$ rpki-client -vvf rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft File: 2lexkcVbszGevZGC3A1Oau8-Ddg.mft (raw, json) Hash identifier: fhAaxljQHlaU1sj8/WizpR/Kv03YZWAVgIScYVSUP5E= Subject key identifier: 43:43:AF:24:1B:32:B5:72:FB:16:10:D6:B3:C7:9F:7F:A5:69:DB:2E Authority key identifier: DA:57:B1:91:C5:5B:B3:31:9E:BD:91:82:DC:0D:4E:6A:EF:3E:0D:D8 Certificate issuer: /CN=A912A31E/serialNumber=DA57B191C55BB3319EBD9182DC0D4E6AEF3E0DD8 Certificate serial: 016D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft Manifest number: 016A Signing time: Thu 03 Apr 2025 03:10:30 +0000 Manifest this update: Thu 03 Apr 2025 03:10:30 +0000 Manifest next update: Thu 10 Apr 2025 03:10:30 +0000 Files and hashes: 1: 2lexkcVbszGevZGC3A1Oau8-Ddg.crl (hash: ARoKbypc0wyZG4zkyg1X5+vcKNAPB0j7JCW7/6qE4DU=) 2: 5181F33CE8C011EDADA54A23C4F9AE02.roa (hash: 9wRwgsGB8Fy9z1Xq7bw5sLUsMsE1FSTZuA/DyllyXak=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.crl rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 03:10:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 365 (0x16d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A31E Validity Not Before: Apr 3 03:10:30 2025 GMT Not After : Apr 10 03:10:30 2025 GMT Subject: CN=67edfc26-1864 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:39:ad:ac:c6:60:c6:f5:94:bd:a2:56:b2:75: 18:4f:2e:5a:ea:7b:20:93:3c:21:01:47:7d:1d:cb: 72:6e:57:6f:79:29:68:c6:95:18:61:39:7f:31:ca: 34:53:4f:49:23:bd:98:68:10:6a:10:f3:d6:4e:4d: e2:41:bd:ee:21:cd:aa:14:2d:9b:f7:7f:5e:60:3c: 6f:59:fe:32:d7:ae:86:6f:6c:48:40:42:e0:58:77: b6:46:98:65:84:50:35:a6:59:46:dd:ba:47:ec:77: 5a:a5:9d:df:aa:ea:33:c3:e3:22:6d:bb:be:17:35: 51:4c:02:20:b9:9e:33:fd:f9:47:0c:8a:5a:8f:e8: eb:d0:f2:cc:70:c4:65:5e:e3:0b:e5:a2:1e:b2:b2: 6d:e0:f5:e8:f5:08:f7:c0:90:0b:67:66:62:3e:99: ad:e1:c1:b6:3a:32:07:60:d5:c4:e2:f3:c4:f5:91: 80:25:54:1a:e1:67:4a:8c:86:a1:82:c0:98:65:39: c2:c2:64:8f:86:98:e0:01:1e:64:f7:fe:93:49:d9: 1c:23:58:6d:96:ad:dd:29:ef:9f:61:3f:01:da:57: 57:7b:dc:7b:e4:29:e2:c7:ec:87:8e:e0:13:27:b8: 0c:28:eb:06:f8:f8:d9:a5:2b:9a:cd:64:55:da:9a: 79:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:43:AF:24:1B:32:B5:72:FB:16:10:D6:B3:C7:9F:7F:A5:69:DB:2E X509v3 Authority Key Identifier: keyid:DA:57:B1:91:C5:5B:B3:31:9E:BD:91:82:DC:0D:4E:6A:EF:3E:0D:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:34:0d:c0:ac:5e:28:09:75:99:a8:39:8a:9a:2d:ee:62:8c: fe:d3:99:46:d6:2b:c7:c6:b4:09:3d:dd:13:22:1c:95:2a:99: e3:27:60:1f:81:9c:cd:03:65:ea:61:41:a2:b1:18:c2:66:83: d2:bc:e2:02:2d:3a:90:69:eb:57:a8:81:97:f6:e5:b0:52:0f: 11:85:21:f2:99:4e:36:1d:3b:d8:49:24:75:72:aa:76:70:46: e0:4c:bf:07:ca:3a:bf:43:d5:1f:f8:83:a5:58:c2:04:ca:66: 14:41:da:fd:8e:84:7e:95:47:57:1b:e0:fb:ab:5c:4c:ef:45: 09:36:49:a6:03:b0:7d:10:6b:80:8f:ff:1c:b2:41:e8:78:5b: 5c:0d:f3:0c:0e:2d:03:3c:3c:71:ec:43:dc:d9:65:4a:57:ec: 15:5a:9e:b0:0d:a3:22:b6:cd:04:fe:35:54:e7:d3:2a:d4:31: 4c:90:2b:dd:16:88:66:87:36:e9:4c:63:0e:90:3d:94:e9:e7: 1c:35:65:fb:5d:12:25:01:5a:5d:59:3d:b8:ef:7a:8e:2c:a2: d6:c8:a3:a7:4b:6c:4d:51:4f:3d:00:35:9c:8b:39:92:bd:92: 66:c9:3a:bd:cc:25:4b:7a:f1:b9:cd:84:96:20:9b:83:49:60: 5d:ff:bf:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAW0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkEzMUUxMTAvBgNVBAUTKERBNTdCMTkxQzU1QkIzMzE5RUJEOTE4MkRDMEQ0RTZB RUYzRTBERDgwHhcNMjUwNDAzMDMxMDMwWhcNMjUwNDEwMDMxMDMwWjAYMRYwFAYD VQQDEw02N2VkZmMyNi0xODY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArjmtrMZgxvWUvaJWsnUYTy5a6nsgkzwhAUd9HctybldveSloxpUYYTl/Mco0 U09JI72YaBBqEPPWTk3iQb3uIc2qFC2b939eYDxvWf4y166Gb2xIQELgWHe2Rphl hFA1pllG3bpH7HdapZ3fquozw+Mibbu+FzVRTAIguZ4z/flHDIpaj+jr0PLMcMRl XuML5aIesrJt4PXo9Qj3wJALZ2ZiPpmt4cG2OjIHYNXE4vPE9ZGAJVQa4WdKjIah gsCYZTnCwmSPhpjgAR5k9/6TSdkcI1htlq3dKe+fYT8B2ldXe9x75Cnix+yHjuAT J7gMKOsG+PjZpSuazWRV2pp5rwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFENDryQb MrVy+xYQ1rPHn3+ladsuMB8GA1UdIwQYMBaAFNpXsZHFW7Mxnr2RgtwNTmrvPg3Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTMxRS9DOEE0QzRFNEU4 QkIxMUVEQThEQjhBMUZDNEY5QUUwMi8ybGV4a2NWYnN6R2V2WkdDM0ExT2F1OC1E ZGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsZXhrY1Zic3pHZXZaR0MzQTFPYXU4LURkZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QTMxRS9DOEE0QzRFNEU4QkIxMUVEQThEQjhBMUZDNEY5QUUwMi8ybGV4a2NWYnN6 R2V2WkdDM0ExT2F1OC1EZGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeNA3ArF4oCXWZqDmKmi3uYoz+05lG1ivHxrQJPd0TIhyVKpnjJ2Af gZzNA2XqYUGisRjCZoPSvOICLTqQaetXqIGX9uWwUg8RhSHymU42HTvYSSR1cqp2 cEbgTL8Hyjq/Q9Uf+IOlWMIEymYUQdr9joR+lUdXG+D7q1xM70UJNkmmA7B9EGuA j/8cskHoeFtcDfMMDi0DPDxx7EPc2WVKV+wVWp6wDaMits0E/jVU59Mq1DFMkCvd FohmhzbpTGMOkD2U6eccNWX7XRIlAVpdWT2473qOLKLWyKOnS2xNUU89ADWcizmS vZJmyTq9zCVLevG5zYSWIJuDSWBd/781 -----END CERTIFICATE-----Generated at Fri Apr 4 21:55:56 2025 by rpki-client