$ rpki-client -vvf rpki.apnic.net/member_repository/A91293E9/83A174FC8C6811EB981B2542C4F9AE02/2cYV0QtB5uVphlzKp_4oDRKOMRw.mft File: 2cYV0QtB5uVphlzKp_4oDRKOMRw.mft (raw, json) Hash identifier: yDjQSve/8rWmEKgaAYLhfHDnhYiHv+IqOzqbOigl51A= Subject key identifier: 59:77:14:2C:68:6B:A2:25:F6:5A:36:85:EF:4C:39:71:50:0D:E1:C7 Authority key identifier: D9:C6:15:D1:0B:41:E6:E5:69:86:5C:CA:A7:FE:28:0D:12:8E:31:1C Certificate issuer: /CN=A91293E9/serialNumber=D9C615D10B41E6E569865CCAA7FE280D128E311C Certificate serial: 064C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2cYV0QtB5uVphlzKp_4oDRKOMRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91293E9/83A174FC8C6811EB981B2542C4F9AE02/2cYV0QtB5uVphlzKp_4oDRKOMRw.mft Manifest number: 0641 Signing time: Thu 24 Apr 2025 22:24:36 +0000 Manifest this update: Thu 24 Apr 2025 22:24:36 +0000 Manifest next update: Thu 01 May 2025 22:24:36 +0000 Files and hashes: 1: 2cYV0QtB5uVphlzKp_4oDRKOMRw.crl (hash: CbsPllhY5f4zvQG+nMByne1QppAeVQleE69Qf45kycU=) 2: 1AC1982A8C6A11EB91832D52C4F9AE02.roa (hash: fSfAPi/bUi9k15IOKds7b6yXEktxoZjFwfG44RAp5IM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91293E9/83A174FC8C6811EB981B2542C4F9AE02/2cYV0QtB5uVphlzKp_4oDRKOMRw.crl rsync://rpki.apnic.net/member_repository/A91293E9/83A174FC8C6811EB981B2542C4F9AE02/2cYV0QtB5uVphlzKp_4oDRKOMRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2cYV0QtB5uVphlzKp_4oDRKOMRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:24:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1612 (0x64c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91293E9, serialNumber=D9C615D10B41E6E569865CCAA7FE280D128E311C Validity Not Before: Apr 24 22:24:36 2025 GMT Not After : May 1 22:24:36 2025 GMT Subject: CN=680aba24-96e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:44:9e:0a:52:f2:de:21:31:bc:0b:89:31:74: 64:e9:89:dd:bb:12:0b:12:0f:4e:4f:21:0a:32:81: 39:ac:fc:68:49:f0:8e:68:b2:3a:98:49:29:48:f4: a5:91:4e:0d:4c:08:c2:f8:8f:7f:97:8e:f2:07:e2: 3e:c1:07:e0:62:6a:d9:89:b4:00:55:a2:c3:4b:23: b0:6a:5d:2c:e3:a1:f9:52:96:e2:e3:35:88:e4:96: 86:35:90:58:01:82:39:6b:31:ec:3d:ce:da:e3:74: 32:4d:de:c1:a4:e1:a1:fc:73:ff:71:1d:9b:6b:7b: 58:bf:1e:c3:2e:15:da:12:d1:72:73:64:93:63:5f: d4:01:31:33:db:2d:c0:e5:1c:0f:78:9d:99:47:fe: 43:51:97:e3:c3:47:e2:36:ae:77:05:83:85:44:60: 8d:1c:74:4d:e2:1d:0b:01:00:06:dd:2c:a6:6b:03: a4:c1:a7:5d:04:63:48:6d:07:08:4f:0a:9d:49:aa: d7:20:c9:05:7d:43:32:af:08:96:d6:f2:bf:a4:0c: 65:58:a1:72:e8:ee:1b:c0:c6:04:47:a3:d3:95:fc: 68:24:7d:a2:5b:b9:ea:f5:05:86:0a:d8:9a:b7:5b: c3:a2:44:66:90:35:d9:fe:b9:13:b4:00:fe:84:a6: a3:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:77:14:2C:68:6B:A2:25:F6:5A:36:85:EF:4C:39:71:50:0D:E1:C7 X509v3 Authority Key Identifier: keyid:D9:C6:15:D1:0B:41:E6:E5:69:86:5C:CA:A7:FE:28:0D:12:8E:31:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91293E9/83A174FC8C6811EB981B2542C4F9AE02/2cYV0QtB5uVphlzKp_4oDRKOMRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2cYV0QtB5uVphlzKp_4oDRKOMRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91293E9/83A174FC8C6811EB981B2542C4F9AE02/2cYV0QtB5uVphlzKp_4oDRKOMRw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:a6:dd:6f:ee:64:33:30:ce:75:91:eb:9e:85:35:ca:19:65: 29:67:df:35:ca:f0:da:65:81:4e:3a:17:2b:d4:15:3b:23:72: f3:f2:bd:18:3a:98:92:35:9a:d2:49:34:06:c5:94:2b:47:ae: d4:33:65:4b:a2:92:7f:4a:67:83:d1:3a:b5:05:b3:78:61:6c: e5:da:b5:42:c3:95:f0:2c:6a:61:62:27:c3:52:26:46:64:a3: a8:43:75:16:6e:c4:1c:93:15:35:b5:60:31:0d:63:12:06:82: 52:de:8e:66:85:55:b3:a5:84:d3:1e:ab:9a:f8:b0:d9:c8:38: fe:3e:b6:41:ae:76:d2:97:52:ad:37:61:6a:ee:30:04:80:7e: 74:d0:2a:a1:cd:77:25:11:2a:c6:ed:a5:98:ec:18:2b:a9:c5: db:b6:40:67:b4:ea:8a:93:46:c7:ce:dc:13:a4:d4:55:ca:08: ea:a7:64:1e:61:0a:6e:d7:9b:63:32:0d:37:a3:fe:10:5a:ad: 74:5d:ea:34:c2:b4:56:44:cd:19:62:e6:c6:50:82:b8:f0:3e: 5b:d6:ed:b5:14:e3:da:43:f3:2f:31:6f:23:79:42:ff:5b:22: 01:14:3a:b4:f0:2e:28:2a:f3:a0:ba:ad:cd:6e:a1:21:6f:3c: 6b:95:4e:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjkzRTkxMTAvBgNVBAUTKEQ5QzYxNUQxMEI0MUU2RTU2OTg2NUNDQUE3RkUyODBE MTI4RTMxMUMwHhcNMjUwNDI0MjIyNDM2WhcNMjUwNTAxMjIyNDM2WjAYMRYwFAYD VQQDEw02ODBhYmEyNC05NmUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8ESeClLy3iExvAuJMXRk6YnduxILEg9OTyEKMoE5rPxoSfCOaLI6mEkpSPSl kU4NTAjC+I9/l47yB+I+wQfgYmrZibQAVaLDSyOwal0s46H5Upbi4zWI5JaGNZBY AYI5azHsPc7a43QyTd7BpOGh/HP/cR2ba3tYvx7DLhXaEtFyc2STY1/UATEz2y3A 5RwPeJ2ZR/5DUZfjw0fiNq53BYOFRGCNHHRN4h0LAQAG3SymawOkwaddBGNIbQcI TwqdSarXIMkFfUMyrwiW1vK/pAxlWKFy6O4bwMYER6PTlfxoJH2iW7nq9QWGCtia t1vDokRmkDXZ/rkTtAD+hKajbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFl3FCxo a6Il9lo2he9MOXFQDeHHMB8GA1UdIwQYMBaAFNnGFdELQeblaYZcyqf+KA0SjjEc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTNFOS84M0ExNzRGQzhD NjgxMUVCOTgxQjI1NDJDNEY5QUUwMi8yY1lWMFF0QjV1VnBobHpLcF80b0RSS09N UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJjWVYwUXRCNXVWcGhsektwXzRvRFJLT01Sdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OTNFOS84M0ExNzRGQzhDNjgxMUVCOTgxQjI1NDJDNEY5QUUwMi8yY1lWMFF0QjV1 VnBobHpLcF80b0RSS09NUncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYpt1v7mQzMM51keuehTXKGWUpZ981yvDaZYFOOhcr1BU7I3Lz8r0Y OpiSNZrSSTQGxZQrR67UM2VLopJ/SmeD0Tq1BbN4YWzl2rVCw5XwLGphYifDUiZG ZKOoQ3UWbsQckxU1tWAxDWMSBoJS3o5mhVWzpYTTHqua+LDZyDj+PrZBrnbSl1Kt N2Fq7jAEgH500CqhzXclESrG7aWY7BgrqcXbtkBntOqKk0bHztwTpNRVygjqp2Qe YQpu15tjMg03o/4QWq10Xeo0wrRWRM0ZYubGUIK48D5b1u21FOPaQ/MvMW8jeUL/ WyIBFDq08C4oKvOguq3NbqEhbzxrlU7Y -----END CERTIFICATE-----Generated at Sat Apr 26 13:38:39 2025 by rpki-client