$ rpki-client -vvf rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/2leiQgcEcAjXOmXWgiSke5oD2qo.mft File: 2leiQgcEcAjXOmXWgiSke5oD2qo.mft (raw, json) Hash identifier: VOu7UwD8tv4MCisDNBXUlP6N+tX15K7+mnQV+qLvsVs= Subject key identifier: 5B:1A:67:5E:6F:A7:21:E7:E7:85:92:0E:F8:D9:BA:64:A4:94:71:DE Authority key identifier: DA:57:A2:42:07:04:70:08:D7:3A:65:D6:82:24:A4:7B:9A:03:DA:AA Certificate issuer: /CN=A914573E/serialNumber=DA57A24207047008D73A65D68224A47B9A03DAAA Certificate serial: 0602 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2leiQgcEcAjXOmXWgiSke5oD2qo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/2leiQgcEcAjXOmXWgiSke5oD2qo.mft Manifest number: 05FB Signing time: Thu 24 Apr 2025 22:42:21 +0000 Manifest this update: Thu 24 Apr 2025 22:42:21 +0000 Manifest next update: Thu 01 May 2025 22:42:21 +0000 Files and hashes: 1: 2leiQgcEcAjXOmXWgiSke5oD2qo.crl (hash: 4XYzT5BS3JjPO6w/JMu5C0bmEZVmTW5ZwjQIyUSQIUs=) 2: B67E0BB4A5A511EB94C0DE0FC4F9AE02.roa (hash: abFPv422MLo42yfuvK6GPVX4x/zkpsuvBFUhQvjbtGQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/2leiQgcEcAjXOmXWgiSke5oD2qo.crl rsync://rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/2leiQgcEcAjXOmXWgiSke5oD2qo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2leiQgcEcAjXOmXWgiSke5oD2qo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:42:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1538 (0x602) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914573E, serialNumber=DA57A24207047008D73A65D68224A47B9A03DAAA Validity Not Before: Apr 24 22:42:21 2025 GMT Not After : May 1 22:42:21 2025 GMT Subject: CN=680abe4d-e1fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:1a:74:49:00:29:38:19:d5:60:ac:ae:8d:dd: a3:99:d9:11:51:40:23:44:c5:a7:ca:b6:d8:59:2d: 80:e5:09:ee:69:a6:9d:67:52:13:32:5d:53:ed:fe: c8:c8:a8:f5:31:03:79:89:77:3c:a2:c7:b7:85:af: 9f:bd:0b:07:62:cf:d8:05:56:51:16:5d:36:19:9d: 81:f1:1a:bb:bb:88:b8:50:26:6e:4a:31:3c:2e:5a: bc:2d:dd:40:f0:1c:15:09:95:a3:3e:ce:78:ec:7a: 52:aa:be:cd:46:83:32:13:5b:e5:d8:6a:c3:5a:35: 07:10:a6:10:d1:57:fc:d5:85:59:3b:4c:63:97:c0: bd:62:7b:bb:78:ad:26:be:7c:df:24:f9:13:34:95: 9c:54:3e:10:dd:f0:2a:51:57:68:37:2b:de:1c:e1: 71:1c:3f:0b:e6:2e:78:b5:88:f0:8a:d9:f3:0a:e3: f3:b2:6d:72:f0:e8:24:ce:0e:26:94:47:9d:44:bf: 4d:a4:a0:66:4c:6b:71:5a:cf:61:21:59:1f:81:62: f3:85:cc:fb:4c:10:0a:e9:e8:a7:9c:c7:7d:4b:4f: ec:a4:80:38:2e:59:f6:46:52:50:4e:a0:36:bf:ec: e4:e7:82:1a:0b:42:a9:f9:2b:7a:9b:21:36:b4:09: 21:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:1A:67:5E:6F:A7:21:E7:E7:85:92:0E:F8:D9:BA:64:A4:94:71:DE X509v3 Authority Key Identifier: keyid:DA:57:A2:42:07:04:70:08:D7:3A:65:D6:82:24:A4:7B:9A:03:DA:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/2leiQgcEcAjXOmXWgiSke5oD2qo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2leiQgcEcAjXOmXWgiSke5oD2qo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/2leiQgcEcAjXOmXWgiSke5oD2qo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:d8:39:f9:eb:aa:ae:d8:25:9f:52:2b:44:74:f0:a0:5d:c8: c6:32:9d:fa:c1:6d:d1:bf:0e:5d:b5:55:11:ef:dc:5d:46:c5: a3:87:dc:ad:a1:a9:2d:c4:4f:9e:e1:71:fe:c8:d0:a3:58:95: 57:d8:7e:e3:81:49:3f:44:f6:2b:f8:8a:89:27:15:23:a0:d0: 6c:7e:13:79:54:a2:ce:9a:3a:8d:3b:82:c6:d4:bf:13:ca:ac: ec:85:39:57:9a:9d:60:cb:42:6b:8c:a5:5a:7e:14:85:f0:71: fc:fc:5b:a2:aa:97:dc:a7:21:b8:8e:20:0b:c7:de:2a:8f:61: 43:ec:19:1f:f4:9c:f8:af:ff:6d:a1:1f:91:5e:4d:dc:f8:48: 00:68:89:e3:da:79:a6:f7:f8:4c:40:d2:ef:ae:d6:ee:64:8d: 01:41:08:a9:f2:01:ce:d7:86:c6:80:70:57:71:31:78:b1:b7: 3f:44:e9:e8:a5:f4:ac:6d:cf:76:a1:8e:e8:29:e3:12:65:bd: 7f:5b:85:cb:1b:b4:82:bd:a2:5c:7c:8c:11:47:98:29:b8:82: 73:51:55:ea:d9:99:14:84:02:df:c1:44:74:fc:64:90:4c:24: b2:7a:a4:e6:27:88:71:08:49:4d:bf:a8:a5:b2:f1:04:d6:e9: f0:52:05:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBgIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU3M0UxMTAvBgNVBAUTKERBNTdBMjQyMDcwNDcwMDhENzNBNjVENjgyMjRBNDdC OUEwM0RBQUEwHhcNMjUwNDI0MjI0MjIxWhcNMjUwNTAxMjI0MjIxWjAYMRYwFAYD VQQDEw02ODBhYmU0ZC1lMWZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyBp0SQApOBnVYKyujd2jmdkRUUAjRMWnyrbYWS2A5QnuaaadZ1ITMl1T7f7I yKj1MQN5iXc8ose3ha+fvQsHYs/YBVZRFl02GZ2B8Rq7u4i4UCZuSjE8Llq8Ld1A 8BwVCZWjPs547HpSqr7NRoMyE1vl2GrDWjUHEKYQ0Vf81YVZO0xjl8C9Ynu7eK0m vnzfJPkTNJWcVD4Q3fAqUVdoNyveHOFxHD8L5i54tYjwitnzCuPzsm1y8Ogkzg4m lEedRL9NpKBmTGtxWs9hIVkfgWLzhcz7TBAK6einnMd9S0/spIA4Lln2RlJQTqA2 v+zk54IaC0Kp+St6myE2tAkhAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFsaZ15v pyHn54WSDvjZumSklHHeMB8GA1UdIwQYMBaAFNpXokIHBHAI1zpl1oIkpHuaA9qq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTczRS82NzY4OTc4RUE1 QTQxMUVCOThDMzI5MEZDNEY5QUUwMi8ybGVpUWdjRWNBalhPbVhXZ2lTa2U1b0Qy cW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsZWlRZ2NFY0FqWE9tWFdnaVNrZTVvRDJxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NTczRS82NzY4OTc4RUE1QTQxMUVCOThDMzI5MEZDNEY5QUUwMi8ybGVpUWdjRWNB alhPbVhXZ2lTa2U1b0QycW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC32Dn566qu2CWfUitEdPCgXcjGMp36wW3Rvw5dtVUR79xdRsWjh9yt oaktxE+e4XH+yNCjWJVX2H7jgUk/RPYr+IqJJxUjoNBsfhN5VKLOmjqNO4LG1L8T yqzshTlXmp1gy0JrjKVafhSF8HH8/FuiqpfcpyG4jiALx94qj2FD7Bkf9Jz4r/9t oR+RXk3c+EgAaInj2nmm9/hMQNLvrtbuZI0BQQip8gHO14bGgHBXcTF4sbc/ROno pfSsbc92oY7oKeMSZb1/W4XLG7SCvaJcfIwRR5gpuIJzUVXq2ZkUhALfwUR0/GSQ TCSyeqTmJ4hxCElNv6ilsvEE1unwUgUp -----END CERTIFICATE-----Generated at Sat Apr 26 04:21:50 2025 by rpki-client