$ rpki-client -vvf rpki.apnic.net/member_repository/A9115480/96F28AC610DA11ED8A699E32C4F9AE02/2-ETC8fG27LbfLvxTgH2GG_9vRA.mft File: 2-ETC8fG27LbfLvxTgH2GG_9vRA.mft (raw, json) Hash identifier: HSRvtdBFH+wPi9EHZc2ZMDzCYNpoeeOdNpDh6+5F2NY= Subject key identifier: 83:DF:81:79:4F:CD:95:B5:5E:27:B1:E3:35:16:08:94:7E:A1:9C:EE Authority key identifier: DB:E1:13:0B:C7:C6:DB:B2:DB:7C:BB:F1:4E:01:F6:18:6F:FD:BD:10 Certificate issuer: /CN=A9115480/serialNumber=DBE1130BC7C6DBB2DB7CBBF14E01F6186FFDBD10 Certificate serial: 0257 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-ETC8fG27LbfLvxTgH2GG_9vRA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9115480/96F28AC610DA11ED8A699E32C4F9AE02/2-ETC8fG27LbfLvxTgH2GG_9vRA.mft Manifest number: 0254 Signing time: Mon 07 Apr 2025 01:24:45 +0000 Manifest this update: Mon 07 Apr 2025 01:24:45 +0000 Manifest next update: Mon 14 Apr 2025 01:24:45 +0000 Files and hashes: 1: 2-ETC8fG27LbfLvxTgH2GG_9vRA.crl (hash: N1zYcDilN0KT59ISx6zlUnEpJ6Hyf7ysEJ7TvTqmDCs=) 2: D1D6719A10DD11EDBC7EA35FC4F9AE02.roa (hash: frzjCs+Z/Mi4ZDgqYWFwqblODHyg9lLqa7tObDvQ7CE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9115480/96F28AC610DA11ED8A699E32C4F9AE02/2-ETC8fG27LbfLvxTgH2GG_9vRA.crl rsync://rpki.apnic.net/member_repository/A9115480/96F28AC610DA11ED8A699E32C4F9AE02/2-ETC8fG27LbfLvxTgH2GG_9vRA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-ETC8fG27LbfLvxTgH2GG_9vRA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 01:24:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 599 (0x257) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9115480 Validity Not Before: Apr 7 01:24:45 2025 GMT Not After : Apr 14 01:24:45 2025 GMT Subject: CN=67f3295d-e4f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:55:6d:bc:f5:01:e2:2d:e0:f6:ce:c3:76:1b: 44:f7:5f:26:60:0a:2e:77:08:db:02:d8:74:b2:0f: 51:96:a2:e8:2e:07:78:0e:ee:41:27:0a:66:30:b7: 1b:a5:03:d1:74:27:96:4f:62:0d:31:b0:17:cb:e5: 25:c3:50:15:53:17:30:71:d3:f0:7a:0f:3a:ff:25: aa:b0:a2:e8:d3:77:92:39:aa:31:12:ee:70:6d:79: 37:f3:aa:b5:13:89:fa:a0:9a:d1:a0:09:6b:b6:88: e8:78:7d:f8:5e:bf:1e:cf:97:72:0f:96:f7:d3:24: 27:9d:9c:a4:d2:91:e3:b7:52:83:28:ad:7b:ae:63: 99:22:1f:7a:e6:a7:4f:ef:6f:25:fb:5c:e4:af:2d: ec:6e:70:79:b2:fc:3a:dd:b3:1a:a7:0b:89:1b:81: 80:88:c6:bb:2f:94:e2:60:3d:eb:9f:a4:ff:15:c6: a5:23:06:3f:d1:ac:40:05:5d:0f:6c:9c:0d:6f:b5: 2c:be:71:15:10:7b:61:95:92:e1:f6:5a:af:ca:24: 52:36:8d:96:2a:88:84:7e:a5:43:44:79:28:04:b6: 5f:ff:1e:4a:03:e2:08:e5:b9:50:c9:43:13:95:39: 4d:9f:d2:1d:51:29:46:9a:3f:b2:7a:fa:f0:1d:35: 98:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:DF:81:79:4F:CD:95:B5:5E:27:B1:E3:35:16:08:94:7E:A1:9C:EE X509v3 Authority Key Identifier: keyid:DB:E1:13:0B:C7:C6:DB:B2:DB:7C:BB:F1:4E:01:F6:18:6F:FD:BD:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9115480/96F28AC610DA11ED8A699E32C4F9AE02/2-ETC8fG27LbfLvxTgH2GG_9vRA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-ETC8fG27LbfLvxTgH2GG_9vRA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9115480/96F28AC610DA11ED8A699E32C4F9AE02/2-ETC8fG27LbfLvxTgH2GG_9vRA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:d3:be:fd:06:1c:9b:c7:21:03:53:d9:3d:8b:56:2e:9e:30: fe:4a:00:79:15:da:99:43:fc:3e:c0:71:5e:70:35:c0:0f:3e: cc:45:a2:61:1e:27:e3:23:6b:78:78:c3:3b:9f:d0:30:fc:8b: d2:4d:f2:13:47:ca:c9:42:20:fe:b4:b1:3c:8f:7c:df:ad:70: 2b:9c:2d:8f:17:be:5f:64:7f:fc:26:d6:3b:21:aa:45:8c:4a: bb:15:75:15:f8:27:b1:a0:2b:69:a8:a3:fe:78:9e:62:a7:28: 5c:bd:74:83:a6:ec:22:e4:e0:db:52:ad:1e:67:d7:57:79:61: ee:14:0b:8e:17:84:82:3b:f0:61:cf:54:ba:b5:16:b6:3c:b9: bc:ac:9b:7e:be:ae:01:f4:9d:fc:1d:39:14:96:80:e9:af:ea: 71:c3:56:f6:4a:e4:46:b8:36:1e:dc:2f:fe:87:0d:31:f9:d0: e3:e2:26:b1:36:4b:de:30:cb:9f:d9:51:a1:e4:90:6e:80:ca: c5:e6:ae:61:e6:09:25:ce:d5:55:81:6a:4e:6a:09:dc:19:2f: ce:4f:9c:85:97:10:39:7b:98:3b:f4:c4:be:4a:6a:e4:0c:25: 9d:fb:be:57:93:94:53:a9:fc:98:ca:57:17:09:a1:74:16:8e: 1f:d5:99:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTU0ODAxMTAvBgNVBAUTKERCRTExMzBCQzdDNkRCQjJEQjdDQkJGMTRFMDFGNjE4 NkZGREJEMTAwHhcNMjUwNDA3MDEyNDQ1WhcNMjUwNDE0MDEyNDQ1WjAYMRYwFAYD VQQDEw02N2YzMjk1ZC1lNGY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvVVtvPUB4i3g9s7DdhtE918mYAoudwjbAth0sg9RlqLoLgd4Du5BJwpmMLcb pQPRdCeWT2INMbAXy+Ulw1AVUxcwcdPweg86/yWqsKLo03eSOaoxEu5wbXk386q1 E4n6oJrRoAlrtojoeH34Xr8ez5dyD5b30yQnnZyk0pHjt1KDKK17rmOZIh965qdP 728l+1zkry3sbnB5svw63bMapwuJG4GAiMa7L5TiYD3rn6T/FcalIwY/0axABV0P bJwNb7UsvnEVEHthlZLh9lqvyiRSNo2WKoiEfqVDRHkoBLZf/x5KA+II5blQyUMT lTlNn9IdUSlGmj+yevrwHTWYsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIPfgXlP zZW1Xiex4zUWCJR+oZzuMB8GA1UdIwQYMBaAFNvhEwvHxtuy23y78U4B9hhv/b0Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNTQ4MC85NkYyOEFDNjEw REExMUVEOEE2OTlFMzJDNEY5QUUwMi8yLUVUQzhmRzI3TGJmTHZ4VGdIMkdHXzl2 UkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzItRVRDOGZHMjdMYmZMdnhUZ0gyR0dfOXZSQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NTQ4MC85NkYyOEFDNjEwREExMUVEOEE2OTlFMzJDNEY5QUUwMi8yLUVUQzhmRzI3 TGJmTHZ4VGdIMkdHXzl2UkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAh0779BhybxyEDU9k9i1YunjD+SgB5FdqZQ/w+wHFecDXADz7MRaJh HifjI2t4eMM7n9Aw/IvSTfITR8rJQiD+tLE8j3zfrXArnC2PF75fZH/8JtY7IapF jEq7FXUV+CexoCtpqKP+eJ5ipyhcvXSDpuwi5ODbUq0eZ9dXeWHuFAuOF4SCO/Bh z1S6tRa2PLm8rJt+vq4B9J38HTkUloDpr+pxw1b2SuRGuDYe3C/+hw0x+dDj4iax NkveMMuf2VGh5JBugMrF5q5h5gklztVVgWpOagncGS/OT5yFlxA5e5g79MS+Smrk DCWd+75Xk5RTqfyYylcXCaF0Fo4f1ZmO -----END CERTIFICATE-----Generated at Tue Apr 8 16:23:14 2025 by rpki-client