$ rpki-client -vvf rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.mft File: 2xy4SFQGnkPKG3JdQuprqbU5gVs.mft (raw, json) Hash identifier: bHq9ETvuCNFvApJmty42MLz5/A9T4FIjBaNWDiBwNSs= Subject key identifier: 65:53:03:AD:FC:4C:1F:49:DE:5A:D9:67:2B:E9:5E:C7:29:0D:74:8D Authority key identifier: DB:1C:B8:48:54:06:9E:43:CA:1B:72:5D:42:EA:6B:A9:B5:39:81:5B Certificate issuer: /CN=A918F88D/serialNumber=DB1CB84854069E43CA1B725D42EA6BA9B539815B Certificate serial: 0C7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xy4SFQGnkPKG3JdQuprqbU5gVs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.mft Manifest number: 0C69 Signing time: Thu 24 Apr 2025 18:17:13 +0000 Manifest this update: Thu 24 Apr 2025 18:17:13 +0000 Manifest next update: Thu 01 May 2025 18:17:13 +0000 Files and hashes: 1: 2xy4SFQGnkPKG3JdQuprqbU5gVs.crl (hash: RNzZ5/es2+D2KoApfILMuNNGQUN6UEd60dcZOONM9bg=) 2: 4BA5EC4293D911EE86212B1DC4F9AE02.roa (hash: KJiTJQnlya7yc1gVeGhk9f8wqpXCXgsDbpb8Ndl9Q5Q=) 3: 18F7410671F311ECBA5DA710C4F9AE02.roa (hash: tIg3kB0f/wtqp+Q6ik7/n7dKrrQEFLMxhaaJzHV4nr8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.crl rsync://rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xy4SFQGnkPKG3JdQuprqbU5gVs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:17:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3197 (0xc7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F88D, serialNumber=DB1CB84854069E43CA1B725D42EA6BA9B539815B Validity Not Before: Apr 24 18:17:13 2025 GMT Not After : May 1 18:17:13 2025 GMT Subject: CN=680a8029-c8b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ff:f1:7c:b3:35:1c:51:1b:10:88:f4:32:80: d6:0a:b3:85:34:69:8a:74:69:89:6f:bc:e5:a6:12: d1:6e:6d:81:79:47:a7:9c:3c:c0:7d:02:26:d4:f4: 4b:f9:cb:b0:68:59:7a:51:40:75:55:da:c4:1c:9e: 31:14:db:1d:de:94:f9:53:52:eb:96:a1:e4:2a:d1: c3:8d:50:5a:aa:94:5e:5b:de:1c:e1:b4:ee:7a:39: a8:07:c2:00:74:e4:ac:6c:40:c5:66:7a:87:74:94: 92:ff:68:75:ef:e7:54:8d:d5:e4:14:3f:a2:33:c0: f5:67:0e:9f:50:ca:d7:2b:a3:9e:ef:9b:64:90:94: 85:82:b5:42:a6:09:21:60:fc:d5:32:0f:7c:48:57: cb:d4:0c:7f:52:8b:ab:af:a7:37:2a:7d:69:d3:17: e2:4c:43:1d:ed:29:ae:34:2f:2a:53:06:72:bf:f5: c7:89:ea:3c:74:02:be:f2:c2:8b:71:11:23:d9:f3: 59:bc:41:04:05:3e:70:08:0b:1c:54:c5:83:90:6e: 0a:34:2d:4e:0d:0c:39:10:1e:38:ca:d9:7a:2f:89: 39:6b:2a:87:0d:53:a9:41:fb:bb:16:ea:50:26:44: 28:ba:91:6d:1d:79:96:77:e9:07:d5:c4:57:c1:e7: 37:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:53:03:AD:FC:4C:1F:49:DE:5A:D9:67:2B:E9:5E:C7:29:0D:74:8D X509v3 Authority Key Identifier: keyid:DB:1C:B8:48:54:06:9E:43:CA:1B:72:5D:42:EA:6B:A9:B5:39:81:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xy4SFQGnkPKG3JdQuprqbU5gVs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:c1:11:61:80:1a:a1:8d:7e:c5:7d:06:01:1e:c8:da:b4:86: 7f:8c:cc:cb:1d:cf:68:bd:71:2e:39:40:cb:3c:7d:9a:ab:8a: 4b:bf:fa:0b:c9:b1:76:bf:6e:e8:96:81:b5:08:5d:30:a1:8c: 50:3c:3f:53:c7:86:18:16:75:df:5e:fc:4a:fd:dd:0d:4c:d8: e1:62:81:fa:ac:2c:00:70:b8:36:66:d8:81:87:e7:89:67:3b: 51:ed:84:07:67:c2:6e:ee:d5:cc:64:fc:5f:fd:1a:00:6b:f8: 1d:d1:19:b1:01:a2:3e:08:b4:7e:e0:f6:5d:8a:f2:b6:5e:d9: 58:de:f7:37:24:fb:ee:8c:e3:da:db:bb:0c:f3:93:82:b0:af: 83:a0:49:82:91:24:4a:95:aa:fa:3d:5c:a3:51:1d:b7:13:89: c8:58:49:6e:b1:0b:35:84:72:3e:7e:64:0a:f4:63:9d:26:48: 78:5b:57:c1:d5:9b:58:2c:e3:dd:f1:f5:21:66:56:5d:6e:b9: 92:10:ee:e5:bf:2a:a6:1a:0c:01:a1:a7:a8:12:b1:5f:6a:42: 46:4c:ff:0b:2e:d8:c0:f5:44:8a:01:fd:41:37:ed:d4:8c:1e: 4a:b0:95:a1:03:bd:b4:d7:5c:5f:65:1e:a7:9a:c6:85:1c:25: 29:d6:cf:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDH0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY4OEQxMTAvBgNVBAUTKERCMUNCODQ4NTQwNjlFNDNDQTFCNzI1RDQyRUE2QkE5 QjUzOTgxNUIwHhcNMjUwNDI0MTgxNzEzWhcNMjUwNTAxMTgxNzEzWjAYMRYwFAYD VQQDEw02ODBhODAyOS1jOGI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuf/xfLM1HFEbEIj0MoDWCrOFNGmKdGmJb7zlphLRbm2BeUennDzAfQIm1PRL +cuwaFl6UUB1VdrEHJ4xFNsd3pT5U1LrlqHkKtHDjVBaqpReW94c4bTuejmoB8IA dOSsbEDFZnqHdJSS/2h17+dUjdXkFD+iM8D1Zw6fUMrXK6Oe75tkkJSFgrVCpgkh YPzVMg98SFfL1Ax/Uourr6c3Kn1p0xfiTEMd7SmuNC8qUwZyv/XHieo8dAK+8sKL cREj2fNZvEEEBT5wCAscVMWDkG4KNC1ODQw5EB44ytl6L4k5ayqHDVOpQfu7FupQ JkQoupFtHXmWd+kH1cRXwec3qwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGVTA638 TB9J3lrZZyvpXscpDXSNMB8GA1UdIwQYMBaAFNscuEhUBp5DyhtyXULqa6m1OYFb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Rjg4RC8yQTE0QkUwODAw NUExMUVBOEZEQ0ExMzBDNEY5QUUwMi8yeHk0U0ZRR25rUEtHM0pkUXVwcnFiVTVn VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ4eTRTRlFHbmtQS0czSmRRdXBycWJVNWdWcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Rjg4RC8yQTE0QkUwODAwNUExMUVBOEZEQ0ExMzBDNEY5QUUwMi8yeHk0U0ZRR25r UEtHM0pkUXVwcnFiVTVnVnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9wRFhgBqhjX7FfQYBHsjatIZ/jMzLHc9ovXEuOUDLPH2aq4pLv/oL ybF2v27oloG1CF0woYxQPD9Tx4YYFnXfXvxK/d0NTNjhYoH6rCwAcLg2ZtiBh+eJ ZztR7YQHZ8Ju7tXMZPxf/RoAa/gd0RmxAaI+CLR+4PZdivK2XtlY3vc3JPvujOPa 27sM85OCsK+DoEmCkSRKlar6PVyjUR23E4nIWElusQs1hHI+fmQK9GOdJkh4W1fB 1ZtYLOPd8fUhZlZdbrmSEO7lvyqmGgwBoaeoErFfakJGTP8LLtjA9USKAf1BN+3U jB5KsJWhA72011xfZR6nmsaFHCUp1s8R -----END CERTIFICATE-----Generated at Sat Apr 26 17:13:41 2025 by rpki-client