$ rpki-client -vvf rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft File: 2h2yzTH0VPaVYdhmXck--BLzl7A.mft (raw, json) Hash identifier: ITH9lby5Mr6wYibKMmLVuZhco7I4W8P+WedMeBGg3hg= Subject key identifier: D6:91:6F:0A:FD:55:08:5C:44:44:A9:A4:EC:D8:97:06:5E:2B:FB:EE Authority key identifier: DA:1D:B2:CD:31:F4:54:F6:95:61:D8:66:5D:C9:3E:F8:12:F3:97:B0 Certificate issuer: /CN=A919A7CA/serialNumber=DA1DB2CD31F454F69561D8665DC93EF812F397B0 Certificate serial: 011B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft Manifest number: 0114 Signing time: Fri 25 Apr 2025 03:57:53 +0000 Manifest this update: Fri 25 Apr 2025 03:57:53 +0000 Manifest next update: Fri 02 May 2025 03:57:53 +0000 Files and hashes: 1: 2h2yzTH0VPaVYdhmXck--BLzl7A.crl (hash: pk1NfR98P440UvQzhi2x28rPFEKf2fRe6vkkwOdAtyk=) 2: 730B201A81E911EEAEFE7735C4F9AE02.roa (hash: +MbNfxyhCamzN9tHOdSAmjfpdzIa0MaUiU8CGByu53M=) 3: 4317395081E611EE9EFE132BC4F9AE02.roa (hash: nEgdbI6cuLNeRuLPJnkG4QO1ReMDMeUPyTkJXfsO5xE=) 4: E71AB92A7F7D11EE8C183162C4F9AE02.roa (hash: shdTH9d6PBZ6zz9OKDDb+zRKMfpyDz4E/FhykKTuDEk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.crl rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 283 (0x11b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A7CA, serialNumber=DA1DB2CD31F454F69561D8665DC93EF812F397B0 Validity Not Before: Apr 25 03:57:53 2025 GMT Not After : May 2 03:57:53 2025 GMT Subject: CN=680b0841-c1e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ee:ac:42:ee:2b:c9:82:7f:10:88:77:65:1a: bb:6a:97:57:bd:c7:94:b4:40:b2:97:1e:b6:c6:10: 51:b0:ca:e9:f4:1d:58:39:54:46:18:03:a8:81:e5: 66:50:27:b5:00:73:21:f9:57:84:0b:37:9b:21:65: ce:32:78:7a:df:89:56:61:ae:e7:3b:98:eb:7d:56: 7f:cb:80:13:f7:24:ab:ad:5f:c8:59:f8:d8:46:b7: 89:42:a6:d0:5e:9e:ec:1a:21:14:f7:40:f9:be:ae: 67:1d:81:18:d8:de:8c:54:a3:ca:37:ec:72:4a:a9: d8:0b:13:5a:41:b4:8b:dd:49:72:2e:e0:e7:8b:2d: 72:d2:1b:4b:fd:9e:95:79:05:bd:5b:ad:1a:9e:35: 03:d8:bf:5e:70:d9:35:83:7c:d4:82:83:24:6b:34: 96:cf:67:bc:79:a4:45:e8:a6:08:8f:91:e3:8a:9e: f7:2c:59:4c:03:5c:b3:90:d7:05:81:8d:6d:d8:47: f9:1c:fa:54:f6:f5:17:51:4f:e9:35:54:8c:d8:53: 0a:52:69:fb:69:77:57:80:75:31:ba:78:76:e9:5f: db:65:33:e8:1b:68:de:f7:c0:1a:af:10:6a:7c:e2: 9b:de:0d:a7:78:b6:a6:b8:88:b2:ec:cd:25:6a:ec: 56:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:91:6F:0A:FD:55:08:5C:44:44:A9:A4:EC:D8:97:06:5E:2B:FB:EE X509v3 Authority Key Identifier: keyid:DA:1D:B2:CD:31:F4:54:F6:95:61:D8:66:5D:C9:3E:F8:12:F3:97:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:7d:46:05:c9:31:42:6e:f8:1f:38:a4:25:d2:18:db:ef:1e: 2c:92:64:97:99:94:79:da:7f:19:ec:87:07:dd:a9:f2:56:05: 42:c0:1e:47:af:01:7d:23:2a:1a:64:d9:2d:e6:82:13:0a:7c: cd:b1:db:01:8b:b1:7e:80:4f:81:06:97:33:d9:2a:0f:7e:22: d1:28:31:3d:e1:1d:22:1f:57:bd:4b:c6:df:36:da:06:db:da: bc:52:cd:1d:7f:91:14:d0:46:72:e9:6b:e8:f9:08:6b:37:46: 7d:54:c9:99:b4:3e:a3:80:d8:ba:ff:2f:eb:50:9e:d4:ba:a0: 27:10:02:f1:b6:9a:d9:49:38:55:c3:95:10:df:c9:b9:fa:91: 55:ee:a9:12:15:57:a3:95:66:5a:9c:2b:05:c3:5d:a8:dc:77: dc:56:00:ca:9f:ca:eb:8c:3d:16:fc:43:2c:79:8a:90:e9:ed: 25:ed:0c:70:09:76:86:52:55:2e:f2:a2:a8:54:cd:9b:c9:23: 1b:99:c9:e4:7c:e6:00:b3:54:2a:ba:51:48:18:37:92:79:ad: 43:ba:ab:ce:49:6e:05:71:97:9a:fe:0f:58:cb:bf:02:ba:53: 44:4f:50:96:c0:fd:bd:ea:3b:81:b4:bb:78:34:fc:68:89:e7: 74:ba:58:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE3Q0ExMTAvBgNVBAUTKERBMURCMkNEMzFGNDU0RjY5NTYxRDg2NjVEQzkzRUY4 MTJGMzk3QjAwHhcNMjUwNDI1MDM1NzUzWhcNMjUwNTAyMDM1NzUzWjAYMRYwFAYD VQQDEw02ODBiMDg0MS1jMWUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx+6sQu4ryYJ/EIh3ZRq7apdXvceUtECylx62xhBRsMrp9B1YOVRGGAOogeVm UCe1AHMh+VeECzebIWXOMnh634lWYa7nO5jrfVZ/y4AT9ySrrV/IWfjYRreJQqbQ Xp7sGiEU90D5vq5nHYEY2N6MVKPKN+xySqnYCxNaQbSL3UlyLuDniy1y0htL/Z6V eQW9W60anjUD2L9ecNk1g3zUgoMkazSWz2e8eaRF6KYIj5Hjip73LFlMA1yzkNcF gY1t2Ef5HPpU9vUXUU/pNVSM2FMKUmn7aXdXgHUxunh26V/bZTPoG2je98AarxBq fOKb3g2neLamuIiy7M0lauxW0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNaRbwr9 VQhcRESppOzYlwZeK/vuMB8GA1UdIwQYMBaAFNodss0x9FT2lWHYZl3JPvgS85ew MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTdDQS80Q0Y3RjE1ODdF QjcxMUVFOTYyM0U5MUFDNEY5QUUwMi8yaDJ5elRIMFZQYVZZZGhtWGNrLS1CTHps N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJoMnl6VEgwVlBhVllkaG1YY2stLUJMemw3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTdDQS80Q0Y3RjE1ODdFQjcxMUVFOTYyM0U5MUFDNEY5QUUwMi8yaDJ5elRIMFZQ YVZZZGhtWGNrLS1CTHpsN0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMfUYFyTFCbvgfOKQl0hjb7x4skmSXmZR52n8Z7IcH3anyVgVCwB5H rwF9IyoaZNkt5oITCnzNsdsBi7F+gE+BBpcz2SoPfiLRKDE94R0iH1e9S8bfNtoG 29q8Us0df5EU0EZy6Wvo+QhrN0Z9VMmZtD6jgNi6/y/rUJ7UuqAnEALxtprZSThV w5UQ38m5+pFV7qkSFVejlWZanCsFw12o3HfcVgDKn8rrjD0W/EMseYqQ6e0l7Qxw CXaGUlUu8qKoVM2bySMbmcnkfOYAs1QqulFIGDeSea1DuqvOSW4FcZea/g9Yy78C ulNET1CWwP296juBtLt4NPxoied0uljD -----END CERTIFICATE-----Generated at Sat Apr 26 17:13:32 2025 by rpki-client