$ rpki-client -vvf rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft File: xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft (raw, json) Hash identifier: FH+KU14GU3jHCBxC1Itxu3+lokSWcxJIOeDPLuF+e8U= Subject key identifier: 69:F1:CA:DD:CF:87:7E:61:69:2E:21:50:2B:D6:AB:B1:97:FF:F8:76 Authority key identifier: C4:A4:C3:54:35:8F:D4:82:3F:6E:C5:31:32:76:74:85:4C:86:C6:DF Certificate issuer: /CN=A918FD04/serialNumber=C4A4C354358FD4823F6EC531327674854C86C6DF Certificate serial: 087A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xKTDVDWP1II_bsUxMnZ0hUyGxt8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft Manifest number: 146F Signing time: Thu 24 Apr 2025 18:37:10 +0000 Manifest this update: Thu 24 Apr 2025 18:37:09 +0000 Manifest next update: Thu 01 May 2025 18:37:09 +0000 Files and hashes: 1: xKTDVDWP1II_bsUxMnZ0hUyGxt8.crl (hash: PCPRH9kNiRgeHNMATgmxL58thBN1vl654GPj5FHYMoQ=) 2: 7BBC1DD2040611EF909F6C3EC4F9AE02.roa (hash: d+L19gUHVaLQL/PMqiWFVUvVqO9gHwxatHS8mTM15PU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.crl rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xKTDVDWP1II_bsUxMnZ0hUyGxt8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:37:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2170 (0x87a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FD04, serialNumber=C4A4C354358FD4823F6EC531327674854C86C6DF Validity Not Before: Apr 24 18:37:09 2025 GMT Not After : May 1 18:37:09 2025 GMT Subject: CN=680a84d6-cabb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:e5:53:bf:eb:55:d6:07:40:4f:cd:ee:04:db: d0:b9:2f:24:d9:7a:c1:86:51:cb:e5:8a:19:f2:8e: 0a:af:64:fb:56:fa:cb:d7:3c:05:9d:19:7a:75:56: 29:90:09:88:9d:90:2b:8a:0a:95:d3:d2:88:59:c3: 3e:3d:3b:dd:09:f4:85:26:c6:a5:3f:dc:3f:6e:c3: 0b:ad:a4:16:93:59:6f:44:82:d0:d1:41:7e:3c:7d: 05:f4:7b:47:e0:05:5a:c9:9f:e5:1d:86:a8:e1:69: 03:56:8a:65:a7:bc:ab:ec:f5:58:06:4b:af:a0:59: 0c:fb:e4:12:78:a1:18:e4:d9:2e:09:c1:e9:f1:4f: 28:f3:21:d0:94:e9:e8:a9:ad:6d:35:a3:a9:49:e4: 27:33:05:bb:da:57:7d:07:78:74:90:23:0f:ce:a0: 25:4d:68:08:7e:cd:7e:e4:a6:c5:89:84:55:a6:d5: fa:3d:13:1d:4a:c1:cb:5d:b3:33:69:d8:e1:08:e9: 24:f6:9f:50:f7:7d:7b:b7:94:77:21:01:35:40:33: 4a:82:59:4a:f3:be:20:cc:26:df:ff:fd:9a:dd:e5: 0d:22:8e:ed:7c:ef:11:f3:ef:ee:ef:0c:a7:e3:ed: 3b:59:db:c8:64:97:bb:aa:6e:84:3c:34:e6:38:1e: 53:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:F1:CA:DD:CF:87:7E:61:69:2E:21:50:2B:D6:AB:B1:97:FF:F8:76 X509v3 Authority Key Identifier: keyid:C4:A4:C3:54:35:8F:D4:82:3F:6E:C5:31:32:76:74:85:4C:86:C6:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xKTDVDWP1II_bsUxMnZ0hUyGxt8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:ab:02:52:1f:1e:56:12:0d:2b:95:f5:87:15:37:2d:98:2e: 19:b9:78:d1:74:f7:13:05:1f:12:5a:8e:27:fa:f3:60:1a:a4: e9:30:8d:c1:6c:aa:82:3f:b6:95:d3:a1:26:c2:75:ff:ad:92: 86:20:8b:40:54:14:5d:96:5b:00:15:02:3b:bd:74:fc:08:e3: 71:98:d4:47:86:e2:fe:78:d2:78:7b:57:34:f0:c8:ea:e7:f6: 59:a3:53:37:b6:81:2c:f8:40:3a:c1:0a:c6:76:c2:0e:9a:17: 74:5e:6c:cf:c7:56:5d:01:8b:0c:de:e7:52:c8:8d:4a:d3:c2: d9:15:8b:a1:ef:20:08:4e:63:bb:9c:f1:58:fc:ca:ee:08:db: b3:ef:e9:2c:2f:2e:bf:90:28:d9:86:d6:b9:fd:ad:66:b8:e7: c3:89:c4:8c:81:d5:c2:fb:c3:45:78:ba:6c:6b:4c:cc:33:d2: 8f:d0:85:22:6f:6e:a5:74:81:6d:9d:70:e5:23:15:a8:09:83: 8f:8e:13:55:db:3f:12:7e:01:10:ca:1a:13:fb:1d:f4:4d:ba: ff:fa:37:6f:2c:6f:4f:03:8f:0c:61:3d:ad:df:14:0d:95:33: 36:af:55:a0:0d:d4:ab:59:5e:2c:5c:58:ba:65:ac:a2:5d:6b: 6c:9e:e2:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCHowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZEMDQxMTAvBgNVBAUTKEM0QTRDMzU0MzU4RkQ0ODIzRjZFQzUzMTMyNzY3NDg1 NEM4NkM2REYwHhcNMjUwNDI0MTgzNzA5WhcNMjUwNTAxMTgzNzA5WjAYMRYwFAYD VQQDEw02ODBhODRkNi1jYWJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAseVTv+tV1gdAT83uBNvQuS8k2XrBhlHL5YoZ8o4Kr2T7VvrL1zwFnRl6dVYp kAmInZArigqV09KIWcM+PTvdCfSFJsalP9w/bsMLraQWk1lvRILQ0UF+PH0F9HtH 4AVayZ/lHYao4WkDVoplp7yr7PVYBkuvoFkM++QSeKEY5NkuCcHp8U8o8yHQlOno qa1tNaOpSeQnMwW72ld9B3h0kCMPzqAlTWgIfs1+5KbFiYRVptX6PRMdSsHLXbMz adjhCOkk9p9Q9317t5R3IQE1QDNKgllK874gzCbf//2a3eUNIo7tfO8R8+/u7wyn 4+07WdvIZJe7qm6EPDTmOB5TcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGnxyt3P h35haS4hUCvWq7GX//h2MB8GA1UdIwQYMBaAFMSkw1Q1j9SCP27FMTJ2dIVMhsbf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkQwNC8wQUJCRjQ3MjBE RjIxMUVBOEVFODkxM0JDNEY5QUUwMi94S1REVkRXUDFJSV9ic1V4TW5aMGhVeUd4 dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hLVERWRFdQMUlJX2JzVXhNblowaFV5R3h0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkQwNC8wQUJCRjQ3MjBERjIxMUVBOEVFODkxM0JDNEY5QUUwMi94S1REVkRXUDFJ SV9ic1V4TW5aMGhVeUd4dDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVqwJSHx5WEg0rlfWHFTctmC4ZuXjRdPcTBR8SWo4n+vNgGqTpMI3B bKqCP7aV06EmwnX/rZKGIItAVBRdllsAFQI7vXT8CONxmNRHhuL+eNJ4e1c08Mjq 5/ZZo1M3toEs+EA6wQrGdsIOmhd0XmzPx1ZdAYsM3udSyI1K08LZFYuh7yAITmO7 nPFY/MruCNuz7+ksLy6/kCjZhta5/a1muOfDicSMgdXC+8NFeLpsa0zMM9KP0IUi b26ldIFtnXDlIxWoCYOPjhNV2z8SfgEQyhoT+x30Tbr/+jdvLG9PA48MYT2t3xQN lTM2r1WgDdSrWV4sXFi6ZayiXWtsnuIa -----END CERTIFICATE-----Generated at Sat Apr 26 07:46:12 2025 by rpki-client