$ rpki-client -vvf rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft File: r2oY2zoHHvGMylvos1Qz31RPD7I.mft (raw, json) Hash identifier: H6ebQwMIDNtHDxmiCOzQ1smwc+rrSwwGKnF6F1YwzY8= Subject key identifier: DF:CE:81:DA:49:0B:2D:7F:AA:68:3C:B8:67:8B:F2:F4:4A:DE:A5:63 Authority key identifier: AF:6A:18:DB:3A:07:1E:F1:8C:CA:5B:E8:B3:54:33:DF:54:4F:0F:B2 Certificate issuer: /CN=A918E20E/serialNumber=AF6A18DB3A071EF18CCA5BE8B35433DF544F0FB2 Certificate serial: 0BA1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2oY2zoHHvGMylvos1Qz31RPD7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft Manifest number: 0B9B Signing time: Fri 04 Apr 2025 19:04:25 +0000 Manifest this update: Fri 04 Apr 2025 19:04:25 +0000 Manifest next update: Fri 11 Apr 2025 19:04:25 +0000 Files and hashes: 1: r2oY2zoHHvGMylvos1Qz31RPD7I.crl (hash: C2THiFG32rPA0MbNGdDIh0m21aHnocvqSGnIVXW7G8c=) 2: BFA3B5F81FC911EA8CF04E61C4F9AE02.roa (hash: tRDPOuysTM3j6RUChVc/lZ1Ir+BGvYj0vPYVhGcTQNo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.crl rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2oY2zoHHvGMylvos1Qz31RPD7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 19:04:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2977 (0xba1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E20E Validity Not Before: Apr 4 19:04:25 2025 GMT Not After : Apr 11 19:04:25 2025 GMT Subject: CN=67f02d39-280d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:56:56:2f:75:24:b4:d0:96:a9:52:09:9c:12: 05:9d:37:c6:a5:00:e8:1f:e8:00:18:c6:98:88:e7: b8:a5:7f:d9:65:1f:e2:e9:12:00:35:c8:10:89:5f: 8b:d7:34:f0:a2:51:65:68:92:40:79:55:b0:ee:9d: a9:77:17:e6:06:21:f4:e3:fd:aa:fe:e7:db:fd:66: 6c:44:81:62:f9:d0:81:65:ea:4d:0b:61:21:f2:6e: 82:38:95:23:4d:b2:57:76:80:03:3c:26:37:47:65: 34:ea:50:9f:5e:1b:11:f4:53:ea:ab:c6:31:dd:02: fb:2a:c1:00:16:28:77:65:bd:4b:09:ac:8a:70:b0: 1d:58:3d:54:0d:41:84:6a:c0:0b:03:8b:80:40:fd: 37:4f:08:d1:cc:02:c0:a7:f7:6f:c3:3f:f8:b5:46: 3a:ce:a5:03:5e:28:0c:cd:27:c0:b1:58:46:8a:32: 60:a9:85:75:6a:cb:97:78:44:7b:f4:bd:96:27:3b: f4:3d:81:47:38:6d:62:d6:c4:25:60:07:17:63:2f: 68:6d:02:57:b0:c2:48:9f:26:e9:c0:15:22:fb:97: 72:50:9a:b6:56:df:6e:8c:7c:fc:2a:3a:7e:3d:9a: 3c:51:fe:af:d0:b4:ac:04:e4:57:de:30:53:50:37: de:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:CE:81:DA:49:0B:2D:7F:AA:68:3C:B8:67:8B:F2:F4:4A:DE:A5:63 X509v3 Authority Key Identifier: keyid:AF:6A:18:DB:3A:07:1E:F1:8C:CA:5B:E8:B3:54:33:DF:54:4F:0F:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2oY2zoHHvGMylvos1Qz31RPD7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:5f:aa:fd:e3:bc:ea:04:ec:61:d5:dd:1a:f6:55:a3:7a:c7: b9:6d:01:19:76:5b:04:9b:18:3a:cf:f8:90:e5:a4:dd:ac:19: a9:a3:58:7b:e4:a0:54:8f:c2:18:79:77:d8:33:23:ea:f7:d3: d0:4b:21:92:4b:7d:97:97:7d:74:e6:a6:e8:d5:98:22:a1:44: ac:0e:5d:8c:e6:3b:3e:31:96:bb:6d:f2:90:c0:58:e7:34:16: 54:08:fa:b1:72:3b:dc:68:61:25:c8:ca:a8:f1:ed:5c:a6:1a: db:e6:bb:58:69:cc:75:72:f2:ed:25:15:bc:1b:62:0e:35:93: bd:5c:21:d1:ca:8b:b9:d4:56:99:a4:34:79:0f:7f:e2:39:d8: 10:28:82:cf:c8:d0:dc:9a:d4:f9:38:c2:37:52:6b:0a:45:8a: 2c:18:ef:7a:2d:d9:90:43:db:4c:a9:d9:2e:7f:e2:7e:26:1a: 59:fa:72:da:d6:26:04:6d:e7:90:0d:55:ff:d3:1b:f3:8d:14: dc:7c:2d:ad:ce:ca:8f:ff:a4:35:3d:58:73:e6:36:94:ad:eb: bd:39:b3:c0:cf:0c:ab:d5:43:09:5f:68:d2:58:27:46:86:f1: eb:8f:7a:89:c7:aa:3f:6b:1e:bb:d0:35:58:07:e0:e5:1b:63: fa:b3:21:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC6EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEUyMEUxMTAvBgNVBAUTKEFGNkExOERCM0EwNzFFRjE4Q0NBNUJFOEIzNTQzM0RG NTQ0RjBGQjIwHhcNMjUwNDA0MTkwNDI1WhcNMjUwNDExMTkwNDI1WjAYMRYwFAYD VQQDEw02N2YwMmQzOS0yODBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw1ZWL3UktNCWqVIJnBIFnTfGpQDoH+gAGMaYiOe4pX/ZZR/i6RIANcgQiV+L 1zTwolFlaJJAeVWw7p2pdxfmBiH04/2q/ufb/WZsRIFi+dCBZepNC2Eh8m6COJUj TbJXdoADPCY3R2U06lCfXhsR9FPqq8Yx3QL7KsEAFih3Zb1LCayKcLAdWD1UDUGE asALA4uAQP03TwjRzALAp/dvwz/4tUY6zqUDXigMzSfAsVhGijJgqYV1asuXeER7 9L2WJzv0PYFHOG1i1sQlYAcXYy9obQJXsMJInybpwBUi+5dyUJq2Vt9ujHz8Kjp+ PZo8Uf6v0LSsBORX3jBTUDfe0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN/OgdpJ Cy1/qmg8uGeL8vRK3qVjMB8GA1UdIwQYMBaAFK9qGNs6Bx7xjMpb6LNUM99UTw+y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTIwRS8yM0FBRDk4RTFG QzgxMUVBODQ1OTRGNUVDNEY5QUUwMi9yMm9ZMnpvSEh2R015bHZvczFRejMxUlBE N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Iyb1kyem9ISHZHTXlsdm9zMVF6MzFSUEQ3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTIwRS8yM0FBRDk4RTFGQzgxMUVBODQ1OTRGNUVDNEY5QUUwMi9yMm9ZMnpvSEh2 R015bHZvczFRejMxUlBEN0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8X6r947zqBOxh1d0a9lWjese5bQEZdlsEmxg6z/iQ5aTdrBmpo1h7 5KBUj8IYeXfYMyPq99PQSyGSS32Xl3105qbo1ZgioUSsDl2M5js+MZa7bfKQwFjn NBZUCPqxcjvcaGElyMqo8e1cphrb5rtYacx1cvLtJRW8G2IONZO9XCHRyou51FaZ pDR5D3/iOdgQKILPyNDcmtT5OMI3UmsKRYosGO96LdmQQ9tMqdkuf+J+JhpZ+nLa 1iYEbeeQDVX/0xvzjRTcfC2tzsqP/6Q1PVhz5jaUreu9ObPAzwyr1UMJX2jSWCdG hvHrj3qJx6o/ax670DVYB+DlG2P6syGa -----END CERTIFICATE-----Generated at Sat Apr 5 22:17:31 2025 by rpki-client