$ rpki-client -vvf rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.mft File: X-BMlXpsvFQKNPRT0T4_gFDI9O4.mft (raw, json) Hash identifier: i1MBhbUCCIshv+Hlkm7Lzjpj7GKqNyOHfFucp83S8gs= Subject key identifier: 96:87:D5:09:30:AE:32:C7:D2:DB:DD:1E:E3:96:94:D9:F2:C8:67:F9 Authority key identifier: 5F:E0:4C:95:7A:6C:BC:54:0A:34:F4:53:D1:3E:3F:80:50:C8:F4:EE Certificate issuer: /CN=A918A51B/serialNumber=5FE04C957A6CBC540A34F453D13E3F8050C8F4EE Certificate serial: 01AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-BMlXpsvFQKNPRT0T4_gFDI9O4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.mft Manifest number: 01A3 Signing time: Fri 25 Apr 2025 02:28:38 +0000 Manifest this update: Fri 25 Apr 2025 02:28:37 +0000 Manifest next update: Fri 02 May 2025 02:28:37 +0000 Files and hashes: 1: X-BMlXpsvFQKNPRT0T4_gFDI9O4.crl (hash: W7CV9NQmgSXnVwg+itsx9UzKdxkYsYR1d1Gs04mbkfc=) 2: 6B9615FCD6E311EE94842842C4F9AE02.roa (hash: 9FynllD8H+NI8HSEXg9Jjmq002CiTaGo7ZssucPUw/c=) 3: 6A9D79ECD6E311EE94842842C4F9AE02.roa (hash: pf/aq5LQ2SyN9nQK//wVXk1HeFtnOQFOhE/br9mZqh4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.crl rsync://rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-BMlXpsvFQKNPRT0T4_gFDI9O4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:28:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 426 (0x1aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A51B, serialNumber=5FE04C957A6CBC540A34F453D13E3F8050C8F4EE Validity Not Before: Apr 25 02:28:37 2025 GMT Not After : May 2 02:28:37 2025 GMT Subject: CN=680af356-1b91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b1:b5:83:ff:18:c1:46:3b:26:fd:b5:fb:bf: 34:d9:31:fc:cf:af:97:a7:cb:ce:7c:e7:e9:4e:45: ea:5b:61:f5:c7:c2:5e:e0:95:be:db:4a:6f:21:6d: 96:73:dd:da:36:6b:46:8e:bf:a3:b6:15:52:4f:4c: 04:1e:eb:19:c7:1d:c7:a1:6a:9c:23:b0:44:bd:b3: 4e:1d:ae:94:aa:18:c5:be:87:f0:98:99:19:55:e0: ed:69:6a:b6:79:ca:77:22:20:97:d6:d4:34:8c:38: 74:9d:b9:f5:43:28:de:fe:90:9d:42:e1:37:4e:b2: 38:9a:4d:7f:cb:17:4e:7a:ff:3e:d2:73:56:98:32: 19:2d:8b:a8:63:b2:cd:3e:95:bb:d2:24:1c:2c:79: 7d:64:b3:44:64:0b:5c:22:22:f7:90:55:5e:79:b3: 63:2d:da:af:e7:1d:2b:5e:36:92:89:11:86:55:57: 2b:0a:41:29:3d:3b:9c:4d:29:43:ef:58:e4:9a:5c: af:39:92:96:2e:d4:47:a3:14:b5:e9:02:23:89:46: 1a:cb:81:dd:b4:f1:f8:f3:b5:49:d9:8f:9f:bf:da: c4:94:01:5f:d2:0d:b3:3d:12:de:17:e9:bb:b3:1f: 22:ee:66:ef:be:de:cf:9d:8c:f6:84:0f:9f:8f:3c: 6f:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:87:D5:09:30:AE:32:C7:D2:DB:DD:1E:E3:96:94:D9:F2:C8:67:F9 X509v3 Authority Key Identifier: keyid:5F:E0:4C:95:7A:6C:BC:54:0A:34:F4:53:D1:3E:3F:80:50:C8:F4:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-BMlXpsvFQKNPRT0T4_gFDI9O4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:91:0b:0b:ec:5c:1f:7f:03:9c:c5:2a:72:82:9c:b5:c2:87: 32:60:41:10:44:81:27:b9:4d:42:1d:84:10:c0:b2:34:aa:bb: 8e:55:e1:1b:22:de:bb:a3:cb:32:bb:a4:4a:73:99:01:ab:5f: a8:7e:ff:57:7b:f1:c6:9a:74:86:2d:f0:72:72:90:71:0f:ca: 10:0b:0a:fc:65:61:f5:bc:a6:b5:1d:e7:bc:6c:f1:81:b3:89: 1a:a1:6e:fa:3b:f9:d5:0f:0c:b0:bf:17:58:20:84:4c:73:d5: 52:65:4f:d5:7c:66:b6:50:9a:b3:71:02:fe:ba:ef:24:ec:ce: 6b:31:17:9d:8c:61:ac:96:77:55:63:74:cc:c9:3c:09:d9:93: d3:f6:34:01:a4:86:d5:b1:c9:67:47:3f:99:e9:b7:99:87:9c: ff:20:8b:2c:89:34:84:04:9f:cf:7d:a5:29:c2:c6:3e:a8:78: a8:ab:aa:dd:b2:01:d3:7a:ed:47:90:37:93:dc:64:59:5e:81: d1:9f:8a:56:e5:bb:07:38:f3:7f:fc:e2:f9:5b:ba:6a:e8:25: 60:4f:d4:ae:36:59:6f:57:30:c2:c4:5e:9b:22:e7:95:be:57: bc:a8:af:c6:60:02:79:8d:dc:4f:19:37:c1:be:3c:e6:23:26: 8e:df:c1:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEE1MUIxMTAvBgNVBAUTKDVGRTA0Qzk1N0E2Q0JDNTQwQTM0RjQ1M0QxM0UzRjgw NTBDOEY0RUUwHhcNMjUwNDI1MDIyODM3WhcNMjUwNTAyMDIyODM3WjAYMRYwFAYD VQQDEw02ODBhZjM1Ni0xYjkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsbG1g/8YwUY7Jv21+7802TH8z6+Xp8vOfOfpTkXqW2H1x8Je4JW+20pvIW2W c93aNmtGjr+jthVST0wEHusZxx3HoWqcI7BEvbNOHa6UqhjFvofwmJkZVeDtaWq2 ecp3IiCX1tQ0jDh0nbn1Qyje/pCdQuE3TrI4mk1/yxdOev8+0nNWmDIZLYuoY7LN PpW70iQcLHl9ZLNEZAtcIiL3kFVeebNjLdqv5x0rXjaSiRGGVVcrCkEpPTucTSlD 71jkmlyvOZKWLtRHoxS16QIjiUYay4HdtPH487VJ2Y+fv9rElAFf0g2zPRLeF+m7 sx8i7mbvvt7PnYz2hA+fjzxv+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJaH1Qkw rjLH0tvdHuOWlNnyyGf5MB8GA1UdIwQYMBaAFF/gTJV6bLxUCjT0U9E+P4BQyPTu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTUxQi8wMENBOThGMkEx QTUxMUVEOTEyMzIyNTRDNEY5QUUwMi9YLUJNbFhwc3ZGUUtOUFJUMFQ0X2dGREk5 TzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gtQk1sWHBzdkZRS05QUlQwVDRfZ0ZESTlPNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTUxQi8wMENBOThGMkExQTUxMUVEOTEyMzIyNTRDNEY5QUUwMi9YLUJNbFhwc3ZG UUtOUFJUMFQ0X2dGREk5TzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7kQsL7FwffwOcxSpygpy1wocyYEEQRIEnuU1CHYQQwLI0qruOVeEb It67o8syu6RKc5kBq1+ofv9Xe/HGmnSGLfBycpBxD8oQCwr8ZWH1vKa1Hee8bPGB s4kaoW76O/nVDwywvxdYIIRMc9VSZU/VfGa2UJqzcQL+uu8k7M5rMRedjGGslndV Y3TMyTwJ2ZPT9jQBpIbVsclnRz+Z6beZh5z/IIssiTSEBJ/PfaUpwsY+qHioq6rd sgHTeu1HkDeT3GRZXoHRn4pW5bsHOPN//OL5W7pq6CVgT9SuNllvVzDCxF6bIueV vle8qK/GYAJ5jdxPGTfBvjzmIyaO38Eq -----END CERTIFICATE-----Generated at Sat Apr 26 16:52:58 2025 by rpki-client