$ rpki-client -vvf rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft File: 2UW2DwCc3xVcQp1Aha62z-BrzgA.mft (raw, json) Hash identifier: bJcuQFWijhVM25cGzRfnkf0C+MVF7+eH1aw0LXPYnGs= Subject key identifier: 6D:2C:BA:A2:4D:F5:E3:47:0C:39:88:95:88:24:DF:E9:A6:08:0A:47 Authority key identifier: D9:45:B6:0F:00:9C:DF:15:5C:42:9D:40:85:AE:B6:CF:E0:6B:CE:00 Certificate issuer: /CN=A9149CEF/serialNumber=D945B60F009CDF155C429D4085AEB6CFE06BCE00 Certificate serial: 04A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UW2DwCc3xVcQp1Aha62z-BrzgA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft Manifest number: 04A0 Signing time: Mon 14 Apr 2025 23:38:35 +0000 Manifest this update: Mon 14 Apr 2025 23:38:35 +0000 Manifest next update: Mon 21 Apr 2025 23:38:35 +0000 Files and hashes: 1: 2UW2DwCc3xVcQp1Aha62z-BrzgA.crl (hash: nCHhpHQkZ5AheqQE9t9SEQiSlx0KMeHdpvaFDh6/AfA=) 2: AFAC764C2C1711EC817C5912C4F9AE02.roa (hash: Pxv8dePi1EpNPNL4ZdJ0nYxVU1Z8dZuP+ncTQy+eHOw=) 3: AF22E83C2C1711EC817C5912C4F9AE02.roa (hash: Qsapn7T7BSoVN2a752N9muKYuA54q3bOkNtfwyaphBI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.crl rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UW2DwCc3xVcQp1Aha62z-BrzgA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 21 Apr 2025 23:38:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1192 (0x4a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149CEF, serialNumber=D945B60F009CDF155C429D4085AEB6CFE06BCE00 Validity Not Before: Apr 14 23:38:35 2025 GMT Not After : Apr 21 23:38:35 2025 GMT Subject: CN=67fd9c7b-83a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:58:4e:41:31:de:54:71:2a:8d:66:1c:46:7c: d1:a7:8a:59:32:09:18:98:fe:36:ec:17:06:e7:73: 61:fd:00:0b:36:d6:59:f2:80:bc:17:0b:13:2e:b0: b0:f4:57:2b:f6:f4:08:09:88:f8:5a:a2:45:39:fc: 4f:d3:ef:a2:e2:3d:f3:ae:89:47:4c:87:38:e3:30: b1:51:da:de:e2:9c:a4:ed:96:1e:47:04:27:40:f5: 6f:c0:e5:75:ba:54:a1:32:35:d9:40:f3:74:ca:f4: ec:b9:ab:78:67:46:1c:fa:91:a1:42:f2:cb:e1:a9: 18:6a:44:ae:01:d6:8a:cb:ec:0b:bf:99:3e:c1:15: 42:9d:d0:62:04:03:7c:a5:c6:8a:c0:44:83:44:55: 60:c4:2e:77:5e:db:e1:3e:09:9b:4c:e0:ca:62:d3: 9c:53:d6:07:ee:bc:fa:c2:2e:9f:4a:a0:6e:21:3f: 4b:e6:6f:6b:e4:8f:05:30:eb:84:cf:4a:0b:19:24: e0:71:6c:45:7b:02:e3:73:60:03:f9:e7:1d:e6:15: 91:a8:ae:4d:91:87:2b:3f:75:7d:ed:49:d3:6d:d7: cc:1b:f8:35:08:22:2e:28:8d:dc:a0:49:b1:6f:03: c1:ed:a4:fd:3e:37:28:e7:95:66:23:67:99:cb:2a: 88:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:2C:BA:A2:4D:F5:E3:47:0C:39:88:95:88:24:DF:E9:A6:08:0A:47 X509v3 Authority Key Identifier: keyid:D9:45:B6:0F:00:9C:DF:15:5C:42:9D:40:85:AE:B6:CF:E0:6B:CE:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UW2DwCc3xVcQp1Aha62z-BrzgA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:ee:6f:bc:81:70:1a:5f:51:7e:ab:c1:df:26:bb:7f:be:89: 24:af:f6:9d:f8:c1:84:27:07:fd:dd:fb:98:72:4c:9f:82:78: 0f:33:53:4f:62:2d:a8:38:57:d6:8e:d5:0c:15:01:31:f7:f7: 99:76:33:b7:54:ea:fc:94:b3:18:49:cd:65:d0:d6:1c:45:f1: 9e:85:1a:90:d8:2a:b0:0b:27:9e:b7:11:23:03:dd:d6:4f:f3: 73:c4:07:13:91:c0:5d:0d:96:d0:66:71:07:64:f9:68:5d:3c: de:b2:98:e8:8b:ef:33:ae:09:ab:9c:4e:ee:0a:ef:dd:72:a5: 12:c8:c1:24:1d:cf:0b:6c:84:a1:3c:33:e8:35:bd:d3:74:92: e5:1e:b7:9f:61:c2:f3:09:38:92:e4:0e:b1:1e:22:ef:38:1d: 84:9c:69:f5:0e:5b:7b:13:54:85:04:04:6b:e2:e7:0c:14:5e: a3:52:14:35:70:bb:e6:eb:b8:1a:23:65:49:05:94:f0:27:0b: a7:ba:c3:35:82:8a:55:25:d6:90:c2:42:30:77:38:95:49:db: 51:1d:3a:cf:f5:df:70:9e:f1:04:d4:ca:1a:9e:a3:c8:0c:25: 3e:f2:6e:f8:cf:ba:2f:67:1a:47:0a:af:f8:fb:db:cb:e1:60: 2a:af:a4:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlDRUYxMTAvBgNVBAUTKEQ5NDVCNjBGMDA5Q0RGMTU1QzQyOUQ0MDg1QUVCNkNG RTA2QkNFMDAwHhcNMjUwNDE0MjMzODM1WhcNMjUwNDIxMjMzODM1WjAYMRYwFAYD VQQDEw02N2ZkOWM3Yi04M2EzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApFhOQTHeVHEqjWYcRnzRp4pZMgkYmP427BcG53Nh/QALNtZZ8oC8FwsTLrCw 9Fcr9vQICYj4WqJFOfxP0++i4j3zrolHTIc44zCxUdre4pyk7ZYeRwQnQPVvwOV1 ulShMjXZQPN0yvTsuat4Z0Yc+pGhQvLL4akYakSuAdaKy+wLv5k+wRVCndBiBAN8 pcaKwESDRFVgxC53XtvhPgmbTODKYtOcU9YH7rz6wi6fSqBuIT9L5m9r5I8FMOuE z0oLGSTgcWxFewLjc2AD+ecd5hWRqK5NkYcrP3V97UnTbdfMG/g1CCIuKI3coEmx bwPB7aT9Pjco55VmI2eZyyqIRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG0suqJN 9eNHDDmIlYgk3+mmCApHMB8GA1UdIwQYMBaAFNlFtg8AnN8VXEKdQIWuts/ga84A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUNFRi9DNDAxOUQyNDJD MTMxMUVDQjQ1ODA4NDJDNEY5QUUwMi8yVVcyRHdDYzN4VmNRcDFBaGE2MnotQnJ6 Z0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJVVzJEd0NjM3hWY1FwMUFoYTYyei1CcnpnQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUNFRi9DNDAxOUQyNDJDMTMxMUVDQjQ1ODA4NDJDNEY5QUUwMi8yVVcyRHdDYzN4 VmNRcDFBaGE2MnotQnJ6Z0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAs7m+8gXAaX1F+q8HfJrt/vokkr/ad+MGEJwf93fuYckyfgngPM1NP Yi2oOFfWjtUMFQEx9/eZdjO3VOr8lLMYSc1l0NYcRfGehRqQ2CqwCyeetxEjA93W T/NzxAcTkcBdDZbQZnEHZPloXTzespjoi+8zrgmrnE7uCu/dcqUSyMEkHc8LbISh PDPoNb3TdJLlHrefYcLzCTiS5A6xHiLvOB2EnGn1Dlt7E1SFBARr4ucMFF6jUhQ1 cLvm67gaI2VJBZTwJwunusM1gopVJdaQwkIwdziVSdtRHTrP9d9wnvEE1MoanqPI DCU+8m74z7ovZxpHCq/4+9vL4WAqr6QW -----END CERTIFICATE-----Generated at Wed Apr 16 20:16:49 2025 by rpki-client