$ rpki-client -vvf rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.mft File: N2EhKhZwpXGatx-iA7kuxobyEXc.mft (raw, json) Hash identifier: o/42iq6b/b1DnWTO+Szh61rRWgwEm1Z9FEY3DpRoc0g= Subject key identifier: 2C:5F:81:99:C3:5D:AF:9F:A3:D1:31:C4:3E:3F:EC:ED:84:FC:08:E0 Authority key identifier: 37:61:21:2A:16:70:A5:71:9A:B7:1F:A2:03:B9:2E:C6:86:F2:11:77 Certificate issuer: /CN=A9142037/serialNumber=3761212A1670A5719AB71FA203B92EC686F21177 Certificate serial: 22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N2EhKhZwpXGatx-iA7kuxobyEXc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.mft Manifest number: 20 Signing time: Thu 03 Apr 2025 07:06:51 +0000 Manifest this update: Thu 03 Apr 2025 07:06:51 +0000 Manifest next update: Thu 10 Apr 2025 07:06:51 +0000 Files and hashes: 1: N2EhKhZwpXGatx-iA7kuxobyEXc.crl (hash: 6Hpx6QDAaW81/4zKUcv3Tv1hWDAW+Tkf8WvG882QT/M=) 2: 191B6DA2E41811EF8E3F233AC4F9AE02.roa (hash: vcq+JOCdxjFG1D5wGuVH3+pI9poPc4zyyjKKMXsqhWE=) 3: FAEA8E38E41911EFA96DA35FC4F9AE02.roa (hash: RxRZ1dH5JkRHUJw1N/ksvTcKPSxp60O8KTnJFH3sluU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.crl rsync://rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N2EhKhZwpXGatx-iA7kuxobyEXc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 07:06:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34 (0x22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142037 Validity Not Before: Apr 3 07:06:51 2025 GMT Not After : Apr 10 07:06:51 2025 GMT Subject: CN=67ee338b-fc41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:63:49:7c:0c:8c:fa:2e:19:24:11:4d:a7:b7: a4:aa:04:b4:6f:d2:9f:eb:1d:d4:42:5f:d0:17:15: 65:34:17:10:c3:aa:1a:f9:41:2b:08:d5:c6:ba:64: 57:84:34:5d:e6:97:85:9b:14:4b:bf:47:ba:32:39: 79:d5:10:b5:76:af:f0:89:9f:26:5c:d1:20:a2:ed: 43:4a:b8:fe:df:d8:35:3c:68:df:7c:be:bc:d1:f8: 7c:21:c6:aa:16:53:75:2d:79:0d:dc:b0:05:52:49: a7:07:63:e5:e7:66:a2:03:e3:2b:bd:dd:02:4f:e8: d9:98:20:57:54:dc:5c:36:63:3c:26:24:8d:16:8d: 38:31:5a:f2:9c:22:f7:65:ba:0d:2c:eb:2a:a7:6e: da:e0:f5:69:6a:33:e6:d3:64:ee:61:38:18:2a:20: 28:8c:18:72:14:1e:8b:22:0f:10:58:30:d7:fb:00: 25:12:b6:c2:c3:3d:6f:e7:ef:b8:cd:60:75:1c:89: 7a:c4:24:76:47:50:92:2b:94:51:a5:75:42:10:c2: 33:1a:09:0b:7f:80:f8:bb:3d:7a:64:b5:d6:13:72: da:40:8c:f7:c3:36:95:ae:1e:0e:60:61:cb:f8:fc: bc:fa:7f:ce:fa:c6:53:7f:18:10:bc:19:da:a5:29: 2e:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:5F:81:99:C3:5D:AF:9F:A3:D1:31:C4:3E:3F:EC:ED:84:FC:08:E0 X509v3 Authority Key Identifier: keyid:37:61:21:2A:16:70:A5:71:9A:B7:1F:A2:03:B9:2E:C6:86:F2:11:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N2EhKhZwpXGatx-iA7kuxobyEXc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:7c:fb:29:21:33:19:b2:f1:8d:12:c0:e1:1d:e8:2d:cb:89: c7:e1:c7:e2:65:a5:e1:2a:50:21:5b:b7:b7:57:b9:1c:ec:49: ba:4e:ae:57:96:e9:45:7f:e2:3b:61:2a:13:de:05:db:af:8a: 8d:56:5b:6b:79:9f:40:37:8d:9f:9a:90:79:a6:ab:56:a0:34: d8:55:87:21:b9:51:3d:5d:ac:af:f6:24:e9:b8:3f:17:c1:f7: 40:d7:9f:69:85:90:28:d0:4d:f8:98:dd:5a:d6:3e:ed:53:d2: df:91:d2:3b:fc:60:03:a0:5e:e7:93:c0:ef:49:ea:26:c3:e3: e5:c8:50:e8:95:8d:bb:de:28:f5:75:5c:99:41:30:27:8c:02: 6b:cc:32:d7:07:6f:e2:58:95:56:ea:ea:bc:a8:11:71:2a:b1: 9a:1c:22:36:8d:66:ea:6f:42:b6:f4:85:e7:5c:7a:30:3d:cb: 34:21:e6:7b:66:10:5f:dc:b0:91:42:61:97:6d:e2:8d:34:b5: 90:7e:88:20:35:08:5d:66:fb:9e:27:48:fe:6e:d7:81:4e:98: 3b:b0:73:c6:98:ae:56:83:b5:7a:9c:6e:f3:a0:2b:df:a7:30: 52:20:e5:f8:df:df:9a:5c:bf:5c:cb:56:63:7b:91:0a:40:3d: 8d:5d:49:b8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MjAzNzExMC8GA1UEBRMoMzc2MTIxMkExNjcwQTU3MTlBQjcxRkEyMDNCOTJFQzY4 NkYyMTE3NzAeFw0yNTA0MDMwNzA2NTFaFw0yNTA0MTAwNzA2NTFaMBgxFjAUBgNV BAMTDTY3ZWUzMzhiLWZjNDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCtY0l8DIz6LhkkEU2nt6SqBLRv0p/rHdRCX9AXFWU0FxDDqhr5QSsI1ca6ZFeE NF3ml4WbFEu/R7oyOXnVELV2r/CJnyZc0SCi7UNKuP7f2DU8aN98vrzR+HwhxqoW U3UteQ3csAVSSacHY+XnZqID4yu93QJP6NmYIFdU3Fw2YzwmJI0WjTgxWvKcIvdl ug0s6yqnbtrg9WlqM+bTZO5hOBgqICiMGHIUHosiDxBYMNf7ACUStsLDPW/n77jN YHUciXrEJHZHUJIrlFGldUIQwjMaCQt/gPi7PXpktdYTctpAjPfDNpWuHg5gYcv4 /Lz6f876xlN/GBC8GdqlKS5JAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQULF+BmcNd r5+j0THEPj/s7YT8COAwHwYDVR0jBBgwFoAUN2EhKhZwpXGatx+iA7kuxobyEXcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQyMDM3LzVDMDVDMEM4RTQx NzExRUY5NkUyRkYzOEM0RjlBRTAyL04yRWhLaFp3cFhHYXR4LWlBN2t1eG9ieUVY Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTjJFaEtoWndwWEdhdHgtaUE3a3V4b2J5RVhjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQy MDM3LzVDMDVDMEM4RTQxNzExRUY5NkUyRkYzOEM0RjlBRTAyL04yRWhLaFp3cFhH YXR4LWlBN2t1eG9ieUVYYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJ58+ykhMxmy8Y0SwOEd6C3Licfhx+JlpeEqUCFbt7dXuRzsSbpOrleW 6UV/4jthKhPeBduvio1WW2t5n0A3jZ+akHmmq1agNNhVhyG5UT1drK/2JOm4PxfB 90DXn2mFkCjQTfiY3VrWPu1T0t+R0jv8YAOgXueTwO9J6ibD4+XIUOiVjbveKPV1 XJlBMCeMAmvMMtcHb+JYlVbq6ryoEXEqsZocIjaNZupvQrb0hedcejA9yzQh5ntm EF/csJFCYZdt4o00tZB+iCA1CF1m+54nSP5u14FOmDuwc8aYrlaDtXqcbvOgK9+n MFIg5fjf35pcv1zLVmN7kQpAPY1dSbg= -----END CERTIFICATE-----Generated at Fri Apr 4 22:15:14 2025 by rpki-client