$ rpki-client -vvf rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/2nNptJciuhObe2DznIi0m9uzXz0.mft File: 2nNptJciuhObe2DznIi0m9uzXz0.mft (raw, json) Hash identifier: DDtYZXuyjpfPqcPzN3YwAs6HQz8ZQWLhqAylL1sSiAw= Subject key identifier: BC:F2:83:D9:DB:3C:10:2E:1A:D7:A9:3B:6F:7A:5D:24:D6:EF:53:4A Authority key identifier: DA:73:69:B4:97:22:BA:13:9B:7B:60:F3:9C:88:B4:9B:DB:B3:5F:3D Certificate issuer: /CN=A917E623/serialNumber=DA7369B49722BA139B7B60F39C88B49BDBB35F3D Certificate serial: 013F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nNptJciuhObe2DznIi0m9uzXz0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/2nNptJciuhObe2DznIi0m9uzXz0.mft Manifest number: 0131 Signing time: Thu 03 Apr 2025 04:01:37 +0000 Manifest this update: Thu 03 Apr 2025 04:01:36 +0000 Manifest next update: Thu 10 Apr 2025 04:01:36 +0000 Files and hashes: 1: 2nNptJciuhObe2DznIi0m9uzXz0.crl (hash: Nww/Tb0jWXacYacryqqy5NL9WGLs3ANaNfBaP4p/XTM=) 2: C12ACE6AC17E11EE95D6821CC4F9AE02.roa (hash: 0VizvwlSvt2Typg26qLoIMnU5PdKIxjIiPdXQB++0ps=) 3: BBBEDEF46C8211EE866F5A78C4F9AE02.roa (hash: rX9KVe2qszOUPjT1pbGC+LrjEbspt/xxl2Uq6dePAdc=) 4: B7FD006A50F411EEB2008729C4F9AE02.roa (hash: HsYr8OmdjYIdRArCv8NBd7tL5J9ojAyKHb00KhjW28U=) 5: 585745526BC111EEA163E774C4F9AE02.roa (hash: Ks2Urn2far+/DcyQBS8MOk0s9n2RR8VYAIzSipmPvMk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/2nNptJciuhObe2DznIi0m9uzXz0.crl rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/2nNptJciuhObe2DznIi0m9uzXz0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nNptJciuhObe2DznIi0m9uzXz0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 04:01:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 319 (0x13f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E623 Validity Not Before: Apr 3 04:01:36 2025 GMT Not After : Apr 10 04:01:36 2025 GMT Subject: CN=67ee0821-b6cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:e7:ea:c2:bf:4f:1b:a3:e6:6f:cf:f1:36:ae: 61:f8:7f:fb:39:69:f2:a7:b8:19:c3:9f:8b:39:17: f3:41:c0:9c:c9:bf:bf:08:66:f2:a7:9e:f6:c9:98: 65:69:f3:97:74:ff:a4:60:a4:84:1d:58:4d:a7:b3: 03:89:b1:af:3a:11:ee:13:56:ee:bf:52:c3:5f:c3: 36:fc:03:2c:bf:34:df:ad:47:77:6e:ca:2c:b2:40: d7:99:ee:0b:17:11:81:0c:89:bc:51:be:b6:c8:41: d4:79:6e:1a:b0:aa:f6:08:f4:1b:18:a0:83:0f:36: d7:e1:43:b7:61:40:63:e9:83:2a:c2:da:4c:e3:5d: 4e:0f:f6:59:9e:ef:e8:64:7b:b3:34:18:ca:90:5d: 26:85:f6:53:fe:a6:c5:0e:50:fd:24:e3:c7:22:de: a5:35:d7:a2:04:75:4a:b5:0e:19:e1:c2:85:dd:b2: 93:cf:39:93:da:88:91:41:30:b4:e3:a9:4b:1a:b1: b7:b8:ad:0b:ca:fc:32:7e:6d:90:c7:89:49:39:4e: 52:bc:64:2f:f2:84:ae:39:24:48:4f:47:0d:bf:55: 49:25:06:46:03:a2:e6:68:09:85:0a:f7:02:33:cb: c4:6c:14:a1:67:39:36:df:a4:5b:42:fe:18:0b:c4: c9:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:F2:83:D9:DB:3C:10:2E:1A:D7:A9:3B:6F:7A:5D:24:D6:EF:53:4A X509v3 Authority Key Identifier: keyid:DA:73:69:B4:97:22:BA:13:9B:7B:60:F3:9C:88:B4:9B:DB:B3:5F:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/2nNptJciuhObe2DznIi0m9uzXz0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nNptJciuhObe2DznIi0m9uzXz0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/2nNptJciuhObe2DznIi0m9uzXz0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:bc:71:37:9c:e1:ed:cb:e8:7a:ec:a2:2a:27:1f:bf:81:ca: d8:fa:63:f2:a2:53:e8:4d:cd:9b:51:16:6c:c5:60:f3:18:f8: a0:f1:3f:26:53:4d:c4:d7:e4:17:d4:00:73:a8:2d:61:de:35: dd:14:e4:a4:e3:c5:3b:3a:3f:c5:f3:ac:e4:6c:8e:93:ff:b8: e3:53:b7:ba:6c:bc:7d:43:58:d8:d7:02:05:8c:8a:50:03:08: a8:c2:b0:b1:b6:f0:6c:f8:76:16:e9:70:08:e1:26:c0:5f:e5: 04:f1:e9:cb:6c:fb:c5:0d:86:9d:7c:e4:e3:5c:2c:97:b4:28: ca:f0:6b:4c:d0:7d:5b:b6:70:9d:8f:12:ba:5f:cf:f8:79:5d: b3:8d:4b:58:a8:bd:23:5a:e5:e9:96:e6:31:9b:fa:79:29:51: b9:66:62:70:ac:c6:34:fe:d0:ee:62:c3:ce:8c:25:7c:e8:2f: 66:55:9c:28:69:bf:69:ef:56:49:ad:8d:4d:f1:fd:9a:7a:51: c8:1c:81:1f:e4:06:86:f5:71:6b:de:65:9a:54:f2:3f:0c:2b: 4f:0c:3f:4d:b7:f1:07:5e:98:5a:23:f5:71:75:ea:ad:a5:ee: 76:36:32:00:cb:88:c2:10:c2:72:64:62:7a:de:96:48:6f:09: ba:9d:b3:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAT8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2MjMxMTAvBgNVBAUTKERBNzM2OUI0OTcyMkJBMTM5QjdCNjBGMzlDODhCNDlC REJCMzVGM0QwHhcNMjUwNDAzMDQwMTM2WhcNMjUwNDEwMDQwMTM2WjAYMRYwFAYD VQQDEw02N2VlMDgyMS1iNmNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8efqwr9PG6Pmb8/xNq5h+H/7OWnyp7gZw5+LORfzQcCcyb+/CGbyp572yZhl afOXdP+kYKSEHVhNp7MDibGvOhHuE1buv1LDX8M2/AMsvzTfrUd3bsosskDXme4L FxGBDIm8Ub62yEHUeW4asKr2CPQbGKCDDzbX4UO3YUBj6YMqwtpM411OD/ZZnu/o ZHuzNBjKkF0mhfZT/qbFDlD9JOPHIt6lNdeiBHVKtQ4Z4cKF3bKTzzmT2oiRQTC0 46lLGrG3uK0Lyvwyfm2Qx4lJOU5SvGQv8oSuOSRIT0cNv1VJJQZGA6LmaAmFCvcC M8vEbBShZzk236RbQv4YC8TJEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLzyg9nb PBAuGtepO296XSTW71NKMB8GA1UdIwQYMBaAFNpzabSXIroTm3tg85yItJvbs189 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTYyMy9BMjVENDg5RTUw NDcxMUVFQjY3NzM2NURDNEY5QUUwMi8ybk5wdEpjaXVoT2JlMkR6bklpMG05dXpY ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJuTnB0SmNpdWhPYmUyRHpuSWkwbTl1elh6MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTYyMy9BMjVENDg5RTUwNDcxMUVFQjY3NzM2NURDNEY5QUUwMi8ybk5wdEpjaXVo T2JlMkR6bklpMG05dXpYejAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNvHE3nOHty+h67KIqJx+/gcrY+mPyolPoTc2bURZsxWDzGPig8T8m U03E1+QX1ABzqC1h3jXdFOSk48U7Oj/F86zkbI6T/7jjU7e6bLx9Q1jY1wIFjIpQ AwiowrCxtvBs+HYW6XAI4SbAX+UE8enLbPvFDYadfOTjXCyXtCjK8GtM0H1btnCd jxK6X8/4eV2zjUtYqL0jWuXpluYxm/p5KVG5ZmJwrMY0/tDuYsPOjCV86C9mVZwo ab9p71ZJrY1N8f2aelHIHIEf5AaG9XFr3mWaVPI/DCtPDD9Nt/EHXphaI/Vxdeqt pe52NjIAy4jCEMJyZGJ63pZIbwm6nbN9 -----END CERTIFICATE-----Generated at Fri Apr 4 22:17:49 2025 by rpki-client