$ rpki-client -vvf rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.mft File: xw3ieKt3JtKco6jAJAeqW64S7Ao.mft (raw, json) Hash identifier: iAQmzcpTvWn2YmsQOsw5YHwlI2Tx2bB7VrVeNbVDcf0= Subject key identifier: BB:17:69:C1:99:65:10:D8:EC:00:DA:52:44:CC:19:81:2F:BD:DF:10 Authority key identifier: C7:0D:E2:78:AB:77:26:D2:9C:A3:A8:C0:24:07:AA:5B:AE:12:EC:0A Certificate issuer: /CN=A918D323/serialNumber=C70DE278AB7726D29CA3A8C02407AA5BAE12EC0A Certificate serial: C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xw3ieKt3JtKco6jAJAeqW64S7Ao.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.mft Manifest number: C0 Signing time: Tue 29 Apr 2025 05:54:53 +0000 Manifest this update: Tue 29 Apr 2025 05:54:53 +0000 Manifest next update: Tue 06 May 2025 05:54:53 +0000 Files and hashes: 1: xw3ieKt3JtKco6jAJAeqW64S7Ao.crl (hash: C2vveps6P+oomo9Re0URKUau1ZYRqbzboRJvBkd/Xlo=) 2: CC166DAC0A0811EFBE7E465EC4F9AE02.roa (hash: C3Ga1a9eb1Df3VllPQUKdb207TqBrmGNq5XYCS2u3O0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.crl rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xw3ieKt3JtKco6jAJAeqW64S7Ao.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 06 May 2025 05:54:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 197 (0xc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D323, serialNumber=C70DE278AB7726D29CA3A8C02407AA5BAE12EC0A Validity Not Before: Apr 29 05:54:53 2025 GMT Not After : May 6 05:54:53 2025 GMT Subject: CN=681069ad-a080 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:d4:98:b4:7f:d6:80:f0:a8:7f:d2:34:88:e1: 6f:ed:17:81:62:52:7a:70:02:df:6a:97:c9:3c:ae: 01:d5:ff:89:93:fd:8b:d1:17:c0:c6:c7:f7:1a:35: c1:99:c9:dc:14:e0:c4:de:fc:b4:84:cc:cf:ed:1d: d4:9d:bf:6d:5c:81:a7:96:3f:1f:72:bb:47:39:6c: 3d:37:9e:5a:f5:5b:e7:ff:c1:37:8b:90:52:ff:36: ad:13:8e:56:c8:90:cf:8d:5d:55:77:c7:9e:65:48: 97:d0:6d:a6:f9:59:20:ad:be:0a:54:74:45:2d:6b: 34:2a:48:57:67:b9:8f:68:ee:da:c3:50:0c:81:6f: 72:96:a2:f4:c1:e7:b1:5b:a0:20:1d:4b:02:32:a3: 4f:a2:44:07:ac:a8:ae:24:bc:bc:9a:1f:3d:ea:5c: 14:fc:10:e2:df:ed:77:f6:72:69:ef:42:6f:60:11: f6:d8:2f:cd:fa:f7:1d:21:85:e9:ce:af:7c:b9:03: e4:27:be:4e:39:4f:c7:eb:54:b1:63:82:19:87:ae: bd:5d:47:b3:65:2d:82:14:e9:f0:3e:4f:0c:dc:3f: 6a:f7:28:3b:1a:06:c3:ed:54:82:36:d4:1b:ff:54: a1:72:19:8a:a1:f5:28:91:a6:da:cc:df:13:57:7d: 64:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:17:69:C1:99:65:10:D8:EC:00:DA:52:44:CC:19:81:2F:BD:DF:10 X509v3 Authority Key Identifier: keyid:C7:0D:E2:78:AB:77:26:D2:9C:A3:A8:C0:24:07:AA:5B:AE:12:EC:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xw3ieKt3JtKco6jAJAeqW64S7Ao.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:29:e6:8e:30:db:f6:7c:84:fe:f2:a0:49:74:7e:40:8d:2c: 3f:41:c6:1f:f0:35:39:8d:f0:31:cb:5b:5d:55:37:54:4c:99: 06:a5:91:2d:c5:bf:3a:25:7d:ef:56:87:38:09:d1:35:b8:05: 40:17:3e:24:96:f3:85:23:e4:f3:88:fe:db:b0:2a:b0:cf:95: da:e8:c4:1e:54:4f:2c:1e:79:b8:f1:b7:97:b2:2a:d0:0e:83: 31:49:37:b5:9a:8f:13:7a:fc:91:c7:bc:85:9d:ac:bf:aa:a5: f4:e5:b6:68:d4:cf:8f:7a:ee:60:33:9d:f2:57:2a:eb:44:b2: 4e:87:68:75:af:ec:e3:3a:2c:9f:cc:f8:c2:08:3c:80:f5:4e: 36:37:6b:2e:bb:73:2f:84:c3:0a:c1:01:5c:02:c9:9f:8e:0a: 90:66:0f:00:97:da:97:cf:21:2b:e9:78:46:03:aa:a7:33:e0: c7:85:cd:ad:d0:91:f9:9d:80:7a:90:36:42:1c:15:f8:ef:f1: 34:58:59:01:34:13:93:82:fd:22:8e:f2:bb:8f:c5:1b:ee:53: 12:02:67:e2:98:d0:ce:df:e5:85:0d:51:bc:24:61:9b:1c:4b: e9:52:3d:a1:84:8f:b9:56:c5:8a:cf:48:75:98:98:d7:32:e3: 63:4b:c8:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQzMjMxMTAvBgNVBAUTKEM3MERFMjc4QUI3NzI2RDI5Q0EzQThDMDI0MDdBQTVC QUUxMkVDMEEwHhcNMjUwNDI5MDU1NDUzWhcNMjUwNTA2MDU1NDUzWjAYMRYwFAYD VQQDEw02ODEwNjlhZC1hMDgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzdSYtH/WgPCof9I0iOFv7ReBYlJ6cALfapfJPK4B1f+Jk/2L0RfAxsf3GjXB mcncFODE3vy0hMzP7R3Unb9tXIGnlj8fcrtHOWw9N55a9Vvn/8E3i5BS/zatE45W yJDPjV1Vd8eeZUiX0G2m+Vkgrb4KVHRFLWs0KkhXZ7mPaO7aw1AMgW9ylqL0weex W6AgHUsCMqNPokQHrKiuJLy8mh896lwU/BDi3+139nJp70JvYBH22C/N+vcdIYXp zq98uQPkJ75OOU/H61SxY4IZh669XUezZS2CFOnwPk8M3D9q9yg7GgbD7VSCNtQb /1ShchmKofUokabazN8TV31kcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLsXacGZ ZRDY7ADaUkTMGYEvvd8QMB8GA1UdIwQYMBaAFMcN4nirdybSnKOowCQHqluuEuwK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDMyMy8yMjBBMUZEODA5 RUIxMUVGQkM0RDE1MzRDNEY5QUUwMi94dzNpZUt0M0p0S2NvNmpBSkFlcVc2NFM3 QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h3M2llS3QzSnRLY282akFKQWVxVzY0UzdBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDMyMy8yMjBBMUZEODA5RUIxMUVGQkM0RDE1MzRDNEY5QUUwMi94dzNpZUt0M0p0 S2NvNmpBSkFlcVc2NFM3QW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwKeaOMNv2fIT+8qBJdH5AjSw/QcYf8DU5jfAxy1tdVTdUTJkGpZEt xb86JX3vVoc4CdE1uAVAFz4klvOFI+TziP7bsCqwz5Xa6MQeVE8sHnm48beXsirQ DoMxSTe1mo8TevyRx7yFnay/qqX05bZo1M+Peu5gM53yVyrrRLJOh2h1r+zjOiyf zPjCCDyA9U42N2suu3MvhMMKwQFcAsmfjgqQZg8Al9qXzyEr6XhGA6qnM+DHhc2t 0JH5nYB6kDZCHBX47/E0WFkBNBOTgv0ijvK7j8Ub7lMSAmfimNDO3+WFDVG8JGGb HEvpUj2hhI+5VsWKz0h1mJjXMuNjS8i+ -----END CERTIFICATE-----Generated at Tue Apr 29 12:13:39 2025 by rpki-client