$ rpki-client -vvf rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft File: 2WQZRdW0z31j_JExr89yeuNtkCA.mft (raw, json) Hash identifier: s7mkA+74qHhKzYx0e2IYFzaZeGd/jRCWEjGyfc+Q/CI= Subject key identifier: A1:06:23:C1:CA:0A:A2:1F:68:1F:76:BD:A5:2C:9A:41:1E:AE:6F:84 Authority key identifier: D9:64:19:45:D5:B4:CF:7D:63:FC:91:31:AF:CF:72:7A:E3:6D:90:20 Certificate issuer: /CN=A911F316/serialNumber=D9641945D5B4CF7D63FC9131AFCF727AE36D9020 Certificate serial: 01BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft Manifest number: 01B3 Signing time: Sat 29 Mar 2025 02:44:37 +0000 Manifest this update: Sat 29 Mar 2025 02:44:37 +0000 Manifest next update: Sat 05 Apr 2025 02:44:37 +0000 Files and hashes: 1: 2WQZRdW0z31j_JExr89yeuNtkCA.crl (hash: N4ahvOr9f+f2C7mrpcr4WFtqIbGAKVsekIERCdzakuY=) 2: 15714ED2776A11ED98AF7341C4F9AE02.roa (hash: WBxu67wj7qK+1XHnF6Gm/tpT83HjDxcRJ+5R7dbCf7I=) 3: 77490C9A792F11EEBF849942C4F9AE02.roa (hash: +qSb4R4TGVMwO8UibifLnyUfy5g07BZr/1fOfOFiaKg=) 4: 590A6A9A792E11EEA5AAB840C4F9AE02.roa (hash: TjgZvd8NTyfnTIYx+SMzczM6IMYvFc5scP1aWMMbHyE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.crl rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 02:44:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 445 (0x1bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F316 Validity Not Before: Mar 29 02:44:37 2025 GMT Not After : Apr 5 02:44:37 2025 GMT Subject: CN=67e75e95-6a4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:3a:74:f3:b8:e2:50:cb:5e:98:de:2e:8b:47: 44:86:2b:9a:da:0b:a8:da:d2:fd:77:51:9b:c9:cd: cb:d5:08:92:06:27:8a:cd:3b:66:50:9d:e8:0e:c0: ac:a8:cf:bc:07:84:83:40:b7:69:7a:26:59:96:a3: 1b:09:39:8c:a8:fa:0f:c2:2d:0f:51:fa:c9:b6:86: 5d:f1:4a:b2:e9:45:48:5a:91:6b:0a:fb:cb:3d:b8: c2:73:84:7b:db:b2:8b:a6:b8:31:0b:82:e9:48:5f: ae:44:66:2c:8c:3b:5d:5a:15:b9:c5:ce:c8:23:94: 90:5f:ad:6b:80:97:bf:7b:d4:5c:54:13:90:ec:b2: 44:e1:ff:02:16:df:45:82:7d:90:8b:c3:7a:4b:42: b9:f6:15:f8:a2:fc:c6:2d:96:e4:40:bd:55:08:e0: b2:88:58:9c:79:aa:52:bd:1d:61:07:d9:8c:04:5c: db:6f:2b:10:59:87:d9:a1:f8:90:bf:98:3c:2a:d4: 5b:69:74:a2:43:ca:d2:83:48:8b:5c:6b:19:9f:01: f5:52:f1:eb:be:f0:79:7a:e8:d4:91:98:c4:e4:84: 71:b5:4c:5d:c6:e1:03:0a:83:56:2f:a7:0d:63:67: 8b:8a:01:81:42:d4:b9:52:0e:30:dd:44:f4:f5:c4: 95:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:06:23:C1:CA:0A:A2:1F:68:1F:76:BD:A5:2C:9A:41:1E:AE:6F:84 X509v3 Authority Key Identifier: keyid:D9:64:19:45:D5:B4:CF:7D:63:FC:91:31:AF:CF:72:7A:E3:6D:90:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:c9:31:b3:07:19:6b:4d:e9:45:c4:86:58:6f:5b:4f:60:f1: 44:15:2d:a5:8d:55:9a:c6:e1:05:c5:54:a6:eb:c9:4e:cc:9f: d8:08:f1:c4:76:2b:3f:90:ba:a6:3e:71:0d:46:54:45:d9:4b: 97:f7:71:2c:c9:37:76:c8:82:df:2a:11:66:8b:8c:21:06:62: 91:25:e3:26:35:e2:0f:01:c1:9a:3d:31:da:4c:7a:94:aa:ca: 52:2d:8e:e0:e6:c6:ab:48:00:86:97:27:98:30:58:d0:bb:9c: 4c:ae:ad:b1:37:5c:77:b4:ab:f9:76:f1:90:1d:19:73:7a:5b: 6a:ec:08:86:e8:b3:ff:21:eb:99:fe:ba:2b:bd:e0:50:75:4c: 35:a1:7f:18:ef:b3:60:15:7e:f6:7f:e9:70:b7:db:8f:76:82: 7e:a9:60:4f:7a:ef:4f:76:04:76:23:74:55:e8:8d:53:f9:d3: d6:26:07:67:27:83:5b:38:5d:19:80:59:8f:75:bd:a4:be:30: 54:30:bc:64:c5:b8:6b:9b:06:a9:1b:4f:79:96:82:81:2e:4d: 19:b1:23:4e:1e:a6:96:c6:f0:0a:75:06:b4:cf:22:2a:cd:6a: 69:e5:64:ae:de:74:1e:c7:cb:b0:bd:58:6b:70:be:0c:f4:66: f1:9f:16:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAb0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUYzMTYxMTAvBgNVBAUTKEQ5NjQxOTQ1RDVCNENGN0Q2M0ZDOTEzMUFGQ0Y3MjdB RTM2RDkwMjAwHhcNMjUwMzI5MDI0NDM3WhcNMjUwNDA1MDI0NDM3WjAYMRYwFAYD VQQDEw02N2U3NWU5NS02YTRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuzp087jiUMtemN4ui0dEhiua2guo2tL9d1Gbyc3L1QiSBieKzTtmUJ3oDsCs qM+8B4SDQLdpeiZZlqMbCTmMqPoPwi0PUfrJtoZd8Uqy6UVIWpFrCvvLPbjCc4R7 27KLprgxC4LpSF+uRGYsjDtdWhW5xc7II5SQX61rgJe/e9RcVBOQ7LJE4f8CFt9F gn2Qi8N6S0K59hX4ovzGLZbkQL1VCOCyiFiceapSvR1hB9mMBFzbbysQWYfZofiQ v5g8KtRbaXSiQ8rSg0iLXGsZnwH1UvHrvvB5eujUkZjE5IRxtUxdxuEDCoNWL6cN Y2eLigGBQtS5Ug4w3UT09cSVHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKEGI8HK CqIfaB92vaUsmkEerm+EMB8GA1UdIwQYMBaAFNlkGUXVtM99Y/yRMa/PcnrjbZAg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjMxNi9BMURGMTUyMDc3 NEMxMUVEQjgyNkJDMEJDNEY5QUUwMi8yV1FaUmRXMHozMWpfSkV4cjg5eWV1TnRr Q0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJXUVpSZFcwejMxal9KRXhyODl5ZXVOdGtDQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjMxNi9BMURGMTUyMDc3NEMxMUVEQjgyNkJDMEJDNEY5QUUwMi8yV1FaUmRXMHoz MWpfSkV4cjg5eWV1TnRrQ0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCayTGzBxlrTelFxIZYb1tPYPFEFS2ljVWaxuEFxVSm68lOzJ/YCPHE dis/kLqmPnENRlRF2UuX93EsyTd2yILfKhFmi4whBmKRJeMmNeIPAcGaPTHaTHqU qspSLY7g5sarSACGlyeYMFjQu5xMrq2xN1x3tKv5dvGQHRlzeltq7AiG6LP/IeuZ /rorveBQdUw1oX8Y77NgFX72f+lwt9uPdoJ+qWBPeu9PdgR2I3RV6I1T+dPWJgdn J4NbOF0ZgFmPdb2kvjBUMLxkxbhrmwapG095loKBLk0ZsSNOHqaWxvAKdQa0zyIq zWpp5WSu3nQex8uwvVhrcL4M9GbxnxZj -----END CERTIFICATE-----Generated at Fri Apr 4 22:30:03 2025 by rpki-client