$ rpki-client -vvf rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.mft File: 2MZzCV6Cqbfn381GWA94MajRiso.mft (raw, json) Hash identifier: Ct/Nje/K5qJdQA3QsX8t8IYX040ONosd5t98TGtbHVY= Subject key identifier: 5B:3B:7F:52:D2:D9:8F:F7:84:B2:33:F0:C9:3B:96:B6:2C:87:2A:6F Authority key identifier: D8:C6:73:09:5E:82:A9:B7:E7:DF:CD:46:58:0F:78:31:A8:D1:8A:CA Certificate issuer: /CN=A911862D/serialNumber=D8C673095E82A9B7E7DFCD46580F7831A8D18ACA Certificate serial: 1726 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2MZzCV6Cqbfn381GWA94MajRiso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.mft Manifest number: 170B Signing time: Thu 24 Apr 2025 16:40:09 +0000 Manifest this update: Thu 24 Apr 2025 16:40:09 +0000 Manifest next update: Thu 01 May 2025 16:40:09 +0000 Files and hashes: 1: 2MZzCV6Cqbfn381GWA94MajRiso.crl (hash: JffkhWhFNDPPcc3xV132kxXscr6mw0Y8u21LJlhpo/I=) 2: D4A7497E6E6B11EF9FC61C6AC4F9AE02.roa (hash: JBsRHnJPdnzdINV0pvwEs0IpHO7Li2A9KaO/T3DyLM8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.crl rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2MZzCV6Cqbfn381GWA94MajRiso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:40:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5926 (0x1726) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911862D, serialNumber=D8C673095E82A9B7E7DFCD46580F7831A8D18ACA Validity Not Before: Apr 24 16:40:09 2025 GMT Not After : May 1 16:40:09 2025 GMT Subject: CN=680a6969-1a93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:09:ec:95:2b:87:e9:a3:f6:cf:bc:8e:28:66: 8a:c9:d3:be:c5:24:4e:8c:18:6f:e7:51:9d:0b:82: c2:4a:a6:82:9e:b9:fa:95:e8:dc:cf:cd:22:17:08: 53:3b:a6:52:e5:33:55:bd:25:da:76:c9:09:b1:72: b7:35:c3:9d:9b:87:d3:8e:0c:bf:3f:eb:0c:24:05: 5c:7a:28:46:3c:9f:12:1f:0b:c3:1d:96:33:e4:56: b6:fa:55:ed:10:d0:12:86:27:96:7a:44:cf:ad:f8: 87:47:80:ef:d1:ba:f7:3e:f4:85:24:c8:18:28:5a: 11:d3:80:1c:30:bd:9b:f3:11:a1:4b:66:30:c9:ae: 3c:48:93:86:8e:5c:c2:8f:76:93:57:b1:ce:d0:b7: a7:63:ee:75:c8:d7:bb:a4:aa:97:c9:8a:df:84:8d: 24:bb:7f:55:5f:48:30:6a:36:6f:b9:5f:cd:5e:20: bc:32:11:18:c7:dc:e2:8b:ce:20:ab:2b:14:dc:2d: 5c:bc:39:f8:c0:81:bc:d4:ea:ae:4a:93:df:db:01: 33:dc:67:57:55:54:24:7e:8d:a1:bb:d9:86:c2:02: 52:f6:92:db:1a:84:3c:88:ec:ca:70:35:af:11:5e: 35:20:b0:b0:0f:69:75:fb:97:b1:55:8c:3c:4e:ae: 70:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:3B:7F:52:D2:D9:8F:F7:84:B2:33:F0:C9:3B:96:B6:2C:87:2A:6F X509v3 Authority Key Identifier: keyid:D8:C6:73:09:5E:82:A9:B7:E7:DF:CD:46:58:0F:78:31:A8:D1:8A:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2MZzCV6Cqbfn381GWA94MajRiso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:4b:66:63:c9:a8:e4:1a:8f:84:e5:b4:62:54:a5:59:c9:19: ea:53:2b:a3:fe:e5:4b:f6:02:c1:41:8e:d1:e9:e0:d8:70:04: a5:89:00:ce:ea:79:a4:68:48:c2:08:78:55:b2:9c:75:82:38: c8:0d:81:d7:9e:02:9d:4c:72:bd:35:61:ae:76:43:4d:78:8d: c0:ad:08:73:44:6b:13:44:b4:8c:90:18:20:c9:76:eb:10:b0: 18:f1:f8:22:4d:9d:7a:3b:26:7f:88:a8:b6:84:2e:de:5f:cc: a3:18:8d:0f:3b:18:22:56:91:f9:01:a8:fb:6a:b4:64:8f:70: 4d:28:69:8b:59:30:ab:e4:74:a0:c7:1e:da:1a:8d:92:97:4e: 17:3a:a5:66:0c:0b:53:e1:3e:3f:f7:0c:b4:d8:d9:c4:27:68: 44:bf:a4:06:71:51:3c:f0:96:80:bc:ab:18:a8:6a:99:c1:c9: 15:57:43:b9:7d:63:ee:9c:98:d3:34:2f:dd:51:03:d3:8b:36: 3e:ae:6b:0c:1a:ce:b7:f1:9f:61:80:e4:53:cd:54:d3:5c:e2: 33:fe:2d:91:d7:47:6b:e0:cb:26:91:45:1a:9a:de:5d:5c:52: 25:38:da:21:e9:cc:c6:d7:39:65:bf:76:cc:a3:bd:7f:c5:fd: 4e:88:74:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFyYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg2MkQxMTAvBgNVBAUTKEQ4QzY3MzA5NUU4MkE5QjdFN0RGQ0Q0NjU4MEY3ODMx QThEMThBQ0EwHhcNMjUwNDI0MTY0MDA5WhcNMjUwNTAxMTY0MDA5WjAYMRYwFAYD VQQDEw02ODBhNjk2OS0xYTkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqAnslSuH6aP2z7yOKGaKydO+xSROjBhv51GdC4LCSqaCnrn6lejcz80iFwhT O6ZS5TNVvSXadskJsXK3NcOdm4fTjgy/P+sMJAVceihGPJ8SHwvDHZYz5Fa2+lXt ENAShieWekTPrfiHR4Dv0br3PvSFJMgYKFoR04AcML2b8xGhS2Ywya48SJOGjlzC j3aTV7HO0LenY+51yNe7pKqXyYrfhI0ku39VX0gwajZvuV/NXiC8MhEYx9zii84g qysU3C1cvDn4wIG81OquSpPf2wEz3GdXVVQkfo2hu9mGwgJS9pLbGoQ8iOzKcDWv EV41ILCwD2l1+5exVYw8Tq5wsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFs7f1LS 2Y/3hLIz8Mk7lrYshypvMB8GA1UdIwQYMBaAFNjGcwlegqm359/NRlgPeDGo0YrK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODYyRC8zMjg3OUQzQUU4 QkExMUU3OEE2QTcwNDJDNEY5QUUwMi8yTVp6Q1Y2Q3FiZm4zODFHV0E5NE1halJp c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJNWnpDVjZDcWJmbjM4MUdXQTk0TWFqUmlzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODYyRC8zMjg3OUQzQUU4QkExMUU3OEE2QTcwNDJDNEY5QUUwMi8yTVp6Q1Y2Q3Fi Zm4zODFHV0E5NE1halJpc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAS2ZjyajkGo+E5bRiVKVZyRnqUyuj/uVL9gLBQY7R6eDYcASliQDO 6nmkaEjCCHhVspx1gjjIDYHXngKdTHK9NWGudkNNeI3ArQhzRGsTRLSMkBggyXbr ELAY8fgiTZ16OyZ/iKi2hC7eX8yjGI0POxgiVpH5Aaj7arRkj3BNKGmLWTCr5HSg xx7aGo2Sl04XOqVmDAtT4T4/9wy02NnEJ2hEv6QGcVE88JaAvKsYqGqZwckVV0O5 fWPunJjTNC/dUQPTizY+rmsMGs638Z9hgORTzVTTXOIz/i2R10dr4MsmkUUamt5d XFIlONoh6czG1zllv3bMo71/xf1OiHQl -----END CERTIFICATE-----Generated at Sat Apr 26 04:34:15 2025 by rpki-client