$ rpki-client -vvf rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft File: 2iwTK47FBxr425BJG63bwPCntEU.mft (raw, json) Hash identifier: 8A9xiuPt7QUuosCioLkBBdPm5DG7lfUMIhyTnsJNyy0= Subject key identifier: D0:44:04:9C:86:63:2E:A6:58:05:C7:19:76:28:27:B4:16:30:6C:97 Authority key identifier: DA:2C:13:2B:8E:C5:07:1A:F8:DB:90:49:1B:AD:DB:C0:F0:A7:B4:45 Certificate issuer: /CN=A91534B8/serialNumber=DA2C132B8EC5071AF8DB90491BADDBC0F0A7B445 Certificate serial: 0278 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/2iwTK47FBxr425BJG63bwPCntEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft Manifest number: 0278 Signing time: Fri 25 Apr 2025 01:28:12 +0000 Manifest this update: Fri 25 Apr 2025 01:28:12 +0000 Manifest next update: Fri 02 May 2025 01:28:12 +0000 Files and hashes: 1: 2iwTK47FBxr425BJG63bwPCntEU.crl (hash: Hcsexn9M/BsDDlWdaSpayJT9K9RzCfePGGKzZjJRcGs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.crl rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/2iwTK47FBxr425BJG63bwPCntEU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:28:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 632 (0x278) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91534B8, serialNumber=DA2C132B8EC5071AF8DB90491BADDBC0F0A7B445 Validity Not Before: Apr 25 01:28:12 2025 GMT Not After : May 2 01:28:12 2025 GMT Subject: CN=680ae52c-09ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:e4:c7:3d:1e:13:5b:7e:63:1f:31:95:a0:90: cb:09:3b:d2:9c:13:f1:b6:5b:b2:38:04:24:7b:cf: 54:b8:f4:ef:12:69:a4:af:f6:86:3a:81:f3:5f:be: fc:22:0d:0d:f2:83:d8:e1:97:ea:4f:0a:79:38:c4: 20:f9:f9:ac:01:33:3c:1c:f4:9a:08:ea:31:e5:9b: 8e:ea:d4:5b:d5:59:3e:66:bc:91:13:c4:44:97:04: 1a:24:92:91:3b:c5:7f:9b:7d:02:b3:87:41:be:a7: 6f:a8:9b:19:29:d7:ae:4f:ce:65:9c:b9:6e:07:75: 23:4d:2f:15:64:86:4a:c9:77:5e:76:38:58:e8:b2: db:4b:5e:3c:0b:b2:50:07:86:26:40:e2:ab:8c:70: 14:3e:fb:ac:48:34:35:0b:6a:2c:e7:d1:5b:7b:46: 2e:fa:76:41:8d:01:27:fe:57:e1:86:4e:3b:42:f6: c5:27:9c:2e:df:35:71:25:b9:4c:da:5b:70:bb:f2: 3f:f6:8b:90:fd:df:8c:25:5a:63:a2:63:02:67:b7: 17:09:22:6f:df:55:17:5b:6b:d9:bf:71:e9:d1:6b: ba:b4:a0:8e:21:73:af:9d:f7:e7:d1:86:8e:9b:4d: 90:7d:55:3a:47:8e:52:fe:b5:86:cf:ec:2d:bb:04: 5d:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:44:04:9C:86:63:2E:A6:58:05:C7:19:76:28:27:B4:16:30:6C:97 X509v3 Authority Key Identifier: keyid:DA:2C:13:2B:8E:C5:07:1A:F8:DB:90:49:1B:AD:DB:C0:F0:A7:B4:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/2iwTK47FBxr425BJG63bwPCntEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:c1:c0:1b:14:74:11:df:38:1e:58:98:9b:aa:67:da:dc:d1: 66:80:61:51:6b:64:5e:6d:b5:c6:ff:2f:0b:1d:a0:a5:6b:e9: 8a:8c:20:6c:fd:29:74:06:d6:da:3f:71:43:87:d5:bc:cd:7a: 1f:86:83:7c:a6:b2:11:96:fd:47:e0:79:47:2e:88:20:b9:11: 70:b1:cc:1e:b2:ed:48:c3:a4:09:f9:55:5a:7c:ec:18:1a:f6: e3:d1:84:33:eb:49:89:46:3a:22:68:26:f5:e0:ab:55:c7:60: a7:99:e7:14:5d:4d:57:9b:83:3d:bc:e3:52:71:ed:35:f3:ab: 92:9e:8b:fa:6e:bc:71:85:28:6f:f9:21:3c:1a:6f:06:39:c7: 67:97:bf:55:64:15:ad:a3:b6:35:90:31:de:9c:83:2d:64:4e: 0d:1c:4d:f7:c4:2c:1d:0d:21:18:3e:65:65:f1:dc:2f:c5:60: f2:00:5f:5c:98:26:72:dc:40:78:4e:05:e3:b9:e3:8b:a2:d4: 11:1e:f8:06:55:44:44:a9:44:22:e1:27:a0:ec:1f:0f:bd:47: f7:27:b5:ca:38:18:1c:b0:e2:5e:6c:6c:9b:29:03:35:bd:2a: ec:20:44:d0:67:e9:94:67:d0:c5:0e:2a:0d:64:c1:9f:72:ee: 39:f2:02:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAngwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM0QjgxMTAvBgNVBAUTKERBMkMxMzJCOEVDNTA3MUFGOERCOTA0OTFCQUREQkMw RjBBN0I0NDUwHhcNMjUwNDI1MDEyODEyWhcNMjUwNTAyMDEyODEyWjAYMRYwFAYD VQQDEw02ODBhZTUyYy0wOWFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAseTHPR4TW35jHzGVoJDLCTvSnBPxtluyOAQke89UuPTvEmmkr/aGOoHzX778 Ig0N8oPY4ZfqTwp5OMQg+fmsATM8HPSaCOox5ZuO6tRb1Vk+ZryRE8RElwQaJJKR O8V/m30Cs4dBvqdvqJsZKdeuT85lnLluB3UjTS8VZIZKyXdedjhY6LLbS148C7JQ B4YmQOKrjHAUPvusSDQ1C2os59Fbe0Yu+nZBjQEn/lfhhk47QvbFJ5wu3zVxJblM 2ltwu/I/9ouQ/d+MJVpjomMCZ7cXCSJv31UXW2vZv3Hp0Wu6tKCOIXOvnffn0YaO m02QfVU6R45S/rWGz+wtuwRdPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNBEBJyG Yy6mWAXHGXYoJ7QWMGyXMB8GA1UdIwQYMBaAFNosEyuOxQca+NuQSRut28Dwp7RF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzRCOC85NjY1OTk3RTA5 NDQxMUVEOEREMTA5NzFDNEY5QUUwMi8yaXdUSzQ3RkJ4cjQyNUJKRzYzYndQQ250 RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzJpd1RLNDdGQnhyNDI1QkpHNjNid1BDbnRFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzRCOC85NjY1OTk3RTA5NDQxMUVEOEREMTA5NzFDNEY5QUUwMi8yaXdUSzQ3RkJ4 cjQyNUJKRzYzYndQQ250RVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXwcAbFHQR3zgeWJibqmfa3NFmgGFRa2RebbXG/y8LHaCla+mKjCBs /Sl0BtbaP3FDh9W8zXofhoN8prIRlv1H4HlHLogguRFwscwesu1Iw6QJ+VVafOwY Gvbj0YQz60mJRjoiaCb14KtVx2CnmecUXU1Xm4M9vONSce0186uSnov6brxxhShv +SE8Gm8GOcdnl79VZBWto7Y1kDHenIMtZE4NHE33xCwdDSEYPmVl8dwvxWDyAF9c mCZy3EB4TgXjueOLotQRHvgGVUREqUQi4Seg7B8PvUf3J7XKOBgcsOJebGybKQM1 vSrsIETQZ+mUZ9DFDioNZMGfcu458gJH -----END CERTIFICATE-----Generated at Sat Apr 26 13:03:29 2025 by rpki-client