$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft File: 2nWrD7Oqh1r631o4-FK9zB3YJvc.mft (raw, json) Hash identifier: 5Xzow3cr8sf5pVIxIM/xs4bgt8bE2R9UTgh7H0G2HUs= Subject key identifier: 75:EA:C8:09:20:45:5F:BD:EB:65:AD:A2:6E:88:6D:EF:45:F6:45:87 Authority key identifier: DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 Certificate issuer: /CN=A91FEFBB/serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Certificate serial: 0181 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft Manifest number: 0179 Signing time: Sun 27 Apr 2025 02:45:08 +0000 Manifest this update: Sun 27 Apr 2025 02:45:07 +0000 Manifest next update: Sun 04 May 2025 02:45:07 +0000 Files and hashes: 1: 2nWrD7Oqh1r631o4-FK9zB3YJvc.crl (hash: rDxj0annwbF6Dx6VDDNL2B4Ayqnr/aVcXlj4ZYagRKo=) 2: 261D3B8AEE4611ED9BEFED31C4F9AE02.roa (hash: HkCOmQRPg+yDDZPtodRzZcHCpOQoTEGcVWS7eV1BiSA=) 3: 881C3F9CABD311EFBFED7130C4F9AE02.roa (hash: 4Vu2iECkKD+oqedLfhjWXd7CHOWEQhszvHID7EwF+IE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:45:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 385 (0x181) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEFBB, serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Validity Not Before: Apr 27 02:45:07 2025 GMT Not After : May 4 02:45:07 2025 GMT Subject: CN=680d9a34-e43f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:62:27:e3:0e:f1:31:bc:98:d4:70:6e:b2:f2: 76:06:14:e6:b6:e3:7d:52:ee:3e:bd:92:31:8b:86: f2:10:c3:4f:14:84:47:0f:b1:98:01:05:8d:32:4c: 4a:24:81:2c:99:f3:13:fe:dc:b2:ae:49:2c:74:fe: 33:dd:ea:27:78:15:12:d3:78:53:c6:ec:9a:ef:4c: 66:54:7e:bb:cf:2d:7c:61:27:e3:5f:a3:e7:9b:42: 35:b1:fd:7b:7a:ad:94:8e:68:a6:c8:1d:63:69:3f: 47:4c:48:2d:ac:64:5b:fe:d4:09:52:e4:9f:ee:5f: d6:78:e6:05:fa:34:c8:56:57:b1:97:82:08:25:56: 21:51:01:34:02:6b:fd:f7:39:aa:1a:af:30:6d:fa: a8:bb:fa:17:14:4b:43:2d:cf:38:37:2a:af:89:64: dd:39:ca:fc:cd:e0:95:71:b6:57:e2:23:1f:db:1c: 35:a0:d1:a5:a3:a1:3c:ba:e6:a7:35:6c:c3:1f:93: 24:30:0b:7a:61:1f:7c:e0:7b:30:89:64:94:61:60: 5d:61:5f:dc:f1:5a:7d:fc:f6:9b:e1:80:b3:68:b2: 6f:e6:0b:e6:9f:e1:62:fb:2b:d3:6e:32:62:f9:2f: 0f:38:f6:cd:ba:f6:2f:88:ee:64:a4:db:ef:5a:00: f3:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:EA:C8:09:20:45:5F:BD:EB:65:AD:A2:6E:88:6D:EF:45:F6:45:87 X509v3 Authority Key Identifier: keyid:DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:3b:50:f9:60:32:43:57:e7:c2:08:d2:5d:57:38:09:36:b1: 46:b4:80:29:47:57:2a:d2:6b:77:b8:47:9a:ba:15:1e:ce:67: 5b:34:ee:05:e1:41:88:31:cf:90:16:e4:eb:d0:77:50:7a:56: 97:0c:6d:ed:21:5d:fc:5c:85:7d:98:a0:eb:bc:ab:cd:05:9e: 0d:1e:4f:53:61:75:45:8d:dc:f4:f2:2f:2f:66:dc:09:5f:77: 19:e8:f4:68:6d:36:49:da:23:c8:2b:f0:7f:40:21:f5:6a:02: 30:2d:80:d6:7a:cb:18:a4:77:5e:06:dd:58:10:da:46:db:8c: 8b:ff:62:6c:3f:9a:db:aa:b7:20:57:1c:a4:88:0c:59:d8:ea: ab:29:77:73:e4:43:d6:f8:a6:b4:e3:2b:25:66:a0:af:fb:67: 9e:4d:0a:47:ca:1c:49:7a:00:3c:c3:c0:4a:d4:f7:d7:63:6f: 8b:3f:2c:2b:17:4b:fe:b1:81:b4:e3:28:46:cc:e9:12:e1:ea: cf:0d:5e:22:b4:56:3c:ec:ba:f0:bc:00:3d:31:f4:76:b2:04: 06:46:4b:40:49:05:33:b0:99:5a:f4:5d:90:a0:8f:5a:74:e9: 77:8b:b3:d9:a6:8a:8b:a9:cc:36:af:05:a0:0c:8c:37:e8:bd: 1b:3c:14:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVGQkIxMTAvBgNVBAUTKERBNzVBQjBGQjNBQTg3NUFGQURGNUEzOEY4NTJCREND MUREODI2RjcwHhcNMjUwNDI3MDI0NTA3WhcNMjUwNTA0MDI0NTA3WjAYMRYwFAYD VQQDEw02ODBkOWEzNC1lNDNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmWIn4w7xMbyY1HBusvJ2BhTmtuN9Uu4+vZIxi4byEMNPFIRHD7GYAQWNMkxK JIEsmfMT/tyyrkksdP4z3eoneBUS03hTxuya70xmVH67zy18YSfjX6Pnm0I1sf17 eq2UjmimyB1jaT9HTEgtrGRb/tQJUuSf7l/WeOYF+jTIVlexl4IIJVYhUQE0Amv9 9zmqGq8wbfqou/oXFEtDLc84NyqviWTdOcr8zeCVcbZX4iMf2xw1oNGlo6E8uuan NWzDH5MkMAt6YR984HswiWSUYWBdYV/c8Vp9/Pab4YCzaLJv5gvmn+Fi+yvTbjJi +S8POPbNuvYviO5kpNvvWgDzXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHXqyAkg RV+962Wtom6Ibe9F9kWHMB8GA1UdIwQYMBaAFNp1qw+zqoda+t9aOPhSvcwd2Cb3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUZCQi9EODk2QjVDOEVB NkExMUVEQjVCNkI1NUVDNEY5QUUwMi8ybldyRDdPcWgxcjYzMW80LUZLOXpCM1lK dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJuV3JEN09xaDFyNjMxbzQtRks5ekIzWUp2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RUZCQi9EODk2QjVDOEVBNkExMUVEQjVCNkI1NUVDNEY5QUUwMi8ybldyRDdPcWgx cjYzMW80LUZLOXpCM1lKdmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0O1D5YDJDV+fCCNJdVzgJNrFGtIApR1cq0mt3uEeauhUezmdbNO4F 4UGIMc+QFuTr0HdQelaXDG3tIV38XIV9mKDrvKvNBZ4NHk9TYXVFjdz08i8vZtwJ X3cZ6PRobTZJ2iPIK/B/QCH1agIwLYDWessYpHdeBt1YENpG24yL/2JsP5rbqrcg VxykiAxZ2OqrKXdz5EPW+Ka04yslZqCv+2eeTQpHyhxJegA8w8BK1PfXY2+LPywr F0v+sYG04yhGzOkS4erPDV4itFY87LrwvAA9MfR2sgQGRktASQUzsJla9F2QoI9a dOl3i7PZpoqLqcw2rwWgDIw36L0bPBTg -----END CERTIFICATE-----Generated at Tue Apr 29 00:36:20 2025 by rpki-client