$ rpki-client -vvf rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.mft File: N2EhKhZwpXGatx-iA7kuxobyEXc.mft (raw, json) Hash identifier: ourZE0W2awfb0c5mib0vYWvW2YSoeAMj41d/aEv2Tzk= Subject key identifier: 7C:57:23:7F:AC:78:5D:10:1C:BB:81:CB:4D:B0:6F:AE:84:6C:C7:F6 Authority key identifier: 37:61:21:2A:16:70:A5:71:9A:B7:1F:A2:03:B9:2E:C6:86:F2:11:77 Certificate issuer: /CN=A9142037/serialNumber=3761212A1670A5719AB71FA203B92EC686F21177 Certificate serial: 2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N2EhKhZwpXGatx-iA7kuxobyEXc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.mft Manifest number: 2B Signing time: Fri 25 Apr 2025 06:42:45 +0000 Manifest this update: Fri 25 Apr 2025 06:42:45 +0000 Manifest next update: Fri 02 May 2025 06:42:45 +0000 Files and hashes: 1: N2EhKhZwpXGatx-iA7kuxobyEXc.crl (hash: fAC47Nl/AAHdJ/ug7PXaqLPMHVEOo+vyaUltQzMgTmI=) 2: 191B6DA2E41811EF8E3F233AC4F9AE02.roa (hash: vcq+JOCdxjFG1D5wGuVH3+pI9poPc4zyyjKKMXsqhWE=) 3: FAEA8E38E41911EFA96DA35FC4F9AE02.roa (hash: RxRZ1dH5JkRHUJw1N/ksvTcKPSxp60O8KTnJFH3sluU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.crl rsync://rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N2EhKhZwpXGatx-iA7kuxobyEXc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:42:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45 (0x2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142037, serialNumber=3761212A1670A5719AB71FA203B92EC686F21177 Validity Not Before: Apr 25 06:42:45 2025 GMT Not After : May 2 06:42:45 2025 GMT Subject: CN=680b2ee5-c354 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:96:fb:d7:c6:b1:0d:14:a2:8d:f3:f0:0f:c1: f6:69:0a:27:da:94:1a:eb:43:84:d4:39:e7:ef:a3: c7:5b:44:93:52:a3:af:d1:fd:b0:7c:d2:96:17:c4: a4:71:90:21:b8:8d:01:72:e8:11:96:00:2f:22:39: 2d:10:7f:cd:1b:da:ab:19:c8:98:01:e0:57:53:7d: 1e:ef:2c:66:01:eb:d0:49:2c:08:a7:10:5d:27:e1: 08:58:08:1b:36:64:b6:17:13:d6:22:fc:38:3a:f8: b1:30:c5:18:b5:dd:68:5b:40:d5:6d:9e:0f:04:2c: 27:65:6c:69:cf:ae:19:d0:d2:a2:eb:40:56:85:a8: 50:12:37:6b:49:ac:8d:f0:5a:6a:e0:19:31:49:a2: 33:6f:bf:45:81:28:e0:22:af:21:e5:ba:06:87:93: 94:b1:1b:68:ef:29:bc:31:3e:02:a3:ce:47:9d:69: 44:c1:08:01:e4:3b:a8:88:9d:4e:f6:53:d7:78:f5: bc:a6:e7:2f:af:70:47:aa:2a:d9:0b:bc:53:ce:20: c6:78:a9:2b:11:f8:02:ec:c3:59:a4:11:04:e3:bc: 87:18:61:95:09:e5:02:98:ee:73:17:21:2f:ee:57: af:f6:62:e4:c5:d2:03:5e:a9:4b:5b:0f:71:44:bc: ff:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:57:23:7F:AC:78:5D:10:1C:BB:81:CB:4D:B0:6F:AE:84:6C:C7:F6 X509v3 Authority Key Identifier: keyid:37:61:21:2A:16:70:A5:71:9A:B7:1F:A2:03:B9:2E:C6:86:F2:11:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N2EhKhZwpXGatx-iA7kuxobyEXc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:43:ab:07:04:40:3d:b9:49:87:a5:32:b0:7b:e6:b1:46:f0: 9b:54:00:0d:73:47:d7:ff:25:b4:52:28:9a:67:a5:9d:cf:8b: fc:6d:9f:1b:b1:fc:e9:af:98:3a:51:46:a8:75:7b:f6:42:98: 2e:80:18:55:37:77:39:90:06:48:0d:4f:0d:0b:e9:17:a6:5c: 94:1b:7c:31:50:0b:2e:bb:73:6b:6f:a5:dc:e6:49:d4:a7:6b: bf:ba:56:68:92:9a:11:e5:ca:16:cb:61:0b:42:46:f0:22:00: 54:2e:94:19:d0:33:5a:5a:fd:51:dc:91:1d:e3:0c:23:c5:08: 33:f2:8d:72:41:4e:43:3e:8c:9d:fb:56:cb:f1:c3:bc:c1:85: d9:5d:72:7d:62:82:f0:cc:16:77:75:64:d0:df:2b:e8:4c:7a: a8:ef:60:f5:8a:38:99:01:6e:3b:7c:33:42:72:50:7a:46:25: da:18:91:dd:e9:64:09:93:08:ca:68:91:8d:1c:08:d5:ef:d2: 8c:d9:4d:97:86:7d:7a:3e:72:ee:ff:f2:91:87:66:c3:5e:55: 20:6b:5a:2d:02:70:69:a8:fe:c7:a5:31:4d:de:1c:bb:b4:97: 1c:48:af:2c:bf:cb:c7:e7:54:63:44:c0:b1:7c:79:a4:0b:6b: cf:25:fd:a2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MjAzNzExMC8GA1UEBRMoMzc2MTIxMkExNjcwQTU3MTlBQjcxRkEyMDNCOTJFQzY4 NkYyMTE3NzAeFw0yNTA0MjUwNjQyNDVaFw0yNTA1MDIwNjQyNDVaMBgxFjAUBgNV BAMTDTY4MGIyZWU1LWMzNTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDclvvXxrENFKKN8/APwfZpCifalBrrQ4TUOefvo8dbRJNSo6/R/bB80pYXxKRx kCG4jQFy6BGWAC8iOS0Qf80b2qsZyJgB4FdTfR7vLGYB69BJLAinEF0n4QhYCBs2 ZLYXE9Yi/Dg6+LEwxRi13WhbQNVtng8ELCdlbGnPrhnQ0qLrQFaFqFASN2tJrI3w WmrgGTFJojNvv0WBKOAiryHlugaHk5SxG2jvKbwxPgKjzkedaUTBCAHkO6iInU72 U9d49bym5y+vcEeqKtkLvFPOIMZ4qSsR+ALsw1mkEQTjvIcYYZUJ5QKY7nMXIS/u V6/2YuTF0gNeqUtbD3FEvP+fAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUfFcjf6x4 XRAcu4HLTbBvroRsx/YwHwYDVR0jBBgwFoAUN2EhKhZwpXGatx+iA7kuxobyEXcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQyMDM3LzVDMDVDMEM4RTQx NzExRUY5NkUyRkYzOEM0RjlBRTAyL04yRWhLaFp3cFhHYXR4LWlBN2t1eG9ieUVY Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTjJFaEtoWndwWEdhdHgtaUE3a3V4b2J5RVhjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQy MDM3LzVDMDVDMEM4RTQxNzExRUY5NkUyRkYzOEM0RjlBRTAyL04yRWhLaFp3cFhH YXR4LWlBN2t1eG9ieUVYYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADtDqwcEQD25SYelMrB75rFG8JtUAA1zR9f/JbRSKJpnpZ3Pi/xtnxux /OmvmDpRRqh1e/ZCmC6AGFU3dzmQBkgNTw0L6RemXJQbfDFQCy67c2tvpdzmSdSn a7+6VmiSmhHlyhbLYQtCRvAiAFQulBnQM1pa/VHckR3jDCPFCDPyjXJBTkM+jJ37 Vsvxw7zBhdldcn1igvDMFnd1ZNDfK+hMeqjvYPWKOJkBbjt8M0JyUHpGJdoYkd3p ZAmTCMpokY0cCNXv0ozZTZeGfXo+cu7/8pGHZsNeVSBrWi0CcGmo/selMU3eHLu0 lxxIryy/y8fnVGNEwLF8eaQLa88l/aI= -----END CERTIFICATE-----Generated at Sat Apr 26 15:03:56 2025 by rpki-client