$ rpki-client -vvf rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft File: C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft (raw, json) Hash identifier: GqC0Zy2kNH7ULcwD2OinLM7h0IrB+IsHx4SVMAOZ4AM= Subject key identifier: 05:79:11:8C:A9:D8:ED:72:BF:30:D0:57:42:E9:B5:E0:77:A3:7F:48 Authority key identifier: 0B:6C:DF:3F:AC:C6:80:B7:86:92:6D:E1:39:F1:E0:F6:74:44:06:54 Certificate issuer: /CN=A91892EB/serialNumber=0B6CDF3FACC680B786926DE139F1E0F674440654 Certificate serial: 05C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zfP6zGgLeGkm3hOfHg9nREBlQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft Manifest number: 05B2 Signing time: Wed 16 Apr 2025 22:50:55 +0000 Manifest this update: Wed 16 Apr 2025 22:50:54 +0000 Manifest next update: Wed 23 Apr 2025 22:50:54 +0000 Files and hashes: 1: C2zfP6zGgLeGkm3hOfHg9nREBlQ.crl (hash: SK13WXH9idY8sQq2Pr8bY06qWsHJMO3FKG+hbe/O5Bc=) 2: 387532CEE46D11EE8DBC2937C4F9AE02.roa (hash: ruwggHNoAUFm9Chx4UGeH2/Ms9/ktBjyMv9b4cEeu5E=) 3: F4DC3C2AC59211EBAA9C5B7BC4F9AE02.roa (hash: Ofg177dT9U9TbFcWrgETTbW4rQYxs3ewgMOUkLe9Rug=) 4: F5BE1E346FFD11EE83D3D154C4F9AE02.roa (hash: zkvJXsg6ZbaTEwK193SUdCnoyTyMt79mUaZuDwnshuE=) 5: D4413B92007C11EE99460918C4F9AE02.roa (hash: bEBpIBlAOueDVvlaTSK/ST40bTuOmwGNh/38eLyftkg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.crl rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zfP6zGgLeGkm3hOfHg9nREBlQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 22:50:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1481 (0x5c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91892EB, serialNumber=0B6CDF3FACC680B786926DE139F1E0F674440654 Validity Not Before: Apr 16 22:50:54 2025 GMT Not After : Apr 23 22:50:54 2025 GMT Subject: CN=6800344f-96f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:fd:e0:44:3e:15:c4:13:39:b3:d8:68:43:cd: 14:65:14:1c:ca:a0:5b:65:82:80:67:4f:19:27:a3: 2d:aa:5d:93:01:16:9c:fe:b1:2a:90:41:79:1d:07: 38:b8:87:20:ea:42:6b:90:b6:c2:ee:2f:15:3b:9a: 92:c5:18:ba:f3:a5:11:0c:46:be:59:46:5f:af:1d: 93:5c:5d:e2:62:05:44:b1:d7:05:3f:53:36:7c:25: 36:bb:db:18:a1:c2:8d:6d:96:57:17:82:f0:a6:c5: c9:09:a3:78:a8:ee:11:9e:4d:4b:17:47:b9:4b:6a: 07:04:7a:09:06:fc:b5:7b:6f:38:23:56:b7:b3:df: 46:b8:53:5c:06:2f:41:fb:e5:ac:b3:bf:16:b6:e0: 46:1a:79:5c:37:4b:35:d2:7f:5b:00:08:de:9b:69: 26:0e:39:de:a2:b7:57:42:bb:c1:65:1d:ef:3e:d0: b3:a8:2e:53:37:a9:73:a8:41:bc:b8:b8:c2:48:15: a4:c5:49:5a:fc:e0:c5:3e:00:3f:2e:0d:7f:4f:e7: 7f:08:1e:18:55:3c:e9:2c:2d:c0:0e:c5:16:03:99: ff:9e:4e:ca:05:ca:fa:11:fa:74:2b:32:4a:d6:b7: 70:18:ea:ec:3b:9f:ae:ad:4d:72:d6:88:2b:03:a1: 2a:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:79:11:8C:A9:D8:ED:72:BF:30:D0:57:42:E9:B5:E0:77:A3:7F:48 X509v3 Authority Key Identifier: keyid:0B:6C:DF:3F:AC:C6:80:B7:86:92:6D:E1:39:F1:E0:F6:74:44:06:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zfP6zGgLeGkm3hOfHg9nREBlQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:05:22:94:0c:e2:30:91:48:3b:08:2e:52:d7:42:fd:69:7e: fe:f4:ae:96:a9:3b:7a:83:34:7b:a0:d9:72:fb:ed:bd:50:59: 24:07:e1:bc:42:a1:3f:cf:6b:e2:c4:41:72:8c:27:b9:5d:b0: b1:0c:92:6b:bf:81:aa:9f:bf:da:7a:2a:b0:c0:46:19:55:67: 4b:41:51:59:0e:a9:32:1b:3b:f4:be:6b:df:8c:3a:cb:9b:f9: 75:7e:f0:80:e9:53:6c:37:e9:e5:04:f7:df:b5:d8:54:42:22: b8:6f:80:59:3a:a3:17:ea:e3:a2:c9:b7:63:ed:3a:af:0e:14: bd:7d:ef:76:d9:ec:ba:cf:d8:46:9d:38:b8:87:f5:42:9e:df: 93:b3:c9:ad:f6:e1:65:07:61:1d:93:ca:37:1f:24:35:6e:00: 06:6b:e1:96:7a:83:71:bb:bb:1e:32:5d:02:f7:94:46:f3:7e: a9:88:18:a6:d9:7a:09:b4:44:ee:76:7e:92:ea:4a:16:04:9b: 22:5c:82:01:5b:2c:ac:1c:77:40:7f:6c:f9:34:bf:c5:67:48: b3:a0:ca:18:27:88:34:46:f6:43:1c:62:fa:e3:c3:6b:d2:67: 20:76:e3:d2:36:2a:d7:57:3a:0b:d7:08:47:47:c2:d1:a2:23: 20:4b:a1:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBckwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkyRUIxMTAvBgNVBAUTKDBCNkNERjNGQUNDNjgwQjc4NjkyNkRFMTM5RjFFMEY2 NzQ0NDA2NTQwHhcNMjUwNDE2MjI1MDU0WhcNMjUwNDIzMjI1MDU0WjAYMRYwFAYD VQQDEw02ODAwMzQ0Zi05NmYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqP3gRD4VxBM5s9hoQ80UZRQcyqBbZYKAZ08ZJ6Mtql2TARac/rEqkEF5HQc4 uIcg6kJrkLbC7i8VO5qSxRi686URDEa+WUZfrx2TXF3iYgVEsdcFP1M2fCU2u9sY ocKNbZZXF4LwpsXJCaN4qO4Rnk1LF0e5S2oHBHoJBvy1e284I1a3s99GuFNcBi9B ++Wss78WtuBGGnlcN0s10n9bAAjem2kmDjneordXQrvBZR3vPtCzqC5TN6lzqEG8 uLjCSBWkxUla/ODFPgA/Lg1/T+d/CB4YVTzpLC3ADsUWA5n/nk7KBcr6Efp0KzJK 1rdwGOrsO5+urU1y1ogrA6EqTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAV5EYyp 2O1yvzDQV0LpteB3o39IMB8GA1UdIwQYMBaAFAts3z+sxoC3hpJt4Tnx4PZ0RAZU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTJFQi9GRDAwODFERUM1 NjcxMUVCQUZFQTYwMkJDNEY5QUUwMi9DMnpmUDZ6R2dMZUdrbTNoT2ZIZzluUkVC bFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MyemZQNnpHZ0xlR2ttM2hPZkhnOW5SRUJsUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTJFQi9GRDAwODFERUM1NjcxMUVCQUZFQTYwMkJDNEY5QUUwMi9DMnpmUDZ6R2dM ZUdrbTNoT2ZIZzluUkVCbFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmBSKUDOIwkUg7CC5S10L9aX7+9K6WqTt6gzR7oNly++29UFkkB+G8 QqE/z2vixEFyjCe5XbCxDJJrv4Gqn7/aeiqwwEYZVWdLQVFZDqkyGzv0vmvfjDrL m/l1fvCA6VNsN+nlBPfftdhUQiK4b4BZOqMX6uOiybdj7TqvDhS9fe922ey6z9hG nTi4h/VCnt+Ts8mt9uFlB2Edk8o3HyQ1bgAGa+GWeoNxu7seMl0C95RG836piBim 2XoJtETudn6S6koWBJsiXIIBWyysHHdAf2z5NL/FZ0izoMoYJ4g0RvZDHGL648Nr 0mcgduPSNirXVzoL1whHR8LRoiMgS6GM -----END CERTIFICATE-----Generated at Fri Apr 18 10:16:58 2025 by rpki-client