F:5F:D6:F0:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUUl6XBb1p1hQk2-57BJP1_W8KQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ca:85:b3:4a:57:3f:fe:88:7e:b7:31:d4:e6:6d:2b:fa:6e:c4: 04:4d:ad:98:3c:43:90:8b:c2:23:fa:a6:ce:45:5b:ab:ce:60: b9:fa:76:4c:55:17:cf:16:5d:30:86:53:fb:1a:9e:f6:b5:3b: 32:0e:54:a1:05:c9:a8:bb:f1:39:71:2f:6f:ba:b5:84:01:a9: 50:6b:62:13:41:e6:16:8d:d7:95:8c:8b:69:f5:31:79:6e:c7: 04:21:dc:96:ce:85:f5:05:19:a2:62:2a:a3:92:3e:c0:7a:5c: b8:01:2e:96:ec:ff:22:80:67:dd:5a:10:c6:05:18:f8:b2:fb: 6b:40:8d:0b:c3:b2:35:39:0c:12:f4:dc:7d:7f:fc:b9:da:e6: fd:aa:08:2b:e2:0b:6d:56:47:02:76:5a:85:6a:42:24:98:13: 35:10:55:6d:86:2f:fb:38:7a:50:9b:49:35:f8:a1:25:13:ee: ba:1f:45:10:28:ac:93:cc:38:56:c4:b1:35:64:3d:20:94:7d: 30:fa:ae:7a:26:93:3b:3c:65:a7:c2:8d:67:d5:07:30:bf:17: 8b:07:d6:5a:1f:4d:51:0b:e3:e9:db:fe:e3:32:f4:e3:a2:23: 19:70:9e:35:56:43:25:34:e6:33:f1:b2:10:c8:8d:66:67:98: 75:27:7e:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQxRDUxMTAvBgNVBAUTKEM1NDUyNUU5NzA1QkQ2OUQ2MTQyNERCRUU3QjA0OTNG NUZENkYwQTQwHhcNMjUwNDI1MDI0NTE3WhcNMjUwNTAyMDI0NTE3WjAYMRYwFAYD VQQDEw02ODBhZjczZS1hOTc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA696XH4Wl3mZERj9Za7LfxbigFQY03xSAWIf90p2lTbALXhDWEzvvFv7Ml28m MJSbcxj7Kkhl7jAKFGfJ6GN2r0ooKzAHy99kOpj/RZPIb+obcsyNkoHSmi974Kp6 m/Vd30s7JP0MNAYkZWHFiudzjaJzjxZ0v+RC7HPBr+OkSi3XzZAR598nQfXLtfdy Iiy/w/U7KRjA1Y/NyD8AB8FT7htlusCVJt4LGj0m4lvfzXF4f0sMiVH/+v7YlRZ/ EHc1y8GhHvzkuWqL5vraGTeqYRtJieVYbeiWUtMJ4zp2V8Hq5X1bKezl47MkO0LM nwckllNqDhqDuQ+7zT/59LybswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKNB+tQC HOyt+9fNnQq55VsFFSvlMB8GA1UdIwQYMBaAFMVFJelwW9adYUJNvuewST9f1vCk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDFENS8zNDMzNjFFRUND OEMxMUVEQTRDMUExNDNDNEY5QUUwMi94VVVsNlhCYjFwMWhRazItNTdCSlAxX1c4 S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hVVWw2WEJiMXAxaFFrMi01N0JKUDFfVzhLUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDFENS8zNDMzNjFFRUNDOEMxMUVEQTRDMUExNDNDNEY5QUUwMi94VVVsNlhCYjFw MWhRazItNTdCSlAxX1c4S1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDKhbNKVz/+iH63MdTmbSv6bsQETa2YPEOQi8Ij+qbORVurzmC5+nZM VRfPFl0whlP7Gp72tTsyDlShBcmou/E5cS9vurWEAalQa2ITQeYWjdeVjItp9TF5 bscEIdyWzoX1BRmiYiqjkj7Aely4AS6W7P8igGfdWhDGBRj4svtrQI0Lw7I1OQwS 9Nx9f/y52ub9qggr4gttVkcCdlqFakIkmBM1EFVthi/7OHpQm0k1+KElE+66H0UQ KKyTzDhWxLE1ZD0glH0w+q56JpM7PGWnwo1n1QcwvxeLB9ZaH01RC+Pp2/7jMvTj oiMZcJ41VkMlNOYz8bIQyI1mZ5h1J37c -----END CERTIFICATE-----Generated at Sat Apr 26 04:31:31 2025 by rpki-client