$ rpki-client -vvf rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.mft File: 2-bH-ZCQRq41ohWw4hVErlIjfoo.mft (raw, json) Hash identifier: pWvh4svtob87wpsEPnl1fnCI3YYWNmQAx4C0OeHlyuE= Subject key identifier: 9C:A1:9A:3A:AD:76:81:CB:F5:F0:F9:86:6D:DB:CA:C6:99:BF:6C:20 Authority key identifier: DB:E6:C7:F9:90:90:46:AE:35:A2:15:B0:E2:15:44:AE:52:23:7E:8A Certificate issuer: /CN=A914F697/serialNumber=DBE6C7F9909046AE35A215B0E21544AE52237E8A Certificate serial: 066B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-bH-ZCQRq41ohWw4hVErlIjfoo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.mft Manifest number: 0799 Signing time: Thu 24 Apr 2025 20:51:30 +0000 Manifest this update: Thu 24 Apr 2025 20:51:29 +0000 Manifest next update: Thu 01 May 2025 20:51:29 +0000 Files and hashes: 1: 2-bH-ZCQRq41ohWw4hVErlIjfoo.crl (hash: z+ymnEmcjQtYNaRH4UTsJZ/1lw77zpkrIgPSWQOkKcQ=) 2: 1AA7504A92DD11EB9B9E993FC4F9AE02.roa (hash: C75Vrv4Uz+C6zFOBFG0FQ16ertvfsDBJQmC7BROeKb0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.crl rsync://rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-bH-ZCQRq41ohWw4hVErlIjfoo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:51:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1643 (0x66b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F697, serialNumber=DBE6C7F9909046AE35A215B0E21544AE52237E8A Validity Not Before: Apr 24 20:51:29 2025 GMT Not After : May 1 20:51:29 2025 GMT Subject: CN=680aa452-4a01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:74:4e:8f:96:48:ed:cd:c9:18:bf:e7:e8:79: 10:b8:a0:75:b5:77:ba:53:dc:0e:b5:15:c7:2a:19: e2:59:85:0a:f0:6e:bb:61:84:21:75:ca:c5:e5:65: f3:72:e1:01:e3:93:53:e2:87:4a:5f:de:e2:22:5d: 86:8e:f7:5c:4e:6d:23:42:a9:22:34:f0:c4:a3:e4: eb:23:08:96:09:84:02:ef:60:14:7a:64:38:c5:00: a0:40:51:e8:26:03:87:01:d6:a6:04:f4:5c:17:7c: ab:d7:f9:a4:48:62:c9:c0:e6:6e:c8:c6:82:86:1a: 88:dd:88:49:2f:be:3e:4a:ce:67:7e:77:97:c8:48: 4d:05:6f:2d:6b:3b:83:79:7d:a2:2b:78:15:68:fc: c9:f7:1c:83:9b:ed:29:6a:4f:d5:b5:3e:dd:70:92: 47:fe:99:53:8e:00:01:0c:4d:d7:c6:90:04:4e:28: 71:33:04:91:60:a1:cb:06:a4:bc:ef:4b:8f:ba:36: 23:00:1b:31:bd:f2:1a:b0:ab:f2:c9:e5:4a:15:d4: 09:29:68:cc:80:c4:db:f8:e4:36:f0:be:08:d7:88: 6a:ff:5b:cf:c0:71:b4:da:fa:df:0f:49:7f:23:33: c2:18:71:a6:4d:57:c7:c3:d6:3a:3b:c0:96:45:aa: 2f:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:A1:9A:3A:AD:76:81:CB:F5:F0:F9:86:6D:DB:CA:C6:99:BF:6C:20 X509v3 Authority Key Identifier: keyid:DB:E6:C7:F9:90:90:46:AE:35:A2:15:B0:E2:15:44:AE:52:23:7E:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-bH-ZCQRq41ohWw4hVErlIjfoo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:2f:c8:1f:1f:a6:90:71:32:56:e8:33:bf:b9:33:8e:78:a3: 94:0b:76:53:98:4c:1d:7b:15:ea:8a:6a:4c:90:13:7a:29:f1: e7:05:02:27:6f:fd:76:33:25:4a:45:88:b9:3b:5a:7a:f4:36: f0:90:d7:b4:83:15:b4:b3:49:21:bd:5c:43:c8:7f:99:78:54: c3:a5:dd:c6:fd:c0:a9:19:cb:54:4f:2c:c5:ac:07:51:b4:24: 10:d2:ce:a6:26:f7:3c:45:be:15:9a:d3:14:60:df:21:46:0f: 4f:6f:a1:85:b4:ba:be:16:b8:bc:82:ca:a5:5a:f2:df:13:f9: a1:09:27:09:ca:34:54:79:8a:5f:06:50:dd:2d:90:50:c6:ba: 5a:fd:29:c2:23:a5:c6:d2:ad:72:4f:4e:54:47:09:7f:aa:c8: 87:0c:82:f9:21:63:ce:61:77:8b:b5:d9:00:df:1b:a3:63:33: 0b:05:1b:41:44:b2:2a:4e:8b:08:4a:5a:de:18:61:da:6f:52: 47:1e:9b:bf:44:f6:0e:3c:3d:56:ca:80:3a:46:69:fe:9f:dd: 0d:34:4c:5e:d2:17:78:45:e3:5f:ea:6e:a2:39:0a:aa:33:86: a6:33:a1:35:a6:7e:3a:d6:74:b3:c3:c5:b1:4e:97:59:88:51: 50:c2:bb:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY2OTcxMTAvBgNVBAUTKERCRTZDN0Y5OTA5MDQ2QUUzNUEyMTVCMEUyMTU0NEFF NTIyMzdFOEEwHhcNMjUwNDI0MjA1MTI5WhcNMjUwNTAxMjA1MTI5WjAYMRYwFAYD VQQDEw02ODBhYTQ1Mi00YTAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApnROj5ZI7c3JGL/n6HkQuKB1tXe6U9wOtRXHKhniWYUK8G67YYQhdcrF5WXz cuEB45NT4odKX97iIl2GjvdcTm0jQqkiNPDEo+TrIwiWCYQC72AUemQ4xQCgQFHo JgOHAdamBPRcF3yr1/mkSGLJwOZuyMaChhqI3YhJL74+Ss5nfneXyEhNBW8tazuD eX2iK3gVaPzJ9xyDm+0pak/VtT7dcJJH/plTjgABDE3XxpAETihxMwSRYKHLBqS8 70uPujYjABsxvfIasKvyyeVKFdQJKWjMgMTb+OQ28L4I14hq/1vPwHG02vrfD0l/ IzPCGHGmTVfHw9Y6O8CWRaov/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJyhmjqt doHL9fD5hm3bysaZv2wgMB8GA1UdIwQYMBaAFNvmx/mQkEauNaIVsOIVRK5SI36K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjY5Ny83NTIxREZDMEU4 NUQxMUVBQjIzQzhGODdDNEY5QUUwMi8yLWJILVpDUVJxNDFvaFd3NGhWRXJsSWpm b28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzItYkgtWkNRUnE0MW9oV3c0aFZFcmxJamZvby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjY5Ny83NTIxREZDMEU4NUQxMUVBQjIzQzhGODdDNEY5QUUwMi8yLWJILVpDUVJx NDFvaFd3NGhWRXJsSWpmb28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWL8gfH6aQcTJW6DO/uTOOeKOUC3ZTmEwdexXqimpMkBN6KfHnBQIn b/12MyVKRYi5O1p69DbwkNe0gxW0s0khvVxDyH+ZeFTDpd3G/cCpGctUTyzFrAdR tCQQ0s6mJvc8Rb4VmtMUYN8hRg9Pb6GFtLq+Fri8gsqlWvLfE/mhCScJyjRUeYpf BlDdLZBQxrpa/SnCI6XG0q1yT05URwl/qsiHDIL5IWPOYXeLtdkA3xujYzMLBRtB RLIqTosISlreGGHab1JHHpu/RPYOPD1WyoA6Rmn+n90NNExe0hd4ReNf6m6iOQqq M4amM6E1pn461nSzw8WxTpdZiFFQwruV -----END CERTIFICATE-----Generated at Sat Apr 26 16:52:25 2025 by rpki-client