$ rpki-client -vvf rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.mft File: 2MZzCV6Cqbfn381GWA94MajRiso.mft (raw, json) Hash identifier: CpU2gtJKDbfrKesUsLa/tXs18V8or4r6BV7+Kudjv5A= Subject key identifier: 84:81:06:F0:E4:61:A7:CB:3C:D5:0B:50:2C:3F:FB:71:82:52:48:C1 Authority key identifier: D8:C6:73:09:5E:82:A9:B7:E7:DF:CD:46:58:0F:78:31:A8:D1:8A:CA Certificate issuer: /CN=A911862D/serialNumber=D8C673095E82A9B7E7DFCD46580F7831A8D18ACA Certificate serial: 171E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2MZzCV6Cqbfn381GWA94MajRiso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.mft Manifest number: 1703 Signing time: Tue 08 Apr 2025 16:40:07 +0000 Manifest this update: Tue 08 Apr 2025 16:40:06 +0000 Manifest next update: Tue 15 Apr 2025 16:40:06 +0000 Files and hashes: 1: 2MZzCV6Cqbfn381GWA94MajRiso.crl (hash: 4ehtljK19Am6ya0ZD6m01z4uoKdmOi0K4Fx1IhpyPRg=) 2: D4A7497E6E6B11EF9FC61C6AC4F9AE02.roa (hash: JBsRHnJPdnzdINV0pvwEs0IpHO7Li2A9KaO/T3DyLM8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.crl rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2MZzCV6Cqbfn381GWA94MajRiso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 16:40:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5918 (0x171e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911862D Validity Not Before: Apr 8 16:40:06 2025 GMT Not After : Apr 15 16:40:06 2025 GMT Subject: CN=67f55166-cde5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:e0:38:fb:31:41:ca:af:4f:5e:ad:5c:2a:9c: a5:8c:aa:14:da:3f:5e:86:2a:0a:c5:6c:c4:c3:dd: 65:e4:4c:ee:00:aa:11:aa:62:bd:0e:49:64:95:1b: 6a:48:4e:07:12:b8:d7:e6:1e:8e:d9:d1:68:1b:ab: 2a:cb:d4:1a:64:5b:a5:ee:62:0c:85:d0:53:7b:80: 64:a8:05:96:f2:17:7f:20:b8:49:4e:3d:c6:3e:15: d0:5f:cc:01:23:0b:64:4c:0d:cd:fe:ec:e0:ed:27: 7b:5b:5f:a1:91:b8:42:4d:61:91:0d:26:b9:ba:db: b8:d6:d6:8d:07:5a:e5:2c:78:4e:79:bd:a3:f9:aa: af:33:49:95:18:5c:92:93:e3:a4:d8:c4:f0:f2:81: ec:18:ea:38:e6:7e:0f:aa:eb:29:14:f5:ce:39:c6: 51:f2:c7:82:23:99:e2:c9:a1:c4:22:a9:04:91:87: a4:14:76:45:bb:6d:b7:26:01:a1:9a:19:73:2f:3e: b0:0f:28:24:de:66:96:27:78:f2:58:0c:d8:9a:ea: d1:90:59:47:a0:07:45:df:c2:fc:30:f3:3e:01:e0: d0:fd:4e:00:2b:64:d4:67:00:bf:94:89:54:61:bd: 42:32:e5:75:f1:f8:4c:f3:0f:d3:2e:b1:3f:5e:1c: 7d:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:81:06:F0:E4:61:A7:CB:3C:D5:0B:50:2C:3F:FB:71:82:52:48:C1 X509v3 Authority Key Identifier: keyid:D8:C6:73:09:5E:82:A9:B7:E7:DF:CD:46:58:0F:78:31:A8:D1:8A:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2MZzCV6Cqbfn381GWA94MajRiso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:80:7e:38:fc:c5:d8:e6:6e:12:77:cb:c4:3c:64:7f:bd:af: 17:bd:d0:bf:89:34:63:2e:7a:c7:6d:bb:3a:d0:30:f6:d9:3d: 64:ef:90:44:b3:5b:d8:15:27:b2:2d:9e:68:fc:9d:66:c5:81: 9b:20:07:bc:95:d7:5e:60:b1:eb:0b:0c:eb:55:8c:ae:bc:58: fd:5e:56:2b:4e:11:9d:27:01:ff:5d:a5:4e:ed:37:9e:65:af: a6:fc:db:89:24:57:7b:a7:6e:3c:bf:36:93:5b:fa:6b:49:f3: be:c2:c7:d2:2c:95:dd:09:1b:92:b2:c0:48:bb:5a:c6:b7:fe: 9f:0a:5f:0d:d1:88:18:9e:5b:e5:77:29:6a:65:68:f4:ee:9c: 4f:ca:dc:c3:fa:c8:5f:2b:b5:4b:3c:af:91:00:c6:d4:97:00: 63:f1:cc:74:7f:8e:7f:89:38:72:49:65:ff:f1:d8:da:c1:6e: 11:d8:d5:c4:9e:97:4e:3f:26:18:af:6b:de:79:d1:11:7d:06: 50:1c:e0:1c:b9:19:3d:76:7c:66:da:57:fc:d0:0a:92:09:ae: 13:28:e3:9b:f1:e6:24:7f:13:fd:ce:46:74:4d:28:d0:71:be: 27:26:0b:64:47:4a:48:aa:5d:e4:d7:08:d0:67:dd:be:60:35: ef:1e:72:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFx4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg2MkQxMTAvBgNVBAUTKEQ4QzY3MzA5NUU4MkE5QjdFN0RGQ0Q0NjU4MEY3ODMx QThEMThBQ0EwHhcNMjUwNDA4MTY0MDA2WhcNMjUwNDE1MTY0MDA2WjAYMRYwFAYD VQQDEw02N2Y1NTE2Ni1jZGU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy+A4+zFByq9PXq1cKpyljKoU2j9ehioKxWzEw91l5EzuAKoRqmK9DklklRtq SE4HErjX5h6O2dFoG6sqy9QaZFul7mIMhdBTe4BkqAWW8hd/ILhJTj3GPhXQX8wB IwtkTA3N/uzg7Sd7W1+hkbhCTWGRDSa5utu41taNB1rlLHhOeb2j+aqvM0mVGFyS k+Ok2MTw8oHsGOo45n4PquspFPXOOcZR8seCI5niyaHEIqkEkYekFHZFu223JgGh mhlzLz6wDygk3maWJ3jyWAzYmurRkFlHoAdF38L8MPM+AeDQ/U4AK2TUZwC/lIlU Yb1CMuV18fhM8w/TLrE/Xhx9kQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFISBBvDk YafLPNULUCw/+3GCUkjBMB8GA1UdIwQYMBaAFNjGcwlegqm359/NRlgPeDGo0YrK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODYyRC8zMjg3OUQzQUU4 QkExMUU3OEE2QTcwNDJDNEY5QUUwMi8yTVp6Q1Y2Q3FiZm4zODFHV0E5NE1halJp c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJNWnpDVjZDcWJmbjM4MUdXQTk0TWFqUmlzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODYyRC8zMjg3OUQzQUU4QkExMUU3OEE2QTcwNDJDNEY5QUUwMi8yTVp6Q1Y2Q3Fi Zm4zODFHV0E5NE1halJpc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9gH44/MXY5m4Sd8vEPGR/va8XvdC/iTRjLnrHbbs60DD22T1k75BE s1vYFSeyLZ5o/J1mxYGbIAe8lddeYLHrCwzrVYyuvFj9XlYrThGdJwH/XaVO7Tee Za+m/NuJJFd7p248vzaTW/prSfO+wsfSLJXdCRuSssBIu1rGt/6fCl8N0YgYnlvl dylqZWj07pxPytzD+shfK7VLPK+RAMbUlwBj8cx0f45/iThySWX/8djawW4R2NXE npdOPyYYr2veedERfQZQHOAcuRk9dnxm2lf80AqSCa4TKOOb8eYkfxP9zkZ0TSjQ cb4nJgtkR0pIql3k1wjQZ92+YDXvHnLz -----END CERTIFICATE-----Generated at Thu Apr 10 07:09:05 2025 by rpki-client