$ rpki-client -vvf rpki.apnic.net/member_repository/A9188EB6/3EBF479A411411EC8EA96D0BC4F9AE02/2kObzwPK_LW-ftCuezKPafiMGys.mft File: 2kObzwPK_LW-ftCuezKPafiMGys.mft (raw, json) Hash identifier: 13Q9uTMyqzWgyC0iuI6IpSvmpNMCiZN5HsP+nShB5r0= Subject key identifier: A8:5C:62:F5:09:AC:80:11:E1:62:A9:C0:D2:03:DF:31:46:E4:01:14 Authority key identifier: DA:43:9B:CF:03:CA:FC:B5:BE:7E:D0:AE:7B:32:8F:69:F8:8C:1B:2B Certificate issuer: /CN=A9188EB6/serialNumber=DA439BCF03CAFCB5BE7ED0AE7B328F69F88C1B2B Certificate serial: 0477 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kObzwPK_LW-ftCuezKPafiMGys.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9188EB6/3EBF479A411411EC8EA96D0BC4F9AE02/2kObzwPK_LW-ftCuezKPafiMGys.mft Manifest number: 0472 Signing time: Thu 24 Apr 2025 23:52:33 +0000 Manifest this update: Thu 24 Apr 2025 23:52:32 +0000 Manifest next update: Thu 01 May 2025 23:52:32 +0000 Files and hashes: 1: 2kObzwPK_LW-ftCuezKPafiMGys.crl (hash: a2hUVX3XdCXZ7luQT9B7k94u3lUpHaN4Fm+P9yeqrRA=) 2: E9E440F2411511ECBC2FB20BC4F9AE02.roa (hash: oCq0GS/e8jzWI+qfCm+Q9EBQNv1mP52MN9gsJPInZfo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9188EB6/3EBF479A411411EC8EA96D0BC4F9AE02/2kObzwPK_LW-ftCuezKPafiMGys.crl rsync://rpki.apnic.net/member_repository/A9188EB6/3EBF479A411411EC8EA96D0BC4F9AE02/2kObzwPK_LW-ftCuezKPafiMGys.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kObzwPK_LW-ftCuezKPafiMGys.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:52:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1143 (0x477) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9188EB6, serialNumber=DA439BCF03CAFCB5BE7ED0AE7B328F69F88C1B2B Validity Not Before: Apr 24 23:52:32 2025 GMT Not After : May 1 23:52:32 2025 GMT Subject: CN=680acec1-38da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:af:74:20:cd:68:c0:d5:55:5f:81:93:70:c5: bb:22:9b:9b:89:84:c3:f4:c4:4d:b4:45:06:d2:7e: 1d:d9:48:55:bf:c4:87:22:3d:fd:7a:5b:84:37:26: 53:55:9a:55:9f:d1:6d:c3:09:30:90:1c:c9:ba:d6: d0:7a:18:02:11:9f:89:0a:99:73:6c:8a:74:2f:ba: c3:96:df:c2:2b:10:c5:18:93:c1:58:00:c4:55:b1: a3:1b:be:4b:3b:fa:81:15:be:e8:44:a1:bf:52:ed: ab:0e:f4:1f:41:bc:9c:0b:2b:b1:c7:c8:47:74:57: 7c:ef:16:cf:d1:fa:64:b8:00:88:b2:31:3f:d1:b5: 4f:bf:f3:6a:8d:d4:13:8f:ad:be:a0:3e:76:14:b3: 25:4b:bf:5d:c1:db:cf:ce:c0:89:62:7c:8e:99:2b: 07:a1:d6:10:73:f0:cc:a5:c1:63:a9:d3:d2:52:fb: ef:9c:4f:7f:cd:dd:9b:db:69:a0:14:d8:08:90:59: 0f:f2:f3:6c:67:43:cd:6e:47:81:63:00:10:92:2b: c7:b7:cf:4b:11:ee:5c:a4:b1:cf:e3:f3:a9:57:a3: 86:43:93:d8:78:f9:8f:9f:c4:dd:b5:df:13:19:51: 36:b5:87:38:5d:b3:e5:9f:31:13:6d:b1:80:55:94: 41:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:5C:62:F5:09:AC:80:11:E1:62:A9:C0:D2:03:DF:31:46:E4:01:14 X509v3 Authority Key Identifier: keyid:DA:43:9B:CF:03:CA:FC:B5:BE:7E:D0:AE:7B:32:8F:69:F8:8C:1B:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9188EB6/3EBF479A411411EC8EA96D0BC4F9AE02/2kObzwPK_LW-ftCuezKPafiMGys.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kObzwPK_LW-ftCuezKPafiMGys.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9188EB6/3EBF479A411411EC8EA96D0BC4F9AE02/2kObzwPK_LW-ftCuezKPafiMGys.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:17:82:f7:19:9a:c3:02:69:6a:0d:bb:ed:4f:a3:43:ec:05: 8e:36:74:04:fe:81:52:02:70:90:c6:fd:4e:6c:3b:0a:ff:5b: 45:15:aa:9c:fe:4d:00:ff:4d:d5:49:9f:14:e9:e8:99:43:03: 57:66:14:d3:b9:be:d9:a1:8f:80:f7:e5:03:b5:9f:20:79:9e: fd:0a:70:2b:83:cb:65:b0:45:dc:ae:63:05:8c:f0:44:95:1a: 4a:f5:0d:c7:73:69:ad:63:bc:19:be:35:46:6d:0f:7e:54:0e: 30:f1:af:b7:09:14:a6:81:84:8e:60:0f:f3:84:b2:28:73:3d: aa:39:24:a4:99:9a:4c:91:92:33:ce:c8:90:36:31:55:36:d4: b9:ad:9a:0e:29:bc:59:d4:3a:d8:40:05:1c:f0:9e:6b:43:b9: 4d:05:aa:00:1d:a4:83:61:ba:27:c2:30:6d:3c:a0:47:50:47: 95:e4:94:66:10:31:78:c6:6c:8c:df:36:72:49:94:e3:74:55: d8:5c:25:b7:e9:a3:5f:77:cf:02:31:db:e8:c6:e9:d0:c9:92: 6e:d6:4e:30:3a:23:4c:89:c1:0d:fd:ff:23:ae:e9:dc:91:1c: fa:75:81:32:c0:c1:f1:04:25:2b:25:33:06:aa:5d:8a:e8:82: 05:b4:df:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODhFQjYxMTAvBgNVBAUTKERBNDM5QkNGMDNDQUZDQjVCRTdFRDBBRTdCMzI4RjY5 Rjg4QzFCMkIwHhcNMjUwNDI0MjM1MjMyWhcNMjUwNTAxMjM1MjMyWjAYMRYwFAYD VQQDEw02ODBhY2VjMS0zOGRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl690IM1owNVVX4GTcMW7IpubiYTD9MRNtEUG0n4d2UhVv8SHIj39eluENyZT VZpVn9FtwwkwkBzJutbQehgCEZ+JCplzbIp0L7rDlt/CKxDFGJPBWADEVbGjG75L O/qBFb7oRKG/Uu2rDvQfQbycCyuxx8hHdFd87xbP0fpkuACIsjE/0bVPv/NqjdQT j62+oD52FLMlS79dwdvPzsCJYnyOmSsHodYQc/DMpcFjqdPSUvvvnE9/zd2b22mg FNgIkFkP8vNsZ0PNbkeBYwAQkivHt89LEe5cpLHP4/OpV6OGQ5PYePmPn8Tdtd8T GVE2tYc4XbPlnzETbbGAVZRBfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKhcYvUJ rIAR4WKpwNID3zFG5AEUMB8GA1UdIwQYMBaAFNpDm88Dyvy1vn7Qrnsyj2n4jBsr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OEVCNi8zRUJGNDc5QTQx MTQxMUVDOEVBOTZEMEJDNEY5QUUwMi8ya09iendQS19MVy1mdEN1ZXpLUGFmaU1H eXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJrT2J6d1BLX0xXLWZ0Q3VlektQYWZpTUd5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OEVCNi8zRUJGNDc5QTQxMTQxMUVDOEVBOTZEMEJDNEY5QUUwMi8ya09iendQS19M Vy1mdEN1ZXpLUGFmaU1HeXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrF4L3GZrDAmlqDbvtT6ND7AWONnQE/oFSAnCQxv1ObDsK/1tFFaqc /k0A/03VSZ8U6eiZQwNXZhTTub7ZoY+A9+UDtZ8geZ79CnArg8tlsEXcrmMFjPBE lRpK9Q3Hc2mtY7wZvjVGbQ9+VA4w8a+3CRSmgYSOYA/zhLIocz2qOSSkmZpMkZIz zsiQNjFVNtS5rZoOKbxZ1DrYQAUc8J5rQ7lNBaoAHaSDYbonwjBtPKBHUEeV5JRm EDF4xmyM3zZySZTjdFXYXCW36aNfd88CMdvoxunQyZJu1k4wOiNMicEN/f8jrunc kRz6dYEywMHxBCUrJTMGql2K6IIFtN9z -----END CERTIFICATE-----Generated at Sat Apr 26 12:22:55 2025 by rpki-client