$ rpki-client -vvf rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft File: 2QhrDfk0LcKwkbrobLd5_GJZvXs.mft (raw, json) Hash identifier: x55gics2Wi7ejh9EsUWTysDdqZFfvCo02x7eprOf0lk= Subject key identifier: 47:35:F7:F7:A6:BD:AC:D6:EF:1F:0B:F2:11:72:49:81:B7:1A:03:18 Authority key identifier: D9:08:6B:0D:F9:34:2D:C2:B0:91:BA:E8:6C:B7:79:FC:62:59:BD:7B Certificate issuer: /CN=A914F2EC/serialNumber=D9086B0DF9342DC2B091BAE86CB779FC6259BD7B Certificate serial: 347A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhrDfk0LcKwkbrobLd5_GJZvXs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft Manifest number: 3471 Signing time: Fri 04 Apr 2025 15:00:58 +0000 Manifest this update: Fri 04 Apr 2025 15:00:57 +0000 Manifest next update: Fri 11 Apr 2025 15:00:57 +0000 Files and hashes: 1: 2QhrDfk0LcKwkbrobLd5_GJZvXs.crl (hash: W6chlHnDQd2Ryz1yDkdOtvrApxYhTr4Rb+YdcNJ9Ft4=) 2: 588BD7269A1211E8B97A623AC4F9AE02.roa (hash: KKbAooYir9kiM+kQeIhamjhStk+gbSQk/A73xTUucXs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.crl rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhrDfk0LcKwkbrobLd5_GJZvXs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 15:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13434 (0x347a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F2EC Validity Not Before: Apr 4 15:00:57 2025 GMT Not After : Apr 11 15:00:57 2025 GMT Subject: CN=67eff42a-f76d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:59:2d:31:63:77:96:72:6f:7b:7e:9e:6d:60: 63:32:24:ce:65:b9:88:98:b9:4c:ad:31:c7:a3:9a: 74:84:ca:d5:37:4f:70:fc:0c:78:8b:db:0b:c2:6f: 68:5b:46:ff:84:e8:76:39:d4:37:15:35:e9:60:08: 40:91:e7:e0:33:0b:6e:5f:b5:19:42:9c:a0:d9:c6: 97:e8:cd:d4:f1:17:89:2a:c2:4a:a1:95:cf:fe:5e: f4:8d:20:bf:fd:a1:1e:4d:99:b1:bf:8c:ca:ca:64: 44:ec:5c:25:42:2a:ac:9a:51:be:c7:19:9c:fc:eb: 28:14:33:b2:a1:86:07:08:5a:c2:06:f3:83:a5:5b: ab:5d:ac:4a:ef:4d:cc:c0:04:8e:b8:da:11:47:94: ca:ff:11:ff:9f:06:03:48:a8:f8:2f:01:4e:ff:c0: 31:94:e5:0d:89:29:d5:2e:17:8b:57:3a:60:fc:8b: d9:9c:1f:dd:5c:e3:93:2e:22:8f:bb:7b:ce:7c:44: c3:7c:80:4c:51:a2:b7:4f:c0:8c:bb:9f:e0:7c:07: c6:72:94:2c:a9:a7:98:6f:11:aa:32:5c:29:f5:97: 4a:53:62:94:19:38:df:4a:60:f1:64:72:ac:96:75: 77:69:01:90:42:2d:be:29:89:2a:db:42:51:e6:dc: 38:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:35:F7:F7:A6:BD:AC:D6:EF:1F:0B:F2:11:72:49:81:B7:1A:03:18 X509v3 Authority Key Identifier: keyid:D9:08:6B:0D:F9:34:2D:C2:B0:91:BA:E8:6C:B7:79:FC:62:59:BD:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhrDfk0LcKwkbrobLd5_GJZvXs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:4e:ea:2b:57:c0:12:10:a7:29:e4:49:cf:c6:6f:e0:d3:b3: d5:a2:c3:20:65:52:2f:8f:13:fe:c1:4e:4c:01:06:d0:ec:07: b8:33:8a:14:43:ce:08:5e:e6:ee:df:fd:68:e5:2d:5d:5f:76: 6e:8e:63:c7:42:77:86:21:e0:51:21:6b:73:f4:b0:bc:32:bf: a4:3d:17:b2:8e:bb:a4:82:fb:1e:e1:0b:37:74:e9:9d:53:ad: 5f:70:45:07:1f:47:7e:0d:58:ec:50:08:7b:ef:96:25:f0:8b: 69:aa:77:8a:ca:fc:d1:58:68:a8:06:eb:82:49:ad:6e:34:bc: a3:a8:1b:30:55:93:2a:19:ab:eb:b7:78:06:65:7f:75:a6:b6: 7d:f6:ff:95:04:ce:50:5e:6d:82:4b:e2:3b:70:3b:48:5f:c2: 8f:b4:62:4a:1d:b9:76:8e:59:89:07:bf:60:4e:8c:ba:bf:c2: b2:66:c5:01:53:9e:37:40:61:96:a8:90:0f:d4:13:01:86:d2: f6:f3:9b:de:72:e4:a6:60:f9:78:dc:f9:c4:bd:38:5b:e2:9e: 58:4f:e7:ec:70:b3:18:74:de:c3:da:16:bd:c2:cb:74:1a:71: 89:4e:9c:46:5a:5c:b8:24:74:05:0a:02:8e:40:1f:08:67:e6: 98:ab:c0:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNHowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEYyRUMxMTAvBgNVBAUTKEQ5MDg2QjBERjkzNDJEQzJCMDkxQkFFODZDQjc3OUZD NjI1OUJEN0IwHhcNMjUwNDA0MTUwMDU3WhcNMjUwNDExMTUwMDU3WjAYMRYwFAYD VQQDEw02N2VmZjQyYS1mNzZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo1ktMWN3lnJve36ebWBjMiTOZbmImLlMrTHHo5p0hMrVN09w/Ax4i9sLwm9o W0b/hOh2OdQ3FTXpYAhAkefgMwtuX7UZQpyg2caX6M3U8ReJKsJKoZXP/l70jSC/ /aEeTZmxv4zKymRE7FwlQiqsmlG+xxmc/OsoFDOyoYYHCFrCBvODpVurXaxK703M wASOuNoRR5TK/xH/nwYDSKj4LwFO/8AxlOUNiSnVLheLVzpg/IvZnB/dXOOTLiKP u3vOfETDfIBMUaK3T8CMu5/gfAfGcpQsqaeYbxGqMlwp9ZdKU2KUGTjfSmDxZHKs lnV3aQGQQi2+KYkq20JR5tw40wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEc19/em vazW7x8L8hFySYG3GgMYMB8GA1UdIwQYMBaAFNkIaw35NC3CsJG66Gy3efxiWb17 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjJFQy9ENThBMjI2QzFE OUMxMUUyOUJDM0IyOEIwOEIwMkNEMi8yUWhyRGZrMExjS3drYnJvYkxkNV9HSlp2 WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJRaHJEZmswTGNLd2ticm9iTGQ1X0dKWnZYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjJFQy9ENThBMjI2QzFEOUMxMUUyOUJDM0IyOEIwOEIwMkNEMi8yUWhyRGZrMExj S3drYnJvYkxkNV9HSlp2WHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+TuorV8ASEKcp5EnPxm/g07PVosMgZVIvjxP+wU5MAQbQ7Ae4M4oU Q84IXubu3/1o5S1dX3ZujmPHQneGIeBRIWtz9LC8Mr+kPReyjrukgvse4Qs3dOmd U61fcEUHH0d+DVjsUAh775Yl8ItpqneKyvzRWGioBuuCSa1uNLyjqBswVZMqGavr t3gGZX91prZ99v+VBM5QXm2CS+I7cDtIX8KPtGJKHbl2jlmJB79gToy6v8KyZsUB U543QGGWqJAP1BMBhtL285vecuSmYPl43PnEvThb4p5YT+fscLMYdN7D2ha9wst0 GnGJTpxGWly4JHQFCgKOQB8IZ+aYq8B8 -----END CERTIFICATE-----Generated at Fri Apr 4 22:09:25 2025 by rpki-client