$ rpki-client -vvf rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft File: 2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft (raw, json) Hash identifier: zRDIanbZV7lBhVSQbD2/ziDmxKZ5w6i6wfhnIyyWgfs= Subject key identifier: 5D:73:7E:B4:7F:99:04:57:99:91:2E:95:6D:27:5D:50:D1:A7:07:3B Authority key identifier: D9:5D:A1:17:14:12:30:0A:B5:3B:3E:48:70:F2:F4:41:F0:6C:81:24 Certificate issuer: /CN=A9159ECD/serialNumber=D95DA1171412300AB53B3E4870F2F441F06C8124 Certificate serial: A0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft Manifest number: 9E Signing time: Fri 02 May 2025 23:43:41 +0000 Manifest this update: Fri 02 May 2025 23:43:40 +0000 Manifest next update: Fri 09 May 2025 23:43:40 +0000 Files and hashes: 1: 2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl (hash: tlySadMX9GPEskPAtWLQVkj6HLUe9ryiNw9rUsY+uVA=) 2: 5A4723DA6F3C11EF8FD45F13C4F9AE02.roa (hash: kyChUBrK7l3YN4vwLMgx+ZZf43nxmdSV9d2PzrRyBN4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 09 May 2025 23:43:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 160 (0xa0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159ECD, serialNumber=D95DA1171412300AB53B3E4870F2F441F06C8124 Validity Not Before: May 2 23:43:40 2025 GMT Not After : May 9 23:43:40 2025 GMT Subject: CN=681558ac-f91c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:0d:bd:41:6b:62:6c:28:0b:ee:bc:09:1d:d3: f5:d3:10:52:51:6c:1f:43:69:88:bc:80:36:78:60: 22:f6:8f:b2:f5:86:18:85:45:8e:14:2a:33:0e:b7: 1f:b4:6c:6b:0f:41:2a:88:87:7b:66:ea:35:42:68: 3e:a3:3d:e9:b5:88:9f:65:e9:00:b0:e8:49:56:4d: 0e:46:94:83:f8:9f:ff:19:26:4b:96:91:a9:c1:d2: 5d:f4:f1:3d:46:63:36:3b:a1:84:e2:7a:05:35:1c: d3:d6:b9:4f:25:67:0d:64:34:32:da:d1:de:89:67: c5:27:14:6f:3a:da:00:42:ee:8c:42:9c:d7:74:aa: 97:39:fc:1a:c0:81:96:74:07:1a:1b:28:5f:95:27: 13:c3:03:07:e1:22:b2:30:b2:c5:84:88:a2:d4:55: ff:c5:c7:ec:86:c6:7c:fe:4e:c2:5b:36:36:ec:e9: 88:c1:94:dd:8c:73:3b:f7:c7:d3:cc:6c:32:83:7d: d8:fd:58:79:a0:32:d4:91:e5:7b:da:46:cf:62:a6: b1:07:25:23:c2:12:29:2b:8b:e1:13:48:83:5b:6b: 4e:47:51:cf:fd:4a:77:d2:cf:df:39:39:2a:04:cd: 35:75:0a:4d:f4:67:b0:7e:a3:08:b8:69:c5:82:ea: 6b:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:73:7E:B4:7F:99:04:57:99:91:2E:95:6D:27:5D:50:D1:A7:07:3B X509v3 Authority Key Identifier: keyid:D9:5D:A1:17:14:12:30:0A:B5:3B:3E:48:70:F2:F4:41:F0:6C:81:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:18:c5:e9:6c:e9:42:e9:50:7a:a2:fb:55:e8:d2:34:ec:d4: 23:25:07:b9:e5:1c:a0:b2:1e:0e:20:d7:07:45:d5:a4:76:fc: b9:86:54:89:41:dc:92:09:77:a9:cd:53:b6:70:67:03:ea:f1: d8:2c:5a:85:71:10:6c:4a:eb:07:0e:c2:8a:00:56:01:a3:5b: b2:a6:bb:54:32:1f:02:f4:ee:38:6d:7b:b0:61:c7:5d:27:38: 68:3b:cf:85:15:71:a9:eb:55:53:47:42:49:a4:bc:9e:5b:6d: 4a:7d:6f:72:40:be:ec:db:24:a5:f5:36:b4:c8:6d:76:44:d3: c1:dc:08:a6:f1:f4:41:06:11:c4:43:e8:bc:08:18:01:8c:c9: 3a:1a:2e:7e:2f:7d:53:07:79:4d:1f:32:51:9e:4b:da:42:c2: 30:36:c3:ac:e6:23:57:6b:86:ff:58:e6:46:fe:0d:e4:0e:26: 05:a0:d7:9c:9a:8e:87:31:e2:b5:1c:c1:02:4c:d1:07:55:17: 51:f1:d1:e5:8d:63:29:ff:5c:3b:22:66:35:db:a4:50:11:2d: 9d:e6:29:90:00:6a:1a:70:37:02:3a:23:b2:df:65:d7:c6:8b: 38:e1:1b:48:e8:ad:e2:e7:40:44:02:6c:2c:40:38:4d:3c:1b: 94:55:ea:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTlFQ0QxMTAvBgNVBAUTKEQ5NURBMTE3MTQxMjMwMEFCNTNCM0U0ODcwRjJGNDQx RjA2QzgxMjQwHhcNMjUwNTAyMjM0MzQwWhcNMjUwNTA5MjM0MzQwWjAYMRYwFAYD VQQDEw02ODE1NThhYy1mOTFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Q29QWtibCgL7rwJHdP10xBSUWwfQ2mIvIA2eGAi9o+y9YYYhUWOFCozDrcf tGxrD0EqiId7Zuo1Qmg+oz3ptYifZekAsOhJVk0ORpSD+J//GSZLlpGpwdJd9PE9 RmM2O6GE4noFNRzT1rlPJWcNZDQy2tHeiWfFJxRvOtoAQu6MQpzXdKqXOfwawIGW dAcaGyhflScTwwMH4SKyMLLFhIii1FX/xcfshsZ8/k7CWzY27OmIwZTdjHM798fT zGwyg33Y/Vh5oDLUkeV72kbPYqaxByUjwhIpK4vhE0iDW2tOR1HP/Up30s/fOTkq BM01dQpN9GewfqMIuGnFguprMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF1zfrR/ mQRXmZEulW0nXVDRpwc7MB8GA1UdIwQYMBaAFNldoRcUEjAKtTs+SHDy9EHwbIEk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OUVDRC9FRjYzODNFMjNE OUYxMUVGOTkwMzM3NjhDNEY5QUUwMi8yVjJoRnhRU01BcTFPejVJY1BMMFFmQnNn U1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJWMmhGeFFTTUFxMU96NUljUEwwUWZCc2dTUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OUVDRC9FRjYzODNFMjNEOUYxMUVGOTkwMzM3NjhDNEY5QUUwMi8yVjJoRnhRU01B cTFPejVJY1BMMFFmQnNnU1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtGMXpbOlC6VB6ovtV6NI07NQjJQe55Rygsh4OINcHRdWkdvy5hlSJ QdySCXepzVO2cGcD6vHYLFqFcRBsSusHDsKKAFYBo1uyprtUMh8C9O44bXuwYcdd JzhoO8+FFXGp61VTR0JJpLyeW21KfW9yQL7s2ySl9Ta0yG12RNPB3Aim8fRBBhHE Q+i8CBgBjMk6Gi5+L31TB3lNHzJRnkvaQsIwNsOs5iNXa4b/WOZG/g3kDiYFoNec mo6HMeK1HMECTNEHVRdR8dHljWMp/1w7ImY126RQES2d5imQAGoacDcCOiOy32XX xos44RtI6K3i50BEAmwsQDhNPBuUVeo7 -----END CERTIFICATE-----Generated at Sat May 3 19:33:24 2025 by rpki-client