$ rpki-client -vvf rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.mft File: 2kcELjdqlHP8Dt_IRFc53RMorg4.mft (raw, json) Hash identifier: 9CrtYLZfDB7Hu0J0RyDOeq7OPHahHbZDlv5U1F7ppqM= Subject key identifier: CB:36:01:39:07:A7:68:30:23:93:40:AE:6B:F7:76:E9:64:52:6D:1F Authority key identifier: DA:47:04:2E:37:6A:94:73:FC:0E:DF:C8:44:57:39:DD:13:28:AE:0E Certificate issuer: /CN=A9191DF4/serialNumber=DA47042E376A9473FC0EDFC8445739DD1328AE0E Certificate serial: 0DF5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcELjdqlHP8Dt_IRFc53RMorg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.mft Manifest number: 0DDE Signing time: Thu 24 Apr 2025 17:51:40 +0000 Manifest this update: Thu 24 Apr 2025 17:51:40 +0000 Manifest next update: Thu 01 May 2025 17:51:40 +0000 Files and hashes: 1: 2kcELjdqlHP8Dt_IRFc53RMorg4.crl (hash: eHeBdypceGGNAmX844Gzu/IUVqqXzRHjYGqTmzPCqK4=) 2: B5D4A156598B11EC82C8685CC4F9AE02.roa (hash: 9N5REIY+2HrtITjoJdJhm20sPzs6LfTpozJyTEhJPKI=) 3: B922DB22E84211EA918B8F09C4F9AE02.roa (hash: 0xCnVozQZWjgc3AYs562bOg5LeDIgNinyp8El/uXPPA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.crl rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcELjdqlHP8Dt_IRFc53RMorg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:51:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3573 (0xdf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191DF4, serialNumber=DA47042E376A9473FC0EDFC8445739DD1328AE0E Validity Not Before: Apr 24 17:51:40 2025 GMT Not After : May 1 17:51:40 2025 GMT Subject: CN=680a7a2c-71ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:33:ea:68:50:94:89:88:e1:be:5f:bd:52:0d: 96:0a:10:c0:8d:22:39:48:c1:99:81:37:f7:32:40: f1:8d:97:36:c0:23:49:ff:ed:42:c9:91:b4:bd:2e: 38:41:a6:20:b2:98:b4:93:a5:41:de:b8:52:56:15: 2f:3d:1b:6d:26:8b:60:11:66:68:79:b3:ff:33:26: 8f:bd:ac:d1:ae:c3:66:b5:c8:50:61:35:b5:fe:12: e1:9a:fc:58:9c:50:5b:94:2e:7d:60:27:21:fc:ad: c2:1e:64:96:2c:15:1c:c8:d2:3e:b2:ef:22:22:1a: c2:d6:0d:53:bc:77:8a:02:64:12:b1:0a:68:8d:e4: 37:78:e4:f2:c1:b0:e3:16:11:9c:fb:5b:03:b6:89: 3a:90:ea:a2:86:44:fd:8f:c4:a4:f2:37:0f:9c:6b: d5:a7:63:c4:47:1e:19:01:2a:ee:af:53:10:51:35: 48:39:da:32:d5:d2:4f:2f:b7:e2:0e:cf:94:26:d0: 43:56:41:c7:14:06:94:b8:a5:07:5a:17:fd:75:14: 0d:9c:a9:3f:e2:3a:2e:cb:37:38:7e:fa:b1:4f:de: b0:a2:51:81:73:60:68:04:40:8e:40:be:a3:bf:be: 09:f8:36:32:9f:b4:fc:f1:84:ab:0b:c2:2d:08:cd: a9:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:36:01:39:07:A7:68:30:23:93:40:AE:6B:F7:76:E9:64:52:6D:1F X509v3 Authority Key Identifier: keyid:DA:47:04:2E:37:6A:94:73:FC:0E:DF:C8:44:57:39:DD:13:28:AE:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcELjdqlHP8Dt_IRFc53RMorg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:19:b7:df:80:c7:61:ea:87:02:29:e7:f4:4b:b4:df:84:06: 63:a2:45:b4:cd:64:1d:30:49:81:f3:eb:6f:16:e8:93:2d:a5: fb:be:65:3e:1e:04:5b:37:9e:eb:39:cd:f6:e4:e5:c6:05:23: 4f:f0:ce:30:cb:ca:87:2d:c0:7c:05:2d:ce:cd:4a:be:35:a0: 7c:f2:bd:9a:16:3f:3e:17:25:eb:87:c3:93:de:d1:06:91:5e: fd:6e:38:f5:1e:de:0c:8b:69:5d:59:72:de:82:fc:d7:ae:ad: 91:81:f2:e2:57:c6:6a:e3:d0:55:18:0b:5a:1c:3d:14:c4:6e: 05:3c:6d:12:c9:c9:02:99:25:de:df:99:bd:9d:28:e9:8b:00: e6:96:98:a5:7b:bb:64:df:42:4c:e1:e7:b5:2e:bc:58:58:4d: b5:cf:88:cd:82:73:db:1e:59:8f:8e:43:1a:1a:59:ea:e9:e4: 79:21:af:cb:43:19:a4:25:30:8d:99:2f:85:6a:42:16:77:e8: bd:43:81:7b:ee:fc:d7:c7:cb:33:f3:92:89:ff:1c:50:ba:6e: 24:68:06:2c:2f:05:59:c0:4f:9d:96:d7:1d:da:ce:d3:eb:73: 1c:cc:bc:05:d5:59:13:d5:51:dd:1b:dd:f9:11:9e:94:e3:b6: e5:bc:ad:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDfUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFERjQxMTAvBgNVBAUTKERBNDcwNDJFMzc2QTk0NzNGQzBFREZDODQ0NTczOURE MTMyOEFFMEUwHhcNMjUwNDI0MTc1MTQwWhcNMjUwNTAxMTc1MTQwWjAYMRYwFAYD VQQDEw02ODBhN2EyYy03MWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvTPqaFCUiYjhvl+9Ug2WChDAjSI5SMGZgTf3MkDxjZc2wCNJ/+1CyZG0vS44 QaYgspi0k6VB3rhSVhUvPRttJotgEWZoebP/MyaPvazRrsNmtchQYTW1/hLhmvxY nFBblC59YCch/K3CHmSWLBUcyNI+su8iIhrC1g1TvHeKAmQSsQpojeQ3eOTywbDj FhGc+1sDtok6kOqihkT9j8Sk8jcPnGvVp2PERx4ZASrur1MQUTVIOdoy1dJPL7fi Ds+UJtBDVkHHFAaUuKUHWhf9dRQNnKk/4jouyzc4fvqxT96wolGBc2BoBECOQL6j v74J+DYyn7T88YSrC8ItCM2pFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMs2ATkH p2gwI5NArmv3dulkUm0fMB8GA1UdIwQYMBaAFNpHBC43apRz/A7fyERXOd0TKK4O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MURGNC9GNDFEMUMxOEIz OEUxMUU5ODYyODJCNzNDNEY5QUUwMi8ya2NFTGpkcWxIUDhEdF9JUkZjNTNSTW9y ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJrY0VMamRxbEhQOER0X0lSRmM1M1JNb3JnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MURGNC9GNDFEMUMxOEIzOEUxMUU5ODYyODJCNzNDNEY5QUUwMi8ya2NFTGpkcWxI UDhEdF9JUkZjNTNSTW9yZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeGbffgMdh6ocCKef0S7TfhAZjokW0zWQdMEmB8+tvFuiTLaX7vmU+ HgRbN57rOc325OXGBSNP8M4wy8qHLcB8BS3OzUq+NaB88r2aFj8+FyXrh8OT3tEG kV79bjj1Ht4Mi2ldWXLegvzXrq2RgfLiV8Zq49BVGAtaHD0UxG4FPG0SyckCmSXe 35m9nSjpiwDmlpile7tk30JM4ee1LrxYWE21z4jNgnPbHlmPjkMaGlnq6eR5Ia/L QxmkJTCNmS+FakIWd+i9Q4F77vzXx8sz85KJ/xxQum4kaAYsLwVZwE+dltcd2s7T 63MczLwF1VkT1VHdG935EZ6U47blvK2E -----END CERTIFICATE-----Generated at Sat Apr 26 04:18:58 2025 by rpki-client