$ rpki-client -vvf rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft File: 2WQZRdW0z31j_JExr89yeuNtkCA.mft (raw, json) Hash identifier: Z4wx+aH8TP6qQgkrlmzigbiDJK7eolsQSuwv6iM1YE4= Subject key identifier: F4:23:98:54:A1:D6:C4:EC:46:D1:DA:54:86:64:A5:AA:7B:E9:54:2D Authority key identifier: D9:64:19:45:D5:B4:CF:7D:63:FC:91:31:AF:CF:72:7A:E3:6D:90:20 Certificate issuer: /CN=A911F316/serialNumber=D9641945D5B4CF7D63FC9131AFCF727AE36D9020 Certificate serial: 01CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft Manifest number: 01C1 Signing time: Fri 25 Apr 2025 02:13:40 +0000 Manifest this update: Fri 25 Apr 2025 02:13:39 +0000 Manifest next update: Fri 02 May 2025 02:13:39 +0000 Files and hashes: 1: 2WQZRdW0z31j_JExr89yeuNtkCA.crl (hash: qgUu2oLQocPwQBLp9kCyTbyWXKZhyqV/2YlJDtD1tEA=) 2: 15714ED2776A11ED98AF7341C4F9AE02.roa (hash: WBxu67wj7qK+1XHnF6Gm/tpT83HjDxcRJ+5R7dbCf7I=) 3: 77490C9A792F11EEBF849942C4F9AE02.roa (hash: +qSb4R4TGVMwO8UibifLnyUfy5g07BZr/1fOfOFiaKg=) 4: 590A6A9A792E11EEA5AAB840C4F9AE02.roa (hash: TjgZvd8NTyfnTIYx+SMzczM6IMYvFc5scP1aWMMbHyE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.crl rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:13:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 459 (0x1cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F316, serialNumber=D9641945D5B4CF7D63FC9131AFCF727AE36D9020 Validity Not Before: Apr 25 02:13:39 2025 GMT Not After : May 2 02:13:39 2025 GMT Subject: CN=680aefd3-9c38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:d7:ba:79:df:b1:56:ba:9b:fa:8c:25:84:fa: f0:e0:f6:f5:30:4f:e4:ff:76:8c:26:77:11:2d:60: 5b:65:ce:46:c6:41:ce:26:7d:59:fc:ce:98:63:da: 8a:b9:51:ff:0d:2f:94:ff:cf:77:c7:74:24:26:64: cd:52:4f:80:d6:86:e5:04:83:fd:aa:db:55:39:05: 77:32:83:d1:49:c8:76:a1:06:57:29:29:92:a3:dd: ff:1b:be:2f:85:09:a8:fa:b6:39:df:6f:46:4d:85: c8:e4:fc:2b:e8:b1:ce:0e:a2:7f:fe:74:d2:cd:57: a5:63:c3:44:8f:09:b3:fa:94:3d:0a:f2:19:6d:0a: 27:28:4e:a4:20:34:0f:64:6a:a1:26:11:9b:c4:12: cc:00:13:36:03:98:d5:6c:30:33:0f:3b:16:66:5e: 31:01:a4:f7:9b:40:c9:b2:d7:ce:1e:2d:22:59:48: 9d:8a:b1:62:c8:89:27:ad:42:dc:01:9a:c7:e3:43: 06:a6:dc:b0:31:fd:66:f1:fe:b8:b5:f9:bf:fb:04: 85:98:a2:f5:b8:e3:c1:a2:df:c0:e6:02:5b:dd:86: 6a:d8:6b:78:e2:2c:1f:9a:e0:c9:a8:f6:47:1b:c3: f8:28:4c:6f:a4:e5:e5:9b:2e:ad:2c:7b:4f:c5:8f: d9:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:23:98:54:A1:D6:C4:EC:46:D1:DA:54:86:64:A5:AA:7B:E9:54:2D X509v3 Authority Key Identifier: keyid:D9:64:19:45:D5:B4:CF:7D:63:FC:91:31:AF:CF:72:7A:E3:6D:90:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:24:13:dc:06:9a:59:b9:c3:d0:25:86:2d:03:2a:8b:02:a9: b4:39:db:2f:64:18:df:43:85:e0:95:5e:2d:80:19:09:92:1a: c2:c4:86:36:94:ed:64:03:e2:66:3d:4a:5f:12:7f:ef:51:c0: b7:0b:31:d8:0f:04:c3:5f:e8:f6:c8:1d:62:a7:e2:7a:60:57: f5:bc:41:53:86:02:e3:d9:10:98:49:c0:7e:d2:10:03:7d:a6: c7:8c:e1:7c:85:c3:6b:9b:e9:5b:1d:90:da:aa:a8:49:29:60: 08:fc:f9:d6:4b:7c:6f:5f:f9:78:ec:42:10:6d:da:5c:14:7f: 58:74:a5:15:bd:3a:cb:db:bf:07:03:9f:0b:3a:99:d9:b6:21: 05:28:3c:37:3f:a6:8d:b2:02:a1:11:46:41:5d:fa:c9:83:7e: 4d:36:78:f5:34:bc:a9:46:b9:ec:fc:58:b5:e5:e8:f8:37:70: 37:34:53:48:42:d5:e4:62:53:0e:cc:47:b8:e8:da:07:40:d7: f8:27:ed:64:d2:0e:3a:6b:f5:09:0f:d1:c9:b8:e5:36:fe:f2: 08:e6:9e:33:95:ba:df:06:f6:e6:54:44:6a:26:5e:03:45:ba: 6c:f6:f6:df:38:e4:84:1f:11:91:cf:79:d0:4b:10:dc:cf:93: 05:aa:50:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUYzMTYxMTAvBgNVBAUTKEQ5NjQxOTQ1RDVCNENGN0Q2M0ZDOTEzMUFGQ0Y3MjdB RTM2RDkwMjAwHhcNMjUwNDI1MDIxMzM5WhcNMjUwNTAyMDIxMzM5WjAYMRYwFAYD VQQDEw02ODBhZWZkMy05YzM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwte6ed+xVrqb+owlhPrw4Pb1ME/k/3aMJncRLWBbZc5GxkHOJn1Z/M6YY9qK uVH/DS+U/893x3QkJmTNUk+A1oblBIP9qttVOQV3MoPRSch2oQZXKSmSo93/G74v hQmo+rY5329GTYXI5Pwr6LHODqJ//nTSzVelY8NEjwmz+pQ9CvIZbQonKE6kIDQP ZGqhJhGbxBLMABM2A5jVbDAzDzsWZl4xAaT3m0DJstfOHi0iWUidirFiyIknrULc AZrH40MGptywMf1m8f64tfm/+wSFmKL1uOPBot/A5gJb3YZq2Gt44iwfmuDJqPZH G8P4KExvpOXlmy6tLHtPxY/ZCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPQjmFSh 1sTsRtHaVIZkpap76VQtMB8GA1UdIwQYMBaAFNlkGUXVtM99Y/yRMa/PcnrjbZAg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjMxNi9BMURGMTUyMDc3 NEMxMUVEQjgyNkJDMEJDNEY5QUUwMi8yV1FaUmRXMHozMWpfSkV4cjg5eWV1TnRr Q0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJXUVpSZFcwejMxal9KRXhyODl5ZXVOdGtDQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjMxNi9BMURGMTUyMDc3NEMxMUVEQjgyNkJDMEJDNEY5QUUwMi8yV1FaUmRXMHoz MWpfSkV4cjg5eWV1TnRrQ0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWJBPcBppZucPQJYYtAyqLAqm0OdsvZBjfQ4XglV4tgBkJkhrCxIY2 lO1kA+JmPUpfEn/vUcC3CzHYDwTDX+j2yB1ip+J6YFf1vEFThgLj2RCYScB+0hAD fabHjOF8hcNrm+lbHZDaqqhJKWAI/PnWS3xvX/l47EIQbdpcFH9YdKUVvTrL278H A58LOpnZtiEFKDw3P6aNsgKhEUZBXfrJg35NNnj1NLypRrns/Fi15ej4N3A3NFNI QtXkYlMOzEe46NoHQNf4J+1k0g46a/UJD9HJuOU2/vII5p4zlbrfBvbmVERqJl4D Rbps9vbfOOSEHxGRz3nQSxDcz5MFqlAJ -----END CERTIFICATE-----Generated at Sat Apr 26 12:37:42 2025 by rpki-client