$ rpki-client -vvf rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/2nNptJciuhObe2DznIi0m9uzXz0.mft File: 2nNptJciuhObe2DznIi0m9uzXz0.mft (raw, json) Hash identifier: j5d62HkGASeFyOM8/LsbxNXBzoEWINiOqzLdLoKQSwY= Subject key identifier: 04:6A:37:56:87:61:09:BD:E4:70:0C:E5:F1:53:40:13:80:5D:30:66 Authority key identifier: DA:73:69:B4:97:22:BA:13:9B:7B:60:F3:9C:88:B4:9B:DB:B3:5F:3D Certificate issuer: /CN=A917E623/serialNumber=DA7369B49722BA139B7B60F39C88B49BDBB35F3D Certificate serial: 014A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nNptJciuhObe2DznIi0m9uzXz0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/2nNptJciuhObe2DznIi0m9uzXz0.mft Manifest number: 013C Signing time: Fri 25 Apr 2025 03:36:06 +0000 Manifest this update: Fri 25 Apr 2025 03:36:06 +0000 Manifest next update: Fri 02 May 2025 03:36:06 +0000 Files and hashes: 1: 2nNptJciuhObe2DznIi0m9uzXz0.crl (hash: JLZguK7qVexQQs2NU5pXGLlxbDGvrN0BpQOPfHtC/FA=) 2: C12ACE6AC17E11EE95D6821CC4F9AE02.roa (hash: 0VizvwlSvt2Typg26qLoIMnU5PdKIxjIiPdXQB++0ps=) 3: BBBEDEF46C8211EE866F5A78C4F9AE02.roa (hash: rX9KVe2qszOUPjT1pbGC+LrjEbspt/xxl2Uq6dePAdc=) 4: B7FD006A50F411EEB2008729C4F9AE02.roa (hash: HsYr8OmdjYIdRArCv8NBd7tL5J9ojAyKHb00KhjW28U=) 5: 585745526BC111EEA163E774C4F9AE02.roa (hash: Ks2Urn2far+/DcyQBS8MOk0s9n2RR8VYAIzSipmPvMk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/2nNptJciuhObe2DznIi0m9uzXz0.crl rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/2nNptJciuhObe2DznIi0m9uzXz0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nNptJciuhObe2DznIi0m9uzXz0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:36:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 330 (0x14a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E623, serialNumber=DA7369B49722BA139B7B60F39C88B49BDBB35F3D Validity Not Before: Apr 25 03:36:06 2025 GMT Not After : May 2 03:36:06 2025 GMT Subject: CN=680b0326-79f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:2c:d8:2e:60:d5:3e:76:43:20:a3:d8:4f:4c: 18:45:e4:86:8a:94:46:b2:3d:d4:b3:a1:42:50:62: c5:67:a6:26:f2:b9:f2:a1:6d:39:cc:dd:03:20:6d: 30:48:1f:02:89:b3:94:a4:70:59:6e:2e:31:8b:88: 04:92:47:c4:d7:a2:61:1a:2b:d6:a2:dc:b5:d7:e5: 13:5a:b8:14:cc:55:91:6e:8b:69:3a:3a:02:21:cc: e5:7c:9c:25:1f:97:da:f8:7e:ee:81:8d:8d:69:47: af:7f:f6:93:30:6f:6b:35:f5:7d:a3:96:3d:00:d7: cb:6d:83:1e:cd:98:11:83:69:c1:e9:d2:49:38:01: ed:46:1f:ff:e5:8d:48:89:05:fd:16:2d:38:af:94: ef:d8:11:77:75:23:17:dd:63:ed:c9:6f:c1:4c:60: 79:1f:77:06:7a:c8:2c:dd:6e:3a:9b:b5:94:70:2d: b1:1b:ad:ed:94:26:26:a4:b1:dc:76:c8:b7:57:db: b8:46:c7:d0:9a:07:85:9c:07:02:76:60:ed:23:e6: b3:0c:cf:83:80:93:71:95:48:c9:32:2f:ef:7e:74: c4:cc:92:0f:69:7d:bf:b1:77:2a:9d:c0:2b:41:ef: db:84:65:d9:35:ef:8b:52:66:ab:3b:a1:92:6a:af: 42:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:6A:37:56:87:61:09:BD:E4:70:0C:E5:F1:53:40:13:80:5D:30:66 X509v3 Authority Key Identifier: keyid:DA:73:69:B4:97:22:BA:13:9B:7B:60:F3:9C:88:B4:9B:DB:B3:5F:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/2nNptJciuhObe2DznIi0m9uzXz0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nNptJciuhObe2DznIi0m9uzXz0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/2nNptJciuhObe2DznIi0m9uzXz0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:58:ea:10:ff:3e:30:ca:32:a5:59:76:cd:3c:b1:db:c2:f5: 0a:39:10:d5:3f:bd:a2:52:88:d6:8b:c1:3d:88:d1:ff:87:ed: 0c:36:52:f8:79:7e:2d:7e:83:85:1d:cd:48:29:ef:6e:05:66: 6e:f8:57:59:65:1f:ca:11:2a:eb:8a:a3:c2:ad:bf:7c:c3:80: 7f:05:88:cb:0c:d6:2d:48:95:ac:b0:7d:6c:9f:99:fc:98:af: 15:11:0b:3b:f9:02:14:ff:b8:4d:69:39:0e:34:95:54:8d:04: eb:5b:c6:18:04:ed:85:97:27:65:13:45:ce:f8:ca:ff:3d:74: 0d:bf:21:d5:24:2a:8f:99:05:a4:b0:00:f9:9c:f4:41:84:7b: 8c:b1:db:60:22:2b:91:9e:b7:95:38:bf:44:cf:09:ba:82:92: 99:c6:d7:f1:0f:72:08:fd:c2:d7:f4:45:a3:f5:9e:f9:61:d4: 54:54:ab:17:34:f4:18:25:2c:ae:f4:bd:73:e9:45:44:67:d0: 89:53:d8:9d:5d:d5:5a:4f:34:2c:93:06:67:75:47:9f:96:94: 97:88:41:8c:f0:ce:6e:00:8e:af:af:13:bf:a4:e6:ba:fe:fc: d8:e6:fb:4d:93:48:40:96:e3:d0:cc:97:68:0d:37:64:a5:1f: cd:2b:57:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2MjMxMTAvBgNVBAUTKERBNzM2OUI0OTcyMkJBMTM5QjdCNjBGMzlDODhCNDlC REJCMzVGM0QwHhcNMjUwNDI1MDMzNjA2WhcNMjUwNTAyMDMzNjA2WjAYMRYwFAYD VQQDEw02ODBiMDMyNi03OWY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5yzYLmDVPnZDIKPYT0wYReSGipRGsj3Us6FCUGLFZ6Ym8rnyoW05zN0DIG0w SB8CibOUpHBZbi4xi4gEkkfE16JhGivWoty11+UTWrgUzFWRbotpOjoCIczlfJwl H5fa+H7ugY2NaUevf/aTMG9rNfV9o5Y9ANfLbYMezZgRg2nB6dJJOAHtRh//5Y1I iQX9Fi04r5Tv2BF3dSMX3WPtyW/BTGB5H3cGesgs3W46m7WUcC2xG63tlCYmpLHc dsi3V9u4RsfQmgeFnAcCdmDtI+azDM+DgJNxlUjJMi/vfnTEzJIPaX2/sXcqncAr Qe/bhGXZNe+LUmarO6GSaq9CdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFARqN1aH YQm95HAM5fFTQBOAXTBmMB8GA1UdIwQYMBaAFNpzabSXIroTm3tg85yItJvbs189 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTYyMy9BMjVENDg5RTUw NDcxMUVFQjY3NzM2NURDNEY5QUUwMi8ybk5wdEpjaXVoT2JlMkR6bklpMG05dXpY ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJuTnB0SmNpdWhPYmUyRHpuSWkwbTl1elh6MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTYyMy9BMjVENDg5RTUwNDcxMUVFQjY3NzM2NURDNEY5QUUwMi8ybk5wdEpjaXVo T2JlMkR6bklpMG05dXpYejAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnWOoQ/z4wyjKlWXbNPLHbwvUKORDVP72iUojWi8E9iNH/h+0MNlL4 eX4tfoOFHc1IKe9uBWZu+FdZZR/KESrriqPCrb98w4B/BYjLDNYtSJWssH1sn5n8 mK8VEQs7+QIU/7hNaTkONJVUjQTrW8YYBO2FlydlE0XO+Mr/PXQNvyHVJCqPmQWk sAD5nPRBhHuMsdtgIiuRnreVOL9Ezwm6gpKZxtfxD3II/cLX9EWj9Z75YdRUVKsX NPQYJSyu9L1z6UVEZ9CJU9idXdVaTzQskwZndUeflpSXiEGM8M5uAI6vrxO/pOa6 /vzY5vtNk0hAluPQzJdoDTdkpR/NK1cY -----END CERTIFICATE-----Generated at Sat Apr 26 12:34:34 2025 by rpki-client