$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft File: 2nWrD7Oqh1r631o4-FK9zB3YJvc.mft (raw, json) Hash identifier: //PZBBKE9voqbg7moNXnNyp4Z+dHXHT+I1dAPMBlvGs= Subject key identifier: 6F:1B:D4:88:39:E9:9D:2D:08:26:B4:53:BD:8E:20:DF:65:E6:34:3D Authority key identifier: DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 Certificate issuer: /CN=A91FEFBB/serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Certificate serial: 0180 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft Manifest number: 0178 Signing time: Fri 25 Apr 2025 03:00:01 +0000 Manifest this update: Fri 25 Apr 2025 03:00:01 +0000 Manifest next update: Fri 02 May 2025 03:00:01 +0000 Files and hashes: 1: 2nWrD7Oqh1r631o4-FK9zB3YJvc.crl (hash: wVoOvLpszSFVueiomEVWaD6YPWKAvNg0SdcieabqgDY=) 2: 261D3B8AEE4611ED9BEFED31C4F9AE02.roa (hash: HkCOmQRPg+yDDZPtodRzZcHCpOQoTEGcVWS7eV1BiSA=) 3: 881C3F9CABD311EFBFED7130C4F9AE02.roa (hash: 4Vu2iECkKD+oqedLfhjWXd7CHOWEQhszvHID7EwF+IE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 384 (0x180) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEFBB, serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Validity Not Before: Apr 25 03:00:01 2025 GMT Not After : May 2 03:00:01 2025 GMT Subject: CN=680afab1-54c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:c4:63:92:93:b1:2a:08:e3:43:31:2c:e3:84: bf:7c:98:be:f2:15:f4:94:a5:ff:03:cd:04:d9:00: 27:34:73:c3:ac:bd:4a:89:f4:d5:91:d0:3d:5b:7e: 0f:02:66:02:9b:77:48:a2:c7:2a:f6:a5:f3:f0:29: a1:89:af:40:bf:45:1f:9d:6f:4d:e7:92:6e:71:cd: ce:1f:b9:14:2b:a0:6a:6b:d2:eb:d8:47:b1:bc:f6: 43:9b:2f:1d:7f:dc:12:49:e1:2c:8d:d3:83:0f:88: a6:3b:e7:d4:6d:a0:b8:ae:00:98:a0:c2:c4:32:7e: 66:57:0a:6a:ea:ce:c7:12:b7:05:0a:e4:73:74:cf: 75:74:80:bc:2f:4a:43:0c:e6:e3:80:9c:a3:bc:17: fa:6d:64:9d:4e:af:68:15:fd:79:56:c8:a0:85:d8: f0:73:ef:e3:09:21:d6:96:59:1a:72:1a:ca:06:12: 24:fa:cd:c9:22:68:b3:d1:71:cb:47:50:a9:de:16: b4:ed:08:e6:8d:e9:c6:fb:6c:17:10:b3:25:9a:0a: 67:51:e1:f3:86:77:29:08:4a:f9:d6:51:ea:66:92: 80:92:72:65:6b:81:20:36:b4:0a:4c:5b:ef:b2:b3: 82:5a:2f:a5:3e:98:54:e3:1b:e8:a4:84:d7:3c:64: 8c:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:1B:D4:88:39:E9:9D:2D:08:26:B4:53:BD:8E:20:DF:65:E6:34:3D X509v3 Authority Key Identifier: keyid:DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:2d:99:c2:40:6c:8b:34:c9:11:52:45:a9:b1:38:7f:9e:da: f7:ef:ea:93:96:b8:0d:08:c0:5c:07:e6:4f:06:4f:a4:b5:14: 2d:7e:7f:0a:55:a0:82:16:6b:41:4d:fe:00:5b:87:df:6a:a9: ff:ab:28:2d:10:4a:7c:db:b3:28:c8:29:95:0a:98:e2:b7:2e: 4d:7b:2c:06:2c:69:3a:66:60:a8:e8:a1:28:f8:51:73:f7:a8: 35:e4:76:c4:b9:3f:9e:0f:83:53:25:8e:20:51:5a:7b:05:cf: 01:b1:68:19:f2:df:23:4b:37:2c:94:ed:3c:17:ca:ff:4d:13: d0:28:f9:f2:bc:0f:0f:a0:e3:91:d8:9a:60:3b:55:aa:47:dc: f7:42:a5:ad:22:70:57:26:16:fb:98:91:62:40:bf:61:4f:b1: f5:b6:7e:62:fe:ff:a7:e4:48:6a:04:1f:18:62:0b:f1:ca:00: 2a:88:fb:d6:fb:7c:80:cd:70:b7:71:cf:29:dd:09:b1:f3:c2: ce:47:2e:9c:6e:39:e4:5b:a2:1c:62:64:61:97:12:f7:14:91: b9:cb:1b:82:71:be:e1:14:91:cd:d9:ca:90:c8:1c:fb:6d:3c: 89:95:ce:2e:1a:5c:b0:cf:14:3b:73:df:7c:84:ed:a4:13:06: 27:e3:56:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVGQkIxMTAvBgNVBAUTKERBNzVBQjBGQjNBQTg3NUFGQURGNUEzOEY4NTJCREND MUREODI2RjcwHhcNMjUwNDI1MDMwMDAxWhcNMjUwNTAyMDMwMDAxWjAYMRYwFAYD VQQDEw02ODBhZmFiMS01NGM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAycRjkpOxKgjjQzEs44S/fJi+8hX0lKX/A80E2QAnNHPDrL1KifTVkdA9W34P AmYCm3dIoscq9qXz8Cmhia9Av0UfnW9N55Jucc3OH7kUK6Bqa9Lr2EexvPZDmy8d f9wSSeEsjdODD4imO+fUbaC4rgCYoMLEMn5mVwpq6s7HErcFCuRzdM91dIC8L0pD DObjgJyjvBf6bWSdTq9oFf15Vsighdjwc+/jCSHWllkachrKBhIk+s3JImiz0XHL R1Cp3ha07QjmjenG+2wXELMlmgpnUeHzhncpCEr51lHqZpKAknJla4EgNrQKTFvv srOCWi+lPphU4xvopITXPGSMPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG8b1Ig5 6Z0tCCa0U72OIN9l5jQ9MB8GA1UdIwQYMBaAFNp1qw+zqoda+t9aOPhSvcwd2Cb3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUZCQi9EODk2QjVDOEVB NkExMUVEQjVCNkI1NUVDNEY5QUUwMi8ybldyRDdPcWgxcjYzMW80LUZLOXpCM1lK dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJuV3JEN09xaDFyNjMxbzQtRks5ekIzWUp2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RUZCQi9EODk2QjVDOEVBNkExMUVEQjVCNkI1NUVDNEY5QUUwMi8ybldyRDdPcWgx cjYzMW80LUZLOXpCM1lKdmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSLZnCQGyLNMkRUkWpsTh/ntr37+qTlrgNCMBcB+ZPBk+ktRQtfn8K VaCCFmtBTf4AW4ffaqn/qygtEEp827MoyCmVCpjity5NeywGLGk6ZmCo6KEo+FFz 96g15HbEuT+eD4NTJY4gUVp7Bc8BsWgZ8t8jSzcslO08F8r/TRPQKPnyvA8PoOOR 2JpgO1WqR9z3QqWtInBXJhb7mJFiQL9hT7H1tn5i/v+n5EhqBB8YYgvxygAqiPvW +3yAzXC3cc8p3Qmx88LORy6cbjnkW6IcYmRhlxL3FJG5yxuCcb7hFJHN2cqQyBz7 bTyJlc4uGlywzxQ7c998hO2kEwYn41as -----END CERTIFICATE-----Generated at Sat Apr 26 12:58:44 2025 by rpki-client