$ rpki-client -vvf rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft File: 2UW2DwCc3xVcQp1Aha62z-BrzgA.mft (raw, json) Hash identifier: jBiSOThnfRtX6zFCU6WxGevZX++1xNuvosbEfbXlsVc= Subject key identifier: 34:9C:B9:53:43:17:46:9C:B9:CB:29:5C:A0:F5:52:D3:C2:18:57:66 Authority key identifier: D9:45:B6:0F:00:9C:DF:15:5C:42:9D:40:85:AE:B6:CF:E0:6B:CE:00 Certificate issuer: /CN=A9149CEF/serialNumber=D945B60F009CDF155C429D4085AEB6CFE06BCE00 Certificate serial: 04AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UW2DwCc3xVcQp1Aha62z-BrzgA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft Manifest number: 04A5 Signing time: Thu 24 Apr 2025 23:42:00 +0000 Manifest this update: Thu 24 Apr 2025 23:41:59 +0000 Manifest next update: Thu 01 May 2025 23:41:59 +0000 Files and hashes: 1: 2UW2DwCc3xVcQp1Aha62z-BrzgA.crl (hash: g7FcXazGTljT0t9Lu+qmp2kYo2xHQ21RlMkyQwYZMVw=) 2: AFAC764C2C1711EC817C5912C4F9AE02.roa (hash: Pxv8dePi1EpNPNL4ZdJ0nYxVU1Z8dZuP+ncTQy+eHOw=) 3: AF22E83C2C1711EC817C5912C4F9AE02.roa (hash: Qsapn7T7BSoVN2a752N9muKYuA54q3bOkNtfwyaphBI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.crl rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UW2DwCc3xVcQp1Aha62z-BrzgA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:41:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1197 (0x4ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149CEF, serialNumber=D945B60F009CDF155C429D4085AEB6CFE06BCE00 Validity Not Before: Apr 24 23:41:59 2025 GMT Not After : May 1 23:41:59 2025 GMT Subject: CN=680acc47-272f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:8a:3c:fe:83:59:1c:27:34:28:7e:f7:bc:c4: 32:16:18:21:89:f9:b9:75:5a:e0:9b:68:eb:15:26: f8:39:01:24:e2:fc:bd:3c:b1:11:01:f2:0a:eb:97: 30:cb:12:77:01:23:7e:b2:45:4f:04:47:8d:cf:7e: 2f:6c:55:b4:10:8f:ff:b7:29:ed:ea:16:30:b7:dd: eb:8e:77:2c:f0:d8:ae:8b:9f:d6:7f:97:9c:23:7c: 71:2c:9f:28:3c:3a:c3:74:58:3f:4c:e6:98:0d:bd: 3c:1a:1e:72:77:6f:38:ba:06:ab:c6:4b:97:b1:33: 38:a0:c9:ac:28:48:f0:9d:a3:08:19:1b:00:61:d5: 6d:a0:bd:d3:28:60:5b:09:5b:b2:72:0e:75:bf:5b: 2b:71:dc:d6:3c:ee:c5:46:d8:33:ce:10:60:3d:7a: 4d:d2:c1:81:9c:cd:20:08:63:79:49:43:27:cf:61: 8c:63:2e:a4:c4:ab:3b:22:cc:c9:67:57:53:b2:fb: f3:62:29:e8:91:c8:9c:b8:c1:7d:61:fd:84:08:fb: b7:f0:dc:be:e9:2c:f5:61:32:b8:cc:ed:36:ab:fa: 8f:77:1c:e5:ab:af:b4:cb:19:15:56:3d:03:24:38: f0:53:e8:17:53:37:b6:d5:a3:40:79:f6:46:36:7a: 87:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:9C:B9:53:43:17:46:9C:B9:CB:29:5C:A0:F5:52:D3:C2:18:57:66 X509v3 Authority Key Identifier: keyid:D9:45:B6:0F:00:9C:DF:15:5C:42:9D:40:85:AE:B6:CF:E0:6B:CE:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UW2DwCc3xVcQp1Aha62z-BrzgA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:27:5d:42:a1:76:b7:bb:10:f0:27:71:42:f5:d8:91:7e:2b: 1b:7e:4d:f7:7a:21:68:bf:69:64:27:03:7e:65:c6:56:5c:a9: 63:be:e3:27:93:72:4d:4f:22:3c:64:90:0a:35:3b:20:20:42: cd:b3:75:7a:a7:7e:cc:df:58:f2:98:44:4d:a7:47:38:ba:69: da:a0:0f:63:8e:ba:6b:ee:c6:60:0c:21:9e:8b:e0:4b:1e:10: c1:c2:21:23:61:b7:8f:e8:38:de:36:9f:36:24:2e:1d:74:58: c7:75:05:f6:57:65:2e:5d:35:49:38:4f:c1:ac:22:19:8c:e1: 81:bd:51:0d:ad:ec:f8:1d:29:ff:b0:0a:0c:8b:80:83:58:e1: 08:d4:ea:5e:ce:7c:70:4b:02:74:55:4d:6f:fb:15:80:cb:0a: e7:ff:79:4a:74:77:5d:e1:49:0b:2d:a6:6c:b3:12:7a:97:df: 8b:80:72:2a:a0:3c:1b:ab:fa:84:e3:70:7a:3c:81:11:79:ba: a1:bb:3e:87:ba:18:00:1f:92:4d:a5:07:74:c4:28:67:9b:88: 93:94:89:0d:83:9b:bb:f5:b7:ae:63:47:11:9a:14:91:82:61: 39:aa:17:b6:f5:de:8b:a6:73:b7:27:81:13:e4:2a:63:77:6f: d8:30:49:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlDRUYxMTAvBgNVBAUTKEQ5NDVCNjBGMDA5Q0RGMTU1QzQyOUQ0MDg1QUVCNkNG RTA2QkNFMDAwHhcNMjUwNDI0MjM0MTU5WhcNMjUwNTAxMjM0MTU5WjAYMRYwFAYD VQQDEw02ODBhY2M0Ny0yNzJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv4o8/oNZHCc0KH73vMQyFhghifm5dVrgm2jrFSb4OQEk4vy9PLERAfIK65cw yxJ3ASN+skVPBEeNz34vbFW0EI//tynt6hYwt93rjncs8Niui5/Wf5ecI3xxLJ8o PDrDdFg/TOaYDb08Gh5yd284ugarxkuXsTM4oMmsKEjwnaMIGRsAYdVtoL3TKGBb CVuycg51v1srcdzWPO7FRtgzzhBgPXpN0sGBnM0gCGN5SUMnz2GMYy6kxKs7IszJ Z1dTsvvzYinokcicuMF9Yf2ECPu38Ny+6Sz1YTK4zO02q/qPdxzlq6+0yxkVVj0D JDjwU+gXUze21aNAefZGNnqH3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDScuVND F0acucspXKD1UtPCGFdmMB8GA1UdIwQYMBaAFNlFtg8AnN8VXEKdQIWuts/ga84A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUNFRi9DNDAxOUQyNDJD MTMxMUVDQjQ1ODA4NDJDNEY5QUUwMi8yVVcyRHdDYzN4VmNRcDFBaGE2MnotQnJ6 Z0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJVVzJEd0NjM3hWY1FwMUFoYTYyei1CcnpnQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUNFRi9DNDAxOUQyNDJDMTMxMUVDQjQ1ODA4NDJDNEY5QUUwMi8yVVcyRHdDYzN4 VmNRcDFBaGE2MnotQnJ6Z0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVJ11CoXa3uxDwJ3FC9diRfisbfk33eiFov2lkJwN+ZcZWXKljvuMn k3JNTyI8ZJAKNTsgIELNs3V6p37M31jymERNp0c4umnaoA9jjrpr7sZgDCGei+BL HhDBwiEjYbeP6DjeNp82JC4ddFjHdQX2V2UuXTVJOE/BrCIZjOGBvVENrez4HSn/ sAoMi4CDWOEI1OpeznxwSwJ0VU1v+xWAywrn/3lKdHdd4UkLLaZssxJ6l9+LgHIq oDwbq/qE43B6PIERebqhuz6HuhgAH5JNpQd0xChnm4iTlIkNg5u79beuY0cRmhSR gmE5qhe29d6LpnO3J4ET5Cpjd2/YMEk6 -----END CERTIFICATE-----Generated at Sat Apr 26 04:35:09 2025 by rpki-client