$ rpki-client -vvf rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft File: 2lexkcVbszGevZGC3A1Oau8-Ddg.mft (raw, json) Hash identifier: LcQl79hY0Whdp0n1nKs2Ark1vrx61iqZwH/GvWqTzaw= Subject key identifier: B9:1F:3E:F6:74:C8:E0:E7:5D:C9:F5:5D:8F:B9:E0:27:D9:06:20:09 Authority key identifier: DA:57:B1:91:C5:5B:B3:31:9E:BD:91:82:DC:0D:4E:6A:EF:3E:0D:D8 Certificate issuer: /CN=A912A31E/serialNumber=DA57B191C55BB3319EBD9182DC0D4E6AEF3E0DD8 Certificate serial: 0178 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft Manifest number: 0175 Signing time: Fri 25 Apr 2025 02:54:37 +0000 Manifest this update: Fri 25 Apr 2025 02:54:36 +0000 Manifest next update: Fri 02 May 2025 02:54:36 +0000 Files and hashes: 1: 2lexkcVbszGevZGC3A1Oau8-Ddg.crl (hash: w9YzBjErpvvot7Hnt9J3dD3uRe+fZTcZGERPfjxcJx0=) 2: 5181F33CE8C011EDADA54A23C4F9AE02.roa (hash: 9wRwgsGB8Fy9z1Xq7bw5sLUsMsE1FSTZuA/DyllyXak=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.crl rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:54:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 376 (0x178) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A31E, serialNumber=DA57B191C55BB3319EBD9182DC0D4E6AEF3E0DD8 Validity Not Before: Apr 25 02:54:36 2025 GMT Not After : May 2 02:54:36 2025 GMT Subject: CN=680af96c-bb30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:13:28:9c:4e:b6:30:91:dd:05:f0:13:81:ea: da:29:a3:7c:aa:2f:f5:0c:86:7e:52:f7:aa:2d:b2: 40:cf:2e:cf:1f:b5:a3:56:14:6e:8e:6a:ea:17:94: ed:83:f5:4e:8c:0b:77:cf:e2:48:2a:13:a5:42:7f: 11:c3:96:2b:8a:37:dc:84:8a:23:b2:b7:0f:7b:65: ce:74:e1:07:a5:e6:10:7b:43:99:b9:ae:c0:49:6a: 73:b9:74:1c:0a:72:1f:ac:3c:56:d9:55:be:08:1e: 06:4d:0d:01:ce:02:7b:33:14:af:5d:7f:ab:84:e7: 72:4b:30:6c:55:1d:08:31:06:2b:9b:7d:25:4c:15: d0:81:ff:e9:f8:e5:36:d1:ec:b6:4f:44:a2:61:76: aa:bf:a3:06:e2:a9:12:a1:ce:22:50:35:d2:42:af: a9:83:44:bb:ee:0f:a1:4f:8e:bc:9b:62:a1:2f:c6: 4f:8d:f3:88:38:9e:cd:b6:0a:16:b9:fe:e5:02:d6: 7b:8b:86:bc:fc:c6:eb:62:3c:c5:94:d5:b1:8b:1c: 35:8c:92:ed:82:78:6e:75:97:8e:c5:d5:74:6c:92: 55:5f:64:f3:2b:d5:3a:c6:68:f0:99:d6:8a:e9:00: 7b:dd:9f:3f:e2:fe:79:f9:e4:65:55:5b:da:b8:32: 32:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:1F:3E:F6:74:C8:E0:E7:5D:C9:F5:5D:8F:B9:E0:27:D9:06:20:09 X509v3 Authority Key Identifier: keyid:DA:57:B1:91:C5:5B:B3:31:9E:BD:91:82:DC:0D:4E:6A:EF:3E:0D:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:db:c5:3f:ab:76:d6:b9:3d:d6:42:79:a3:34:7d:63:b1:e1: 52:95:49:6c:18:fc:36:ca:47:8c:ec:73:a7:0b:94:77:c8:4d: 03:2a:42:6c:2c:71:91:e0:66:6d:cd:4b:35:4e:7a:59:b2:65: c6:bb:28:72:1d:8f:2e:c9:1e:ec:2b:e2:2f:7f:72:12:e7:66: 33:a3:ca:64:86:fa:c0:5b:22:ac:bf:54:82:7c:b6:e7:71:67: c5:16:50:34:10:5c:51:dc:4a:b5:7f:ba:f3:ec:82:08:8d:09: f6:1d:c2:38:7d:a7:d8:48:d6:a9:40:92:b5:b4:e3:33:9d:23: d2:0a:59:e8:ce:a9:3f:08:df:2b:09:eb:b5:a5:1d:06:55:83: a5:da:4c:04:33:38:42:26:31:31:6f:a9:81:f2:15:31:c0:f8: 6c:36:a2:e3:b4:7e:17:68:98:62:3d:55:db:84:ef:91:cc:f0: 70:f1:b7:fa:eb:fb:f8:64:40:4e:bc:ce:89:c9:1e:78:d6:2a: df:db:6f:eb:33:07:bf:1f:d4:4f:d6:1f:07:41:f3:c6:95:23: ef:89:bf:96:0d:e5:76:6a:e8:f1:f0:84:6f:c2:fd:d7:0f:18: c1:f4:c3:42:92:e4:8e:09:a6:59:b9:5e:b0:32:f5:87:b6:70: 76:91:43:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkEzMUUxMTAvBgNVBAUTKERBNTdCMTkxQzU1QkIzMzE5RUJEOTE4MkRDMEQ0RTZB RUYzRTBERDgwHhcNMjUwNDI1MDI1NDM2WhcNMjUwNTAyMDI1NDM2WjAYMRYwFAYD VQQDEw02ODBhZjk2Yy1iYjMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2RMonE62MJHdBfATgeraKaN8qi/1DIZ+UveqLbJAzy7PH7WjVhRujmrqF5Tt g/VOjAt3z+JIKhOlQn8Rw5YrijfchIojsrcPe2XOdOEHpeYQe0OZua7ASWpzuXQc CnIfrDxW2VW+CB4GTQ0BzgJ7MxSvXX+rhOdySzBsVR0IMQYrm30lTBXQgf/p+OU2 0ey2T0SiYXaqv6MG4qkSoc4iUDXSQq+pg0S77g+hT468m2KhL8ZPjfOIOJ7NtgoW uf7lAtZ7i4a8/MbrYjzFlNWxixw1jJLtgnhudZeOxdV0bJJVX2TzK9U6xmjwmdaK 6QB73Z8/4v55+eRlVVvauDIyzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLkfPvZ0 yODnXcn1XY+54CfZBiAJMB8GA1UdIwQYMBaAFNpXsZHFW7Mxnr2RgtwNTmrvPg3Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTMxRS9DOEE0QzRFNEU4 QkIxMUVEQThEQjhBMUZDNEY5QUUwMi8ybGV4a2NWYnN6R2V2WkdDM0ExT2F1OC1E ZGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsZXhrY1Zic3pHZXZaR0MzQTFPYXU4LURkZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QTMxRS9DOEE0QzRFNEU4QkIxMUVEQThEQjhBMUZDNEY5QUUwMi8ybGV4a2NWYnN6 R2V2WkdDM0ExT2F1OC1EZGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAB28U/q3bWuT3WQnmjNH1jseFSlUlsGPw2ykeM7HOnC5R3yE0DKkJs LHGR4GZtzUs1TnpZsmXGuyhyHY8uyR7sK+Ivf3IS52Yzo8pkhvrAWyKsv1SCfLbn cWfFFlA0EFxR3Eq1f7rz7IIIjQn2HcI4fafYSNapQJK1tOMznSPSClnozqk/CN8r Ceu1pR0GVYOl2kwEMzhCJjExb6mB8hUxwPhsNqLjtH4XaJhiPVXbhO+RzPBw8bf6 6/v4ZEBOvM6JyR541irf22/rMwe/H9RP1h8HQfPGlSPvib+WDeV2aujx8IRvwv3X DxjB9MNCkuSOCaZZuV6wMvWHtnB2kUOV -----END CERTIFICATE-----Generated at Sat Apr 26 04:24:49 2025 by rpki-client