$ rpki-client -vvf rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.mft File: 2ZAsTpRyx61QgoEvp9B3FGq3y5w.mft (raw, json) Hash identifier: PizX9Z4VHXEAxK+W4ApNmq4FvipfZhVJLr36QJyggM4= Subject key identifier: 41:31:DF:5A:38:FA:6B:70:3E:E9:50:49:07:A2:78:E1:26:97:38:C1 Authority key identifier: D9:90:2C:4E:94:72:C7:AD:50:82:81:2F:A7:D0:77:14:6A:B7:CB:9C Certificate issuer: /CN=A913664F/serialNumber=D9902C4E9472C7AD5082812FA7D077146AB7CB9C Certificate serial: 018D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2ZAsTpRyx61QgoEvp9B3FGq3y5w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.mft Manifest number: 0180 Signing time: Fri 25 Apr 2025 02:52:01 +0000 Manifest this update: Fri 25 Apr 2025 02:52:00 +0000 Manifest next update: Fri 02 May 2025 02:52:00 +0000 Files and hashes: 1: 2ZAsTpRyx61QgoEvp9B3FGq3y5w.crl (hash: f0lQG+GHeV/wLjdpPGGDnNKZQg6B+LJ3gYhuX8PAp+E=) 2: D2677928DD9811EDB2BBBA09C4F9AE02.roa (hash: YZA05NbdXQqTTqp/56l0zqv1K93ANRNuBAfVzKzDIX8=) 3: D1DDFDECDD9811EDB2BBBA09C4F9AE02.roa (hash: U4XP+q4YcB/6cfAS39rgiX5WO5DuizysSejbMFJaGr0=) 4: B1E75D08DD7F11ED815F9B4DC4F9AE02.roa (hash: U3r7gOdI0y7v58kpvuRKxIkw0qomkyuS/Mmv5pVcbGs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.crl rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2ZAsTpRyx61QgoEvp9B3FGq3y5w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:52:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 397 (0x18d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913664F, serialNumber=D9902C4E9472C7AD5082812FA7D077146AB7CB9C Validity Not Before: Apr 25 02:52:00 2025 GMT Not After : May 2 02:52:00 2025 GMT Subject: CN=680af8d0-9009 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b2:f9:59:92:7b:cc:a2:5f:fa:3d:ee:2b:63: 28:2f:c7:7f:77:14:24:28:38:2e:b9:74:0e:dc:c2: 40:d7:b3:79:e9:af:1c:68:fd:d8:89:37:83:4e:2b: 2b:e6:52:f1:cc:01:79:1e:5e:e0:b6:7c:42:30:08: 43:93:03:52:98:a6:5c:88:c2:04:c0:3d:de:59:bf: 25:39:4a:b5:5e:9d:7d:a4:a0:55:ad:5c:db:0b:16: d7:03:ae:6c:14:37:ee:42:3b:98:2c:b0:3c:c0:9a: e8:d8:80:4d:27:77:d2:10:62:e0:bc:c1:85:77:c2: 87:2c:9e:e3:78:f5:9e:d5:fa:b4:db:82:f6:e5:98: c7:65:15:c6:2f:77:77:15:21:3c:0e:5a:6f:21:d7: bf:74:35:69:91:dd:a0:85:83:64:9d:9f:cc:8f:96: 0b:c8:9b:e8:ad:36:ff:0c:0e:62:5f:eb:cb:93:d7: 2d:a1:ed:bd:45:76:34:71:a7:d2:3f:42:d5:9a:ca: da:4f:5a:6a:5c:74:c2:17:fd:32:31:24:c7:9b:b7: 17:42:24:ad:86:93:e6:25:1d:9a:9e:e3:ba:a0:f8: e9:bc:bd:f4:aa:f3:8a:7c:aa:3e:d2:0c:0b:58:b6: c4:40:31:40:2a:5a:47:ee:45:f3:bd:23:82:d3:09: cc:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:31:DF:5A:38:FA:6B:70:3E:E9:50:49:07:A2:78:E1:26:97:38:C1 X509v3 Authority Key Identifier: keyid:D9:90:2C:4E:94:72:C7:AD:50:82:81:2F:A7:D0:77:14:6A:B7:CB:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2ZAsTpRyx61QgoEvp9B3FGq3y5w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:68:42:8a:5b:bf:34:46:c4:8f:94:ee:67:69:00:95:86:4c: a5:18:5b:b1:ed:1e:c4:19:e5:63:c4:97:75:d7:d2:7e:ae:60: e8:b6:c7:73:a1:fc:68:b2:02:b8:f8:f6:63:0f:a5:1a:00:52: 64:ec:99:c0:1a:8b:80:cc:05:1b:64:2e:57:74:03:d6:ef:04: 9e:cd:70:4f:0a:8c:05:1d:c6:ab:50:07:9a:16:e5:be:f3:03: 7f:ce:cb:fb:13:7e:27:c8:05:e4:75:b9:4f:57:73:72:ac:db: bf:57:c0:e3:88:3a:7f:20:7a:38:b9:4d:bc:e6:64:6c:11:52: 44:5b:6d:65:3a:f1:d2:64:2f:f0:b8:5f:c9:ae:82:36:47:9a: da:11:04:11:57:15:d9:c9:d5:c6:8f:e1:db:a9:b5:84:aa:67: 9b:e4:6f:3b:9b:84:37:ce:11:ae:30:b4:7c:06:08:b7:49:a4: 81:18:fe:25:26:45:64:ff:19:f5:83:8d:9b:ac:61:82:c5:bd: 42:e6:4c:8b:21:bf:e1:1c:d4:19:08:32:71:b3:04:23:b3:24: 4a:e2:c5:0c:c7:78:27:0b:42:ad:1f:80:a0:9a:40:1f:1a:d2: f6:7f:58:3a:f1:5a:73:15:f7:eb:4c:de:73:e8:7a:31:3a:8b: 4f:e5:ad:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzY2NEYxMTAvBgNVBAUTKEQ5OTAyQzRFOTQ3MkM3QUQ1MDgyODEyRkE3RDA3NzE0 NkFCN0NCOUMwHhcNMjUwNDI1MDI1MjAwWhcNMjUwNTAyMDI1MjAwWjAYMRYwFAYD VQQDEw02ODBhZjhkMC05MDA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsbL5WZJ7zKJf+j3uK2MoL8d/dxQkKDguuXQO3MJA17N56a8caP3YiTeDTisr 5lLxzAF5Hl7gtnxCMAhDkwNSmKZciMIEwD3eWb8lOUq1Xp19pKBVrVzbCxbXA65s FDfuQjuYLLA8wJro2IBNJ3fSEGLgvMGFd8KHLJ7jePWe1fq024L25ZjHZRXGL3d3 FSE8DlpvIde/dDVpkd2ghYNknZ/Mj5YLyJvorTb/DA5iX+vLk9ctoe29RXY0cafS P0LVmsraT1pqXHTCF/0yMSTHm7cXQiSthpPmJR2anuO6oPjpvL30qvOKfKo+0gwL WLbEQDFAKlpH7kXzvSOC0wnMmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEEx31o4 +mtwPulQSQeieOEmlzjBMB8GA1UdIwQYMBaAFNmQLE6UcsetUIKBL6fQdxRqt8uc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjY0Ri8xRTA4NTRBRURE N0QxMUVEOTFBMDQ2NERDNEY5QUUwMi8yWkFzVHBSeXg2MVFnb0V2cDlCM0ZHcTN5 NXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJaQXNUcFJ5eDYxUWdvRXZwOUIzRkdxM3k1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NjY0Ri8xRTA4NTRBRUREN0QxMUVEOTFBMDQ2NERDNEY5QUUwMi8yWkFzVHBSeXg2 MVFnb0V2cDlCM0ZHcTN5NXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAaEKKW780RsSPlO5naQCVhkylGFux7R7EGeVjxJd119J+rmDotsdz ofxosgK4+PZjD6UaAFJk7JnAGouAzAUbZC5XdAPW7wSezXBPCowFHcarUAeaFuW+ 8wN/zsv7E34nyAXkdblPV3NyrNu/V8DjiDp/IHo4uU285mRsEVJEW21lOvHSZC/w uF/JroI2R5raEQQRVxXZydXGj+HbqbWEqmeb5G87m4Q3zhGuMLR8Bgi3SaSBGP4l JkVk/xn1g42brGGCxb1C5kyLIb/hHNQZCDJxswQjsyRK4sUMx3gnC0KtH4CgmkAf GtL2f1g68VpzFffrTN5z6HoxOotP5a3R -----END CERTIFICATE-----Generated at Sat Apr 26 17:14:00 2025 by rpki-client