$ rpki-client -vvf rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft File: 2HXmPHNQjdifas3MBgFEoIwIZtw.mft (raw, json) Hash identifier: g3d7XtwUxCSwZ8jFTr9nyks3RxyRKs9ftCTrA8WoLTE= Subject key identifier: 2E:89:B9:69:FC:F7:0F:80:55:B8:5C:B1:55:E2:A4:09:95:4D:6E:8A Authority key identifier: D8:75:E6:3C:73:50:8D:D8:9F:6A:CD:CC:06:01:44:A0:8C:08:66:DC Certificate issuer: /CN=A914E950/serialNumber=D875E63C73508DD89F6ACDCC060144A08C0866DC Certificate serial: 03A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft Manifest number: 03A0 Signing time: Thu 03 Apr 2025 00:45:19 +0000 Manifest this update: Thu 03 Apr 2025 00:45:18 +0000 Manifest next update: Thu 10 Apr 2025 00:45:18 +0000 Files and hashes: 1: 2HXmPHNQjdifas3MBgFEoIwIZtw.crl (hash: BkbwFwCPaUBBEEnxqM1IpUHgdJ4mgycDqHlyXIE4R+I=) 2: 6199B5668DE011ECB9F9C06EC4F9AE02.roa (hash: 2v76irvv8YBootZ9ixmNS7BdVolsdY5VCXkGVLqaKlA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.crl rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 00:45:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 932 (0x3a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E950 Validity Not Before: Apr 3 00:45:18 2025 GMT Not After : Apr 10 00:45:18 2025 GMT Subject: CN=67edda1e-ed38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:02:59:c5:cc:fa:c3:a1:d7:7c:a3:2c:17:48: a0:2f:3d:56:63:11:59:c7:93:a9:a6:91:eb:83:7a: 0d:5d:ab:b5:3a:dd:34:76:b8:b0:d7:26:0c:eb:d7: 7a:68:76:39:47:14:72:3b:4b:21:2e:90:6d:8b:86: 5f:97:0a:ae:04:08:2d:22:03:2d:a6:7e:24:02:84: 8a:b2:e9:4d:20:d2:3f:cf:29:97:c8:16:e1:62:92: 2a:28:e8:8f:a6:c4:ae:3d:30:db:cd:65:23:b2:13: 6b:05:3b:cd:09:53:52:b6:cf:18:e8:5a:f3:12:8e: fd:3e:f5:ed:21:85:6a:c6:d8:52:93:ff:73:b0:19: 1f:67:c4:54:4b:cd:fb:9d:5d:64:f0:20:4f:14:1f: d8:1d:2f:95:1e:0d:c4:a4:e1:05:d6:6c:7b:e9:b8: 8b:64:03:fc:1d:72:7d:a9:2f:7d:56:64:98:02:11: ea:2e:1e:72:cd:54:1a:ca:02:b3:3e:75:26:df:6a: 58:3c:b8:9b:ae:d8:a3:ef:5a:39:af:4c:33:b6:96: ba:38:0d:54:b3:a5:7e:85:97:ce:a4:50:dd:e9:fa: fc:f7:e7:4b:52:40:89:9f:07:ee:0e:dd:98:03:73: ed:d4:6c:55:58:9b:43:26:ed:b6:a7:14:12:a8:73: 18:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:89:B9:69:FC:F7:0F:80:55:B8:5C:B1:55:E2:A4:09:95:4D:6E:8A X509v3 Authority Key Identifier: keyid:D8:75:E6:3C:73:50:8D:D8:9F:6A:CD:CC:06:01:44:A0:8C:08:66:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:cd:f8:1b:79:22:e9:f0:3e:67:5a:8b:cf:32:b2:6c:0e:b3: ab:b3:e0:39:13:65:b8:04:41:f3:20:39:b6:50:50:5f:a1:cc: b5:c0:9a:31:84:47:ae:38:ff:0d:6b:f1:c4:e3:8a:f2:5d:48: fc:18:22:a8:02:09:c2:21:c6:c4:28:e3:63:f0:fc:bd:7f:a6: 29:57:c3:a7:28:c9:ff:5e:78:b3:ad:ac:ff:6f:3a:24:a4:20: 89:cc:5b:7b:0c:bc:85:75:f9:03:a6:6c:18:ae:7d:07:a9:2b: ed:23:35:e2:05:b9:7a:14:2c:26:96:63:bb:30:8c:28:ff:d7: 56:50:db:d0:9a:6e:59:fa:11:13:57:15:ba:f2:1e:cf:3f:1d: ca:9b:6e:f4:60:0e:35:a8:43:e1:5a:62:e2:02:a4:7a:61:a3: cb:43:71:6d:7c:4b:9a:55:18:70:e5:c1:b1:fc:07:62:f2:73: c3:f0:df:a8:ca:d5:0d:13:a8:46:10:ab:d2:9e:97:06:2c:33: 98:e7:89:15:f9:f0:ca:bd:0f:d9:3c:34:80:8d:1d:e5:b4:9c: be:a2:d0:a7:78:95:6a:b4:9e:8e:5b:bc:a4:37:7a:ba:20:03: 12:d2:68:79:7c:a6:b4:6c:41:59:dd:82:2b:ed:0f:e3:1d:27: 7b:30:47:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU5NTAxMTAvBgNVBAUTKEQ4NzVFNjNDNzM1MDhERDg5RjZBQ0RDQzA2MDE0NEEw OEMwODY2REMwHhcNMjUwNDAzMDA0NTE4WhcNMjUwNDEwMDA0NTE4WjAYMRYwFAYD VQQDEw02N2VkZGExZS1lZDM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAywJZxcz6w6HXfKMsF0igLz1WYxFZx5OpppHrg3oNXau1Ot00driw1yYM69d6 aHY5RxRyO0shLpBti4ZflwquBAgtIgMtpn4kAoSKsulNINI/zymXyBbhYpIqKOiP psSuPTDbzWUjshNrBTvNCVNSts8Y6FrzEo79PvXtIYVqxthSk/9zsBkfZ8RUS837 nV1k8CBPFB/YHS+VHg3EpOEF1mx76biLZAP8HXJ9qS99VmSYAhHqLh5yzVQaygKz PnUm32pYPLibrtij71o5r0wztpa6OA1Us6V+hZfOpFDd6fr89+dLUkCJnwfuDt2Y A3Pt1GxVWJtDJu22pxQSqHMYxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC6JuWn8 9w+AVbhcsVXipAmVTW6KMB8GA1UdIwQYMBaAFNh15jxzUI3Yn2rNzAYBRKCMCGbc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTk1MC9DQkYwNkYzMDhE REMxMUVDQTE0MDBDNjlDNEY5QUUwMi8ySFhtUEhOUWpkaWZhczNNQmdGRW9Jd0la dHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJIWG1QSE5RamRpZmFzM01CZ0ZFb0l3SVp0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTk1MC9DQkYwNkYzMDhEREMxMUVDQTE0MDBDNjlDNEY5QUUwMi8ySFhtUEhOUWpk aWZhczNNQmdGRW9Jd0ladHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAazfgbeSLp8D5nWovPMrJsDrOrs+A5E2W4BEHzIDm2UFBfocy1wJox hEeuOP8Na/HE44ryXUj8GCKoAgnCIcbEKONj8Py9f6YpV8OnKMn/Xnizraz/bzok pCCJzFt7DLyFdfkDpmwYrn0HqSvtIzXiBbl6FCwmlmO7MIwo/9dWUNvQmm5Z+hET VxW68h7PPx3Km270YA41qEPhWmLiAqR6YaPLQ3FtfEuaVRhw5cGx/Adi8nPD8N+o ytUNE6hGEKvSnpcGLDOY54kV+fDKvQ/ZPDSAjR3ltJy+otCneJVqtJ6OW7ykN3q6 IAMS0mh5fKa0bEFZ3YIr7Q/jHSd7MEeg -----END CERTIFICATE-----Generated at Fri Apr 4 22:04:11 2025 by rpki-client