$ rpki-client -vvf rpki.apnic.net/member_repository/A915648D/C3EEE2A8EFE211EDA3C6C147C4F9AE02/8XtTIaWNeeIwUxxaoPCyTh2BIaM.mft File: 8XtTIaWNeeIwUxxaoPCyTh2BIaM.mft (raw, json) Hash identifier: YVxiln53VbsQhhZTVf/TSSYJVzJKwV9jOHU//ozk9IE= Subject key identifier: 20:4A:92:27:F4:1B:69:DB:AA:08:7F:51:AC:B2:E4:7A:3B:0E:DB:E0 Authority key identifier: F1:7B:53:21:A5:8D:79:E2:30:53:1C:5A:A0:F0:B2:4E:1D:81:21:A3 Certificate issuer: /CN=A915648D/serialNumber=F17B5321A58D79E230531C5AA0F0B24E1D8121A3 Certificate serial: 0172 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8XtTIaWNeeIwUxxaoPCyTh2BIaM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915648D/C3EEE2A8EFE211EDA3C6C147C4F9AE02/8XtTIaWNeeIwUxxaoPCyTh2BIaM.mft Manifest number: 0170 Signing time: Fri 25 Apr 2025 02:58:02 +0000 Manifest this update: Fri 25 Apr 2025 02:58:02 +0000 Manifest next update: Fri 02 May 2025 02:58:01 +0000 Files and hashes: 1: 8XtTIaWNeeIwUxxaoPCyTh2BIaM.crl (hash: TaI8e2sDTMgutEDrHRcHc6CLtlPkNKoP5HnEIiOBZ1E=) 2: C80572DEF70911ED9D4B561AC4F9AE02.roa (hash: uGKqx1ygUHWBkt6yQ6DRvhQVZZkNmLVdX986c5JBGJs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915648D/C3EEE2A8EFE211EDA3C6C147C4F9AE02/8XtTIaWNeeIwUxxaoPCyTh2BIaM.crl rsync://rpki.apnic.net/member_repository/A915648D/C3EEE2A8EFE211EDA3C6C147C4F9AE02/8XtTIaWNeeIwUxxaoPCyTh2BIaM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8XtTIaWNeeIwUxxaoPCyTh2BIaM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:58:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 370 (0x172) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915648D, serialNumber=F17B5321A58D79E230531C5AA0F0B24E1D8121A3 Validity Not Before: Apr 25 02:58:02 2025 GMT Not After : May 2 02:58:01 2025 GMT Subject: CN=680afa3a-2db3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:81:67:c8:63:a9:cb:0e:95:3e:f4:17:63:17: ec:12:de:af:14:4b:84:2d:36:a3:e7:de:8c:4e:2e: 2f:b2:1c:56:31:0e:7c:d6:88:97:b2:d0:bb:59:15: 22:5e:fe:0f:e8:24:e7:f6:e7:f2:52:b4:d7:0c:f3: f9:7c:3a:74:11:e4:c2:ab:78:2e:ca:21:e2:19:a2: 41:38:8b:25:8d:53:30:81:53:21:d8:c9:61:bc:d2: dd:2e:5c:53:a7:df:1d:65:f8:ba:ed:b0:aa:3a:c8: 84:60:bc:f1:b7:a9:67:88:b3:2c:24:02:b1:b5:a6: 7f:35:21:bc:41:99:ee:38:45:3e:b8:56:51:d7:9e: 02:cf:81:62:8e:55:4c:5f:8e:91:d4:0b:b9:37:48: fd:30:75:2e:27:b6:b5:6d:3c:57:93:bb:03:2a:f9: ee:89:93:46:4e:46:10:a9:dd:56:44:53:31:6c:81: 26:aa:52:eb:a2:54:01:a0:9e:31:db:f7:fd:0e:4e: 19:92:0e:16:af:97:b0:f6:8b:87:1b:d2:5a:2c:ca: ea:6a:0a:0d:34:49:2a:f2:91:ac:d8:02:a5:56:a1: d8:51:22:10:42:3e:e1:43:e3:b3:1e:df:01:da:25: d4:90:c9:63:de:af:b1:a9:96:00:45:a2:ef:b8:9f: 7f:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:4A:92:27:F4:1B:69:DB:AA:08:7F:51:AC:B2:E4:7A:3B:0E:DB:E0 X509v3 Authority Key Identifier: keyid:F1:7B:53:21:A5:8D:79:E2:30:53:1C:5A:A0:F0:B2:4E:1D:81:21:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915648D/C3EEE2A8EFE211EDA3C6C147C4F9AE02/8XtTIaWNeeIwUxxaoPCyTh2BIaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8XtTIaWNeeIwUxxaoPCyTh2BIaM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915648D/C3EEE2A8EFE211EDA3C6C147C4F9AE02/8XtTIaWNeeIwUxxaoPCyTh2BIaM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:6c:3b:5b:54:5b:bb:d6:92:a4:6d:ef:1f:77:8a:21:66:2f: 09:7b:e7:1a:0f:24:d2:f6:b4:48:c8:52:f6:47:5f:7b:ea:3d: 1a:f0:70:3d:25:2a:37:ad:4f:b9:8e:67:04:7c:2c:af:e0:3e: 28:5b:09:47:82:a0:48:f8:91:a8:59:53:f9:c5:99:17:41:f4: 03:51:41:8b:4b:e4:06:26:50:08:21:21:fc:04:d2:30:f8:5c: ab:d3:d3:9a:10:61:9f:a4:e4:5c:36:a4:a6:e8:13:2d:3f:1f: 49:b9:2a:70:88:8d:7f:41:65:d1:ab:7a:38:35:67:dc:cc:da: d0:9a:ee:f3:92:e7:be:e8:ce:7b:13:52:36:60:f2:60:27:0d: e5:3b:9e:c7:02:99:27:72:50:58:8e:4c:76:dd:b3:d3:36:66: 18:49:28:7a:8c:58:b5:7f:2c:45:81:65:b1:cf:a5:dd:e5:9f: d3:a3:2d:da:35:e8:51:69:a1:6c:3d:27:94:fc:29:6c:b0:77: 44:9e:bb:9d:93:97:02:1c:c7:99:42:d0:37:c0:88:3d:fd:b2: 38:40:09:df:58:9c:94:2b:b6:fa:54:b0:dc:3f:1f:ec:28:5f: 3d:17:ed:9d:8d:19:5d:4c:ec:46:fd:15:07:23:ba:a3:ba:4b: 9a:86:f5:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY0OEQxMTAvBgNVBAUTKEYxN0I1MzIxQTU4RDc5RTIzMDUzMUM1QUEwRjBCMjRF MUQ4MTIxQTMwHhcNMjUwNDI1MDI1ODAyWhcNMjUwNTAyMDI1ODAxWjAYMRYwFAYD VQQDEw02ODBhZmEzYS0yZGIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2YFnyGOpyw6VPvQXYxfsEt6vFEuELTaj596MTi4vshxWMQ581oiXstC7WRUi Xv4P6CTn9ufyUrTXDPP5fDp0EeTCq3guyiHiGaJBOIsljVMwgVMh2MlhvNLdLlxT p98dZfi67bCqOsiEYLzxt6lniLMsJAKxtaZ/NSG8QZnuOEU+uFZR154Cz4FijlVM X46R1Au5N0j9MHUuJ7a1bTxXk7sDKvnuiZNGTkYQqd1WRFMxbIEmqlLrolQBoJ4x 2/f9Dk4Zkg4Wr5ew9ouHG9JaLMrqagoNNEkq8pGs2AKlVqHYUSIQQj7hQ+OzHt8B 2iXUkMlj3q+xqZYARaLvuJ9/EwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCBKkif0 G2nbqgh/Uayy5Ho7DtvgMB8GA1UdIwQYMBaAFPF7UyGljXniMFMcWqDwsk4dgSGj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjQ4RC9DM0VFRTJBOEVG RTIxMUVEQTNDNkMxNDdDNEY5QUUwMi84WHRUSWFXTmVlSXdVeHhhb1BDeVRoMkJJ YU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhYdFRJYVdOZWVJd1V4eGFvUEN5VGgyQklhTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjQ4RC9DM0VFRTJBOEVGRTIxMUVEQTNDNkMxNDdDNEY5QUUwMi84WHRUSWFXTmVl SXdVeHhhb1BDeVRoMkJJYU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6bDtbVFu71pKkbe8fd4ohZi8Je+caDyTS9rRIyFL2R1976j0a8HA9 JSo3rU+5jmcEfCyv4D4oWwlHgqBI+JGoWVP5xZkXQfQDUUGLS+QGJlAIISH8BNIw +Fyr09OaEGGfpORcNqSm6BMtPx9JuSpwiI1/QWXRq3o4NWfczNrQmu7zkue+6M57 E1I2YPJgJw3lO57HApknclBYjkx23bPTNmYYSSh6jFi1fyxFgWWxz6Xd5Z/Toy3a NehRaaFsPSeU/ClssHdEnrudk5cCHMeZQtA3wIg9/bI4QAnfWJyUK7b6VLDcPx/s KF89F+2djRldTOxG/RUHI7qjukuahvX9 -----END CERTIFICATE-----Generated at Sat Apr 26 04:28:15 2025 by rpki-client