$ rpki-client -vvf rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.mft File: 2QaTkaPngEpuvd-dQfLeTZG9UbM.mft (raw, json) Hash identifier: YTwFww+8Y9IyF/QRSTti2yMe5MNPnngJmVsf9qHGU/A= Subject key identifier: AC:5F:FB:7B:71:46:31:76:C1:21:95:A4:57:4A:10:27:50:84:C8:F4 Authority key identifier: D9:06:93:91:A3:E7:80:4A:6E:BD:DF:9D:41:F2:DE:4D:91:BD:51:B3 Certificate issuer: /CN=A9125C22/serialNumber=D9069391A3E7804A6EBDDF9D41F2DE4D91BD51B3 Certificate serial: 0658 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QaTkaPngEpuvd-dQfLeTZG9UbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.mft Manifest number: 064E Signing time: Fri 28 Mar 2025 22:46:12 +0000 Manifest this update: Fri 28 Mar 2025 22:46:12 +0000 Manifest next update: Fri 04 Apr 2025 22:46:12 +0000 Files and hashes: 1: 2QaTkaPngEpuvd-dQfLeTZG9UbM.crl (hash: cydNNQwzMOCKMBxTkDSwJ+OViH10RODbGNkVij/YcC4=) 2: 202A51EA52D611EFA0333E23C4F9AE02.roa (hash: jy45pLpGUEHdAvcc7aV1J1N0BlCts0GUmsU/8qKGZrI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.crl rsync://rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QaTkaPngEpuvd-dQfLeTZG9UbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 22:46:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1624 (0x658) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125C22 Validity Not Before: Mar 28 22:46:12 2025 GMT Not After : Apr 4 22:46:12 2025 GMT Subject: CN=67e726b4-a384 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:78:87:4b:c9:65:ef:94:12:7f:f4:dd:65:c2: d6:20:a9:01:ec:f9:b2:4b:53:64:0b:f8:2f:0a:9d: 78:7b:84:f4:85:c1:f8:2b:30:9a:c6:b7:b2:41:e0: 60:ca:63:bc:70:38:e0:bb:07:a2:f2:5f:ab:d1:a9: 68:5b:4f:74:c9:f6:14:43:91:44:51:ee:5c:45:88: 2e:5d:9f:b5:b3:b8:93:bf:86:c2:63:ed:ed:11:09: 72:94:3f:45:0f:d8:d4:98:77:e1:88:f5:ff:58:26: 8f:b1:2c:66:75:5e:38:82:1e:bf:b7:a2:d5:bf:8c: 46:66:a4:b4:3d:84:c0:fa:fc:55:32:dc:3b:44:dc: 32:68:2c:68:f5:71:31:34:f0:0f:00:75:7a:1a:9a: 62:8f:12:d3:a7:c3:a3:00:94:1d:3a:1d:65:5c:1c: bc:2f:e2:59:31:0b:bb:9a:1d:f8:83:8d:2d:bd:d6: 3b:01:39:41:98:85:5f:9e:aa:e0:e7:fa:f2:ff:e3: 9e:20:44:dd:15:1c:ce:42:de:63:bb:2f:77:56:a0: 1f:e7:23:fa:67:dc:7b:b5:31:c1:07:e2:b7:77:40: f4:95:69:ad:4c:70:05:e5:fa:00:66:09:0d:a8:71: 79:6f:dd:5a:1b:0a:6c:4a:fe:82:eb:e9:c7:e5:d1: 99:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:5F:FB:7B:71:46:31:76:C1:21:95:A4:57:4A:10:27:50:84:C8:F4 X509v3 Authority Key Identifier: keyid:D9:06:93:91:A3:E7:80:4A:6E:BD:DF:9D:41:F2:DE:4D:91:BD:51:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QaTkaPngEpuvd-dQfLeTZG9UbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:61:9e:6a:41:ab:a9:91:15:8c:95:cc:a1:6f:79:58:1b:21: cf:6c:fa:a0:c4:03:54:09:53:24:87:41:2d:7b:d9:b7:a9:69: 11:12:1e:e6:bf:70:b6:eb:d6:d8:2f:a4:db:af:8e:9f:84:51: 78:06:75:c1:78:bd:3b:83:33:9f:fa:89:be:2b:01:1c:d4:fb: 5d:c7:1b:5f:71:31:98:74:32:4b:63:df:50:09:c8:22:de:3d: 68:32:b1:32:f5:40:09:82:d9:f0:71:0f:66:25:db:6c:db:68: b4:3f:5a:c0:89:c8:31:0a:29:b7:24:ce:a5:e5:8b:df:25:12: ac:bf:25:22:ef:04:88:52:5f:6c:06:04:8a:49:20:a8:3d:8d: db:a2:4d:c8:aa:57:90:ef:2b:87:a5:b1:54:1d:b3:e5:6b:90: 3c:bd:67:bb:44:19:54:0c:da:6e:98:b8:f0:9a:b0:8f:07:a9: 68:fb:26:65:21:8b:6c:01:13:84:8a:04:5a:2a:49:ad:52:f5: 56:50:70:64:63:1b:e2:41:1a:fb:c9:70:2d:d2:58:22:5e:0d: b6:9d:49:a4:66:8b:e6:e5:6c:96:d9:83:aa:82:e0:7e:a8:83: 1e:f1:89:ac:9d:b5:51:5d:8e:94:df:4c:8d:3c:5b:ab:3d:4c: dd:5c:0d:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVDMjIxMTAvBgNVBAUTKEQ5MDY5MzkxQTNFNzgwNEE2RUJEREY5RDQxRjJERTRE OTFCRDUxQjMwHhcNMjUwMzI4MjI0NjEyWhcNMjUwNDA0MjI0NjEyWjAYMRYwFAYD VQQDEw02N2U3MjZiNC1hMzg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3HiHS8ll75QSf/TdZcLWIKkB7PmyS1NkC/gvCp14e4T0hcH4KzCaxreyQeBg ymO8cDjguwei8l+r0aloW090yfYUQ5FEUe5cRYguXZ+1s7iTv4bCY+3tEQlylD9F D9jUmHfhiPX/WCaPsSxmdV44gh6/t6LVv4xGZqS0PYTA+vxVMtw7RNwyaCxo9XEx NPAPAHV6GppijxLTp8OjAJQdOh1lXBy8L+JZMQu7mh34g40tvdY7ATlBmIVfnqrg 5/ry/+OeIETdFRzOQt5juy93VqAf5yP6Z9x7tTHBB+K3d0D0lWmtTHAF5foAZgkN qHF5b91aGwpsSv6C6+nH5dGZKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKxf+3tx RjF2wSGVpFdKECdQhMj0MB8GA1UdIwQYMBaAFNkGk5Gj54BKbr3fnUHy3k2RvVGz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUMyMi8wNDU2OTVCODdG QUUxMUVCOTc3QjUzMzVDNEY5QUUwMi8yUWFUa2FQbmdFcHV2ZC1kUWZMZVRaRzlV Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJRYVRrYVBuZ0VwdXZkLWRRZkxlVFpHOVViTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUMyMi8wNDU2OTVCODdGQUUxMUVCOTc3QjUzMzVDNEY5QUUwMi8yUWFUa2FQbmdF cHV2ZC1kUWZMZVRaRzlVYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXYZ5qQaupkRWMlcyhb3lYGyHPbPqgxANUCVMkh0Ete9m3qWkREh7m v3C269bYL6Tbr46fhFF4BnXBeL07gzOf+om+KwEc1PtdxxtfcTGYdDJLY99QCcgi 3j1oMrEy9UAJgtnwcQ9mJdts22i0P1rAicgxCim3JM6l5YvfJRKsvyUi7wSIUl9s BgSKSSCoPY3bok3IqleQ7yuHpbFUHbPla5A8vWe7RBlUDNpumLjwmrCPB6lo+yZl IYtsAROEigRaKkmtUvVWUHBkYxviQRr7yXAt0lgiXg22nUmkZovm5WyW2YOqguB+ qIMe8YmsnbVRXY6U30yNPFurPUzdXA0Z -----END CERTIFICATE-----Generated at Fri Apr 4 22:10:35 2025 by rpki-client