$ rpki-client -vvf rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.mft File: 2fwVW2_aEGxpmlabEgOEkJWKoy8.mft (raw, json) Hash identifier: zzsnVD8uWK8yHfRat33aA41EBgKPC5mq8fe/kb+g+Co= Subject key identifier: 71:2C:2B:2A:29:65:27:B4:CC:FA:75:72:20:3D:DA:0D:51:97:95:57 Authority key identifier: D9:FC:15:5B:6F:DA:10:6C:69:9A:56:9B:12:03:84:90:95:8A:A3:2F Certificate issuer: /CN=A91B53A5/serialNumber=D9FC155B6FDA106C699A569B12038490958AA32F Certificate serial: 1A39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fwVW2_aEGxpmlabEgOEkJWKoy8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.mft Manifest number: 1A20 Signing time: Thu 24 Apr 2025 16:22:25 +0000 Manifest this update: Thu 24 Apr 2025 16:22:24 +0000 Manifest next update: Thu 01 May 2025 16:22:24 +0000 Files and hashes: 1: 2fwVW2_aEGxpmlabEgOEkJWKoy8.crl (hash: TsK7iFSU61RRtM38RDIFCKwVshz78TFPr+ZATW1ugY4=) 2: C443D86A55A311E7896BED09C4F9AE02.roa (hash: RAjaQS5QbqXtrUMbAxpVJSZQfE94i9hS979yM5B3+jI=) 3: A9286C0E6D4411E7AF539270C4F9AE02.roa (hash: CvwZ78Bx6JW2ZSeXfa9JVVvETeg0+qlUbSWAQnUGr1k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.crl rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fwVW2_aEGxpmlabEgOEkJWKoy8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:22:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6713 (0x1a39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B53A5, serialNumber=D9FC155B6FDA106C699A569B12038490958AA32F Validity Not Before: Apr 24 16:22:24 2025 GMT Not After : May 1 16:22:24 2025 GMT Subject: CN=680a6541-7664 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:6e:c1:5d:9f:4f:f3:64:13:31:a1:74:ab:1b: a4:b1:d0:48:32:46:bf:c9:a2:3a:82:4c:3b:f5:b9: 33:a3:dc:a3:bf:9e:78:d0:0b:86:d2:89:84:e4:6a: a3:ed:b2:2c:f3:12:8b:ef:99:0d:e8:cc:ed:26:4c: 4b:9d:0c:8f:6a:56:39:8b:43:3f:e4:01:d5:f7:0d: f1:8a:25:0d:d4:2e:7c:3e:c6:5a:0d:75:e9:b3:28: 91:8a:bc:08:87:f9:fa:54:de:bb:92:b3:bf:2c:76: aa:1e:eb:78:e4:ab:be:4d:db:60:c8:ba:ce:92:84: 32:99:fe:4f:d2:2c:bb:ef:7b:e2:39:58:ba:08:b4: d2:45:cf:6e:72:10:22:61:59:02:ec:9a:f5:14:0d: 85:56:7a:be:8c:17:3f:08:ae:f1:03:ac:bc:73:52: 97:f9:e0:4b:19:92:c1:98:cc:86:a1:7c:0e:e8:60: 73:22:5a:ca:60:13:6d:d2:f8:d2:0c:83:69:bd:9c: 44:0e:12:40:53:be:fb:73:0c:b3:29:80:e3:de:76: 48:e6:89:89:87:5d:db:21:0c:32:a7:e7:51:23:8c: 67:b7:6c:d0:cd:8f:2a:72:97:e0:9f:25:01:36:98: e5:14:14:de:61:a7:8b:85:95:7d:5d:10:4a:b7:44: 94:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:2C:2B:2A:29:65:27:B4:CC:FA:75:72:20:3D:DA:0D:51:97:95:57 X509v3 Authority Key Identifier: keyid:D9:FC:15:5B:6F:DA:10:6C:69:9A:56:9B:12:03:84:90:95:8A:A3:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fwVW2_aEGxpmlabEgOEkJWKoy8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d5:c7:73:60:79:34:ea:d5:93:f9:61:80:fe:c6:05:6e:4f:c2: 48:ae:a2:c3:43:13:6c:f0:24:b1:3d:0a:84:f4:1f:32:73:0b: e0:ff:75:9e:fb:b2:38:ae:56:4e:3f:34:54:0e:2f:55:96:65: 36:74:69:02:bb:ee:09:11:ac:d4:3c:ec:51:52:f9:a7:3b:09: 62:01:87:bd:57:5e:1f:c0:b7:42:fc:e5:33:6f:ed:89:dc:e7: ac:91:b8:77:dd:0a:d2:e7:77:5d:d9:b5:60:a4:06:64:bb:cb: 37:d4:92:d5:6c:f7:d8:9b:81:d2:e0:b8:2f:b6:0b:2a:0e:19: 23:25:b2:3a:19:d4:c2:98:d2:ad:33:90:1b:70:16:58:15:e2: 3b:08:ca:a2:13:22:47:8b:bd:91:21:ca:4f:31:1b:44:51:3f: 48:fd:5b:b9:f8:a1:52:f4:52:99:7f:30:b4:82:38:09:0e:54: ac:6f:52:5c:37:76:98:75:c5:1d:32:83:15:04:d2:91:0a:d6: 7b:c4:f8:8e:b8:0c:5c:14:98:30:29:3b:be:17:fc:c5:e1:44: 1d:bf:af:8b:3f:01:9a:db:ef:e3:f8:7c:16:b4:f7:a1:7a:c8: 6f:6a:68:ac:89:aa:dc:6c:57:17:bb:9a:99:18:5f:2f:77:d9: 45:09:35:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGjkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjUzQTUxMTAvBgNVBAUTKEQ5RkMxNTVCNkZEQTEwNkM2OTlBNTY5QjEyMDM4NDkw OTU4QUEzMkYwHhcNMjUwNDI0MTYyMjI0WhcNMjUwNTAxMTYyMjI0WjAYMRYwFAYD VQQDEw02ODBhNjU0MS03NjY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2G7BXZ9P82QTMaF0qxuksdBIMka/yaI6gkw79bkzo9yjv5540AuG0omE5Gqj 7bIs8xKL75kN6MztJkxLnQyPalY5i0M/5AHV9w3xiiUN1C58PsZaDXXpsyiRirwI h/n6VN67krO/LHaqHut45Ku+TdtgyLrOkoQymf5P0iy773viOVi6CLTSRc9uchAi YVkC7Jr1FA2FVnq+jBc/CK7xA6y8c1KX+eBLGZLBmMyGoXwO6GBzIlrKYBNt0vjS DINpvZxEDhJAU777cwyzKYDj3nZI5omJh13bIQwyp+dRI4xnt2zQzY8qcpfgnyUB NpjlFBTeYaeLhZV9XRBKt0SUmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHEsKyop ZSe0zPp1ciA92g1Rl5VXMB8GA1UdIwQYMBaAFNn8FVtv2hBsaZpWmxIDhJCViqMv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTNBNS8yNTgwQThENjRC NjUxMUU3QjQ2OUMwN0FDNEY5QUUwMi8yZndWVzJfYUVHeHBtbGFiRWdPRWtKV0tv eTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJmd1ZXMl9hRUd4cG1sYWJFZ09Fa0pXS295OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTNBNS8yNTgwQThENjRCNjUxMUU3QjQ2OUMwN0FDNEY5QUUwMi8yZndWVzJfYUVH eHBtbGFiRWdPRWtKV0tveTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDVx3NgeTTq1ZP5YYD+xgVuT8JIrqLDQxNs8CSxPQqE9B8ycwvg/3We +7I4rlZOPzRUDi9VlmU2dGkCu+4JEazUPOxRUvmnOwliAYe9V14fwLdC/OUzb+2J 3Oeskbh33QrS53dd2bVgpAZku8s31JLVbPfYm4HS4LgvtgsqDhkjJbI6GdTCmNKt M5AbcBZYFeI7CMqiEyJHi72RIcpPMRtEUT9I/Vu5+KFS9FKZfzC0gjgJDlSsb1Jc N3aYdcUdMoMVBNKRCtZ7xPiOuAxcFJgwKTu+F/zF4UQdv6+LPwGa2+/j+HwWtPeh eshvamisiarcbFcXu5qZGF8vd9lFCTWI -----END CERTIFICATE-----Generated at Sat Apr 26 04:27:59 2025 by rpki-client