$ rpki-client -vvf rpki.apnic.net/member_repository/A919986F/EC870B868F2A11E4BF98B432C4F9AE02/plb2DT8RZBpXG9H_rSRg3UV2My0.mft File: plb2DT8RZBpXG9H_rSRg3UV2My0.mft (raw, json) Hash identifier: sGJ/9EILWOZyPICIh+qE0oEypOseq7BCaQm8gOaOa/U= Subject key identifier: B2:3A:B3:5F:31:49:48:B5:26:6A:C3:29:A4:D1:9D:63:A8:1E:98:70 Authority key identifier: A6:56:F6:0D:3F:11:64:1A:57:1B:D1:FF:AD:24:60:DD:45:76:33:2D Certificate issuer: /CN=A919986F/serialNumber=A656F60D3F11641A571BD1FFAD2460DD4576332D Certificate serial: 280E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/plb2DT8RZBpXG9H_rSRg3UV2My0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919986F/EC870B868F2A11E4BF98B432C4F9AE02/plb2DT8RZBpXG9H_rSRg3UV2My0.mft Manifest number: 2809 Signing time: Thu 24 Apr 2025 15:38:16 +0000 Manifest this update: Thu 24 Apr 2025 15:38:15 +0000 Manifest next update: Thu 01 May 2025 15:38:15 +0000 Files and hashes: 1: plb2DT8RZBpXG9H_rSRg3UV2My0.crl (hash: s14/NNfeXRcxqEgWfoUNGdD9gWxGsak6MgORk6xKko4=) 2: 27F621183B5D11EB97506B7AC4F9AE02.roa (hash: +GMl4Xu8VPkNDBOVR1baOfDzoyBidluum1AgF508r2s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919986F/EC870B868F2A11E4BF98B432C4F9AE02/plb2DT8RZBpXG9H_rSRg3UV2My0.crl rsync://rpki.apnic.net/member_repository/A919986F/EC870B868F2A11E4BF98B432C4F9AE02/plb2DT8RZBpXG9H_rSRg3UV2My0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/plb2DT8RZBpXG9H_rSRg3UV2My0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:38:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10254 (0x280e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919986F, serialNumber=A656F60D3F11641A571BD1FFAD2460DD4576332D Validity Not Before: Apr 24 15:38:15 2025 GMT Not After : May 1 15:38:15 2025 GMT Subject: CN=680a5ae8-6795 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:2d:e6:fc:9c:cb:a6:38:c0:c2:99:b8:23:49: 13:bd:7f:38:3b:85:5e:32:1a:81:55:28:de:85:bc: 24:df:b2:15:5a:82:15:69:74:77:08:e3:07:61:53: c7:7a:37:5e:80:6e:0b:d1:f4:fc:f2:e0:0e:d4:94: 09:51:7f:d4:6b:3c:d7:52:be:ba:5e:82:1c:ec:ec: a5:a4:79:65:7b:aa:2e:33:2d:a9:4d:87:9f:4f:0a: 3a:c3:58:79:0d:23:16:c0:82:38:c7:c4:14:91:51: c0:53:da:90:98:0c:06:8e:25:7e:df:ae:f8:6a:12: cf:e4:a4:ce:98:26:61:8e:85:ca:a1:43:68:7f:44: 25:89:03:05:f0:b5:a3:d9:5e:aa:fe:1e:6f:3b:28: 31:35:e5:99:ed:7a:07:51:92:0c:5a:85:47:90:54: c9:4c:61:78:78:da:89:3e:08:c8:2a:82:3a:d1:6b: f0:3c:ee:8e:76:34:a3:da:50:54:dd:9a:d1:20:fd: d9:a7:b0:be:f6:a0:34:83:f0:a0:76:c0:f4:e6:9b: f8:5b:68:7e:b6:ef:d5:70:5f:6d:27:e2:35:89:43: 4c:98:49:61:e0:36:08:d7:96:72:3b:8e:df:e4:a1: 18:b5:53:fb:83:15:9d:26:14:49:d3:39:4c:d6:b6: 6c:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:3A:B3:5F:31:49:48:B5:26:6A:C3:29:A4:D1:9D:63:A8:1E:98:70 X509v3 Authority Key Identifier: keyid:A6:56:F6:0D:3F:11:64:1A:57:1B:D1:FF:AD:24:60:DD:45:76:33:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919986F/EC870B868F2A11E4BF98B432C4F9AE02/plb2DT8RZBpXG9H_rSRg3UV2My0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/plb2DT8RZBpXG9H_rSRg3UV2My0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919986F/EC870B868F2A11E4BF98B432C4F9AE02/plb2DT8RZBpXG9H_rSRg3UV2My0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:d3:9f:c9:64:ae:32:d2:18:9c:5a:3e:ed:20:6c:13:52:ce: ae:29:b7:95:df:91:26:e8:f8:ad:e6:64:70:19:aa:cc:b9:de: d1:b9:37:9d:b1:c5:29:2f:8b:c7:e9:fe:d3:99:e1:c2:06:05: 61:76:e7:ec:78:61:90:02:77:3c:36:49:48:97:6c:15:e8:e3: cf:36:4b:6d:2b:c4:d9:92:ad:03:f7:9d:67:d7:93:34:c4:f5: e0:99:4f:18:e9:b5:f2:8e:ff:c2:b2:38:8f:fc:d7:b8:02:02: eb:4a:73:f6:a8:bc:84:02:bf:3f:61:7e:9e:9f:48:bc:65:f9: 81:9e:f6:04:01:e9:5c:60:94:24:cf:4e:e7:f0:aa:a2:64:89: 26:68:20:87:e9:dd:10:b1:1a:da:ee:33:c8:89:51:0f:ee:d6: 99:60:2f:53:ee:63:c6:b7:72:2c:61:51:82:53:ba:17:70:71: 31:83:3f:56:d3:da:1e:c8:f8:ff:94:10:52:ab:3e:9f:e8:c6: 09:76:a3:a1:11:37:b8:e2:63:37:f8:61:3f:09:9d:8f:53:1d: 92:b8:c8:ee:93:c6:4b:0b:59:b8:38:8d:ed:98:15:92:58:50: 6f:e6:3d:6c:9e:92:45:49:64:b8:ac:d7:d6:08:b5:16:65:a4: 40:15:ff:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKA4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk4NkYxMTAvBgNVBAUTKEE2NTZGNjBEM0YxMTY0MUE1NzFCRDFGRkFEMjQ2MERE NDU3NjMzMkQwHhcNMjUwNDI0MTUzODE1WhcNMjUwNTAxMTUzODE1WjAYMRYwFAYD VQQDEw02ODBhNWFlOC02Nzk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1i3m/JzLpjjAwpm4I0kTvX84O4VeMhqBVSjehbwk37IVWoIVaXR3COMHYVPH ejdegG4L0fT88uAO1JQJUX/UazzXUr66XoIc7OylpHlle6ouMy2pTYefTwo6w1h5 DSMWwII4x8QUkVHAU9qQmAwGjiV+3674ahLP5KTOmCZhjoXKoUNof0QliQMF8LWj 2V6q/h5vOygxNeWZ7XoHUZIMWoVHkFTJTGF4eNqJPgjIKoI60WvwPO6OdjSj2lBU 3ZrRIP3Zp7C+9qA0g/CgdsD05pv4W2h+tu/VcF9tJ+I1iUNMmElh4DYI15ZyO47f 5KEYtVP7gxWdJhRJ0zlM1rZsQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLI6s18x SUi1JmrDKaTRnWOoHphwMB8GA1UdIwQYMBaAFKZW9g0/EWQaVxvR/60kYN1FdjMt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTg2Ri9FQzg3MEI4NjhG MkExMUU0QkY5OEI0MzJDNEY5QUUwMi9wbGIyRFQ4UlpCcFhHOUhfclNSZzNVVjJN eTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BsYjJEVDhSWkJwWEc5SF9yU1JnM1VWMk15MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTg2Ri9FQzg3MEI4NjhGMkExMUU0QkY5OEI0MzJDNEY5QUUwMi9wbGIyRFQ4UlpC cFhHOUhfclNSZzNVVjJNeTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCG05/JZK4y0hicWj7tIGwTUs6uKbeV35Em6Pit5mRwGarMud7RuTed scUpL4vH6f7TmeHCBgVhdufseGGQAnc8NklIl2wV6OPPNkttK8TZkq0D951n15M0 xPXgmU8Y6bXyjv/CsjiP/Ne4AgLrSnP2qLyEAr8/YX6en0i8ZfmBnvYEAelcYJQk z07n8KqiZIkmaCCH6d0QsRra7jPIiVEP7taZYC9T7mPGt3IsYVGCU7oXcHExgz9W 09oeyPj/lBBSqz6f6MYJdqOhETe44mM3+GE/CZ2PUx2SuMjuk8ZLC1m4OI3tmBWS WFBv5j1snpJFSWS4rNfWCLUWZaRAFf8i -----END CERTIFICATE-----Generated at Sat Apr 26 03:43:54 2025 by rpki-client