$ rpki-client -vvf rpki.apnic.net/member_repository/A9199DE2/A3A52106AED011EBBF3FD763C4F9AE02/2CWolzNYl8B-dpODimvyAnZYDwM.mft File: 2CWolzNYl8B-dpODimvyAnZYDwM.mft (raw, json) Hash identifier: NuBFwllygFa8V+nARVEQyV1pmacSh8BFxG2W3TrmN+c= Subject key identifier: F8:1A:37:A3:B3:22:87:B1:9B:65:D5:A0:3B:46:66:35:2A:79:3C:62 Authority key identifier: D8:25:A8:97:33:58:97:C0:7E:76:93:83:8A:6B:F2:02:76:58:0F:03 Certificate issuer: /CN=A9199DE2/serialNumber=D825A897335897C07E7693838A6BF20276580F03 Certificate serial: 05F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CWolzNYl8B-dpODimvyAnZYDwM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199DE2/A3A52106AED011EBBF3FD763C4F9AE02/2CWolzNYl8B-dpODimvyAnZYDwM.mft Manifest number: 05E9 Signing time: Thu 24 Apr 2025 22:46:14 +0000 Manifest this update: Thu 24 Apr 2025 22:46:14 +0000 Manifest next update: Thu 01 May 2025 22:46:14 +0000 Files and hashes: 1: 2CWolzNYl8B-dpODimvyAnZYDwM.crl (hash: kS4/xpXPdDqFLhhGwmOyuP/8aoZplDcB5FPHLiBo63o=) 2: E6ECE6E6104C11EC9074E586C4F9AE02.roa (hash: gAuID1Fe/PtlP9DGBoTnnUFK6n2WVQEEJLwbWlhbFaE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199DE2/A3A52106AED011EBBF3FD763C4F9AE02/2CWolzNYl8B-dpODimvyAnZYDwM.crl rsync://rpki.apnic.net/member_repository/A9199DE2/A3A52106AED011EBBF3FD763C4F9AE02/2CWolzNYl8B-dpODimvyAnZYDwM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CWolzNYl8B-dpODimvyAnZYDwM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:46:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1523 (0x5f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199DE2, serialNumber=D825A897335897C07E7693838A6BF20276580F03 Validity Not Before: Apr 24 22:46:14 2025 GMT Not After : May 1 22:46:14 2025 GMT Subject: CN=680abf36-130c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:75:df:d7:9e:2d:6f:b3:4e:e8:a9:c7:91:84: 3c:40:af:84:47:85:ae:a0:72:77:82:9a:c5:9c:1c: 49:ea:12:89:49:16:c9:ee:c2:ec:b5:f6:04:b1:1c: 9b:63:25:c9:75:e8:f6:82:27:5d:73:ef:44:37:5e: 01:a9:31:24:79:0c:ab:31:5f:3d:02:01:3c:19:69: 5e:f0:2c:cc:64:2b:2d:2e:66:bb:1c:64:a8:51:2c: 52:34:a1:58:87:aa:5a:4b:78:60:af:bb:bd:6b:b2: cb:cd:65:8d:e2:25:9b:55:38:a7:17:f6:01:d6:f4: 37:d7:c8:1f:35:15:89:b2:e3:fb:6f:8f:9b:d7:00: a2:6c:c3:45:9e:17:3a:00:fe:aa:3a:a2:4b:85:b6: ad:df:6a:65:6a:34:0f:77:92:3a:dd:d1:a6:ab:f7: 9d:15:a0:70:47:42:26:7b:50:78:93:21:7e:ee:e4: 3e:f8:5e:01:b4:ec:ed:f4:ea:11:a9:70:f6:b3:45: 80:34:97:3d:47:f3:e2:a2:74:f0:7b:50:fe:2e:09: 03:4d:1d:43:9b:c9:bb:f5:ef:a7:e7:07:0e:02:a2: e0:66:54:2a:da:f6:91:1c:e5:38:89:9b:ea:a7:ba: 05:cb:9e:13:e7:66:fa:3c:5b:70:11:04:23:6a:2e: 6b:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:1A:37:A3:B3:22:87:B1:9B:65:D5:A0:3B:46:66:35:2A:79:3C:62 X509v3 Authority Key Identifier: keyid:D8:25:A8:97:33:58:97:C0:7E:76:93:83:8A:6B:F2:02:76:58:0F:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199DE2/A3A52106AED011EBBF3FD763C4F9AE02/2CWolzNYl8B-dpODimvyAnZYDwM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CWolzNYl8B-dpODimvyAnZYDwM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199DE2/A3A52106AED011EBBF3FD763C4F9AE02/2CWolzNYl8B-dpODimvyAnZYDwM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d3:af:0a:23:eb:60:3b:3e:db:d1:88:ae:00:47:0f:23:e5:58: ea:1c:c8:4f:72:df:20:6e:db:e4:9b:54:1c:3c:32:01:55:65: f2:66:79:e6:f2:41:fa:54:40:af:f6:a4:bb:7c:5d:94:ae:00: 9c:82:5f:f0:86:b5:44:a5:00:87:8a:d9:01:98:e2:8e:5a:ca: 35:1d:f8:ea:c2:2c:c9:a9:f7:05:c3:3c:42:8f:85:da:eb:8d: 05:3b:b2:13:4a:94:b7:a4:92:a8:af:8c:17:09:2e:28:bf:10: 9a:6c:80:ce:5a:1b:c7:b3:87:0c:ea:fe:df:ef:e7:31:31:bb: f0:d2:6d:dd:68:4f:41:3d:39:fd:b7:2b:d1:29:18:20:29:43: 97:da:74:17:c0:c9:fa:bd:4c:e5:13:c5:fa:90:d4:95:9c:2b: e3:1b:40:0c:23:5b:90:a0:7b:8e:cd:cc:fe:a5:48:28:06:35: 01:57:b6:84:d3:09:17:d5:52:4b:ed:4a:f0:24:c6:51:b1:17: 72:42:01:fa:58:4a:55:d7:ea:5c:5b:ec:6a:b6:ff:c7:de:1d: 5f:a8:f2:31:9d:1a:e9:18:a5:4a:4b:ab:b0:de:06:21:41:c9: cf:b8:fb:ad:a4:64:32:ae:8d:67:d3:15:b0:09:d8:9e:82:aa: d6:44:f3:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTlERTIxMTAvBgNVBAUTKEQ4MjVBODk3MzM1ODk3QzA3RTc2OTM4MzhBNkJGMjAy NzY1ODBGMDMwHhcNMjUwNDI0MjI0NjE0WhcNMjUwNTAxMjI0NjE0WjAYMRYwFAYD VQQDEw02ODBhYmYzNi0xMzBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6HXf154tb7NO6KnHkYQ8QK+ER4WuoHJ3gprFnBxJ6hKJSRbJ7sLstfYEsRyb YyXJdej2giddc+9EN14BqTEkeQyrMV89AgE8GWle8CzMZCstLma7HGSoUSxSNKFY h6paS3hgr7u9a7LLzWWN4iWbVTinF/YB1vQ318gfNRWJsuP7b4+b1wCibMNFnhc6 AP6qOqJLhbat32plajQPd5I63dGmq/edFaBwR0Ime1B4kyF+7uQ++F4BtOzt9OoR qXD2s0WANJc9R/PionTwe1D+LgkDTR1Dm8m79e+n5wcOAqLgZlQq2vaRHOU4iZvq p7oFy54T52b6PFtwEQQjai5rwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPgaN6Oz Ioexm2XVoDtGZjUqeTxiMB8GA1UdIwQYMBaAFNglqJczWJfAfnaTg4pr8gJ2WA8D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OURFMi9BM0E1MjEwNkFF RDAxMUVCQkYzRkQ3NjNDNEY5QUUwMi8yQ1dvbHpOWWw4Qi1kcE9EaW12eUFuWllE d00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJDV29sek5ZbDhCLWRwT0RpbXZ5QW5aWUR3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OURFMi9BM0E1MjEwNkFFRDAxMUVCQkYzRkQ3NjNDNEY5QUUwMi8yQ1dvbHpOWWw4 Qi1kcE9EaW12eUFuWllEd00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDTrwoj62A7PtvRiK4ARw8j5VjqHMhPct8gbtvkm1QcPDIBVWXyZnnm 8kH6VECv9qS7fF2UrgCcgl/whrVEpQCHitkBmOKOWso1HfjqwizJqfcFwzxCj4Xa 640FO7ITSpS3pJKor4wXCS4ovxCabIDOWhvHs4cM6v7f7+cxMbvw0m3daE9BPTn9 tyvRKRggKUOX2nQXwMn6vUzlE8X6kNSVnCvjG0AMI1uQoHuOzcz+pUgoBjUBV7aE 0wkX1VJL7UrwJMZRsRdyQgH6WEpV1+pcW+xqtv/H3h1fqPIxnRrpGKVKS6uw3gYh QcnPuPutpGQyro1n0xWwCdiegqrWRPMs -----END CERTIFICATE-----Generated at Sat Apr 26 13:03:26 2025 by rpki-client