$ rpki-client -vvf rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.mft File: PS2TrIsQhlgX2adMyBoDDX010HQ.mft (raw, json) Hash identifier: AxV5vy7Sgm8skYHVySiL3J/SkIeRxD3rev7VVn7uVPo= Subject key identifier: 8F:9C:CF:DB:5A:BC:E8:86:41:8F:90:C3:E5:F3:10:38:04:C1:EC:71 Authority key identifier: 3D:2D:93:AC:8B:10:86:58:17:D9:A7:4C:C8:1A:03:0D:7D:35:D0:74 Certificate issuer: /CN=A9196D9E/serialNumber=3D2D93AC8B10865817D9A74CC81A030D7D35D074 Certificate serial: 0113 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PS2TrIsQhlgX2adMyBoDDX010HQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.mft Manifest number: 0112 Signing time: Fri 25 Apr 2025 03:57:19 +0000 Manifest this update: Fri 25 Apr 2025 03:57:18 +0000 Manifest next update: Fri 02 May 2025 03:57:18 +0000 Files and hashes: 1: PS2TrIsQhlgX2adMyBoDDX010HQ.crl (hash: VJuqKIVIUsaZqU2x2XuKgU4tbJXlG6+jNegGS39zS4k=) 2: C8BDA37CF68A11EFB7F91E24C4F9AE02.roa (hash: aRDWwCB81f6X4Sbu5aqqdwftigSG3lRUiRjjd/98tJw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.crl rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PS2TrIsQhlgX2adMyBoDDX010HQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:57:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 275 (0x113) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196D9E, serialNumber=3D2D93AC8B10865817D9A74CC81A030D7D35D074 Validity Not Before: Apr 25 03:57:18 2025 GMT Not After : May 2 03:57:18 2025 GMT Subject: CN=680b081e-4a21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:f2:43:e6:a0:5d:f1:be:1b:a3:23:6a:11:bf: bd:6b:10:32:1f:f8:a0:cf:ae:a4:7b:ff:fb:89:f6: 5a:b6:49:55:99:57:8f:d1:b3:68:a5:86:70:54:ad: 44:d8:55:73:86:66:1a:17:a6:63:c8:1e:ac:dc:aa: e0:ac:7f:de:9e:0b:eb:8a:6d:40:a5:a0:b7:e1:1e: 6a:89:71:c4:09:82:9c:28:cc:5a:69:d9:2c:ae:10: 34:e3:16:06:9f:c6:76:f8:09:10:54:5d:de:25:cc: 78:9a:76:ca:a9:a6:cb:8c:24:55:43:18:83:6a:15: 40:43:35:66:b4:96:3f:74:05:72:50:53:7f:ea:3a: 3d:69:87:41:c5:26:22:a9:fa:b3:27:6e:97:88:cb: bf:72:df:24:04:e1:56:cd:3f:7f:4f:5a:95:76:17: 76:2c:99:5c:9f:4c:2d:93:b4:9e:94:dc:8a:d1:84: ae:09:e0:f2:3e:c5:eb:d6:5b:8a:66:2e:7b:f6:b8: ea:bb:83:0a:1f:a6:db:9d:63:60:c2:22:70:0a:9b: d5:0a:9f:f0:de:97:ac:89:26:c1:9e:71:05:30:b7: 28:eb:a5:b8:dc:91:00:dc:64:6c:df:48:ad:c8:c4: 8b:4f:40:67:72:aa:81:68:c3:b6:d0:26:e0:7a:26: 57:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:9C:CF:DB:5A:BC:E8:86:41:8F:90:C3:E5:F3:10:38:04:C1:EC:71 X509v3 Authority Key Identifier: keyid:3D:2D:93:AC:8B:10:86:58:17:D9:A7:4C:C8:1A:03:0D:7D:35:D0:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PS2TrIsQhlgX2adMyBoDDX010HQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:a4:b5:34:d8:77:c3:ae:e7:1d:fd:3b:b0:b5:9c:f5:40:81: 7b:bf:c2:b7:4f:09:81:39:c3:51:9c:6d:81:ff:d7:08:cf:8b: 90:c4:18:dc:bb:7e:84:4d:04:24:35:64:42:89:78:2e:c1:82: 4b:6c:e4:6a:88:95:2f:e4:e0:44:51:94:e2:09:16:17:a1:af: 59:34:d2:c8:38:42:71:f2:5a:3c:76:03:b0:3c:43:77:ec:99: 50:e3:68:d3:cd:b8:57:84:94:a1:11:48:22:ae:14:84:6d:cd: 11:2f:27:83:5a:dd:85:87:0b:45:0f:8b:38:2a:68:d3:ae:28: 6b:7c:f5:3b:4a:31:8d:4d:1b:67:00:1e:9b:ee:53:0e:b9:27: 43:1b:79:79:20:fc:d5:39:50:07:69:9b:6b:eb:47:e6:63:ba: 4c:75:05:b9:9c:56:28:d2:35:d0:64:a2:4b:cc:d7:83:3a:0b: 08:a3:e3:b2:54:32:0f:0d:71:a6:49:04:c0:0c:66:9c:39:ff: 62:af:b3:a2:46:b7:b6:e6:bd:6b:ee:41:1d:d0:f7:c1:41:3e: 17:65:fd:55:3d:01:24:4f:28:3b:0b:22:7b:4e:f7:1f:47:44: 26:c5:18:86:47:3c:b5:14:a5:a3:6f:86:34:72:87:e0:35:81: bc:0a:1a:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZEOUUxMTAvBgNVBAUTKDNEMkQ5M0FDOEIxMDg2NTgxN0Q5QTc0Q0M4MUEwMzBE N0QzNUQwNzQwHhcNMjUwNDI1MDM1NzE4WhcNMjUwNTAyMDM1NzE4WjAYMRYwFAYD VQQDEw02ODBiMDgxZS00YTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuvJD5qBd8b4boyNqEb+9axAyH/igz66ke//7ifZatklVmVeP0bNopYZwVK1E 2FVzhmYaF6ZjyB6s3KrgrH/engvrim1ApaC34R5qiXHECYKcKMxaadksrhA04xYG n8Z2+AkQVF3eJcx4mnbKqabLjCRVQxiDahVAQzVmtJY/dAVyUFN/6jo9aYdBxSYi qfqzJ26XiMu/ct8kBOFWzT9/T1qVdhd2LJlcn0wtk7SelNyK0YSuCeDyPsXr1luK Zi579rjqu4MKH6bbnWNgwiJwCpvVCp/w3pesiSbBnnEFMLco66W43JEA3GRs30it yMSLT0BncqqBaMO20CbgeiZXZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI+cz9ta vOiGQY+Qw+XzEDgEwexxMB8GA1UdIwQYMBaAFD0tk6yLEIZYF9mnTMgaAw19NdB0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkQ5RS83N0JCOTg0QzdE NjExMUVFQjQ2M0M4NUFDNEY5QUUwMi9QUzJUcklzUWhsZ1gyYWRNeUJvRERYMDEw SFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BTMlRySXNRaGxnWDJhZE15Qm9ERFgwMTBIUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NkQ5RS83N0JCOTg0QzdENjExMUVFQjQ2M0M4NUFDNEY5QUUwMi9QUzJUcklzUWhs Z1gyYWRNeUJvRERYMDEwSFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOpLU02HfDrucd/TuwtZz1QIF7v8K3TwmBOcNRnG2B/9cIz4uQxBjc u36ETQQkNWRCiXguwYJLbORqiJUv5OBEUZTiCRYXoa9ZNNLIOEJx8lo8dgOwPEN3 7JlQ42jTzbhXhJShEUgirhSEbc0RLyeDWt2FhwtFD4s4KmjTrihrfPU7SjGNTRtn AB6b7lMOuSdDG3l5IPzVOVAHaZtr60fmY7pMdQW5nFYo0jXQZKJLzNeDOgsIo+Oy VDIPDXGmSQTADGacOf9ir7OiRre25r1r7kEd0PfBQT4XZf1VPQEkTyg7CyJ7Tvcf R0QmxRiGRzy1FKWjb4Y0cofgNYG8Chpy -----END CERTIFICATE-----Generated at Sat Apr 26 04:23:57 2025 by rpki-client