$ rpki-client -vvf rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.mft File: A2aKIfDwHwaydP2IzJ4KboPVX4U.mft (raw, json) Hash identifier: Ta9JufN24lp/tHTKQzDHMsWX+EktPPGb2DsQiJ/zSH0= Subject key identifier: 41:D7:B7:E7:9C:30:F9:ED:1F:2D:E3:4C:44:1C:9D:0B:56:5E:8B:ED Authority key identifier: 03:66:8A:21:F0:F0:1F:06:B2:74:FD:88:CC:9E:0A:6E:83:D5:5F:85 Certificate issuer: /CN=A9141620/serialNumber=03668A21F0F01F06B274FD88CC9E0A6E83D55F85 Certificate serial: 073A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A2aKIfDwHwaydP2IzJ4KboPVX4U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.mft Manifest number: 0735 Signing time: Thu 24 Apr 2025 21:32:39 +0000 Manifest this update: Thu 24 Apr 2025 21:32:39 +0000 Manifest next update: Thu 01 May 2025 21:32:39 +0000 Files and hashes: 1: A2aKIfDwHwaydP2IzJ4KboPVX4U.crl (hash: sANBCU6oErvnoNkQzpuvviHn7iAjtCaXD06M5Ha3E0U=) 2: 5DDE6BC2293E11EB9DFA3C72C4F9AE02.roa (hash: SJfatYjVkNsGa5A40/Z5VuaU5eA8HwIwMiF3CgmDhpI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.crl rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A2aKIfDwHwaydP2IzJ4KboPVX4U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:32:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1850 (0x73a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9141620, serialNumber=03668A21F0F01F06B274FD88CC9E0A6E83D55F85 Validity Not Before: Apr 24 21:32:39 2025 GMT Not After : May 1 21:32:39 2025 GMT Subject: CN=680aadf7-f918 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:60:f3:70:77:a8:3a:3d:33:3a:38:bb:a7:37: a3:53:43:e1:4f:80:1c:1a:4d:db:54:b0:a2:2f:3d: d3:db:2e:05:5a:18:6d:43:80:67:db:4a:bd:d6:57: 82:8c:76:3b:c3:7d:dd:31:47:d1:33:bb:42:c3:75: b5:c2:c9:6e:04:94:6f:5d:6b:be:80:c2:99:b0:26: 59:22:29:90:4b:73:31:a2:92:3d:b1:bd:14:14:70: ec:52:53:b9:0e:09:b5:5d:1d:ff:c2:cb:26:de:9e: 71:9e:da:65:39:00:02:55:04:15:8b:8e:01:4c:7b: 26:07:e2:60:0a:22:7e:81:e0:fb:1c:96:ca:ab:f2: 95:4c:5f:3c:db:4c:2d:3a:08:e5:cc:6f:4d:1c:f9: c8:1f:85:b8:a3:f5:cf:ca:9a:4d:63:a3:3b:2e:f7: 68:90:c9:ec:69:d8:02:2d:f1:93:c5:cd:c9:24:a6: d5:c2:99:66:d7:99:42:f6:2b:66:3a:43:69:c8:e7: d1:f6:3a:f7:c0:57:f1:74:52:41:4a:ed:dc:d6:46: 78:e7:d2:14:fc:33:4e:2c:9c:78:f1:c5:78:c6:6c: 0c:4f:4e:cc:68:b8:d6:c7:ec:c0:3b:64:4b:4e:c5: 80:37:17:e4:63:8b:49:ab:99:88:3d:ba:b2:4b:80: e8:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:D7:B7:E7:9C:30:F9:ED:1F:2D:E3:4C:44:1C:9D:0B:56:5E:8B:ED X509v3 Authority Key Identifier: keyid:03:66:8A:21:F0:F0:1F:06:B2:74:FD:88:CC:9E:0A:6E:83:D5:5F:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A2aKIfDwHwaydP2IzJ4KboPVX4U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:1a:40:9f:85:a1:06:e2:02:31:54:1d:d7:ee:17:d9:ab:d4: a1:96:ae:4c:0d:ec:ee:10:c8:df:b1:ff:7a:aa:33:84:ef:2a: b9:4a:43:eb:f8:7b:33:14:ad:79:47:5d:b7:f2:c5:bf:87:cb: 1a:06:4a:78:b8:e3:95:5f:8c:72:77:9d:9d:bb:d6:76:dd:ac: a6:98:70:1d:26:5b:87:46:74:ba:0c:6f:d1:45:c7:55:01:3a: f2:26:00:19:07:49:de:f9:df:00:08:01:d2:cb:46:2c:e0:86: eb:64:48:8b:2b:b8:53:58:7d:df:78:d3:63:d5:5c:86:0f:66: 71:7f:d5:14:e5:b7:f2:5a:57:fb:5c:d1:8b:59:f0:4b:a7:d8: 35:14:2e:da:fd:8f:88:bc:da:d7:e4:88:f7:e6:53:72:3d:12: e8:0d:e6:39:ba:11:0a:c8:68:5f:f3:ef:54:6b:4f:47:a1:1c: f7:c1:34:5b:d6:55:e6:13:e7:ae:ca:c1:7a:ec:01:a8:ed:ba: b0:08:1f:ec:a9:e1:0b:b9:46:be:bc:a7:5c:a9:a7:ed:c5:7e: 1b:bf:f7:92:9e:62:56:0d:6d:e3:7d:e2:60:96:cc:f3:f3:d2: 18:29:9e:2a:c5:52:9d:12:d3:05:8e:17:0e:cb:2b:32:f6:60: 55:ca:de:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBzowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDE2MjAxMTAvBgNVBAUTKDAzNjY4QTIxRjBGMDFGMDZCMjc0RkQ4OENDOUUwQTZF ODNENTVGODUwHhcNMjUwNDI0MjEzMjM5WhcNMjUwNTAxMjEzMjM5WjAYMRYwFAYD VQQDEw02ODBhYWRmNy1mOTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA22DzcHeoOj0zOji7pzejU0PhT4AcGk3bVLCiLz3T2y4FWhhtQ4Bn20q91leC jHY7w33dMUfRM7tCw3W1wsluBJRvXWu+gMKZsCZZIimQS3MxopI9sb0UFHDsUlO5 Dgm1XR3/wssm3p5xntplOQACVQQVi44BTHsmB+JgCiJ+geD7HJbKq/KVTF8820wt OgjlzG9NHPnIH4W4o/XPyppNY6M7LvdokMnsadgCLfGTxc3JJKbVwplm15lC9itm OkNpyOfR9jr3wFfxdFJBSu3c1kZ459IU/DNOLJx48cV4xmwMT07MaLjWx+zAO2RL TsWANxfkY4tJq5mIPbqyS4DodQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEHXt+ec MPntHy3jTEQcnQtWXovtMB8GA1UdIwQYMBaAFANmiiHw8B8GsnT9iMyeCm6D1V+F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MTYyMC8yMTk4MTZBQTI5 M0QxMUVCQkZDMTQ3NzFDNEY5QUUwMi9BMmFLSWZEd0h3YXlkUDJJeko0S2JvUFZY NFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EyYUtJZkR3SHdheWRQMkl6SjRLYm9QVlg0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MTYyMC8yMTk4MTZBQTI5M0QxMUVCQkZDMTQ3NzFDNEY5QUUwMi9BMmFLSWZEd0h3 YXlkUDJJeko0S2JvUFZYNFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2GkCfhaEG4gIxVB3X7hfZq9Shlq5MDezuEMjfsf96qjOE7yq5SkPr +HszFK15R1238sW/h8saBkp4uOOVX4xyd52du9Z23aymmHAdJluHRnS6DG/RRcdV ATryJgAZB0ne+d8ACAHSy0Ys4IbrZEiLK7hTWH3feNNj1VyGD2Zxf9UU5bfyWlf7 XNGLWfBLp9g1FC7a/Y+IvNrX5Ij35lNyPRLoDeY5uhEKyGhf8+9Ua09HoRz3wTRb 1lXmE+euysF67AGo7bqwCB/sqeELuUa+vKdcqaftxX4bv/eSnmJWDW3jfeJglszz 89IYKZ4qxVKdEtMFjhcOyysy9mBVyt6d -----END CERTIFICATE-----Generated at Sat Apr 26 04:30:43 2025 by rpki-client