$ rpki-client -vvf rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.mft File: xPuRgT57oJnZHpxIFyCUuZBcDxE.mft (raw, json) Hash identifier: xBYzvWvJUGyz8EZ2JF/VdTgvInwP5LlTIVaynzy96lo= Subject key identifier: CC:6D:27:36:DA:14:32:69:85:EE:AD:DD:3C:EE:2D:E3:64:A4:97:49 Authority key identifier: C4:FB:91:81:3E:7B:A0:99:D9:1E:9C:48:17:20:94:B9:90:5C:0F:11 Certificate issuer: /CN=A919B3BC/serialNumber=C4FB91813E7BA099D91E9C48172094B9905C0F11 Certificate serial: 1E1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPuRgT57oJnZHpxIFyCUuZBcDxE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.mft Manifest number: 1DFC Signing time: Thu 24 Apr 2025 16:07:08 +0000 Manifest this update: Thu 24 Apr 2025 16:07:07 +0000 Manifest next update: Thu 01 May 2025 16:07:07 +0000 Files and hashes: 1: xPuRgT57oJnZHpxIFyCUuZBcDxE.crl (hash: T1RSPWL5/y+NwwJ1w7iHNpN9c/qX1Nl0usn4QMk3lu8=) 2: 6553E9461A0611F08E7AD42AC4F9AE02.roa (hash: f1rUI1t3KqdGMKeqiBAUTM/laLwJwP3gycWHTBm/djM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.crl rsync://rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPuRgT57oJnZHpxIFyCUuZBcDxE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:07:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7706 (0x1e1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B3BC, serialNumber=C4FB91813E7BA099D91E9C48172094B9905C0F11 Validity Not Before: Apr 24 16:07:07 2025 GMT Not After : May 1 16:07:07 2025 GMT Subject: CN=680a61ab-99a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:8e:cf:4a:68:18:58:93:f3:c3:2d:73:37:d4: 11:50:91:63:dc:a5:26:5a:71:fc:76:24:15:d9:12: 0e:8c:5a:f4:a1:7d:fa:12:ab:01:47:6f:d8:9f:7d: ec:90:19:ea:46:f5:69:86:fb:be:37:70:0d:38:44: dc:ee:24:5d:fa:0b:b5:6d:79:b5:28:ba:7b:e1:ab: 9d:18:35:20:c8:8c:de:9b:83:53:8d:93:13:a9:c5: 1f:61:0d:f7:4f:f5:eb:ee:3f:a4:05:d5:7a:f9:13: f8:a2:ff:2f:26:28:76:ea:b8:a9:7c:ae:f0:a8:48: 8c:84:38:f0:5e:f0:26:da:37:4a:f0:e3:6c:70:37: 72:9c:06:55:b8:ec:9b:f0:f6:5f:30:9b:e2:18:7e: d2:44:3a:6a:76:a5:4c:6d:bd:ab:c4:c1:0a:de:4d: a2:b5:33:b3:e4:34:9e:8c:74:84:99:00:19:ec:29: 2f:2c:73:ce:5b:a5:68:cc:e1:1a:79:46:a4:f4:a0: 04:4e:58:4b:7a:cf:9e:8f:69:44:2f:f4:31:ac:e1: a4:5a:30:df:56:83:ad:a4:e0:38:18:a9:1d:f3:28: 5c:70:d2:31:8f:2c:f4:76:48:18:f1:56:31:6c:d4: 33:dd:13:39:cf:45:fd:2d:0a:88:61:92:95:a2:f8: c1:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:6D:27:36:DA:14:32:69:85:EE:AD:DD:3C:EE:2D:E3:64:A4:97:49 X509v3 Authority Key Identifier: keyid:C4:FB:91:81:3E:7B:A0:99:D9:1E:9C:48:17:20:94:B9:90:5C:0F:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPuRgT57oJnZHpxIFyCUuZBcDxE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:91:55:8e:2a:a6:64:f1:1d:6d:80:5e:50:2a:80:22:82:61: 38:d9:62:a1:70:28:a3:1e:5a:76:58:28:bb:bf:43:76:66:f4: 6f:bb:cf:55:76:95:3e:13:b7:71:e0:2d:7f:ea:d5:46:0a:cc: 4d:b1:3c:3e:c1:6a:d7:92:3a:2b:a2:9f:d7:fa:23:b9:fe:ae: 44:bb:c9:bd:30:35:70:76:fb:58:54:31:2d:75:d0:8b:85:07: 19:50:14:14:11:f4:c1:26:bc:f0:9c:15:92:88:9f:99:ce:5b: b9:36:54:21:2c:90:aa:25:bc:58:29:54:dc:0f:7c:d9:a3:74: e6:99:77:eb:ed:de:ea:82:ca:0f:11:73:27:13:15:67:e0:ff: 18:f5:74:e6:48:3a:4e:df:8b:a9:b5:66:1d:d2:21:03:c1:b0: ed:75:a5:28:fc:d1:04:06:58:5f:6a:5f:b9:0e:3d:00:01:ac: 62:61:8e:80:b0:87:be:5e:f1:b3:ef:ca:2c:39:48:14:8c:66: d5:5d:cb:80:e1:53:ab:63:a4:1d:1a:4f:c2:97:21:75:01:18: d4:bd:4b:b1:a7:fb:38:2a:0c:6a:6e:94:17:4e:0b:ac:45:a8: 59:49:4a:b5:e1:97:12:62:03:d0:e4:a6:da:fb:e7:91:75:25: 5b:a5:ff:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHhowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUIzQkMxMTAvBgNVBAUTKEM0RkI5MTgxM0U3QkEwOTlEOTFFOUM0ODE3MjA5NEI5 OTA1QzBGMTEwHhcNMjUwNDI0MTYwNzA3WhcNMjUwNTAxMTYwNzA3WjAYMRYwFAYD VQQDEw02ODBhNjFhYi05OWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwY7PSmgYWJPzwy1zN9QRUJFj3KUmWnH8diQV2RIOjFr0oX36EqsBR2/Yn33s kBnqRvVphvu+N3ANOETc7iRd+gu1bXm1KLp74audGDUgyIzem4NTjZMTqcUfYQ33 T/Xr7j+kBdV6+RP4ov8vJih26ripfK7wqEiMhDjwXvAm2jdK8ONscDdynAZVuOyb 8PZfMJviGH7SRDpqdqVMbb2rxMEK3k2itTOz5DSejHSEmQAZ7CkvLHPOW6VozOEa eUak9KAETlhLes+ej2lEL/QxrOGkWjDfVoOtpOA4GKkd8yhccNIxjyz0dkgY8VYx bNQz3RM5z0X9LQqIYZKVovjBNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMxtJzba FDJphe6t3TzuLeNkpJdJMB8GA1UdIwQYMBaAFMT7kYE+e6CZ2R6cSBcglLmQXA8R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjNCQy8zODEyNDRGRThG OUIxMUU2QkVDNUNCMjVDNEY5QUUwMi94UHVSZ1Q1N29KblpIcHhJRnlDVXVaQmNE eEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hQdVJnVDU3b0puWkhweElGeUNVdVpCY0R4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QjNCQy8zODEyNDRGRThGOUIxMUU2QkVDNUNCMjVDNEY5QUUwMi94UHVSZ1Q1N29K blpIcHhJRnlDVXVaQmNEeEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0kVWOKqZk8R1tgF5QKoAigmE42WKhcCijHlp2WCi7v0N2ZvRvu89V dpU+E7dx4C1/6tVGCsxNsTw+wWrXkjorop/X+iO5/q5Eu8m9MDVwdvtYVDEtddCL hQcZUBQUEfTBJrzwnBWSiJ+Zzlu5NlQhLJCqJbxYKVTcD3zZo3TmmXfr7d7qgsoP EXMnExVn4P8Y9XTmSDpO34uptWYd0iEDwbDtdaUo/NEEBlhfal+5Dj0AAaxiYY6A sIe+XvGz78osOUgUjGbVXcuA4VOrY6QdGk/ClyF1ARjUvUuxp/s4KgxqbpQXTgus RahZSUq14ZcSYgPQ5Kba++eRdSVbpf9I -----END CERTIFICATE-----Generated at Sat Apr 26 04:33:22 2025 by rpki-client