$ rpki-client -vvf rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft File: xCIPUDVWR7fICyzovHEmqsLiLTc.mft (raw, json) Hash identifier: ZHvCLn/vbz9tdXdHh0gTss+slVXUVgF281z5/C1oQy4= Subject key identifier: 16:5F:2A:98:84:0A:BB:D2:59:F5:B0:46:A6:A1:FB:CB:BC:AC:54:E2 Authority key identifier: C4:22:0F:50:35:56:47:B7:C8:0B:2C:E8:BC:71:26:AA:C2:E2:2D:37 Certificate issuer: /CN=A919D64D/serialNumber=C4220F50355647B7C80B2CE8BC7126AAC2E22D37 Certificate serial: 34A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft Manifest number: 348B Signing time: Thu 24 Apr 2025 14:18:26 +0000 Manifest this update: Thu 24 Apr 2025 14:18:25 +0000 Manifest next update: Thu 01 May 2025 14:18:25 +0000 Files and hashes: 1: xCIPUDVWR7fICyzovHEmqsLiLTc.crl (hash: Y6+ZQALDOiGa+Pq/5x7lp1OE2A27XmvicOEGc46uqbk=) 2: 2C5F8752A10D11EFB9BE8476C4F9AE02.roa (hash: Iv390Bd/MJyqbzwOB0bqCA/PrLBJuVtYX/m4XRUDX5k=) 3: 8C2774CA0F3511EF93020023C4F9AE02.roa (hash: jfY5GTg8hmmhErbL9iwX+gxSO1reSXWac9mVO/Xqq1g=) 4: D7ABA864DFE611ED8872DE0EC4F9AE02.roa (hash: 6UO6N8yoyg6+8CvpDMt8iCmfSbV26PbG92dRF9r0otc=) 5: F8E58782A10C11EFA3C0F375C4F9AE02.roa (hash: joxi3OaPnE1De2CkoKX8c3yAH5f2DPtnnESV+trPxbM=) 6: 24C4305A7CD911EEB0B4C962C4F9AE02.roa (hash: 0Wsr5VamrOSe1PRZDclYr+ROoB9PidSlGQIwmrfuBe4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.crl rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:18:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13473 (0x34a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D64D, serialNumber=C4220F50355647B7C80B2CE8BC7126AAC2E22D37 Validity Not Before: Apr 24 14:18:25 2025 GMT Not After : May 1 14:18:25 2025 GMT Subject: CN=680a4831-58e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:4d:3a:07:b5:be:88:af:22:98:15:fa:5d:57: 14:7d:12:a3:5f:10:0c:b4:ac:4e:23:34:52:3c:15: 53:b0:de:2f:0d:4c:d3:9f:5b:a1:49:4c:21:60:b0: 32:cd:85:b3:eb:ff:2a:bf:b4:ba:72:d4:d8:84:ee: ef:5f:69:57:10:8b:0d:57:76:6c:ee:09:69:72:ae: d5:f2:ed:7c:04:8d:d7:b9:c8:e0:55:fc:94:c1:21: cd:b8:44:82:35:3a:11:1b:55:07:cd:0f:55:59:f8: e0:ac:98:1c:5d:3f:c0:4c:69:48:c0:05:d8:d2:da: 31:90:65:ef:b2:07:27:50:97:69:24:fd:90:2c:ac: 01:ec:dd:df:ab:a9:b5:4a:93:72:0e:ea:e3:72:ea: 4a:af:e0:f3:bc:aa:e9:ad:47:e4:75:bd:eb:ce:d1: 96:65:2f:e7:39:48:b9:1c:50:24:35:cb:84:e8:82: 64:d9:a5:b8:00:c7:94:0f:b1:f0:49:f2:8b:32:7d: 3d:92:cf:8d:a8:92:7d:ff:2e:e0:84:6c:10:04:a8: 3f:de:a5:aa:38:30:4a:be:29:a8:81:05:82:a8:98: 5a:59:b8:38:9a:c9:f3:77:74:83:da:5c:69:38:3a: c9:cb:73:d4:53:1b:2a:e5:18:ed:41:8f:84:c2:b9: 9e:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:5F:2A:98:84:0A:BB:D2:59:F5:B0:46:A6:A1:FB:CB:BC:AC:54:E2 X509v3 Authority Key Identifier: keyid:C4:22:0F:50:35:56:47:B7:C8:0B:2C:E8:BC:71:26:AA:C2:E2:2D:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:82:10:7d:a4:8b:e4:a8:29:aa:a0:5a:a0:7e:8d:9c:62:e7: 31:af:36:cb:74:28:77:a9:73:98:ec:4d:4b:95:96:dd:9b:26: a1:f7:c2:ef:4a:db:0a:2c:b0:02:e2:45:e8:d4:24:d0:1e:d5: 24:c2:a9:cc:84:5b:49:56:fb:4d:5a:ad:f1:34:97:cd:a9:cf: 5b:2b:58:13:48:df:ab:7c:4f:25:f6:c6:f0:65:aa:d5:8c:7e: ca:ea:64:30:bd:3d:7d:b5:42:19:5f:f9:10:c0:16:aa:31:2a: 61:15:7e:1d:5c:5c:3d:2d:13:bc:65:0c:dd:0c:11:2c:91:6f: 68:ec:78:5c:7f:d9:c6:85:23:42:ea:4f:4e:d0:56:85:03:49: c8:cb:ab:73:01:c5:68:7a:3f:8c:0c:77:0b:d7:6c:bb:06:18: 25:85:a0:30:e9:f5:7d:de:12:0d:52:8a:d6:ed:12:72:0b:8a: e1:34:a0:ce:60:e5:a0:89:f5:96:eb:a2:c4:e5:7c:e9:69:dd: f8:b3:4b:61:e1:05:92:50:c6:3f:3b:2f:54:93:66:d8:20:dd: 26:31:97:53:32:97:5e:a7:79:72:bd:c3:2f:99:9b:14:d0:de: 2d:7d:4a:b0:29:e1:81:93:23:8c:e6:a5:5b:75:08:b3:d9:bb: ef:c5:ff:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQ2NEQxMTAvBgNVBAUTKEM0MjIwRjUwMzU1NjQ3QjdDODBCMkNFOEJDNzEyNkFB QzJFMjJEMzcwHhcNMjUwNDI0MTQxODI1WhcNMjUwNTAxMTQxODI1WjAYMRYwFAYD VQQDEw02ODBhNDgzMS01OGU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4U06B7W+iK8imBX6XVcUfRKjXxAMtKxOIzRSPBVTsN4vDUzTn1uhSUwhYLAy zYWz6/8qv7S6ctTYhO7vX2lXEIsNV3Zs7glpcq7V8u18BI3XucjgVfyUwSHNuESC NToRG1UHzQ9VWfjgrJgcXT/ATGlIwAXY0toxkGXvsgcnUJdpJP2QLKwB7N3fq6m1 SpNyDurjcupKr+DzvKrprUfkdb3rztGWZS/nOUi5HFAkNcuE6IJk2aW4AMeUD7Hw SfKLMn09ks+NqJJ9/y7ghGwQBKg/3qWqODBKvimogQWCqJhaWbg4msnzd3SD2lxp ODrJy3PUUxsq5RjtQY+EwrmeQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBZfKpiE CrvSWfWwRqah+8u8rFTiMB8GA1UdIwQYMBaAFMQiD1A1Vke3yAss6LxxJqrC4i03 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDY0RC9EOTMzM0ZFNDFE NkUxMUUyQTg1MDgwQjAwOEIwMkNEMi94Q0lQVURWV1I3ZklDeXpvdkhFbXFzTGlM VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hDSVBVRFZXUjdmSUN5em92SEVtcXNMaUxUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDY0RC9EOTMzM0ZFNDFENkUxMUUyQTg1MDgwQjAwOEIwMkNEMi94Q0lQVURWV1I3 ZklDeXpvdkhFbXFzTGlMVGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdghB9pIvkqCmqoFqgfo2cYucxrzbLdCh3qXOY7E1LlZbdmyah98Lv StsKLLAC4kXo1CTQHtUkwqnMhFtJVvtNWq3xNJfNqc9bK1gTSN+rfE8l9sbwZarV jH7K6mQwvT19tUIZX/kQwBaqMSphFX4dXFw9LRO8ZQzdDBEskW9o7Hhcf9nGhSNC 6k9O0FaFA0nIy6tzAcVoej+MDHcL12y7BhglhaAw6fV93hINUorW7RJyC4rhNKDO YOWgifWW66LE5Xzpad34s0th4QWSUMY/Oy9Uk2bYIN0mMZdTMpdep3lyvcMvmZsU 0N4tfUqwKeGBkyOM5qVbdQiz2bvvxf8Z -----END CERTIFICATE-----Generated at Sat Apr 26 04:19:53 2025 by rpki-client