$ rpki-client -vvf rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft File: 2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft (raw, json) Hash identifier: IInLAEnc0ar0yzBTlwomcVnJqexnVG2JDJRZtsFhIeE= Subject key identifier: 4D:E8:3D:17:32:B1:49:7C:E1:6B:1C:FD:34:55:C2:A2:EA:51:60:BB Authority key identifier: DA:54:7E:D6:92:8A:AD:1E:CF:B6:84:7A:1B:07:43:2B:D8:7B:19:EF Certificate issuer: /CN=A9140E66/serialNumber=DA547ED6928AAD1ECFB6847A1B07432BD87B19EF Certificate serial: 0C53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft Manifest number: 0C4D Signing time: Thu 24 Apr 2025 18:15:27 +0000 Manifest this update: Thu 24 Apr 2025 18:15:26 +0000 Manifest next update: Thu 01 May 2025 18:15:26 +0000 Files and hashes: 1: 2lR-1pKKrR7PtoR6GwdDK9h7Ge8.crl (hash: zmydgiRXu92yvzvJuZ0VzPOWZHcD/QEIHt5NdqqXvCU=) 2: 7665CD0AFF7011E99CDC306AC4F9AE02.roa (hash: n/f1uTeEyARI3uLFtA8qgF3ZldlUFB3TY49ssy/Ns3A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.crl rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:15:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3155 (0xc53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140E66, serialNumber=DA547ED6928AAD1ECFB6847A1B07432BD87B19EF Validity Not Before: Apr 24 18:15:26 2025 GMT Not After : May 1 18:15:26 2025 GMT Subject: CN=680a7fbe-66da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:52:34:8d:24:75:9c:64:e7:b2:ae:ce:39:3c: 3e:3c:2e:77:6e:be:a4:a5:5f:f9:42:ed:ea:89:74: 26:0e:f6:d6:ca:0f:63:79:81:9a:4a:be:d8:3f:69: 24:2d:16:fc:fd:ae:49:19:3b:51:da:5f:15:27:a4: 47:44:5c:6c:62:19:33:74:10:2a:bd:b7:7a:89:38: 3a:62:ef:d5:62:5a:03:73:13:b3:05:1e:35:79:e3: 77:5f:fe:15:e0:c8:c9:19:d3:e2:e3:2c:b1:7f:37: d6:1a:d2:0f:d2:e2:f9:8f:0d:0a:1f:a4:32:c7:de: bf:9b:30:73:d7:36:51:5d:0d:59:0f:3d:95:92:7e: b7:7c:b4:83:e6:96:4e:87:1f:31:a5:bb:a2:56:14: 7d:a0:8c:4f:f7:74:a0:aa:9e:1f:d7:06:af:76:31: 6c:ba:1d:5b:f0:7a:7b:57:1c:50:0e:0a:46:b7:fb: f8:80:5b:7a:3a:54:ea:e8:78:bb:3c:85:53:19:c4: 8d:03:13:42:ba:33:f3:71:6e:a3:4b:3d:a1:c7:e8: 40:c8:61:32:e3:45:a0:04:33:1a:2b:7b:5d:58:3d: 42:bf:31:f6:38:c2:5d:34:ad:97:5e:ce:12:54:59: 4d:71:2c:7a:07:27:9e:19:90:4c:46:bf:56:f4:9a: 8c:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:E8:3D:17:32:B1:49:7C:E1:6B:1C:FD:34:55:C2:A2:EA:51:60:BB X509v3 Authority Key Identifier: keyid:DA:54:7E:D6:92:8A:AD:1E:CF:B6:84:7A:1B:07:43:2B:D8:7B:19:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:5b:ef:b4:0e:7e:40:5a:a5:22:36:d3:e0:c4:9f:5e:5d:b5: 5f:ea:80:6c:18:cf:55:9b:07:0f:e6:e9:f5:52:d1:ae:79:f4: 63:8b:f2:38:f7:04:fd:f4:b8:7b:a4:0d:41:8d:b0:2b:66:99: fb:c2:a7:b1:ec:80:08:c3:1f:df:e1:4d:1e:e3:59:dc:74:70: 9a:d5:e2:92:55:df:bd:55:b7:6a:eb:d3:78:00:e8:46:dc:e2: 1f:6d:4e:4c:05:48:bc:11:c5:c4:4a:d6:df:5f:47:e9:b1:44: 06:39:94:e0:b6:04:ed:6c:74:9d:9a:9c:3e:5e:35:22:58:81: ca:86:ae:c2:5d:26:58:73:e4:d0:fa:d2:8b:3d:70:55:ed:24: e9:18:83:59:ca:03:15:15:b7:a7:db:aa:a9:fe:cf:79:3e:c3: 29:9d:c7:b4:ed:8b:c5:34:f6:c8:eb:ef:9b:b3:ef:8d:30:d5: 2f:12:82:69:99:de:22:58:d8:b3:1a:cb:02:9f:ae:6b:ec:f5: c3:5a:b9:da:e1:2e:fa:dc:4f:92:2f:7a:f0:f9:81:73:cf:7f: 1a:a9:37:01:33:1a:aa:b9:9c:c3:ed:e4:49:e2:28:2b:73:b5: 28:c2:58:67:ef:a6:3d:2f:1c:a5:9f:10:24:cf:30:a6:dc:2e: 6c:6d:bd:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBFNjYxMTAvBgNVBAUTKERBNTQ3RUQ2OTI4QUFEMUVDRkI2ODQ3QTFCMDc0MzJC RDg3QjE5RUYwHhcNMjUwNDI0MTgxNTI2WhcNMjUwNTAxMTgxNTI2WjAYMRYwFAYD VQQDEw02ODBhN2ZiZS02NmRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1FI0jSR1nGTnsq7OOTw+PC53br6kpV/5Qu3qiXQmDvbWyg9jeYGaSr7YP2kk LRb8/a5JGTtR2l8VJ6RHRFxsYhkzdBAqvbd6iTg6Yu/VYloDcxOzBR41eeN3X/4V 4MjJGdPi4yyxfzfWGtIP0uL5jw0KH6Qyx96/mzBz1zZRXQ1ZDz2Vkn63fLSD5pZO hx8xpbuiVhR9oIxP93Sgqp4f1wavdjFsuh1b8Hp7VxxQDgpGt/v4gFt6OlTq6Hi7 PIVTGcSNAxNCujPzcW6jSz2hx+hAyGEy40WgBDMaK3tdWD1CvzH2OMJdNK2XXs4S VFlNcSx6ByeeGZBMRr9W9JqMwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE3oPRcy sUl84Wsc/TRVwqLqUWC7MB8GA1UdIwQYMBaAFNpUftaSiq0ez7aEehsHQyvYexnv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEU2Ni83MDYzOUVGQ0ZG NkUxMUU5ODVBODhDNjdDNEY5QUUwMi8ybFItMXBLS3JSN1B0b1I2R3dkREs5aDdH ZTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsUi0xcEtLclI3UHRvUjZHd2RESzloN0dlOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEU2Ni83MDYzOUVGQ0ZGNkUxMUU5ODVBODhDNjdDNEY5QUUwMi8ybFItMXBLS3JS N1B0b1I2R3dkREs5aDdHZTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSW++0Dn5AWqUiNtPgxJ9eXbVf6oBsGM9VmwcP5un1UtGuefRji/I4 9wT99Lh7pA1BjbArZpn7wqex7IAIwx/f4U0e41ncdHCa1eKSVd+9Vbdq69N4AOhG 3OIfbU5MBUi8EcXEStbfX0fpsUQGOZTgtgTtbHSdmpw+XjUiWIHKhq7CXSZYc+TQ +tKLPXBV7STpGINZygMVFben26qp/s95PsMpnce07YvFNPbI6++bs++NMNUvEoJp md4iWNizGssCn65r7PXDWrna4S763E+SL3rw+YFzz38aqTcBMxqquZzD7eRJ4igr c7Uowlhn76Y9LxylnxAkzzCm3C5sbb03 -----END CERTIFICATE-----Generated at Sat Apr 26 15:26:00 2025 by rpki-client