$ rpki-client -vvf rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft File: XiM50eqvU0mhOKR5fagtDrTfqew.mft (raw, json) Hash identifier: p54vVRmItn0YJ+BNCTlY/F+lT1oifRba3E3+SJf0+TE= Subject key identifier: A3:B9:09:7E:14:E4:5A:57:5D:2C:24:86:36:07:4C:35:29:E5:9A:18 Authority key identifier: 5E:23:39:D1:EA:AF:53:49:A1:38:A4:79:7D:A8:2D:0E:B4:DF:A9:EC Certificate issuer: /CN=A918CFAD/serialNumber=5E2339D1EAAF5349A138A4797DA82D0EB4DFA9EC Certificate serial: CA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XiM50eqvU0mhOKR5fagtDrTfqew.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft Manifest number: C9 Signing time: Fri 25 Apr 2025 04:45:59 +0000 Manifest this update: Fri 25 Apr 2025 04:45:59 +0000 Manifest next update: Fri 02 May 2025 04:45:59 +0000 Files and hashes: 1: XiM50eqvU0mhOKR5fagtDrTfqew.crl (hash: T98d6p/fFqDVZfObDxNiQI8/QNtMoW8dk/BT1j+fVqk=) 2: D161B1F0EA0411EE98A86A13C4F9AE02.roa (hash: f2pihyA1YpP2RflE8vg3Re0S4oO3efRwgxKNq8an+xI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.crl rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XiM50eqvU0mhOKR5fagtDrTfqew.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:45:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918CFAD, serialNumber=5E2339D1EAAF5349A138A4797DA82D0EB4DFA9EC Validity Not Before: Apr 25 04:45:59 2025 GMT Not After : May 2 04:45:59 2025 GMT Subject: CN=680b1387-ac42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:23:98:bc:69:f0:2d:da:bb:8c:22:d4:b6:e8: 1f:32:02:a3:74:59:ff:b7:83:3e:1a:b8:90:4a:8b: 54:d9:27:14:ce:6e:eb:e1:49:01:9e:39:ad:ea:fc: 0f:0f:f1:f1:86:95:35:2a:41:4a:0f:e3:e4:a1:c6: e0:52:a3:70:4f:ea:db:1e:d3:66:79:37:78:ec:bd: a9:e0:a3:1a:a8:37:d4:df:fd:8a:19:90:01:de:fa: af:03:d4:13:68:3d:0a:93:72:e0:6d:87:89:1b:b9: e4:3c:23:e5:fd:82:f3:ac:6a:46:1f:ce:a1:df:cd: c2:3d:18:2a:95:91:de:e9:29:ca:8e:c3:b3:45:58: 77:2e:71:9c:d1:00:33:c8:5f:05:0a:da:a9:d2:2e: 2e:2f:7e:d9:07:51:0b:35:59:ee:a8:98:12:56:1f: e6:4a:07:10:79:bb:6c:74:19:81:8d:7c:8a:92:81: f3:4b:ba:ca:63:11:5b:a0:b2:f8:a6:ef:24:23:55: 5b:b9:08:87:34:0b:17:fc:c2:3c:3c:03:4e:13:f9: ec:a6:ab:31:14:ba:c2:6b:cd:fd:bf:cb:a9:a2:f6: c4:36:d7:03:95:c7:bb:91:1a:70:11:46:ad:9e:b4: 79:a1:f3:6b:fb:ad:d4:52:7b:b2:10:54:61:93:a0: 4f:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:B9:09:7E:14:E4:5A:57:5D:2C:24:86:36:07:4C:35:29:E5:9A:18 X509v3 Authority Key Identifier: keyid:5E:23:39:D1:EA:AF:53:49:A1:38:A4:79:7D:A8:2D:0E:B4:DF:A9:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XiM50eqvU0mhOKR5fagtDrTfqew.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:a0:bd:79:74:c8:f2:65:d7:39:2e:c1:ad:63:24:63:b8:16: dc:a2:fc:4c:05:96:de:88:6c:96:6c:7e:5d:10:d6:7a:17:f4: b8:1e:66:ff:01:a8:47:61:d4:52:fc:81:af:ee:cf:94:8c:1b: c0:b1:f4:39:31:cd:a1:6e:99:8c:12:37:67:2b:76:4c:82:19: 57:2f:3e:c2:fe:f6:a6:42:75:a9:42:f2:e5:25:be:53:1b:24: ad:cf:63:42:86:1e:a5:db:e0:ae:42:79:41:f4:8e:bb:57:2d: 1b:62:c4:28:44:39:87:ee:29:2a:e8:16:d4:5d:95:17:39:4b: f7:5e:10:21:92:01:ce:67:b2:cf:60:ab:1e:7f:2d:6b:e9:ad: 43:3e:88:af:ff:6b:85:2f:5c:cb:4a:29:ad:27:da:b6:6e:d2: ad:77:0b:35:c6:41:dd:56:d0:ad:44:38:80:39:03:d7:e0:91: 82:ad:11:f3:4b:63:ab:f9:9c:50:31:d9:03:d4:b4:60:54:9d: dd:25:7f:30:a9:15:0a:80:03:c6:0f:e4:79:df:b8:1b:ce:96: 4a:d7:f5:4f:3a:0d:5e:64:f1:e2:1b:e0:26:8c:f3:5e:7f:78: 1e:01:03:87:7e:63:b9:97:08:30:12:b0:45:ad:8d:99:66:f0: ef:38:04:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OENGQUQxMTAvBgNVBAUTKDVFMjMzOUQxRUFBRjUzNDlBMTM4QTQ3OTdEQTgyRDBF QjRERkE5RUMwHhcNMjUwNDI1MDQ0NTU5WhcNMjUwNTAyMDQ0NTU5WjAYMRYwFAYD VQQDEw02ODBiMTM4Ny1hYzQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxSOYvGnwLdq7jCLUtugfMgKjdFn/t4M+GriQSotU2ScUzm7r4UkBnjmt6vwP D/HxhpU1KkFKD+PkocbgUqNwT+rbHtNmeTd47L2p4KMaqDfU3/2KGZAB3vqvA9QT aD0Kk3LgbYeJG7nkPCPl/YLzrGpGH86h383CPRgqlZHe6SnKjsOzRVh3LnGc0QAz yF8FCtqp0i4uL37ZB1ELNVnuqJgSVh/mSgcQebtsdBmBjXyKkoHzS7rKYxFboLL4 pu8kI1VbuQiHNAsX/MI8PANOE/nspqsxFLrCa839v8upovbENtcDlce7kRpwEUat nrR5ofNr+63UUnuyEFRhk6BPqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKO5CX4U 5FpXXSwkhjYHTDUp5ZoYMB8GA1UdIwQYMBaAFF4jOdHqr1NJoTikeX2oLQ6036ns MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Q0ZBRC80QzkwMEYxQ0VB MDQxMUVFOTJEMTA2MTFDNEY5QUUwMi9YaU01MGVxdlUwbWhPS1I1ZmFndERyVGZx ZXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1hpTTUwZXF2VTBtaE9LUjVmYWd0RHJUZnFldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Q0ZBRC80QzkwMEYxQ0VBMDQxMUVFOTJEMTA2MTFDNEY5QUUwMi9YaU01MGVxdlUw bWhPS1I1ZmFndERyVGZxZXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWoL15dMjyZdc5LsGtYyRjuBbcovxMBZbeiGyWbH5dENZ6F/S4Hmb/ AahHYdRS/IGv7s+UjBvAsfQ5Mc2hbpmMEjdnK3ZMghlXLz7C/vamQnWpQvLlJb5T GyStz2NChh6l2+CuQnlB9I67Vy0bYsQoRDmH7ikq6BbUXZUXOUv3XhAhkgHOZ7LP YKsefy1r6a1DPoiv/2uFL1zLSimtJ9q2btKtdws1xkHdVtCtRDiAOQPX4JGCrRHz S2Or+ZxQMdkD1LRgVJ3dJX8wqRUKgAPGD+R537gbzpZK1/VPOg1eZPHiG+AmjPNe f3geAQOHfmO5lwgwErBFrY2ZZvDvOAQM -----END CERTIFICATE-----Generated at Sat Apr 26 17:16:07 2025 by rpki-client