$ rpki-client -vvf rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.mft File: 2wMnFEPnXW0ZUFDtyLYT7V_72Dg.mft (raw, json) Hash identifier: GCHO1zgOwrqa7ExbDVwVJ3xH2Lw7Xvrbpf1VBng9zBo= Subject key identifier: 9B:F2:43:0B:33:70:91:11:0C:B4:5F:02:5C:8D:B1:50:0E:09:74:5E Authority key identifier: DB:03:27:14:43:E7:5D:6D:19:50:50:ED:C8:B6:13:ED:5F:FB:D8:38 Certificate issuer: /CN=A91889B6/serialNumber=DB03271443E75D6D195050EDC8B613ED5FFBD838 Certificate serial: 3470 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.mft Manifest number: 346D Signing time: Fri 04 Apr 2025 14:50:15 +0000 Manifest this update: Fri 04 Apr 2025 14:50:14 +0000 Manifest next update: Fri 11 Apr 2025 14:50:14 +0000 Files and hashes: 1: 2wMnFEPnXW0ZUFDtyLYT7V_72Dg.crl (hash: bonHl/t2uX7Vvu9T8W6KRjxSgZ75/FX19av+v9tGLGA=) 2: 10E0F1884D0C11EE81002274C4F9AE02.roa (hash: OUXfbXIv2KGUcMt1yzZeYDgmZBLfK/Afrx3klkuMb44=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.crl rsync://rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 14:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13424 (0x3470) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91889B6 Validity Not Before: Apr 4 14:50:14 2025 GMT Not After : Apr 11 14:50:14 2025 GMT Subject: CN=67eff1a6-cee6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f6:f5:42:45:21:be:73:3d:3a:2a:84:b5:25: 0d:a1:98:bc:33:04:dd:83:65:9d:2c:92:73:d1:3a: d1:60:2e:e6:99:a8:1e:01:be:96:7c:3f:13:f1:c8: 3c:6f:a6:3d:c4:19:8c:f2:bb:c3:21:7a:56:2c:c2: cc:33:51:f7:88:63:6f:b6:6c:40:0d:d1:60:de:3c: 3a:bf:74:ae:cd:aa:fb:85:88:93:e7:3d:d6:09:bb: 94:9c:11:d5:21:1f:57:f6:13:6a:c4:34:a4:7f:37: 04:90:ce:72:34:26:aa:7a:dd:07:b4:a9:95:b2:e1: 93:fb:17:3c:0e:b0:30:33:2d:93:5e:e6:aa:b0:d0: 20:c8:5d:d8:3e:c2:a8:32:ab:67:90:0a:8f:83:ab: 0a:eb:c7:08:cd:db:15:8a:78:c0:ed:9e:70:c8:f9: a7:d2:bf:93:99:da:2f:1d:c8:25:ee:85:04:2a:f7: 54:20:46:de:08:d5:9b:05:69:42:ee:66:0e:84:61: 0a:bb:44:5e:b6:6f:fc:da:99:41:91:b6:dd:ef:c7: e2:2d:4c:66:bf:48:8c:dc:a8:d9:8e:7e:72:be:cb: 9d:49:78:01:1c:f0:1c:3c:9d:68:70:4f:38:4c:74: 64:91:34:b6:48:10:ce:33:c2:72:6e:84:6d:d2:b9: ac:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:F2:43:0B:33:70:91:11:0C:B4:5F:02:5C:8D:B1:50:0E:09:74:5E X509v3 Authority Key Identifier: keyid:DB:03:27:14:43:E7:5D:6D:19:50:50:ED:C8:B6:13:ED:5F:FB:D8:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:e5:f7:60:65:28:42:ee:da:40:ac:6b:78:18:39:bd:a8:dd: 93:9c:9a:61:aa:9e:19:0e:fc:c2:0a:d3:ce:32:9c:6b:ef:c2: b7:a0:d0:28:9f:0b:59:e0:df:55:75:03:3f:f1:a3:21:17:00: cd:86:be:4f:d1:3e:f2:60:61:4a:31:55:e8:e9:42:fb:db:10: 09:bf:f3:1c:8c:27:2e:f8:63:55:cf:ba:49:9a:32:f7:3e:d1: dc:01:04:d1:c8:4d:a3:14:5b:1f:67:47:7e:ad:80:1b:f0:85: 1c:66:43:cc:03:06:e2:e3:34:40:d0:8d:c2:57:22:d3:d4:a1: af:c3:81:42:92:60:67:0b:a3:f6:c3:38:7f:7b:1c:41:7b:10: f5:16:72:36:75:a3:99:85:c9:e6:64:2f:be:06:08:db:04:ea: cc:3a:59:d4:d7:a6:b8:9d:f3:77:97:aa:f4:2e:a2:69:fb:67: 8d:12:63:76:6b:5a:73:6f:8d:d7:63:69:5e:d3:52:4f:be:06: ec:c7:29:e3:c8:19:dd:ab:ab:bd:da:d7:e1:71:95:35:75:3a: 0b:e6:3c:8c:6a:41:b4:bf:61:fb:84:5e:65:6d:10:4b:67:fe: 67:a8:18:fd:8b:1f:45:96:f0:86:da:fd:64:8d:bc:5d:2a:8d: 95:5b:b0:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNHAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODg5QjYxMTAvBgNVBAUTKERCMDMyNzE0NDNFNzVENkQxOTUwNTBFREM4QjYxM0VE NUZGQkQ4MzgwHhcNMjUwNDA0MTQ1MDE0WhcNMjUwNDExMTQ1MDE0WjAYMRYwFAYD VQQDEw02N2VmZjFhNi1jZWU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwvb1QkUhvnM9OiqEtSUNoZi8MwTdg2WdLJJz0TrRYC7mmageAb6WfD8T8cg8 b6Y9xBmM8rvDIXpWLMLMM1H3iGNvtmxADdFg3jw6v3Suzar7hYiT5z3WCbuUnBHV IR9X9hNqxDSkfzcEkM5yNCaqet0HtKmVsuGT+xc8DrAwMy2TXuaqsNAgyF3YPsKo MqtnkAqPg6sK68cIzdsVinjA7Z5wyPmn0r+TmdovHcgl7oUEKvdUIEbeCNWbBWlC 7mYOhGEKu0Retm/82plBkbbd78fiLUxmv0iM3KjZjn5yvsudSXgBHPAcPJ1ocE84 THRkkTS2SBDOM8JyboRt0rmscwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJvyQwsz cJERDLRfAlyNsVAOCXReMB8GA1UdIwQYMBaAFNsDJxRD511tGVBQ7ci2E+1f+9g4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4ODlCNi8zOUFBMEEwMjFE OTYxMUUyQTY1NDhFN0UwOEIwMkNEMi8yd01uRkVQblhXMFpVRkR0eUxZVDdWXzcy RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ3TW5GRVBuWFcwWlVGRHR5TFlUN1ZfNzJEZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 ODlCNi8zOUFBMEEwMjFEOTYxMUUyQTY1NDhFN0UwOEIwMkNEMi8yd01uRkVQblhX MFpVRkR0eUxZVDdWXzcyRGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB45fdgZShC7tpArGt4GDm9qN2TnJphqp4ZDvzCCtPOMpxr78K3oNAo nwtZ4N9VdQM/8aMhFwDNhr5P0T7yYGFKMVXo6UL72xAJv/McjCcu+GNVz7pJmjL3 PtHcAQTRyE2jFFsfZ0d+rYAb8IUcZkPMAwbi4zRA0I3CVyLT1KGvw4FCkmBnC6P2 wzh/exxBexD1FnI2daOZhcnmZC++BgjbBOrMOlnU16a4nfN3l6r0LqJp+2eNEmN2 a1pzb43XY2le01JPvgbsxynjyBndq6u92tfhcZU1dToL5jyMakG0v2H7hF5lbRBL Z/5nqBj9ix9FlvCG2v1kjbxdKo2VW7Bw -----END CERTIFICATE-----Generated at Fri Apr 4 22:06:52 2025 by rpki-client