$ rpki-client -vvf rpki.apnic.net/member_repository/A915479A/24A48388E37911EFB4666B31C4F9AE02/DS1vMynFa_bo-UG9_adJbb4lMOU.mft File: DS1vMynFa_bo-UG9_adJbb4lMOU.mft (raw, json) Hash identifier: ln3USW8dAdk/XReIjUb1bSxjlOzWyC3Ld9O7WZLVEl8= Subject key identifier: 2B:D1:51:05:29:B6:1F:E6:62:3E:BC:BA:30:BA:03:F9:8A:C6:E6:42 Authority key identifier: 0D:2D:6F:33:29:C5:6B:F6:E8:F9:41:BD:FD:A7:49:6D:BE:25:30:E5 Certificate issuer: /CN=A915479A/serialNumber=0D2D6F3329C56BF6E8F941BDFDA7496DBE2530E5 Certificate serial: 2B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/DS1vMynFa_bo-UG9_adJbb4lMOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915479A/24A48388E37911EFB4666B31C4F9AE02/DS1vMynFa_bo-UG9_adJbb4lMOU.mft Manifest number: 2A Signing time: Fri 25 Apr 2025 06:42:28 +0000 Manifest this update: Fri 25 Apr 2025 06:42:28 +0000 Manifest next update: Fri 02 May 2025 06:42:28 +0000 Files and hashes: 1: DS1vMynFa_bo-UG9_adJbb4lMOU.crl (hash: 01UFhx2D0dd43hd1sR2LVnZa1O1+sJhmwaFbBCbymig=) 2: 8836D872E37B11EFB4D75458C4F9AE02.roa (hash: SXO1+0APe7z5DY3Hw4Iwvndpe+8U4RSEIeHcUiLcev8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915479A/24A48388E37911EFB4666B31C4F9AE02/DS1vMynFa_bo-UG9_adJbb4lMOU.crl rsync://rpki.apnic.net/member_repository/A915479A/24A48388E37911EFB4666B31C4F9AE02/DS1vMynFa_bo-UG9_adJbb4lMOU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/DS1vMynFa_bo-UG9_adJbb4lMOU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:42:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915479A, serialNumber=0D2D6F3329C56BF6E8F941BDFDA7496DBE2530E5 Validity Not Before: Apr 25 06:42:28 2025 GMT Not After : May 2 06:42:28 2025 GMT Subject: CN=680b2ed4-7fa6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:9f:83:88:63:2f:c9:4e:b4:f3:47:6e:86:78: 6a:e6:dd:e8:cd:70:8b:ef:ee:b0:2f:16:85:4a:0a: 6e:00:ca:32:2b:d1:54:91:74:27:88:67:49:5e:18: 77:99:54:e2:20:da:f9:5a:e7:de:cd:d7:c1:1c:5f: ed:44:c9:21:f7:5b:f5:c7:06:5d:68:06:84:da:0a: 04:a3:c5:2e:15:ad:78:83:f6:d4:33:cb:85:db:0b: e8:80:0c:ba:9a:a0:8f:7c:e9:2f:3d:e6:df:4f:54: 5c:ed:e0:62:5f:36:f4:35:c9:a1:ed:2e:88:cc:80: 07:e7:57:7d:7a:57:14:ee:e9:d2:45:5a:cc:71:e4: ee:1d:4f:26:5a:34:28:1b:c9:f8:47:03:e2:d9:3b: da:bd:79:a0:8b:7f:bc:32:d3:b8:8d:33:40:b8:85: fa:5e:24:34:b5:48:ae:45:e2:c3:8f:3e:f3:c7:61: 48:36:d5:b6:b4:06:9f:59:29:ae:37:38:79:a2:1d: 04:7a:8d:54:9c:4c:be:0c:60:44:73:fc:6e:99:f5: 5d:09:d1:7b:4b:8f:fe:dc:8a:07:7f:fe:a0:4a:99: 9c:a0:7a:da:9b:93:d8:3e:cf:97:93:a4:5a:9e:05: b3:47:2e:9c:e1:6c:7e:f6:17:1c:76:65:9f:11:f7: 5f:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:D1:51:05:29:B6:1F:E6:62:3E:BC:BA:30:BA:03:F9:8A:C6:E6:42 X509v3 Authority Key Identifier: keyid:0D:2D:6F:33:29:C5:6B:F6:E8:F9:41:BD:FD:A7:49:6D:BE:25:30:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915479A/24A48388E37911EFB4666B31C4F9AE02/DS1vMynFa_bo-UG9_adJbb4lMOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/DS1vMynFa_bo-UG9_adJbb4lMOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915479A/24A48388E37911EFB4666B31C4F9AE02/DS1vMynFa_bo-UG9_adJbb4lMOU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:09:0c:5d:6f:d2:b2:76:82:c7:d1:0f:59:0e:aa:4a:19:57: 01:fc:15:56:e8:2c:9d:d4:2e:84:2b:91:6e:8d:c8:f8:db:5c: 3e:fb:05:a3:46:15:77:5c:db:d8:70:af:d9:b9:cd:bf:1b:f7: 31:cc:47:b1:fb:36:6f:f5:7f:c7:74:c8:1a:2d:41:70:a5:14: b1:d4:6b:40:33:a8:8e:93:cb:67:44:89:13:77:4e:9a:42:3e: 37:a5:cf:1d:fa:eb:36:59:12:2e:e5:46:1d:08:45:9a:e1:b1: 96:8e:b6:2b:b7:3c:be:27:ec:75:dd:c0:42:ff:99:fa:b5:2c: a3:cf:09:48:6d:66:66:25:5b:59:f1:75:7e:4a:c4:43:f9:53: 49:8a:44:da:c7:43:1f:fe:9e:ec:08:30:6f:cf:d4:ad:5e:3d: cd:2b:c4:2f:0f:a7:3e:10:27:51:4c:39:97:ea:2a:0a:0b:1f: 1f:b5:8e:e7:7c:b7:00:a9:4d:b0:10:01:6c:23:85:63:bc:2c: f0:eb:27:09:83:96:8a:59:61:e9:cb:4a:dc:0d:bf:c1:52:d5: c2:6e:25:6f:71:55:fe:48:93:1b:35:39:e7:8d:42:b0:e6:25: f8:d5:69:3c:e2:3a:14:ba:73:ee:1b:47:20:eb:e6:fa:db:7c: 4d:dd:49:01 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NDc5QTExMC8GA1UEBRMoMEQyRDZGMzMyOUM1NkJGNkU4Rjk0MUJERkRBNzQ5NkRC RTI1MzBFNTAeFw0yNTA0MjUwNjQyMjhaFw0yNTA1MDIwNjQyMjhaMBgxFjAUBgNV BAMTDTY4MGIyZWQ0LTdmYTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDn4OIYy/JTrTzR26GeGrm3ejNcIvv7rAvFoVKCm4AyjIr0VSRdCeIZ0leGHeZ VOIg2vla597N18EcX+1EySH3W/XHBl1oBoTaCgSjxS4VrXiD9tQzy4XbC+iADLqa oI986S895t9PVFzt4GJfNvQ1yaHtLojMgAfnV316VxTu6dJFWsxx5O4dTyZaNCgb yfhHA+LZO9q9eaCLf7wy07iNM0C4hfpeJDS1SK5F4sOPPvPHYUg21ba0Bp9ZKa43 OHmiHQR6jVScTL4MYERz/G6Z9V0J0XtLj/7cigd//qBKmZygetqbk9g+z5eTpFqe BbNHLpzhbH72Fxx2ZZ8R91+xAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUK9FRBSm2 H+ZiPry6MLoD+YrG5kIwHwYDVR0jBBgwFoAUDS1vMynFa/bo+UG9/adJbb4lMOUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU0NzlBLzI0QTQ4Mzg4RTM3 OTExRUZCNDY2NkIzMUM0RjlBRTAyL0RTMXZNeW5GYV9iby1VRzlfYWRKYmI0bE1P VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRFMxdk15bkZhX2JvLVVHOV9hZEpiYjRsTU9VLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU0 NzlBLzI0QTQ4Mzg4RTM3OTExRUZCNDY2NkIzMUM0RjlBRTAyL0RTMXZNeW5GYV9i by1VRzlfYWRKYmI0bE1PVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGwJDF1v0rJ2gsfRD1kOqkoZVwH8FVboLJ3ULoQrkW6NyPjbXD77BaNG FXdc29hwr9m5zb8b9zHMR7H7Nm/1f8d0yBotQXClFLHUa0AzqI6Ty2dEiRN3TppC Pjelzx366zZZEi7lRh0IRZrhsZaOtiu3PL4n7HXdwEL/mfq1LKPPCUhtZmYlW1nx dX5KxEP5U0mKRNrHQx/+nuwIMG/P1K1ePc0rxC8Ppz4QJ1FMOZfqKgoLHx+1jud8 twCpTbAQAWwjhWO8LPDrJwmDlopZYenLStwNv8FS1cJuJW9xVf5Ikxs1OeeNQrDm JfjVaTziOhS6c+4bRyDr5vrbfE3dSQE= -----END CERTIFICATE-----Generated at Sat Apr 26 16:14:47 2025 by rpki-client