$ rpki-client -vvf rpki.apnic.net/member_repository/A9186D9F/B290A3462E0411EF86F29D79C4F9AE02/2DPFFS4_LSebiQT4PQDdkKymK9U.mft File: 2DPFFS4_LSebiQT4PQDdkKymK9U.mft (raw, json) Hash identifier: ww9FUksfQiWoKZbylFKEq4tI6sCBG01FOgPrFlWmaFc= Subject key identifier: AD:FC:22:47:A6:22:74:B5:45:E9:73:EE:55:FD:35:77:DC:4F:64:B8 Authority key identifier: D8:33:C5:15:2E:3F:2D:27:9B:89:04:F8:3D:00:DD:90:AC:A6:2B:D5 Certificate issuer: /CN=A9186D9F/serialNumber=D833C5152E3F2D279B8904F83D00DD90ACA62BD5 Certificate serial: 9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DPFFS4_LSebiQT4PQDdkKymK9U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186D9F/B290A3462E0411EF86F29D79C4F9AE02/2DPFFS4_LSebiQT4PQDdkKymK9U.mft Manifest number: 9B Signing time: Thu 17 Apr 2025 05:05:03 +0000 Manifest this update: Thu 17 Apr 2025 05:05:02 +0000 Manifest next update: Thu 24 Apr 2025 05:05:02 +0000 Files and hashes: 1: 2DPFFS4_LSebiQT4PQDdkKymK9U.crl (hash: 5NR4F/lQc7TKkKX4e4wOIb2h6aXZxq3vtC6GODpN72k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186D9F/B290A3462E0411EF86F29D79C4F9AE02/2DPFFS4_LSebiQT4PQDdkKymK9U.crl rsync://rpki.apnic.net/member_repository/A9186D9F/B290A3462E0411EF86F29D79C4F9AE02/2DPFFS4_LSebiQT4PQDdkKymK9U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DPFFS4_LSebiQT4PQDdkKymK9U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Apr 2025 05:05:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 155 (0x9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186D9F, serialNumber=D833C5152E3F2D279B8904F83D00DD90ACA62BD5 Validity Not Before: Apr 17 05:05:02 2025 GMT Not After : Apr 24 05:05:02 2025 GMT Subject: CN=68008bfe-b5ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:bb:c3:0d:54:96:9a:14:11:91:85:90:4c:dd: 16:a5:07:1d:0a:a1:3b:ba:4d:ad:e6:9d:98:aa:47: dc:9e:36:c3:6c:58:39:61:5a:85:33:bf:ad:5d:9d: f5:bf:4e:df:37:3a:d7:8a:67:01:9c:d5:d0:1a:ab: 51:99:db:66:06:94:33:b0:9b:5c:b7:cf:2c:94:cb: 0d:5b:84:78:84:41:38:11:f5:67:c9:62:8c:a4:ce: 30:1e:7e:2c:85:9d:1a:55:c5:9a:c9:81:6f:f1:66: 5c:2b:42:46:bc:86:eb:8a:55:81:b8:77:5e:ee:6a: 31:95:53:89:3e:ed:08:d7:96:fd:0f:8e:6e:87:d6: d6:89:4a:a2:99:5c:d0:2b:dc:46:3e:27:c7:53:b9: 66:66:3f:d8:b3:7e:d4:87:0c:26:20:76:15:00:c0: fc:97:63:59:4f:e4:36:36:e6:a5:6a:ef:ce:52:bb: c4:fe:68:da:95:07:87:ad:0e:f0:af:60:e0:50:bc: 88:47:77:80:e2:fe:af:ba:5a:df:99:d8:15:85:db: 5b:68:4b:2c:56:a7:a8:eb:c9:f6:af:0b:0e:b8:08: 1f:85:d1:71:8b:af:3b:d0:7e:68:62:12:35:c8:b3: ad:e0:04:27:a8:66:18:13:08:48:24:c5:22:4f:6a: f6:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:FC:22:47:A6:22:74:B5:45:E9:73:EE:55:FD:35:77:DC:4F:64:B8 X509v3 Authority Key Identifier: keyid:D8:33:C5:15:2E:3F:2D:27:9B:89:04:F8:3D:00:DD:90:AC:A6:2B:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186D9F/B290A3462E0411EF86F29D79C4F9AE02/2DPFFS4_LSebiQT4PQDdkKymK9U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DPFFS4_LSebiQT4PQDdkKymK9U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186D9F/B290A3462E0411EF86F29D79C4F9AE02/2DPFFS4_LSebiQT4PQDdkKymK9U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:a5:a0:cf:b8:ff:fd:a7:0d:8c:15:5d:6d:84:86:d4:1f:02: 69:8c:60:c5:72:0a:13:72:6f:1c:08:dc:ec:53:85:19:ba:ee: b9:f2:fa:a7:0c:49:6c:9a:be:01:e7:d6:3c:a6:97:ba:7d:1b: 90:86:a4:6b:fa:cb:d5:27:d0:a0:66:33:43:c8:94:4e:16:1c: c9:cf:b4:60:53:28:78:2e:89:d1:b9:ef:fa:f4:76:99:af:5a: 8e:d7:49:11:0a:37:3e:6c:4c:05:32:6b:91:aa:57:37:02:f0: 97:9c:4d:ea:19:1e:a9:38:59:59:ce:f1:57:75:68:91:f7:9e: f3:d8:44:2b:c5:8e:1d:a1:68:33:a3:5c:62:f6:5a:eb:18:68: 8f:a0:bd:ee:0a:26:f6:96:99:4d:f0:18:b5:c1:80:f7:3d:57: e8:91:2b:e6:10:d9:80:78:c1:dc:07:46:e0:b3:39:38:74:94: 01:cd:70:da:20:8e:76:84:fa:ee:cb:51:8b:51:b3:96:26:f7: 65:7b:39:f6:84:3e:3c:80:52:5e:f6:2b:2f:f8:84:ab:db:7e: f9:65:d6:fa:9d:ff:41:ea:7c:2c:46:46:99:d4:0c:62:91:70: d1:d2:61:03:5f:1e:e0:92:88:e8:b8:d9:f2:2e:95:e3:82:e5: ce:d9:a7:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODZEOUYxMTAvBgNVBAUTKEQ4MzNDNTE1MkUzRjJEMjc5Qjg5MDRGODNEMDBERDkw QUNBNjJCRDUwHhcNMjUwNDE3MDUwNTAyWhcNMjUwNDI0MDUwNTAyWjAYMRYwFAYD VQQDEw02ODAwOGJmZS1iNWVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2rvDDVSWmhQRkYWQTN0WpQcdCqE7uk2t5p2YqkfcnjbDbFg5YVqFM7+tXZ31 v07fNzrXimcBnNXQGqtRmdtmBpQzsJtct88slMsNW4R4hEE4EfVnyWKMpM4wHn4s hZ0aVcWayYFv8WZcK0JGvIbrilWBuHde7moxlVOJPu0I15b9D45uh9bWiUqimVzQ K9xGPifHU7lmZj/Ys37UhwwmIHYVAMD8l2NZT+Q2Nualau/OUrvE/mjalQeHrQ7w r2DgULyIR3eA4v6vulrfmdgVhdtbaEssVqeo68n2rwsOuAgfhdFxi6870H5oYhI1 yLOt4AQnqGYYEwhIJMUiT2r2RwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK38Ikem InS1Relz7lX9NXfcT2S4MB8GA1UdIwQYMBaAFNgzxRUuPy0nm4kE+D0A3ZCspivV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NkQ5Ri9CMjkwQTM0NjJF MDQxMUVGODZGMjlENzlDNEY5QUUwMi8yRFBGRlM0X0xTZWJpUVQ0UFFEZGtLeW1L OVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJEUEZGUzRfTFNlYmlRVDRQUURka0t5bUs5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NkQ5Ri9CMjkwQTM0NjJFMDQxMUVGODZGMjlENzlDNEY5QUUwMi8yRFBGRlM0X0xT ZWJpUVQ0UFFEZGtLeW1LOVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgpaDPuP/9pw2MFV1thIbUHwJpjGDFcgoTcm8cCNzsU4UZuu658vqn DElsmr4B59Y8ppe6fRuQhqRr+svVJ9CgZjNDyJROFhzJz7RgUyh4LonRue/69HaZ r1qO10kRCjc+bEwFMmuRqlc3AvCXnE3qGR6pOFlZzvFXdWiR957z2EQrxY4doWgz o1xi9lrrGGiPoL3uCib2lplN8Bi1wYD3PVfokSvmENmAeMHcB0bgszk4dJQBzXDa II52hPruy1GLUbOWJvdlezn2hD48gFJe9isv+ISr2375Zdb6nf9B6nwsRkaZ1Axi kXDR0mEDXx7gkojouNnyLpXjguXO2afR -----END CERTIFICATE-----Generated at Sat Apr 19 03:38:42 2025 by rpki-client