$ rpki-client -vvf rpki.apnic.net/member_repository/A918E843/957BCB44395F11EABB854755C4F9AE02/XPuiiRbqwHsjWQlIVdieFqCBS6w.mft File: XPuiiRbqwHsjWQlIVdieFqCBS6w.mft (raw, json) Hash identifier: c44/sp6yQla1jVp6CZVsg4wzGwcytnVub0eyW8nbboU= Subject key identifier: A1:E6:2C:42:8F:DC:98:68:B3:D2:DA:B2:A0:6A:0F:DE:88:49:5C:F1 Authority key identifier: 5C:FB:A2:89:16:EA:C0:7B:23:59:09:48:55:D8:9E:16:A0:81:4B:AC Certificate issuer: /CN=A918E843/serialNumber=5CFBA28916EAC07B2359094855D89E16A0814BAC Certificate serial: 0B32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XPuiiRbqwHsjWQlIVdieFqCBS6w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E843/957BCB44395F11EABB854755C4F9AE02/XPuiiRbqwHsjWQlIVdieFqCBS6w.mft Manifest number: 0B25 Signing time: Thu 24 Apr 2025 19:06:23 +0000 Manifest this update: Thu 24 Apr 2025 19:06:22 +0000 Manifest next update: Thu 01 May 2025 19:06:22 +0000 Files and hashes: 1: XPuiiRbqwHsjWQlIVdieFqCBS6w.crl (hash: yn7f8W+MLdEorjDtWb+F3JVDnu99P4TM43VTpzoNkXs=) 2: 3EA26CE6396011EABC88BD55C4F9AE02.roa (hash: jt3q3eu5PH5pGOuIsdjdUutobUCzp2vYtDeECsWMzEc=) 3: 01553E10396311EAB24C5A5FC4F9AE02.roa (hash: rs0VbwQOx7elbsUZDFIThAHCStbl8j3g8d0JAoWIucc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E843/957BCB44395F11EABB854755C4F9AE02/XPuiiRbqwHsjWQlIVdieFqCBS6w.crl rsync://rpki.apnic.net/member_repository/A918E843/957BCB44395F11EABB854755C4F9AE02/XPuiiRbqwHsjWQlIVdieFqCBS6w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XPuiiRbqwHsjWQlIVdieFqCBS6w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:06:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2866 (0xb32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E843, serialNumber=5CFBA28916EAC07B2359094855D89E16A0814BAC Validity Not Before: Apr 24 19:06:22 2025 GMT Not After : May 1 19:06:22 2025 GMT Subject: CN=680a8baf-4013 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:1c:b7:eb:4b:56:80:26:10:9b:6f:8f:5f:de: b8:5b:bb:d2:ce:51:b5:a8:87:0e:9c:dd:6c:35:b5: a1:2d:58:4a:8e:39:83:ba:a7:5c:3b:b9:cf:b1:ca: 68:83:4b:e5:81:b8:2a:64:d8:df:56:dc:0a:b3:3e: 6e:74:b2:00:cf:b8:fd:ec:c2:27:f4:c0:51:53:92: 59:33:2b:a1:e1:83:19:f5:82:60:75:55:ca:b3:7a: 00:db:a6:56:ea:a4:8c:0c:2c:57:76:e8:20:79:88: 8d:ab:fa:ac:7a:13:11:10:2b:b9:e1:a3:54:d5:64: 36:c4:07:17:4c:2c:6b:1a:fe:33:dd:2a:8e:1f:3d: 1a:60:c5:f2:7f:09:44:bf:fc:f8:c3:d2:04:9f:3e: f0:42:2a:b7:2f:a1:74:8f:43:1e:37:62:05:5f:6b: e7:95:f8:97:24:89:8c:7e:57:3f:77:f3:59:6d:2b: 50:3d:30:1d:c8:79:74:0e:78:3d:b5:80:4a:8e:0c: 83:c7:fb:3d:d1:3a:97:16:52:b5:b7:bc:25:68:d2: 4b:4e:8d:17:93:25:93:ec:de:00:a1:88:4f:09:0e: 93:7e:ba:8d:41:02:f7:60:d0:36:23:1f:ef:eb:49: 25:ea:59:e2:4a:09:be:d5:c9:5f:9f:d0:69:07:5b: fa:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:E6:2C:42:8F:DC:98:68:B3:D2:DA:B2:A0:6A:0F:DE:88:49:5C:F1 X509v3 Authority Key Identifier: keyid:5C:FB:A2:89:16:EA:C0:7B:23:59:09:48:55:D8:9E:16:A0:81:4B:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E843/957BCB44395F11EABB854755C4F9AE02/XPuiiRbqwHsjWQlIVdieFqCBS6w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XPuiiRbqwHsjWQlIVdieFqCBS6w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E843/957BCB44395F11EABB854755C4F9AE02/XPuiiRbqwHsjWQlIVdieFqCBS6w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d6:bd:36:c3:0e:29:23:1a:31:27:b9:89:f7:5a:b0:fb:56:38: 92:a9:e6:5c:bf:df:7a:21:15:12:0a:00:2e:3c:89:17:d8:c3: 3b:92:81:88:1e:90:9e:a6:99:68:05:85:a1:92:63:c1:89:36: bb:00:c0:b0:e4:f1:76:39:d0:6c:f8:30:21:84:a2:74:35:b6: d0:e5:36:26:3b:95:37:e1:79:87:70:8f:07:85:3a:c7:bd:15: 58:95:6e:d5:ee:2e:36:77:95:6e:3e:05:11:58:91:7f:3c:15: f2:04:33:2e:d0:6c:87:13:85:49:37:b1:d2:ec:4a:3c:b9:35: ef:60:dc:24:c0:61:5d:f6:0e:ee:7b:3a:20:bc:31:45:3b:6b: 4d:0b:fd:7c:88:8e:42:6d:24:26:f1:75:b4:c2:16:4f:fc:86: 4a:65:89:a0:16:47:db:eb:e8:04:a9:53:f9:4c:f9:fd:e1:e5: 80:3e:78:03:69:5d:f2:0c:77:71:fe:a1:d6:3e:ec:cb:88:62: e9:e7:33:94:5f:80:77:fb:03:57:b2:ba:30:f4:4d:87:49:7d: 27:97:a4:20:6f:8d:b2:2e:09:3f:ac:98:ec:f8:3e:af:5e:c1: 09:93:87:d9:b7:53:d2:e3:0d:27:00:e8:0c:e1:3f:2b:73:8e: 61:2b:a0:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCzIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU4NDMxMTAvBgNVBAUTKDVDRkJBMjg5MTZFQUMwN0IyMzU5MDk0ODU1RDg5RTE2 QTA4MTRCQUMwHhcNMjUwNDI0MTkwNjIyWhcNMjUwNTAxMTkwNjIyWjAYMRYwFAYD VQQDEw02ODBhOGJhZi00MDEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxBy360tWgCYQm2+PX964W7vSzlG1qIcOnN1sNbWhLVhKjjmDuqdcO7nPscpo g0vlgbgqZNjfVtwKsz5udLIAz7j97MIn9MBRU5JZMyuh4YMZ9YJgdVXKs3oA26ZW 6qSMDCxXduggeYiNq/qsehMRECu54aNU1WQ2xAcXTCxrGv4z3SqOHz0aYMXyfwlE v/z4w9IEnz7wQiq3L6F0j0MeN2IFX2vnlfiXJImMflc/d/NZbStQPTAdyHl0Dng9 tYBKjgyDx/s90TqXFlK1t7wlaNJLTo0XkyWT7N4AoYhPCQ6TfrqNQQL3YNA2Ix/v 60kl6lniSgm+1clfn9BpB1v6xwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKHmLEKP 3Jhos9LasqBqD96ISVzxMB8GA1UdIwQYMBaAFFz7ookW6sB7I1kJSFXYnhaggUus MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTg0My85NTdCQ0I0NDM5 NUYxMUVBQkI4NTQ3NTVDNEY5QUUwMi9YUHVpaVJicXdIc2pXUWxJVmRpZUZxQ0JT NncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hQdWlpUmJxd0hzaldRbElWZGllRnFDQlM2dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTg0My85NTdCQ0I0NDM5NUYxMUVBQkI4NTQ3NTVDNEY5QUUwMi9YUHVpaVJicXdI c2pXUWxJVmRpZUZxQ0JTNncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDWvTbDDikjGjEnuYn3WrD7VjiSqeZcv996IRUSCgAuPIkX2MM7koGI HpCepploBYWhkmPBiTa7AMCw5PF2OdBs+DAhhKJ0NbbQ5TYmO5U34XmHcI8HhTrH vRVYlW7V7i42d5VuPgURWJF/PBXyBDMu0GyHE4VJN7HS7Eo8uTXvYNwkwGFd9g7u ezogvDFFO2tNC/18iI5CbSQm8XW0whZP/IZKZYmgFkfb6+gEqVP5TPn94eWAPngD aV3yDHdx/qHWPuzLiGLp5zOUX4B3+wNXsrow9E2HSX0nl6Qgb42yLgk/rJjs+D6v XsEJk4fZt1PS4w0nAOgM4T8rc45hK6Da -----END CERTIFICATE-----Generated at Sat Apr 26 17:10:51 2025 by rpki-client