$ rpki-client -vvf rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.mft File: 2gQijT7rRR_A8iM2aXFwV_irNmk.mft (raw, json) Hash identifier: CzfmP17aLx3reJP3e8S9Q7BQYIPHcKLK1SM7EYKNsqM= Subject key identifier: 6F:9A:14:E3:C3:B3:52:42:DA:BD:C9:0B:8A:4D:3C:F5:B5:2F:93:3C Authority key identifier: DA:04:22:8D:3E:EB:45:1F:C0:F2:23:36:69:71:70:57:F8:AB:36:69 Certificate issuer: /CN=A914B165/serialNumber=DA04228D3EEB451FC0F2233669717057F8AB3669 Certificate serial: 0869 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gQijT7rRR_A8iM2aXFwV_irNmk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.mft Manifest number: 0863 Signing time: Thu 24 Apr 2025 20:33:32 +0000 Manifest this update: Thu 24 Apr 2025 20:33:32 +0000 Manifest next update: Thu 01 May 2025 20:33:32 +0000 Files and hashes: 1: 2gQijT7rRR_A8iM2aXFwV_irNmk.crl (hash: ZrCuGniapjYfCm7Ucr4z+n4GIFTn2eOePcsStwHDteM=) 2: 26AECD92C2B211EABBD0ED4AC4F9AE02.roa (hash: 8bFMS7lUFa5a04616nMhBCIyPXjI0vGFlv2YHmEk/tM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.crl rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gQijT7rRR_A8iM2aXFwV_irNmk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2153 (0x869) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B165, serialNumber=DA04228D3EEB451FC0F2233669717057F8AB3669 Validity Not Before: Apr 24 20:33:32 2025 GMT Not After : May 1 20:33:32 2025 GMT Subject: CN=680aa01c-6836 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:6a:70:0d:c9:43:9e:f2:77:f5:46:fd:3c:f1: 52:75:0a:84:99:04:f2:73:d3:08:10:75:8c:97:5c: 77:93:30:ee:5a:7f:c3:9a:a6:c5:dc:ce:fe:d2:7a: b1:7e:e3:d3:a8:18:2b:c5:4a:ea:16:d9:ca:b3:ff: bf:cc:05:c6:a1:ac:09:a8:3a:1b:60:79:9d:bd:37: e3:40:8b:39:8a:45:dc:74:ff:86:c2:b0:43:85:3f: d2:c2:d2:3c:0b:3f:db:39:b8:50:00:8a:35:c8:3c: 01:d4:b5:b2:84:fe:eb:f6:da:72:11:d3:24:26:c3: 12:53:ec:84:aa:8b:ac:10:90:4c:9e:91:47:88:54: 90:d8:04:40:02:22:b8:0b:a6:4d:ca:a1:fc:4e:4b: 30:23:9e:59:56:d9:64:3a:be:c8:6c:0a:ed:56:68: e8:d9:a8:ad:9c:de:b5:b3:e8:23:57:ed:11:32:57: 3b:fd:e6:40:52:b7:35:88:80:ae:60:f6:d8:2d:52: 33:57:ff:c3:fb:26:c5:f4:90:0f:0f:64:7d:a5:96: 67:a8:26:66:6c:06:fc:da:50:33:51:87:14:9f:5d: 91:a7:20:a8:36:08:8b:94:bb:d0:6f:2d:51:42:52: 4d:ec:36:47:38:c9:53:eb:8c:19:a8:60:c1:f7:9a: d1:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:9A:14:E3:C3:B3:52:42:DA:BD:C9:0B:8A:4D:3C:F5:B5:2F:93:3C X509v3 Authority Key Identifier: keyid:DA:04:22:8D:3E:EB:45:1F:C0:F2:23:36:69:71:70:57:F8:AB:36:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gQijT7rRR_A8iM2aXFwV_irNmk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:37:d1:07:9a:3a:f7:12:be:3c:25:a2:cc:4a:ad:5e:09:7a: ed:43:27:15:be:f8:2c:55:db:bf:c3:82:11:ad:7e:d3:91:fe: 96:17:56:18:3e:33:38:6e:81:52:d5:84:ea:5c:a8:a4:30:06: b6:60:4f:2a:01:1d:79:ae:b4:d2:38:99:3f:31:a1:89:77:ad: 08:6a:10:8d:06:9c:d5:96:61:8c:80:ff:dc:0b:7c:b9:ce:10: a3:1b:c5:1c:d7:75:2b:6a:7e:16:39:01:90:c9:9e:d5:98:52: ec:9a:84:77:de:cd:0e:34:0e:db:c1:2b:18:8f:53:b1:11:ed: 20:2f:ef:14:a1:bb:76:9d:a5:03:dc:77:e6:3a:00:db:cc:f2: 13:48:3d:e7:d2:10:af:b4:7f:60:95:19:2c:16:af:bc:64:3f: 18:d7:93:c3:6d:0b:cb:3c:f8:8f:79:80:e5:39:1a:5d:44:6a: d7:03:4f:92:cd:34:13:ff:3d:40:ea:64:d7:54:3e:38:af:38: 05:2b:e8:b2:e8:03:4d:19:0d:f2:72:db:30:77:3f:02:2d:71: 85:a6:dc:97:ff:96:49:9c:67:57:e4:47:61:db:21:6f:a1:f7: fe:41:05:d5:b8:5a:0f:ad:03:d2:0a:63:bc:d0:59:69:9a:4f: 39:12:83:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCGkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEIxNjUxMTAvBgNVBAUTKERBMDQyMjhEM0VFQjQ1MUZDMEYyMjMzNjY5NzE3MDU3 RjhBQjM2NjkwHhcNMjUwNDI0MjAzMzMyWhcNMjUwNTAxMjAzMzMyWjAYMRYwFAYD VQQDEw02ODBhYTAxYy02ODM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzmpwDclDnvJ39Ub9PPFSdQqEmQTyc9MIEHWMl1x3kzDuWn/DmqbF3M7+0nqx fuPTqBgrxUrqFtnKs/+/zAXGoawJqDobYHmdvTfjQIs5ikXcdP+GwrBDhT/SwtI8 Cz/bObhQAIo1yDwB1LWyhP7r9tpyEdMkJsMSU+yEqousEJBMnpFHiFSQ2ARAAiK4 C6ZNyqH8TkswI55ZVtlkOr7IbArtVmjo2aitnN61s+gjV+0RMlc7/eZAUrc1iICu YPbYLVIzV//D+ybF9JAPD2R9pZZnqCZmbAb82lAzUYcUn12RpyCoNgiLlLvQby1R QlJN7DZHOMlT64wZqGDB95rRnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG+aFOPD s1JC2r3JC4pNPPW1L5M8MB8GA1UdIwQYMBaAFNoEIo0+60UfwPIjNmlxcFf4qzZp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjE2NS82QTNFQjhCNkMy QjExMUVBOTIwQkI5NEFDNEY5QUUwMi8yZ1FpalQ3clJSX0E4aU0yYVhGd1ZfaXJO bWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJnUWlqVDdyUlJfQThpTTJhWEZ3Vl9pck5tay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjE2NS82QTNFQjhCNkMyQjExMUVBOTIwQkI5NEFDNEY5QUUwMi8yZ1FpalQ3clJS X0E4aU0yYVhGd1ZfaXJObWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFN9EHmjr3Er48JaLMSq1eCXrtQycVvvgsVdu/w4IRrX7Tkf6WF1YY PjM4boFS1YTqXKikMAa2YE8qAR15rrTSOJk/MaGJd60IahCNBpzVlmGMgP/cC3y5 zhCjG8Uc13Uran4WOQGQyZ7VmFLsmoR33s0ONA7bwSsYj1OxEe0gL+8Uobt2naUD 3HfmOgDbzPITSD3n0hCvtH9glRksFq+8ZD8Y15PDbQvLPPiPeYDlORpdRGrXA0+S zTQT/z1A6mTXVD44rzgFK+iy6ANNGQ3yctswdz8CLXGFptyX/5ZJnGdX5Edh2yFv off+QQXVuFoPrQPSCmO80Flpmk85EoOj -----END CERTIFICATE-----Generated at Sat Apr 26 16:32:53 2025 by rpki-client