$ rpki-client -vvf rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft File: r2oY2zoHHvGMylvos1Qz31RPD7I.mft (raw, json) Hash identifier: Sm0Ac5+2TL6pPPoa8razYiV15/g71XoXbsqX0U1uz/U= Subject key identifier: EC:A1:BA:A8:8B:02:ED:D2:5D:67:B6:F4:9E:D6:7C:7B:40:2A:F7:CA Authority key identifier: AF:6A:18:DB:3A:07:1E:F1:8C:CA:5B:E8:B3:54:33:DF:54:4F:0F:B2 Certificate issuer: /CN=A918E20E/serialNumber=AF6A18DB3A071EF18CCA5BE8B35433DF544F0FB2 Certificate serial: 0BAB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2oY2zoHHvGMylvos1Qz31RPD7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft Manifest number: 0BA5 Signing time: Thu 24 Apr 2025 18:51:41 +0000 Manifest this update: Thu 24 Apr 2025 18:51:41 +0000 Manifest next update: Thu 01 May 2025 18:51:41 +0000 Files and hashes: 1: r2oY2zoHHvGMylvos1Qz31RPD7I.crl (hash: q+HY9I1dkB7c8Akjoti4OQ90bn9cL6RIc0kYXJwaVio=) 2: BFA3B5F81FC911EA8CF04E61C4F9AE02.roa (hash: tRDPOuysTM3j6RUChVc/lZ1Ir+BGvYj0vPYVhGcTQNo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.crl rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2oY2zoHHvGMylvos1Qz31RPD7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:51:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2987 (0xbab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E20E, serialNumber=AF6A18DB3A071EF18CCA5BE8B35433DF544F0FB2 Validity Not Before: Apr 24 18:51:41 2025 GMT Not After : May 1 18:51:41 2025 GMT Subject: CN=680a883d-1a7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ec:1a:e2:f0:55:c9:56:2e:e9:df:4d:a9:23: 2d:77:89:60:fa:11:21:08:e5:13:66:d1:38:a9:86: e5:4c:0c:ac:d4:cb:cb:07:f1:2b:1d:20:e2:0c:f3: 8c:60:0d:66:3b:f8:3a:09:83:08:77:9f:21:80:d9: ce:1b:91:2d:89:bb:e6:6a:ef:42:17:c3:22:03:3c: 33:d7:f5:cd:09:d2:cf:17:f7:1f:fc:48:ca:29:be: 8b:43:52:6e:8f:d8:0c:6f:3b:56:f9:1a:68:06:db: 90:40:bc:93:19:00:2f:0a:49:9d:9b:f5:2d:03:10: 1f:a3:0e:2e:f8:2a:8f:20:aa:92:ad:c5:31:fc:f9: 44:c1:4d:5c:95:e6:eb:73:08:fa:53:4d:b8:ce:e3: cf:b5:38:58:b7:2d:52:dc:02:13:8f:42:d4:aa:cf: bd:66:9b:5e:fa:97:c6:47:36:27:85:ae:13:e9:dd: d7:57:76:54:80:6d:e7:6a:27:ba:3f:ae:20:cd:e1: c7:23:e5:cd:e3:da:39:c4:db:09:b1:b3:b8:71:42: c9:4c:fc:6e:4a:26:43:2b:c2:72:3d:f7:cd:e5:ce: 8b:1f:03:57:1d:64:b5:c5:fa:45:c9:dc:07:04:07: ff:26:85:d1:f1:9e:e2:4b:69:5f:d4:d5:27:76:9a: a7:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:A1:BA:A8:8B:02:ED:D2:5D:67:B6:F4:9E:D6:7C:7B:40:2A:F7:CA X509v3 Authority Key Identifier: keyid:AF:6A:18:DB:3A:07:1E:F1:8C:CA:5B:E8:B3:54:33:DF:54:4F:0F:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2oY2zoHHvGMylvos1Qz31RPD7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:4f:62:38:a4:75:67:16:a0:43:9b:cf:76:44:86:a8:cc:a0: bc:c5:a2:c1:5d:e3:a0:70:23:dd:fb:c1:28:3d:3a:01:28:11: 06:7b:a3:d3:a0:ea:23:aa:72:d4:00:d8:c7:89:4a:de:06:69: e2:1b:88:5e:d3:51:31:88:9b:97:93:6c:76:55:13:98:d1:f1: 26:d4:77:e0:ad:26:99:89:aa:4e:b2:7f:a9:49:17:4a:72:76: 78:47:17:12:9b:82:e1:e5:d0:d5:1c:ba:03:58:dc:32:90:f4: 52:48:4e:be:6a:6a:be:6e:df:62:42:c8:56:90:b1:ce:96:da: 3f:9b:f6:23:7f:54:14:60:a9:47:ce:e6:bd:ae:9f:e9:16:f0: 6a:2e:a5:cc:57:3b:a5:27:21:d1:54:cb:c3:cb:f7:d3:b3:13: ff:f0:8b:19:ec:b4:93:df:9c:3d:99:f1:70:9a:2c:03:a2:c9: 5c:98:41:a9:8c:d2:96:be:90:44:d9:99:a1:57:4f:8b:45:57: c6:6a:b3:60:b8:5e:fa:69:cc:78:7f:4b:2c:dc:f0:f4:75:28: d5:8e:5a:8a:b9:b5:40:07:0c:31:da:a2:87:f5:f2:4a:f3:4a: 2f:e3:b6:53:b8:81:24:fb:86:88:08:9f:d0:f9:4b:d9:a1:8a: 30:a7:4c:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC6swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEUyMEUxMTAvBgNVBAUTKEFGNkExOERCM0EwNzFFRjE4Q0NBNUJFOEIzNTQzM0RG NTQ0RjBGQjIwHhcNMjUwNDI0MTg1MTQxWhcNMjUwNTAxMTg1MTQxWjAYMRYwFAYD VQQDEw02ODBhODgzZC0xYTdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxewa4vBVyVYu6d9NqSMtd4lg+hEhCOUTZtE4qYblTAys1MvLB/ErHSDiDPOM YA1mO/g6CYMId58hgNnOG5Etibvmau9CF8MiAzwz1/XNCdLPF/cf/EjKKb6LQ1Ju j9gMbztW+RpoBtuQQLyTGQAvCkmdm/UtAxAfow4u+CqPIKqSrcUx/PlEwU1clebr cwj6U024zuPPtThYty1S3AITj0LUqs+9Zpte+pfGRzYnha4T6d3XV3ZUgG3naie6 P64gzeHHI+XN49o5xNsJsbO4cULJTPxuSiZDK8JyPffN5c6LHwNXHWS1xfpFydwH BAf/JoXR8Z7iS2lf1NUndpqn9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOyhuqiL Au3SXWe29J7WfHtAKvfKMB8GA1UdIwQYMBaAFK9qGNs6Bx7xjMpb6LNUM99UTw+y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTIwRS8yM0FBRDk4RTFG QzgxMUVBODQ1OTRGNUVDNEY5QUUwMi9yMm9ZMnpvSEh2R015bHZvczFRejMxUlBE N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Iyb1kyem9ISHZHTXlsdm9zMVF6MzFSUEQ3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTIwRS8yM0FBRDk4RTFGQzgxMUVBODQ1OTRGNUVDNEY5QUUwMi9yMm9ZMnpvSEh2 R015bHZvczFRejMxUlBEN0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcT2I4pHVnFqBDm892RIaozKC8xaLBXeOgcCPd+8EoPToBKBEGe6PT oOojqnLUANjHiUreBmniG4he01ExiJuXk2x2VROY0fEm1HfgrSaZiapOsn+pSRdK cnZ4RxcSm4Lh5dDVHLoDWNwykPRSSE6+amq+bt9iQshWkLHOlto/m/Yjf1QUYKlH zua9rp/pFvBqLqXMVzulJyHRVMvDy/fTsxP/8IsZ7LST35w9mfFwmiwDoslcmEGp jNKWvpBE2ZmhV0+LRVfGarNguF76acx4f0ss3PD0dSjVjlqKubVABwwx2qKH9fJK 80ov47ZTuIEk+4aICJ/Q+UvZoYowp0yK -----END CERTIFICATE-----Generated at Sat Apr 26 14:24:38 2025 by rpki-client