$ rpki-client -vvf rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft File: 2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft (raw, json) Hash identifier: n7YuaVbTox/rMj1CkYAH4FiISlKc8GT1rrcULpQmCrE= Subject key identifier: 87:B4:FF:50:75:2D:94:DF:4E:DE:86:58:AD:6B:71:32:1B:00:01:7F Authority key identifier: D8:3B:93:E3:1E:93:99:37:D8:CB:15:FE:39:CA:5E:6E:8F:EA:FA:9B Certificate issuer: /CN=A9197277/serialNumber=D83B93E31E939937D8CB15FE39CA5E6E8FEAFA9B Certificate serial: EE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft Manifest number: E8 Signing time: Wed 09 Apr 2025 04:17:59 +0000 Manifest this update: Wed 09 Apr 2025 04:17:59 +0000 Manifest next update: Wed 16 Apr 2025 04:17:59 +0000 Files and hashes: 1: 2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl (hash: lmYfweZ03nIuPjxMBRlk6h8hmtgxYP3VOmqOQFjoGWI=) 2: 2DCC0688B57211EEBB68526DC4F9AE02.roa (hash: ISi9gMsFzLmCrnxNv9LX4WndyIlBo1W9bMj3vV8OrvU=) 3: 2E31B8FCB57211EEBB68526DC4F9AE02.roa (hash: XVC372fFbzyMJ0najd3nCWGY6qSm44Rgv1v3SKiEpsU=) 4: 6F5F30B8B56111EE91C72951C4F9AE02.roa (hash: g33ewG8+stt2H8q9hyzT5GDP+B5N5luEGnz8BVmfPXs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 04:17:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 238 (0xee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197277 Validity Not Before: Apr 9 04:17:59 2025 GMT Not After : Apr 16 04:17:59 2025 GMT Subject: CN=67f5f4f7-2696 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:2f:b4:70:96:85:56:72:bc:95:7e:b8:37:7c: 51:d2:f6:d5:7a:90:86:24:e2:28:d8:94:57:51:05: 70:21:cb:92:51:b3:64:f6:af:1f:e6:f6:cf:6e:78: 9c:84:cc:03:5e:2a:3c:1a:5c:b1:e6:69:fa:09:fe: f0:1a:73:ab:05:61:99:d9:ab:d2:01:f9:a1:eb:33: ae:44:15:37:08:63:f8:d0:d8:e0:d5:a7:2a:1a:b9: 60:73:c6:0a:78:9b:8c:89:59:92:b9:e6:15:e4:2e: b2:71:36:e8:df:4e:e2:72:77:9d:a4:0d:0b:3a:e5: 0a:e3:d6:6e:63:04:ee:7f:82:46:09:15:b1:8f:3f: f3:c3:d7:d2:f3:cf:50:9a:b2:5e:17:2c:85:d6:96: c9:36:7c:ba:82:e8:61:40:54:9b:55:50:e0:af:c0: 32:71:3c:b8:0a:76:89:28:80:0c:7b:45:e3:4c:98: 70:25:d7:6b:8c:83:78:b9:0c:9b:b7:54:d7:5c:8f: f6:94:61:89:c7:50:a6:39:e5:d0:30:0c:d3:a2:f3: bf:58:a0:48:1c:06:9a:31:ca:c1:a6:e1:f0:18:f2: f7:62:74:63:6a:b6:ec:6e:6f:bc:d1:01:66:a0:c6: 5f:cf:b8:5a:a2:2a:0a:2f:bf:7a:de:d1:aa:3a:75: 07:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:B4:FF:50:75:2D:94:DF:4E:DE:86:58:AD:6B:71:32:1B:00:01:7F X509v3 Authority Key Identifier: keyid:D8:3B:93:E3:1E:93:99:37:D8:CB:15:FE:39:CA:5E:6E:8F:EA:FA:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:e4:e7:66:0d:e7:bb:ee:d9:d6:c6:e8:97:0e:79:e6:44:7a: 47:ea:53:50:85:a8:42:44:a6:21:a4:1e:54:d0:0f:dc:2e:f6: 35:ae:c9:ff:df:ed:30:30:7a:d0:44:a1:a4:44:23:fe:f4:b2: c7:d4:15:6d:c8:6d:86:a7:79:75:5c:a8:88:65:4d:48:f7:1d: 44:63:59:b8:44:91:51:0c:01:b0:a5:83:46:50:f5:4d:c7:06: b9:0b:e6:1d:99:62:ff:67:b0:cc:6e:24:52:65:b8:dc:5a:cc: 68:88:94:a4:fe:27:81:5c:be:fc:c9:f5:2b:48:3f:0a:20:d8: a7:f3:fc:17:e3:38:d0:66:c6:1c:ac:9a:78:0b:49:e8:42:dc: 59:f7:58:3b:a6:de:05:b2:70:a2:88:09:a9:6f:b7:aa:a6:e2: 04:f4:4c:ed:18:e8:f5:25:ec:65:d0:65:d0:0d:08:48:1c:b3: 52:81:88:35:e2:a7:87:fb:39:15:15:1e:1b:fc:71:3a:ff:eb: e9:e5:c9:1c:9c:19:e4:99:63:7b:80:83:71:45:ea:24:12:19: 85:1b:44:d9:e8:c8:d4:a9:7c:b2:4e:2f:ba:3a:08:68:e4:15: ac:f5:39:7c:c0:d5:5e:d1:72:3e:a8:d3:08:d2:22:02:f4:d9: 15:f1:7a:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyNzcxMTAvBgNVBAUTKEQ4M0I5M0UzMUU5Mzk5MzdEOENCMTVGRTM5Q0E1RTZF OEZFQUZBOUIwHhcNMjUwNDA5MDQxNzU5WhcNMjUwNDE2MDQxNzU5WjAYMRYwFAYD VQQDEw02N2Y1ZjRmNy0yNjk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqy+0cJaFVnK8lX64N3xR0vbVepCGJOIo2JRXUQVwIcuSUbNk9q8f5vbPbnic hMwDXio8Glyx5mn6Cf7wGnOrBWGZ2avSAfmh6zOuRBU3CGP40Njg1acqGrlgc8YK eJuMiVmSueYV5C6ycTbo307icnedpA0LOuUK49ZuYwTuf4JGCRWxjz/zw9fS889Q mrJeFyyF1pbJNny6guhhQFSbVVDgr8AycTy4CnaJKIAMe0XjTJhwJddrjIN4uQyb t1TXXI/2lGGJx1CmOeXQMAzTovO/WKBIHAaaMcrBpuHwGPL3YnRjarbsbm+80QFm oMZfz7haoioKL7963tGqOnUHFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIe0/1B1 LZTfTt6GWK1rcTIbAAF/MB8GA1UdIwQYMBaAFNg7k+Mek5k32MsV/jnKXm6P6vqb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzI3Ny80M0E3RTg5NEI1 NjAxMUVFOTExQzVENEZDNEY5QUUwMi8yRHVUNHg2VG1UZll5eFgtT2NwZWJvX3Et cHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJEdVQ0eDZUbVRmWXl4WC1PY3BlYm9fcS1wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzI3Ny80M0E3RTg5NEI1NjAxMUVFOTExQzVENEZDNEY5QUUwMi8yRHVUNHg2VG1U Zll5eFgtT2NwZWJvX3EtcHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBo5OdmDee77tnWxuiXDnnmRHpH6lNQhahCRKYhpB5U0A/cLvY1rsn/ 3+0wMHrQRKGkRCP+9LLH1BVtyG2Gp3l1XKiIZU1I9x1EY1m4RJFRDAGwpYNGUPVN xwa5C+YdmWL/Z7DMbiRSZbjcWsxoiJSk/ieBXL78yfUrSD8KINin8/wX4zjQZsYc rJp4C0noQtxZ91g7pt4FsnCiiAmpb7eqpuIE9EztGOj1Jexl0GXQDQhIHLNSgYg1 4qeH+zkVFR4b/HE6/+vp5ckcnBnkmWN7gINxReokEhmFG0TZ6MjUqXyyTi+6Ogho 5BWs9Tl8wNVe0XI+qNMI0iIC9NkV8XpQ -----END CERTIFICATE-----Generated at Thu Apr 10 22:12:29 2025 by rpki-client