$ rpki-client -vvf rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft File: 2CIvXKRzliJE_BNBFXEOvtXjlWA.mft (raw, json) Hash identifier: eQXu87peDdBooGVa0RXcCYg00ek3urkYpHrh6aOx3So= Subject key identifier: 44:54:17:FC:43:DF:8C:6B:3B:91:97:C8:86:A5:91:7E:38:7D:67:09 Authority key identifier: D8:22:2F:5C:A4:73:96:22:44:FC:13:41:15:71:0E:BE:D5:E3:95:60 Certificate issuer: /CN=A9119624/serialNumber=D8222F5CA473962244FC134115710EBED5E39560 Certificate serial: 0BEF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2CIvXKRzliJE_BNBFXEOvtXjlWA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft Manifest number: 0BE9 Signing time: Fri 04 Apr 2025 18:08:38 +0000 Manifest this update: Fri 04 Apr 2025 18:08:37 +0000 Manifest next update: Fri 11 Apr 2025 18:08:37 +0000 Files and hashes: 1: 2CIvXKRzliJE_BNBFXEOvtXjlWA.crl (hash: 72Aj8nHGxJTe7Azw9smQTlpZqbn66OKD0cG30/3Cxo8=) 2: A4049C06213E11EAAA89A95DC4F9AE02.roa (hash: fJj5V7B0tj2U/amxOYn7MfT1h8cR0RvRgHTxKdHbOM4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.crl rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2CIvXKRzliJE_BNBFXEOvtXjlWA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:08:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3055 (0xbef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119624 Validity Not Before: Apr 4 18:08:37 2025 GMT Not After : Apr 11 18:08:37 2025 GMT Subject: CN=67f02026-221d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:b4:45:81:61:e2:f8:c9:b5:b9:2f:df:3b:5b: 66:8f:6e:fb:cb:22:15:45:4e:7a:1b:63:f8:a6:f8: 9e:82:14:fc:8a:ff:51:ae:98:a5:2d:fe:cd:b1:48: 21:d0:b7:d9:b9:3d:60:d4:c5:c2:0a:84:78:60:95: 53:05:3a:84:d3:23:a7:82:69:24:22:53:d3:14:e0: e7:57:75:f2:82:44:22:81:1b:93:af:e6:51:d4:b5: 19:6e:3f:95:41:a7:45:09:2e:79:15:49:12:70:b2: 63:86:3b:74:6e:95:e2:92:4b:c0:72:8b:ed:34:2d: 83:65:0f:db:4b:26:10:71:14:5c:4a:f8:3e:d4:58: 64:70:38:5f:24:bc:c8:2d:dc:07:fa:62:c6:4b:6e: b4:09:46:49:37:93:0d:5e:96:bd:7b:46:fa:f8:5a: e5:78:39:47:7b:e5:1d:80:05:09:75:bc:5d:43:6a: 42:3c:cf:92:11:1b:de:04:f1:d4:9f:94:3e:0c:bd: a6:a0:22:7b:5a:de:45:cf:14:0b:a5:82:75:9a:46: 10:9a:d6:2a:6b:5f:1b:09:00:25:af:7d:0b:6e:32: c3:56:a8:1a:9c:a8:17:1d:d7:20:14:46:c4:33:6a: 98:af:d6:8a:ae:4c:11:4e:13:f5:70:19:3d:47:34: d5:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:54:17:FC:43:DF:8C:6B:3B:91:97:C8:86:A5:91:7E:38:7D:67:09 X509v3 Authority Key Identifier: keyid:D8:22:2F:5C:A4:73:96:22:44:FC:13:41:15:71:0E:BE:D5:E3:95:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2CIvXKRzliJE_BNBFXEOvtXjlWA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:90:58:70:35:bf:60:f5:f7:6c:70:80:d8:87:5a:7b:d1:db: 1d:02:2f:fd:15:86:5f:01:48:e5:17:4e:86:18:ca:94:01:1a: e2:bf:7f:4f:a5:31:31:17:23:57:21:cb:19:bd:b4:ea:54:32: 55:92:fc:6f:5f:38:d7:e3:f9:d4:7c:7c:fe:f7:c5:ec:26:40: 5e:1b:71:f2:46:d2:80:df:81:5e:4f:ad:a0:ed:2c:5b:3c:56: a7:d2:6d:87:fe:1a:fe:93:f6:cd:5e:d7:cc:d9:8e:3a:98:a8: a0:c4:71:15:6b:18:9a:31:51:ec:4b:4d:ef:3c:ba:2e:df:98: 1b:e8:22:f5:0b:50:4b:1e:5e:78:68:d5:d5:3a:14:38:b8:33: 1d:20:00:fe:a0:83:cf:b7:0c:b8:90:8c:da:da:d9:3b:9a:f0: 23:68:57:93:b6:69:64:9b:70:c1:4b:81:8d:b0:c7:8f:16:ba: fb:69:61:92:7f:23:e7:5a:af:ed:20:a5:5a:2d:08:85:a6:c6: 15:6b:74:ca:55:d2:8a:86:ca:3e:b6:4a:30:a4:38:4a:04:cc: 27:38:c3:98:0a:26:ab:ce:3d:2a:fa:60:f6:a5:98:84:a0:70: f0:d3:9f:1d:c1:df:78:dc:9c:bd:6c:3c:f2:b9:4a:df:79:1f: 0f:1b:af:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk2MjQxMTAvBgNVBAUTKEQ4MjIyRjVDQTQ3Mzk2MjI0NEZDMTM0MTE1NzEwRUJF RDVFMzk1NjAwHhcNMjUwNDA0MTgwODM3WhcNMjUwNDExMTgwODM3WjAYMRYwFAYD VQQDEw02N2YwMjAyNi0yMjFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy7RFgWHi+Mm1uS/fO1tmj277yyIVRU56G2P4pvieghT8iv9RrpilLf7NsUgh 0LfZuT1g1MXCCoR4YJVTBTqE0yOngmkkIlPTFODnV3XygkQigRuTr+ZR1LUZbj+V QadFCS55FUkScLJjhjt0bpXikkvAcovtNC2DZQ/bSyYQcRRcSvg+1FhkcDhfJLzI LdwH+mLGS260CUZJN5MNXpa9e0b6+FrleDlHe+UdgAUJdbxdQ2pCPM+SERveBPHU n5Q+DL2moCJ7Wt5FzxQLpYJ1mkYQmtYqa18bCQAlr30LbjLDVqganKgXHdcgFEbE M2qYr9aKrkwRThP1cBk9RzTVKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFERUF/xD 34xrO5GXyIalkX44fWcJMB8GA1UdIwQYMBaAFNgiL1ykc5YiRPwTQRVxDr7V45Vg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTYyNC9DNjk0ODIzNjEw RTAxMUVBOUJEMUE1NURDNEY5QUUwMi8yQ0l2WEtSemxpSkVfQk5CRlhFT3Z0WGps V0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJDSXZYS1J6bGlKRV9CTkJGWEVPdnRYamxXQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTYyNC9DNjk0ODIzNjEwRTAxMUVBOUJEMUE1NURDNEY5QUUwMi8yQ0l2WEtSemxp SkVfQk5CRlhFT3Z0WGpsV0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtkFhwNb9g9fdscIDYh1p70dsdAi/9FYZfAUjlF06GGMqUARriv39P pTExFyNXIcsZvbTqVDJVkvxvXzjX4/nUfHz+98XsJkBeG3HyRtKA34FeT62g7Sxb PFan0m2H/hr+k/bNXtfM2Y46mKigxHEVaxiaMVHsS03vPLou35gb6CL1C1BLHl54 aNXVOhQ4uDMdIAD+oIPPtwy4kIza2tk7mvAjaFeTtmlkm3DBS4GNsMePFrr7aWGS fyPnWq/tIKVaLQiFpsYVa3TKVdKKhso+tkowpDhKBMwnOMOYCiarzj0q+mD2pZiE oHDw058dwd943Jy9bDzyuUrfeR8PG6/W -----END CERTIFICATE-----Generated at Sun Apr 6 17:27:11 2025 by rpki-client