$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft File: 2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft (raw, json) Hash identifier: nUTRa8OHoCwaAOgl1p6R8qSsoN6rmI20VaZbGmJofwc= Subject key identifier: E2:6E:D9:D7:DE:4D:B1:CF:CA:CC:9C:72:F5:CA:D8:40:4D:D9:98:59 Authority key identifier: DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED Certificate issuer: /CN=A91EA9BD/serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Certificate serial: 13C6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft Manifest number: 13A9 Signing time: Thu 24 Apr 2025 15:27:06 +0000 Manifest this update: Thu 24 Apr 2025 15:27:05 +0000 Manifest next update: Thu 01 May 2025 15:27:05 +0000 Files and hashes: 1: 2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl (hash: edmfxo0L/yqnZi0+I8lncnqxlwUcqMpW6cZxyZXTuJI=) 2: 76C6BCF6B72811ECAEFC180DC4F9AE02.roa (hash: V/gOKs9LECUvwP7f76II+OxQFAc41Q7rou6YKiKk5l8=) 3: B969D2D0BA4A11EC90B53115C4F9AE02.roa (hash: kCVXgcVyC3mGVdPkmV42EUSht4RHcewllIn6s7mcD00=) 4: 49678FBCB72B11EC8C8E3017C4F9AE02.roa (hash: 6y2+7m6fZBqF1vnJPBAlEhf0LTJdURa/vtEhojNLyMc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:27:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5062 (0x13c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9BD, serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Validity Not Before: Apr 24 15:27:05 2025 GMT Not After : May 1 15:27:05 2025 GMT Subject: CN=680a584a-2b46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:5f:e4:e3:4e:02:c7:97:ae:76:3f:22:0a:f9: b4:a1:48:48:a3:ae:54:61:78:65:f9:e8:f8:c4:92: 34:e5:9b:71:2c:23:ef:3a:9c:8c:7e:b9:5d:be:b9: 21:dc:77:d5:00:d4:fc:a2:e9:54:86:0c:56:52:8c: 9f:90:98:d9:e9:cf:84:4f:d2:4d:2f:50:87:16:fd: 72:59:18:c8:cd:7c:87:14:be:8f:85:65:4a:2f:41: 15:61:be:6e:ec:7c:a6:01:16:b3:fc:6b:aa:c9:40: b7:2d:f9:28:4a:d1:7b:81:c1:00:dd:48:5c:0b:d4: 54:2d:8a:8c:13:ca:46:55:00:71:61:d7:2a:46:dc: 2d:eb:33:22:d2:0d:3c:93:62:e5:9a:b9:26:50:e5: d6:a3:0d:59:fb:e7:ca:ae:87:44:35:b0:b7:2d:3e: 62:d9:e2:fd:91:ca:4a:b4:06:43:9d:29:59:fe:01: 97:05:f5:de:e2:94:34:e9:fa:a7:4f:da:d0:5d:6d: b7:7c:f9:57:9c:a2:90:ec:fa:90:93:2b:39:18:04: 0c:a1:c5:80:7e:32:21:25:f1:bb:de:fd:1b:a2:f2: 38:d3:82:90:76:a5:00:87:46:36:81:e2:9a:4f:dd: 58:72:2b:d1:51:36:71:75:6a:f8:ad:f6:f9:35:94: 43:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:6E:D9:D7:DE:4D:B1:CF:CA:CC:9C:72:F5:CA:D8:40:4D:D9:98:59 X509v3 Authority Key Identifier: keyid:DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:7a:45:af:7e:dc:5d:ce:99:de:e8:00:91:72:d9:f5:d8:d5: cf:06:ee:ed:09:cf:7b:a7:68:52:77:53:7c:49:81:60:68:d5: f2:0f:2d:f7:74:aa:a1:08:f9:9e:a2:f1:af:9e:cd:85:36:3d: c0:f9:2f:c6:25:2f:8b:0a:33:1d:a7:c1:88:71:5c:0c:8a:70: 8f:e0:02:7e:b1:9c:88:7d:90:98:59:65:d1:8a:e6:6f:d2:e0: d4:e4:3b:26:61:77:eb:98:0f:11:da:42:ca:61:ad:c5:ce:72: a5:17:53:36:3a:28:f4:30:7e:87:34:4f:84:70:8f:98:6f:88: e5:21:63:1f:5f:f1:1a:d8:61:34:8b:ab:b8:ae:54:92:23:c0: d3:d7:8f:ef:bf:93:92:7a:22:86:89:6c:99:19:83:48:fc:a9: 87:2a:0b:4e:b5:fd:80:3e:8f:cc:e5:2f:02:5d:1c:70:22:03: b5:94:8a:0e:c9:57:4a:57:56:a7:2e:8f:0b:6d:b4:45:5f:6c: af:7f:ae:f1:b8:6d:fc:b0:73:9f:21:50:de:5e:e6:27:2c:a6: f2:b5:1a:b7:0a:e1:e2:ab:af:a5:a7:74:5f:ff:c8:bd:bb:ca: ae:33:3b:c0:70:8a:f8:ea:64:68:4e:d5:d6:82:1e:80:8c:7e: 35:21:a2:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE8YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5QkQxMTAvBgNVBAUTKERBNEI1QzIxMjNCQTlEMEY4MDIzNzhEQURERDQ4MDFC NTY3MEEzRUQwHhcNMjUwNDI0MTUyNzA1WhcNMjUwNTAxMTUyNzA1WjAYMRYwFAYD VQQDEw02ODBhNTg0YS0yYjQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmF/k404Cx5eudj8iCvm0oUhIo65UYXhl+ej4xJI05ZtxLCPvOpyMfrldvrkh 3HfVANT8oulUhgxWUoyfkJjZ6c+ET9JNL1CHFv1yWRjIzXyHFL6PhWVKL0EVYb5u 7HymARaz/GuqyUC3LfkoStF7gcEA3UhcC9RULYqME8pGVQBxYdcqRtwt6zMi0g08 k2LlmrkmUOXWow1Z++fKrodENbC3LT5i2eL9kcpKtAZDnSlZ/gGXBfXe4pQ06fqn T9rQXW23fPlXnKKQ7PqQkys5GAQMocWAfjIhJfG73v0bovI404KQdqUAh0Y2geKa T91YcivRUTZxdWr4rfb5NZRDowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOJu2dfe TbHPysyccvXK2EBN2ZhZMB8GA1UdIwQYMBaAFNpLXCEjup0PgCN42t3UgBtWcKPt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTlCRC8wNzQ5NTg5MDkx ODIxMUU4OTFDNEVDMTBDNEY5QUUwMi8ya3RjSVNPNm5RLUFJM2phM2RTQUcxWndv LTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJrdGNJU082blEtQUkzamEzZFNBRzFad28tMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTlCRC8wNzQ5NTg5MDkxODIxMUU4OTFDNEVDMTBDNEY5QUUwMi8ya3RjSVNPNm5R LUFJM2phM2RTQUcxWndvLTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSekWvftxdzpne6ACRctn12NXPBu7tCc97p2hSd1N8SYFgaNXyDy33 dKqhCPmeovGvns2FNj3A+S/GJS+LCjMdp8GIcVwMinCP4AJ+sZyIfZCYWWXRiuZv 0uDU5DsmYXfrmA8R2kLKYa3FznKlF1M2Oij0MH6HNE+EcI+Yb4jlIWMfX/Ea2GE0 i6u4rlSSI8DT14/vv5OSeiKGiWyZGYNI/KmHKgtOtf2APo/M5S8CXRxwIgO1lIoO yVdKV1anLo8LbbRFX2yvf67xuG38sHOfIVDeXuYnLKbytRq3CuHiq6+lp3Rf/8i9 u8quMzvAcIr46mRoTtXWgh6AjH41IaId -----END CERTIFICATE-----Generated at Sat Apr 26 16:54:55 2025 by rpki-client