$ rpki-client -vvf rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.mft File: xPfznmL0ydeMXhL9wVGuTjK8mkI.mft (raw, json) Hash identifier: 5GsEui1BYUt8oflNU1FO4wwH1x7KV+iMT6ZQX6Fzkfc= Subject key identifier: 0D:CB:E2:D0:2E:0E:A0:0D:22:68:CC:55:6C:A5:3B:55:DB:93:A6:65 Authority key identifier: C4:F7:F3:9E:62:F4:C9:D7:8C:5E:12:FD:C1:51:AE:4E:32:BC:9A:42 Certificate issuer: /CN=A914B29B/serialNumber=C4F7F39E62F4C9D78C5E12FDC151AE4E32BC9A42 Certificate serial: BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPfznmL0ydeMXhL9wVGuTjK8mkI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.mft Manifest number: BA Signing time: Fri 25 Apr 2025 05:00:30 +0000 Manifest this update: Fri 25 Apr 2025 05:00:29 +0000 Manifest next update: Fri 02 May 2025 05:00:29 +0000 Files and hashes: 1: xPfznmL0ydeMXhL9wVGuTjK8mkI.crl (hash: gJOAhs2rUh+hH/fk0qTCYhfi/PJYgmm1QpqD6A7Xux8=) 2: 127604E20F8B11EF87FC5918C4F9AE02.roa (hash: 5edOTZ9WpkItw4RWOBwB3WoAQbD4XzuXBzAkLSr3s8Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.crl rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPfznmL0ydeMXhL9wVGuTjK8mkI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 191 (0xbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B29B, serialNumber=C4F7F39E62F4C9D78C5E12FDC151AE4E32BC9A42 Validity Not Before: Apr 25 05:00:29 2025 GMT Not After : May 2 05:00:29 2025 GMT Subject: CN=680b16ed-8122 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:3d:97:42:a9:ec:f0:c9:f2:63:a5:c5:85:9e: e1:9a:4d:19:51:d9:51:ac:22:2f:10:f3:fd:78:74: d2:62:ae:4b:e5:1b:71:d4:12:b3:17:30:39:c0:75: 3a:cf:5a:0a:e9:3f:fb:62:c7:89:aa:28:ab:32:f7: d9:47:43:ee:a4:44:a3:4d:f6:dc:b7:3b:dd:02:02: 72:69:95:19:5e:0f:7c:6c:56:08:f6:ba:29:85:be: c6:91:02:8f:19:e9:ee:1e:d4:3e:5c:9e:c5:22:4e: 04:57:29:f6:c1:0a:d7:94:e0:1c:e4:57:ad:c9:6c: a5:93:b6:64:8d:f6:b0:5d:99:99:8c:68:7a:bc:16: 6c:96:5b:33:35:cc:51:0c:29:12:b7:f3:ca:76:b0: 37:b1:ef:ae:a3:b5:cd:fe:3b:b2:4e:9b:6f:8e:c7: 3e:81:0f:72:fd:a6:86:61:3f:a6:9a:cb:43:f9:d8: 17:65:f2:39:43:9b:bd:f3:56:76:1b:6b:71:81:53: 72:b1:8b:61:de:98:e4:74:a3:44:d7:19:f0:39:38: e7:3f:e0:21:66:2f:4b:c5:e1:00:b7:c9:93:39:f4: 42:c2:ae:c1:9b:d5:87:c5:24:31:e5:19:7a:ee:c5: 70:36:c9:6e:3e:4e:98:7e:1b:2a:0f:b6:37:b8:f8: 3e:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:CB:E2:D0:2E:0E:A0:0D:22:68:CC:55:6C:A5:3B:55:DB:93:A6:65 X509v3 Authority Key Identifier: keyid:C4:F7:F3:9E:62:F4:C9:D7:8C:5E:12:FD:C1:51:AE:4E:32:BC:9A:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPfznmL0ydeMXhL9wVGuTjK8mkI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:ec:c6:0c:57:45:85:35:7d:b2:a6:e9:fa:db:d9:69:a4:45: 6d:7e:04:64:0c:78:8f:c9:6c:af:89:66:5c:4b:7f:03:9c:b8: 26:05:e1:b5:c4:28:26:18:a9:bb:ab:40:8b:43:0c:b9:e5:e7: 49:5d:a2:06:3e:cd:77:fe:3a:39:c7:60:df:24:0f:62:49:ae: 49:ac:2b:d4:7a:51:a4:fb:1b:66:7a:b3:6f:db:64:92:86:00: 06:9b:78:bc:79:d2:66:06:b4:66:35:15:7b:d7:40:c3:8c:9f: ad:3b:b0:19:ac:b6:e5:4d:11:5f:e4:67:d7:83:7c:cb:b0:72: d9:bc:fe:7c:fa:3a:59:dc:a1:af:08:a2:25:49:ed:3d:b9:70: c6:8f:80:e3:b5:14:ba:1a:67:a1:ed:d4:a9:70:ed:a9:1b:42: 8a:c7:d2:f5:80:b3:98:34:19:8c:50:44:b9:2e:11:7f:7e:83: 3e:39:70:c4:59:1d:42:9e:91:8d:a6:36:27:c7:3d:98:8a:d3: e6:13:32:ad:ce:17:60:1a:8e:48:97:5a:96:f1:05:b7:d5:08: 94:a4:fd:52:89:02:48:ed:05:11:b0:37:5d:18:15:06:f1:ef: 87:b1:32:8b:51:11:7c:84:11:d8:01:99:54:cc:7c:d2:ec:db: d9:58:53:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEIyOUIxMTAvBgNVBAUTKEM0RjdGMzlFNjJGNEM5RDc4QzVFMTJGREMxNTFBRTRF MzJCQzlBNDIwHhcNMjUwNDI1MDUwMDI5WhcNMjUwNTAyMDUwMDI5WjAYMRYwFAYD VQQDEw02ODBiMTZlZC04MTIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwD2XQqns8MnyY6XFhZ7hmk0ZUdlRrCIvEPP9eHTSYq5L5Rtx1BKzFzA5wHU6 z1oK6T/7YseJqiirMvfZR0PupESjTfbctzvdAgJyaZUZXg98bFYI9rophb7GkQKP GenuHtQ+XJ7FIk4EVyn2wQrXlOAc5FetyWylk7ZkjfawXZmZjGh6vBZsllszNcxR DCkSt/PKdrA3se+uo7XN/juyTptvjsc+gQ9y/aaGYT+mmstD+dgXZfI5Q5u981Z2 G2txgVNysYth3pjkdKNE1xnwOTjnP+AhZi9LxeEAt8mTOfRCwq7Bm9WHxSQx5Rl6 7sVwNsluPk6YfhsqD7Y3uPg+uQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA3L4tAu DqANImjMVWylO1Xbk6ZlMB8GA1UdIwQYMBaAFMT3855i9MnXjF4S/cFRrk4yvJpC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjI5Qi84QTNFMUQxQTBG ODIxMUVGODI2NkYwNUVDNEY5QUUwMi94UGZ6bm1MMHlkZU1YaEw5d1ZHdVRqSzht a0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hQZnpubUwweWRlTVhoTDl3Vkd1VGpLOG1rSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjI5Qi84QTNFMUQxQTBGODIxMUVGODI2NkYwNUVDNEY5QUUwMi94UGZ6bm1MMHlk ZU1YaEw5d1ZHdVRqSzhta0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBH7MYMV0WFNX2ypun629lppEVtfgRkDHiPyWyviWZcS38DnLgmBeG1 xCgmGKm7q0CLQwy55edJXaIGPs13/jo5x2DfJA9iSa5JrCvUelGk+xtmerNv22SS hgAGm3i8edJmBrRmNRV710DDjJ+tO7AZrLblTRFf5GfXg3zLsHLZvP58+jpZ3KGv CKIlSe09uXDGj4DjtRS6Gmeh7dSpcO2pG0KKx9L1gLOYNBmMUES5LhF/foM+OXDE WR1CnpGNpjYnxz2YitPmEzKtzhdgGo5Il1qW8QW31QiUpP1SiQJI7QURsDddGBUG 8e+HsTKLURF8hBHYAZlUzHzS7NvZWFOq -----END CERTIFICATE-----Generated at Sat Apr 26 12:28:31 2025 by rpki-client