$ rpki-client -vvf rpki.apnic.net/member_repository/A916069A/2EB607969BF011EF81C90267C4F9AE02/2Qg5PFuoA1r2i37ACVWOgS7QleA.mft File: 2Qg5PFuoA1r2i37ACVWOgS7QleA.mft (raw, json) Hash identifier: yLUtVgCOq3JHreDnFfHyv2XlDqbc58FdW2E9Q7jmHw4= Subject key identifier: 5D:C9:D1:6C:8D:60:FE:2F:E9:AD:DF:E2:EF:2E:B1:75:13:87:29:FB Authority key identifier: D9:08:39:3C:5B:A8:03:5A:F6:8B:7E:C0:09:55:8E:81:2E:D0:95:E0 Certificate issuer: /CN=A916069A/serialNumber=D908393C5BA8035AF68B7EC009558E812ED095E0 Certificate serial: 5D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Qg5PFuoA1r2i37ACVWOgS7QleA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916069A/2EB607969BF011EF81C90267C4F9AE02/2Qg5PFuoA1r2i37ACVWOgS7QleA.mft Manifest number: 5B Signing time: Fri 25 Apr 2025 06:07:40 +0000 Manifest this update: Fri 25 Apr 2025 06:07:39 +0000 Manifest next update: Fri 02 May 2025 06:07:39 +0000 Files and hashes: 1: 2Qg5PFuoA1r2i37ACVWOgS7QleA.crl (hash: nt9JJksN9IU+qNUuC4mkwvjvqbZ8tDYMYU0YGiaTAVo=) 2: C62E0568C52811EF9EDAD649C4F9AE02.roa (hash: F5uXTjMiJni5HqVRUwrgZPii2IL1VQzAUq1Dx9Qk/Co=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916069A/2EB607969BF011EF81C90267C4F9AE02/2Qg5PFuoA1r2i37ACVWOgS7QleA.crl rsync://rpki.apnic.net/member_repository/A916069A/2EB607969BF011EF81C90267C4F9AE02/2Qg5PFuoA1r2i37ACVWOgS7QleA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Qg5PFuoA1r2i37ACVWOgS7QleA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:07:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 93 (0x5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916069A, serialNumber=D908393C5BA8035AF68B7EC009558E812ED095E0 Validity Not Before: Apr 25 06:07:39 2025 GMT Not After : May 2 06:07:39 2025 GMT Subject: CN=680b26ab-016f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:6f:8c:f9:d2:08:bd:05:92:0f:a8:b4:fc:ee: 42:c0:bc:f1:98:90:69:90:fd:f9:76:5e:d9:1e:f4: 8f:fe:88:f0:83:3f:4f:3c:2b:8e:8f:e1:ed:46:66: 74:dc:cb:7f:9c:95:44:f3:79:64:3e:3b:1b:24:2a: 50:ce:d0:e7:38:5e:88:5c:a3:5b:97:4b:a4:04:2d: 2b:63:7a:ce:28:06:98:95:65:24:a3:74:04:99:00: f2:f5:f4:c4:59:3b:9f:5d:a7:1c:dd:26:c3:bb:59: c3:f7:5e:be:e9:cb:d8:7e:01:a1:46:9e:4c:f1:2d: 61:8d:2f:24:3f:ec:fd:d9:83:1d:4e:5d:73:02:97: a4:87:6c:43:ea:90:74:22:a1:91:df:91:78:23:a1: cf:db:cf:39:7e:f3:65:f3:7b:80:44:be:4a:32:5d: 9a:ad:1f:fc:99:42:b0:ed:55:84:6d:da:3b:38:f6: 2a:07:1d:91:42:5c:aa:24:26:27:ba:06:4b:e4:10: 38:a9:e3:38:79:fe:4a:a5:85:8d:9a:7a:8e:1b:64: 5a:e0:97:d4:f6:12:b3:09:25:0a:08:86:67:0e:a5: 25:d7:94:ed:54:53:47:32:9b:aa:0e:cf:73:c0:9e: 44:bb:c5:59:07:cf:9a:b9:c1:9d:31:18:77:d1:21: 3a:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:C9:D1:6C:8D:60:FE:2F:E9:AD:DF:E2:EF:2E:B1:75:13:87:29:FB X509v3 Authority Key Identifier: keyid:D9:08:39:3C:5B:A8:03:5A:F6:8B:7E:C0:09:55:8E:81:2E:D0:95:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916069A/2EB607969BF011EF81C90267C4F9AE02/2Qg5PFuoA1r2i37ACVWOgS7QleA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Qg5PFuoA1r2i37ACVWOgS7QleA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916069A/2EB607969BF011EF81C90267C4F9AE02/2Qg5PFuoA1r2i37ACVWOgS7QleA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:a4:07:b0:5f:30:ca:a2:ab:22:86:e9:76:53:42:8d:78:56: f6:26:f7:68:df:97:2e:2b:f2:83:d1:e4:ba:cc:f1:05:13:56: d1:a2:8e:91:b2:0d:75:05:ef:b9:58:84:36:80:bc:b4:71:8f: bc:a6:6a:fb:a7:2a:11:cd:fa:2b:b3:33:c2:f7:53:dc:6d:9b: 83:f5:4b:12:ae:8d:2f:1d:ce:02:6e:61:65:54:93:7b:67:8d: 20:89:bf:17:96:f2:40:59:b0:a7:56:4e:73:e6:a1:19:5a:b3: 0b:cd:90:34:cb:f9:c0:a4:62:3c:0f:a8:e6:1f:08:d3:1b:b8: b1:15:bd:70:48:12:61:64:2c:91:ab:e1:a6:f7:8b:ba:41:9b: 7e:bd:9a:28:5b:7f:23:98:6f:79:7f:65:2b:bc:3e:19:10:57: 95:a8:26:45:90:61:fe:8f:d1:60:e7:1e:ab:7c:05:ca:c0:52: 0b:b9:13:30:2f:bf:16:0d:d1:61:a9:01:75:fd:c8:0f:a0:9f: a8:ed:e2:26:64:8a:cf:2d:b2:ce:4b:22:74:4c:72:89:dc:e9: 2c:6a:3e:27:5a:9c:aa:f7:12:bc:ef:f6:93:2c:7b:fa:5b:ce: 84:b9:4e:70:44:ea:43:9b:43:23:b7:cb:e9:b1:8c:b8:e1:c7: 1e:8b:71:09 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MDY5QTExMC8GA1UEBRMoRDkwODM5M0M1QkE4MDM1QUY2OEI3RUMwMDk1NThFODEy RUQwOTVFMDAeFw0yNTA0MjUwNjA3MzlaFw0yNTA1MDIwNjA3MzlaMBgxFjAUBgNV BAMTDTY4MGIyNmFiLTAxNmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7b4z50gi9BZIPqLT87kLAvPGYkGmQ/fl2Xtke9I/+iPCDP088K46P4e1GZnTc y3+clUTzeWQ+OxskKlDO0Oc4Xohco1uXS6QELStjes4oBpiVZSSjdASZAPL19MRZ O59dpxzdJsO7WcP3Xr7py9h+AaFGnkzxLWGNLyQ/7P3Zgx1OXXMCl6SHbEPqkHQi oZHfkXgjoc/bzzl+82Xze4BEvkoyXZqtH/yZQrDtVYRt2js49ioHHZFCXKokJie6 BkvkEDip4zh5/kqlhY2aeo4bZFrgl9T2ErMJJQoIhmcOpSXXlO1UU0cym6oOz3PA nkS7xVkHz5q5wZ0xGHfRITrZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUXcnRbI1g /i/prd/i7y6xdROHKfswHwYDVR0jBBgwFoAU2Qg5PFuoA1r2i37ACVWOgS7QleAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYwNjlBLzJFQjYwNzk2OUJG MDExRUY4MUM5MDI2N0M0RjlBRTAyLzJRZzVQRnVvQTFyMmkzN0FDVldPZ1M3UWxl QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMlFnNVBGdW9BMXIyaTM3QUNWV09nUzdRbGVBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYw NjlBLzJFQjYwNzk2OUJGMDExRUY4MUM5MDI2N0M0RjlBRTAyLzJRZzVQRnVvQTFy MmkzN0FDVldPZ1M3UWxlQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAB2kB7BfMMqiqyKG6XZTQo14VvYm92jfly4r8oPR5LrM8QUTVtGijpGy DXUF77lYhDaAvLRxj7ymavunKhHN+iuzM8L3U9xtm4P1SxKujS8dzgJuYWVUk3tn jSCJvxeW8kBZsKdWTnPmoRlaswvNkDTL+cCkYjwPqOYfCNMbuLEVvXBIEmFkLJGr 4ab3i7pBm369mihbfyOYb3l/ZSu8PhkQV5WoJkWQYf6P0WDnHqt8BcrAUgu5EzAv vxYN0WGpAXX9yA+gn6jt4iZkis8tss5LInRMconc6SxqPidanKr3Erzv9pMse/pb zoS5TnBE6kObQyO3y+mxjLjhxx6LcQk= -----END CERTIFICATE-----Generated at Sat Apr 26 12:35:37 2025 by rpki-client