$ rpki-client -vvf rpki.apnic.net/member_repository/A918E74A/B0682EE4C23B11ED91687921C4F9AE02/s2MvNI2Zt8k-43IQ13M9KC8UWko.mft File: s2MvNI2Zt8k-43IQ13M9KC8UWko.mft (raw, json) Hash identifier: o9FeWmTg4IbGdnF3MFYlADrWrwhGgCt8MrpwtNLdHO8= Subject key identifier: A3:BF:85:51:01:DE:47:51:CA:4E:F2:8F:CD:0C:26:BE:AF:A3:D4:3B Authority key identifier: B3:63:2F:34:8D:99:B7:C9:3E:E3:72:10:D7:73:3D:28:2F:14:5A:4A Certificate issuer: /CN=A918E74A/serialNumber=B3632F348D99B7C93EE37210D7733D282F145A4A Certificate serial: 0183 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s2MvNI2Zt8k-43IQ13M9KC8UWko.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E74A/B0682EE4C23B11ED91687921C4F9AE02/s2MvNI2Zt8k-43IQ13M9KC8UWko.mft Manifest number: 0180 Signing time: Sat 29 Mar 2025 03:10:52 +0000 Manifest this update: Sat 29 Mar 2025 03:10:51 +0000 Manifest next update: Sat 05 Apr 2025 03:10:51 +0000 Files and hashes: 1: s2MvNI2Zt8k-43IQ13M9KC8UWko.crl (hash: gyj6SiMMUVHA/4jwr7v6eR19vZ9sdy3LCdEgP//SH9Q=) 2: A0B1EDDCC24011ED80139928C4F9AE02.roa (hash: iHBYWe6ERJgNXTSiQBDXZCN/lwk7Ia+HfQGsPjr80VQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E74A/B0682EE4C23B11ED91687921C4F9AE02/s2MvNI2Zt8k-43IQ13M9KC8UWko.crl rsync://rpki.apnic.net/member_repository/A918E74A/B0682EE4C23B11ED91687921C4F9AE02/s2MvNI2Zt8k-43IQ13M9KC8UWko.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s2MvNI2Zt8k-43IQ13M9KC8UWko.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 03:10:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 387 (0x183) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E74A Validity Not Before: Mar 29 03:10:51 2025 GMT Not After : Apr 5 03:10:51 2025 GMT Subject: CN=67e764bc-bdb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:a9:68:8a:b3:1b:eb:8e:b8:75:80:7a:bd:3a: 15:8c:fd:56:c1:36:cd:5b:18:fd:3c:29:f7:02:3e: dc:f3:6a:27:d1:fe:f8:b0:2a:78:07:22:96:4e:a2: a4:d9:1d:c2:0b:14:47:a9:a8:44:3d:d2:8b:a1:fe: 0b:aa:13:40:44:54:67:a8:bd:22:9c:68:ba:f3:a1: 0f:0a:fb:dd:e4:e0:07:15:2d:07:68:4c:8e:90:b0: ea:b2:3f:84:73:eb:00:34:ad:3b:55:37:92:ab:34: 3b:c2:04:b2:7b:94:62:40:ea:8f:5f:85:64:aa:ad: c8:eb:8e:96:73:b4:fd:29:3b:4d:02:2c:94:e9:f1: a6:97:69:68:6e:8d:49:60:6c:12:df:ba:88:6b:fd: 92:e1:b8:11:ff:34:59:98:b5:94:d3:cd:4c:ce:82: 39:c2:1e:11:4e:f1:7d:be:58:07:c7:c6:57:18:b0: e3:55:01:0a:fb:50:c3:27:bc:31:ec:e1:20:4c:19: f3:34:3b:3a:e4:2c:20:86:26:36:9b:c3:76:b6:e3: 22:49:e7:b2:71:52:87:56:ae:8e:5c:b0:8f:01:19: 35:f1:8b:e8:ca:30:37:ac:f2:84:9a:f9:b6:58:70: d0:15:ef:fd:d1:41:3e:bf:e5:4c:c7:55:72:2a:01: 2b:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:BF:85:51:01:DE:47:51:CA:4E:F2:8F:CD:0C:26:BE:AF:A3:D4:3B X509v3 Authority Key Identifier: keyid:B3:63:2F:34:8D:99:B7:C9:3E:E3:72:10:D7:73:3D:28:2F:14:5A:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E74A/B0682EE4C23B11ED91687921C4F9AE02/s2MvNI2Zt8k-43IQ13M9KC8UWko.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s2MvNI2Zt8k-43IQ13M9KC8UWko.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E74A/B0682EE4C23B11ED91687921C4F9AE02/s2MvNI2Zt8k-43IQ13M9KC8UWko.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:bf:25:95:99:87:01:61:bf:69:74:90:5c:44:6b:6d:fb:dd: 51:00:13:39:0e:71:90:08:2a:f1:3f:77:4f:10:2d:b2:d7:57: 50:20:6f:5b:5c:03:73:5c:f2:65:60:3a:ee:15:10:10:11:e9: db:1a:02:ca:9a:03:64:35:25:cd:cc:c0:d8:5b:6e:d7:3a:c6: 00:ed:c9:c0:d6:af:e0:12:d3:23:14:fc:c0:3a:32:91:95:bf: 75:7a:a4:b1:74:7f:07:be:31:a8:bb:0b:ac:7a:11:fd:40:7c: b5:27:fb:ad:3e:02:08:27:29:60:26:e8:97:2c:ae:0a:09:1b: 4e:07:7a:44:86:9e:e4:9f:12:f0:bd:24:b4:5b:78:79:b8:e1: 8f:e9:0b:54:1c:f0:5e:74:66:d9:f5:e3:90:a6:08:d0:ae:00: 69:da:bb:b7:71:4f:e5:e0:7a:b8:88:0f:19:af:6f:d9:82:98: b4:b9:3e:a4:a8:29:74:29:b5:46:bd:9f:08:a2:04:c4:ca:8f: 63:e9:8a:5d:e4:87:09:6c:af:12:1d:5a:e5:e0:f8:d6:3f:54: df:1d:2e:8f:06:63:9e:5d:8f:bf:34:34:18:b7:07:12:8c:b0: dd:52:76:21:5a:51:d5:1f:84:4a:2d:84:2a:8f:a4:2c:70:17: 0a:af:68:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU3NEExMTAvBgNVBAUTKEIzNjMyRjM0OEQ5OUI3QzkzRUUzNzIxMEQ3NzMzRDI4 MkYxNDVBNEEwHhcNMjUwMzI5MDMxMDUxWhcNMjUwNDA1MDMxMDUxWjAYMRYwFAYD VQQDEw02N2U3NjRiYy1iZGI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApaloirMb6464dYB6vToVjP1WwTbNWxj9PCn3Aj7c82on0f74sCp4ByKWTqKk 2R3CCxRHqahEPdKLof4LqhNARFRnqL0inGi686EPCvvd5OAHFS0HaEyOkLDqsj+E c+sANK07VTeSqzQ7wgSye5RiQOqPX4Vkqq3I646Wc7T9KTtNAiyU6fGml2lobo1J YGwS37qIa/2S4bgR/zRZmLWU081MzoI5wh4RTvF9vlgHx8ZXGLDjVQEK+1DDJ7wx 7OEgTBnzNDs65CwghiY2m8N2tuMiSeeycVKHVq6OXLCPARk18YvoyjA3rPKEmvm2 WHDQFe/90UE+v+VMx1VyKgErawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKO/hVEB 3kdRyk7yj80MJr6vo9Q7MB8GA1UdIwQYMBaAFLNjLzSNmbfJPuNyENdzPSgvFFpK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTc0QS9CMDY4MkVFNEMy M0IxMUVEOTE2ODc5MjFDNEY5QUUwMi9zMk12TkkyWnQ4ay00M0lRMTNNOUtDOFVX a28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3MyTXZOSTJadDhrLTQzSVExM005S0M4VVdrby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTc0QS9CMDY4MkVFNEMyM0IxMUVEOTE2ODc5MjFDNEY5QUUwMi9zMk12TkkyWnQ4 ay00M0lRMTNNOUtDOFVXa28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRvyWVmYcBYb9pdJBcRGtt+91RABM5DnGQCCrxP3dPEC2y11dQIG9b XANzXPJlYDruFRAQEenbGgLKmgNkNSXNzMDYW27XOsYA7cnA1q/gEtMjFPzAOjKR lb91eqSxdH8HvjGouwusehH9QHy1J/utPgIIJylgJuiXLK4KCRtOB3pEhp7knxLw vSS0W3h5uOGP6QtUHPBedGbZ9eOQpgjQrgBp2ru3cU/l4Hq4iA8Zr2/Zgpi0uT6k qCl0KbVGvZ8IogTEyo9j6Ypd5IcJbK8SHVrl4PjWP1TfHS6PBmOeXY+/NDQYtwcS jLDdUnYhWlHVH4RKLYQqj6QscBcKr2gg -----END CERTIFICATE-----Generated at Fri Apr 4 22:04:33 2025 by rpki-client