$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.mft File: 2itDzBg8qOD2qPbapUzdcwb4Yig.mft (raw, json) Hash identifier: UxeTmHfgDblqCPhHLgJZJqXnDxGCDxBIPAmGoigscVM= Subject key identifier: 7A:29:F9:4C:EB:2D:12:28:71:55:BD:A6:83:F4:9C:DE:01:F4:78:CF Authority key identifier: DA:2B:43:CC:18:3C:A8:E0:F6:A8:F6:DA:A5:4C:DD:73:06:F8:62:28 Certificate issuer: /CN=A91DF0EC/serialNumber=DA2B43CC183CA8E0F6A8F6DAA54CDD7306F86228 Certificate serial: 09F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2itDzBg8qOD2qPbapUzdcwb4Yig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.mft Manifest number: 09E8 Signing time: Thu 24 Apr 2025 19:48:16 +0000 Manifest this update: Thu 24 Apr 2025 19:48:15 +0000 Manifest next update: Thu 01 May 2025 19:48:15 +0000 Files and hashes: 1: 2itDzBg8qOD2qPbapUzdcwb4Yig.crl (hash: tCFxO771jpDxQ8Hx3v8cyGNV1Dfo+ChitK4QysuElsQ=) 2: FD114232912711EFBCB4ED6EC4F9AE02.roa (hash: TxCwNFrh+xkaqDR3M5kqqPa5bX7FhYwp1p0wkxa1CxU=) 3: 0D6FFE56BA3511ECA20A3817C4F9AE02.roa (hash: JxcjLdYbfNpLt4XJbaeEwHRAAk7SbV4Cw+ExyqNKBV4=) 4: C8A0E422831611EA95762453C4F9AE02.roa (hash: yUwouY97arbHx1ysSRkQtB3/fVJX2BMSgtA5eI1eKIg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.crl rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2itDzBg8qOD2qPbapUzdcwb4Yig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:48:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2553 (0x9f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF0EC, serialNumber=DA2B43CC183CA8E0F6A8F6DAA54CDD7306F86228 Validity Not Before: Apr 24 19:48:15 2025 GMT Not After : May 1 19:48:15 2025 GMT Subject: CN=680a9580-38c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:45:15:a5:f1:07:45:c3:ed:33:34:17:1c:d1: 84:ca:e6:8b:0f:5f:e1:cb:a5:1c:fb:4f:de:e9:c5: b9:b1:1e:03:d2:64:df:55:16:f4:fb:06:de:79:37: ae:79:88:d3:59:0d:5b:c3:d0:93:f5:9e:00:12:1b: 83:53:f9:86:df:56:94:3c:44:0d:2f:45:e2:3e:06: 27:e9:83:30:49:66:f9:21:6e:0f:71:98:1d:03:e2: ea:06:8f:c1:0b:4d:fe:17:4f:0a:7c:21:db:f8:ff: 86:85:04:51:c3:b6:eb:c7:3c:ae:4d:33:d6:78:45: 76:cf:d9:2f:69:60:bf:d8:88:df:13:bf:79:43:ba: 2c:54:c5:36:d4:30:13:f5:ab:59:55:1c:e4:9e:39: e4:1a:31:5a:66:4c:97:a5:a9:13:d1:37:4d:82:82: 01:53:df:7f:81:c5:6d:63:99:4d:dc:a3:07:22:14: 31:4a:bb:00:81:e4:31:36:8b:0d:54:96:4b:40:f3: 92:a9:f2:6e:ba:4f:12:8f:bb:81:59:39:20:3f:46: 74:ee:92:a3:26:e4:b0:6c:1d:b2:77:62:a0:79:b8: d6:57:37:be:0e:bd:80:c6:9e:aa:af:a1:b1:f6:a9: 8a:75:59:16:6d:9e:f3:d1:27:af:c0:7c:16:87:b8: 73:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:29:F9:4C:EB:2D:12:28:71:55:BD:A6:83:F4:9C:DE:01:F4:78:CF X509v3 Authority Key Identifier: keyid:DA:2B:43:CC:18:3C:A8:E0:F6:A8:F6:DA:A5:4C:DD:73:06:F8:62:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2itDzBg8qOD2qPbapUzdcwb4Yig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:18:0b:c6:b2:7f:43:3e:51:f4:c4:ba:93:66:f8:17:94:78: 86:c6:fb:62:4f:d3:cd:4a:31:e5:ea:6f:5b:d4:1d:72:38:1c: 5b:d8:e8:56:5f:b6:da:54:58:6d:70:34:d3:1f:52:51:24:81: 09:fe:4b:d1:37:59:45:fd:86:6a:0c:45:2b:a5:ff:76:54:0c: 2c:07:4e:b9:6f:ab:7d:1f:45:98:a7:fd:40:b3:76:af:cb:ee: 43:5a:dd:d3:51:1d:a2:f7:b2:f1:1a:d1:e8:f5:31:05:00:e7: fd:22:1f:a0:55:15:c6:56:b2:0a:b7:5c:ab:47:1c:6b:98:4e: b0:bf:78:39:c6:dc:50:32:82:89:6a:87:af:6f:55:f3:b9:da: 7c:1f:3d:61:0d:4f:2f:b6:d6:30:fa:24:0d:9f:60:ff:45:37: 84:e7:35:7f:2a:50:72:16:bc:20:9a:29:fb:f7:e6:e1:e8:18: d4:08:fc:03:0a:72:4d:cc:72:20:5f:3d:32:8d:ac:34:f6:7b: ee:7a:9a:55:18:9c:ac:86:ae:dd:ea:5d:96:95:24:ac:9d:e7: 77:94:ac:50:e6:c9:0b:9c:0d:b2:5d:5f:0f:3d:d8:8b:d4:c5: a0:4f:31:82:11:6f:f4:d7:c1:1f:63:cb:11:da:db:7e:95:f6: 46:fc:ef:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCfkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYwRUMxMTAvBgNVBAUTKERBMkI0M0NDMTgzQ0E4RTBGNkE4RjZEQUE1NENERDcz MDZGODYyMjgwHhcNMjUwNDI0MTk0ODE1WhcNMjUwNTAxMTk0ODE1WjAYMRYwFAYD VQQDEw02ODBhOTU4MC0zOGM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwkUVpfEHRcPtMzQXHNGEyuaLD1/hy6Uc+0/e6cW5sR4D0mTfVRb0+wbeeTeu eYjTWQ1bw9CT9Z4AEhuDU/mG31aUPEQNL0XiPgYn6YMwSWb5IW4PcZgdA+LqBo/B C03+F08KfCHb+P+GhQRRw7brxzyuTTPWeEV2z9kvaWC/2IjfE795Q7osVMU21DAT 9atZVRzknjnkGjFaZkyXpakT0TdNgoIBU99/gcVtY5lN3KMHIhQxSrsAgeQxNosN VJZLQPOSqfJuuk8Sj7uBWTkgP0Z07pKjJuSwbB2yd2KgebjWVze+Dr2Axp6qr6Gx 9qmKdVkWbZ7z0SevwHwWh7hzdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHop+Uzr LRIocVW9poP0nN4B9HjPMB8GA1UdIwQYMBaAFNorQ8wYPKjg9qj22qVM3XMG+GIo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjBFQy85OTFDRUY3RTc5 NTgxMUVBOTNBRTk2NDZDNEY5QUUwMi8yaXREekJnOHFPRDJxUGJhcFV6ZGN3YjRZ aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJpdER6Qmc4cU9EMnFQYmFwVXpkY3diNFlpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjBFQy85OTFDRUY3RTc5NTgxMUVBOTNBRTk2NDZDNEY5QUUwMi8yaXREekJnOHFP RDJxUGJhcFV6ZGN3YjRZaWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPGAvGsn9DPlH0xLqTZvgXlHiGxvtiT9PNSjHl6m9b1B1yOBxb2OhW X7baVFhtcDTTH1JRJIEJ/kvRN1lF/YZqDEUrpf92VAwsB065b6t9H0WYp/1As3av y+5DWt3TUR2i97LxGtHo9TEFAOf9Ih+gVRXGVrIKt1yrRxxrmE6wv3g5xtxQMoKJ aoevb1Xzudp8Hz1hDU8vttYw+iQNn2D/RTeE5zV/KlByFrwgmin79+bh6BjUCPwD CnJNzHIgXz0yjaw09nvueppVGJyshq7d6l2WlSSsned3lKxQ5skLnA2yXV8PPdiL 1MWgTzGCEW/018EfY8sR2tt+lfZG/O9z -----END CERTIFICATE-----Generated at Sat Apr 26 12:34:33 2025 by rpki-client