$ rpki-client -vvf rpki.apnic.net/member_repository/A915429C/E6B254F89AA911EC924C6B23C4F9AE02/2m7mst6yYhOWAXC6ZYdieLLff84.mft File: 2m7mst6yYhOWAXC6ZYdieLLff84.mft (raw, json) Hash identifier: 8Vjs1DIfY1q2jR/jkjgejV8KMW5eiV9T2bjuenmfodU= Subject key identifier: 87:5F:16:27:3E:80:82:7F:B9:06:12:26:C7:C7:DF:76:E9:BB:5E:12 Authority key identifier: DA:6E:E6:B2:DE:B2:62:13:96:01:70:BA:65:87:62:78:B2:DF:7F:CE Certificate issuer: /CN=A915429C/serialNumber=DA6EE6B2DEB26213960170BA65876278B2DF7FCE Certificate serial: 0387 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2m7mst6yYhOWAXC6ZYdieLLff84.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915429C/E6B254F89AA911EC924C6B23C4F9AE02/2m7mst6yYhOWAXC6ZYdieLLff84.mft Manifest number: 0382 Signing time: Sat 05 Apr 2025 00:57:08 +0000 Manifest this update: Sat 05 Apr 2025 00:57:08 +0000 Manifest next update: Sat 12 Apr 2025 00:57:08 +0000 Files and hashes: 1: 2m7mst6yYhOWAXC6ZYdieLLff84.crl (hash: xzfreMzRB9b6ZJLX3carH3IVI2z/XHxIkX3J03kPmAk=) 2: E15BCDE69AAD11ECB4212E2AC4F9AE02.roa (hash: 9cJ1X9p3KnoCJj9I/bBoQDkUW3YOKoAh40o4a5fDcJ0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915429C/E6B254F89AA911EC924C6B23C4F9AE02/2m7mst6yYhOWAXC6ZYdieLLff84.crl rsync://rpki.apnic.net/member_repository/A915429C/E6B254F89AA911EC924C6B23C4F9AE02/2m7mst6yYhOWAXC6ZYdieLLff84.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2m7mst6yYhOWAXC6ZYdieLLff84.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 00:57:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 903 (0x387) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915429C Validity Not Before: Apr 5 00:57:08 2025 GMT Not After : Apr 12 00:57:08 2025 GMT Subject: CN=67f07fe4-3109 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ca:1a:7f:2d:36:c0:c2:06:52:a3:9e:bd:4b: 79:a3:36:2a:cb:9b:d0:c7:6d:c5:3b:31:81:cd:3f: 51:09:4c:27:ff:18:3b:f6:df:2b:c9:44:c6:79:00: 1d:0b:e5:35:08:2d:9d:2a:81:78:a6:d6:4d:e7:0c: 37:34:08:7b:a6:49:46:ea:d0:cc:69:8b:75:3f:76: bf:5b:78:97:ec:7c:c9:85:fd:d0:c8:8e:bf:2b:fc: ea:0c:6e:32:cf:38:2b:3d:3a:81:8f:89:15:2f:f3: 1c:d9:13:a4:28:13:f5:ce:32:85:23:f9:b8:0a:df: 97:a2:ca:4e:1b:91:fc:fc:aa:2b:be:21:38:bb:56: ce:ac:50:98:ce:e9:eb:c4:a0:ba:e7:5c:6e:78:5e: fa:e5:2b:7d:17:0c:5d:5c:b4:2e:69:c8:e6:17:c3: 74:16:92:4c:98:6f:27:02:b1:e4:54:61:4d:50:d9: da:0e:f0:95:17:91:bc:0a:33:48:6c:d1:6d:97:dd: 51:43:9e:8d:8b:ce:46:9f:3e:a2:fd:40:56:e3:5f: 1e:41:0d:e2:79:e8:3b:e8:6d:41:53:72:00:04:17: f4:63:5c:56:7c:e0:48:3c:cf:bf:a2:f7:29:40:4d: 7a:4c:fb:26:4c:a5:3f:b6:ae:3c:7f:ca:ea:23:bd: bb:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:5F:16:27:3E:80:82:7F:B9:06:12:26:C7:C7:DF:76:E9:BB:5E:12 X509v3 Authority Key Identifier: keyid:DA:6E:E6:B2:DE:B2:62:13:96:01:70:BA:65:87:62:78:B2:DF:7F:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915429C/E6B254F89AA911EC924C6B23C4F9AE02/2m7mst6yYhOWAXC6ZYdieLLff84.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2m7mst6yYhOWAXC6ZYdieLLff84.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915429C/E6B254F89AA911EC924C6B23C4F9AE02/2m7mst6yYhOWAXC6ZYdieLLff84.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:2c:bf:6f:12:a3:ba:48:a9:d3:0b:46:4f:df:4d:fc:c4:35: e1:13:cc:d3:2c:d1:d8:72:a7:6f:84:d1:73:6c:02:b1:47:bd: f6:d0:57:cf:ae:8a:42:98:81:11:64:32:4a:f6:4d:b3:5a:c5: bb:f2:df:e8:33:8d:98:1d:0b:cb:f8:3b:a7:d8:dd:0a:10:30: d4:c1:16:fe:29:02:8a:d5:12:cc:fa:9b:26:65:16:b4:c6:1d: fa:8a:86:bb:aa:c3:b9:5d:3d:73:ed:06:90:26:43:4b:cd:b7: 4a:28:45:c8:b7:80:17:fd:62:ef:66:0e:b1:db:3f:08:8d:35: 87:18:aa:eb:8a:00:eb:ca:67:62:07:11:d3:6f:38:b4:b7:46: 25:46:13:19:40:0b:1d:44:13:25:1b:7f:43:8d:42:41:e1:68: 1f:64:1b:e4:cd:63:67:0b:fc:ed:17:72:1f:dd:fb:61:5d:16: d6:1b:c0:63:98:9d:05:26:db:9c:a9:00:96:94:ce:fb:93:4a: 8f:87:67:98:aa:4a:73:21:49:00:e2:e5:fe:89:82:0f:aa:ec: 33:16:5b:59:75:50:ec:a6:dd:a8:61:d9:af:f6:e9:48:68:0d: 5c:99:29:62:cd:7c:58:8e:36:f3:67:55:b4:ee:2b:70:53:ab: a0:66:3b:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQyOUMxMTAvBgNVBAUTKERBNkVFNkIyREVCMjYyMTM5NjAxNzBCQTY1ODc2Mjc4 QjJERjdGQ0UwHhcNMjUwNDA1MDA1NzA4WhcNMjUwNDEyMDA1NzA4WjAYMRYwFAYD VQQDEw02N2YwN2ZlNC0zMTA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvsoafy02wMIGUqOevUt5ozYqy5vQx23FOzGBzT9RCUwn/xg79t8ryUTGeQAd C+U1CC2dKoF4ptZN5ww3NAh7pklG6tDMaYt1P3a/W3iX7HzJhf3QyI6/K/zqDG4y zzgrPTqBj4kVL/Mc2ROkKBP1zjKFI/m4Ct+XospOG5H8/KorviE4u1bOrFCYzunr xKC651xueF765St9FwxdXLQuacjmF8N0FpJMmG8nArHkVGFNUNnaDvCVF5G8CjNI bNFtl91RQ56Ni85Gnz6i/UBW418eQQ3ieeg76G1BU3IABBf0Y1xWfOBIPM+/ovcp QE16TPsmTKU/tq48f8rqI727fQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIdfFic+ gIJ/uQYSJsfH33bpu14SMB8GA1UdIwQYMBaAFNpu5rLesmITlgFwumWHYniy33/O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDI5Qy9FNkIyNTRGODlB QTkxMUVDOTI0QzZCMjNDNEY5QUUwMi8ybTdtc3Q2eVloT1dBWEM2WllkaWVMTGZm ODQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJtN21zdDZ5WWhPV0FYQzZaWWRpZUxMZmY4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDI5Qy9FNkIyNTRGODlBQTkxMUVDOTI0QzZCMjNDNEY5QUUwMi8ybTdtc3Q2eVlo T1dBWEM2WllkaWVMTGZmODQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyLL9vEqO6SKnTC0ZP3038xDXhE8zTLNHYcqdvhNFzbAKxR7320FfP ropCmIERZDJK9k2zWsW78t/oM42YHQvL+Dun2N0KEDDUwRb+KQKK1RLM+psmZRa0 xh36ioa7qsO5XT1z7QaQJkNLzbdKKEXIt4AX/WLvZg6x2z8IjTWHGKrrigDrymdi BxHTbzi0t0YlRhMZQAsdRBMlG39DjUJB4WgfZBvkzWNnC/ztF3If3fthXRbWG8Bj mJ0FJtucqQCWlM77k0qPh2eYqkpzIUkA4uX+iYIPquwzFltZdVDspt2oYdmv9ulI aA1cmSlizXxYjjbzZ1W07itwU6ugZjvq -----END CERTIFICATE-----Generated at Sun Apr 6 15:49:40 2025 by rpki-client