$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9E0E/472C392210EE11EA9852957FC4F9AE02/2spjaZboGaoflR3Gb_Ka0JecBcg.mft File: 2spjaZboGaoflR3Gb_Ka0JecBcg.mft (raw, json) Hash identifier: wKEfw2h5XjcUrVLISugovw+DWBhbGYjyX6N3b8obXPs= Subject key identifier: 0B:CD:DC:48:F6:A2:5F:A6:DD:A5:13:3F:ED:26:85:D4:A8:40:C1:70 Authority key identifier: DA:CA:63:69:96:E8:19:AA:1F:95:1D:C6:6F:F2:9A:D0:97:9C:05:C8 Certificate issuer: /CN=A91A9E0E/serialNumber=DACA636996E819AA1F951DC66FF29AD0979C05C8 Certificate serial: 0C12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2spjaZboGaoflR3Gb_Ka0JecBcg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9E0E/472C392210EE11EA9852957FC4F9AE02/2spjaZboGaoflR3Gb_Ka0JecBcg.mft Manifest number: 0BFD Signing time: Fri 04 Apr 2025 18:51:30 +0000 Manifest this update: Fri 04 Apr 2025 18:51:29 +0000 Manifest next update: Fri 11 Apr 2025 18:51:29 +0000 Files and hashes: 1: 2spjaZboGaoflR3Gb_Ka0JecBcg.crl (hash: ULf92QM8lsWLeoXI5q1vT5erjMD1FIKm5EHXswAoeog=) 2: 15FB452EE46E11EABA2FD316C4F9AE02.roa (hash: Dj1n5Ws5ZOwUHxV0iXhdVuXnGHZDTpjS0z8ntITqHGo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9E0E/472C392210EE11EA9852957FC4F9AE02/2spjaZboGaoflR3Gb_Ka0JecBcg.crl rsync://rpki.apnic.net/member_repository/A91A9E0E/472C392210EE11EA9852957FC4F9AE02/2spjaZboGaoflR3Gb_Ka0JecBcg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2spjaZboGaoflR3Gb_Ka0JecBcg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:51:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3090 (0xc12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9E0E Validity Not Before: Apr 4 18:51:29 2025 GMT Not After : Apr 11 18:51:29 2025 GMT Subject: CN=67f02a32-15f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:69:5b:06:92:6f:4e:97:c4:85:d3:f7:29:ed: 19:3a:b8:c6:7b:78:3b:ca:7a:4a:38:c4:61:21:1a: 81:0a:ee:e9:74:88:10:b9:a5:1f:d3:ad:e5:47:2c: a2:60:06:89:55:be:f6:78:b0:c5:24:52:fe:62:2a: f2:47:90:db:cd:84:d5:e7:33:5f:66:3e:99:b2:9d: 58:08:a5:85:32:9a:40:d2:97:12:79:ff:55:ba:1a: 76:c4:09:67:d5:ab:04:00:cd:b6:81:33:67:64:b4: 8c:20:ef:bf:2a:9d:f9:02:9c:04:7f:dd:8b:36:ae: f3:ed:4b:40:38:97:33:60:51:a1:f2:7a:35:87:16: 57:35:06:fa:a0:4a:cb:9b:5b:23:48:75:e5:01:c6: 93:aa:a8:7a:75:0c:83:06:18:02:1d:7a:1e:8e:4d: fa:54:93:74:c5:96:52:f5:bc:3f:5d:c1:56:34:2e: 1c:26:f9:57:7d:56:ba:c6:8a:38:cf:75:7c:67:39: 13:b5:d0:d1:0e:84:f6:e2:ec:b8:6c:c7:24:13:91: b7:4d:81:ef:b2:90:29:03:aa:ba:d2:8f:16:ac:7d: 5a:1c:9e:e6:61:a4:f0:44:0e:27:ee:8f:d2:b9:cb: d5:cc:f3:34:52:e0:bc:82:13:0d:83:67:cb:d0:13: 3e:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:CD:DC:48:F6:A2:5F:A6:DD:A5:13:3F:ED:26:85:D4:A8:40:C1:70 X509v3 Authority Key Identifier: keyid:DA:CA:63:69:96:E8:19:AA:1F:95:1D:C6:6F:F2:9A:D0:97:9C:05:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9E0E/472C392210EE11EA9852957FC4F9AE02/2spjaZboGaoflR3Gb_Ka0JecBcg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2spjaZboGaoflR3Gb_Ka0JecBcg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9E0E/472C392210EE11EA9852957FC4F9AE02/2spjaZboGaoflR3Gb_Ka0JecBcg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:0e:d3:22:dd:1f:4f:d2:20:4e:b6:d9:43:bd:a8:28:ba:45: f2:b6:c8:0c:f4:40:20:2a:72:9b:68:b6:66:d5:5e:e8:e5:16: e4:f9:c8:bf:8b:78:50:3a:77:7c:3d:e9:60:42:9e:f1:81:bc: 9d:a3:17:b6:e1:61:22:b4:04:30:57:3f:cd:e3:54:81:48:7b: 52:7b:02:86:f8:41:8e:7b:90:da:0d:07:01:8f:a7:2e:a6:48: 48:98:36:c8:58:b2:62:af:e9:54:26:10:64:91:f1:29:e5:5b: 99:f4:4f:68:0d:b3:23:8e:cf:42:fe:b1:da:aa:34:7d:55:33: b8:2f:af:be:c7:37:50:b4:7e:8c:22:a6:4d:19:20:ba:b9:1a: 76:ef:07:36:e1:16:d8:2f:5f:80:c8:4d:98:75:39:00:0f:0a: d3:f8:88:96:03:99:e0:97:d7:2a:da:e9:20:13:9f:7e:f6:9b: 74:8a:00:b6:95:52:23:22:d7:a1:f3:cb:ad:91:ea:12:d6:fb: 31:28:60:e5:2b:82:52:5a:75:69:0d:72:97:4b:25:b5:dd:66: 39:96:37:a5:db:f5:d0:0c:21:9c:46:e6:a5:a1:29:73:90:af: c9:2d:0d:ac:e6:72:79:1d:d2:c4:72:5a:87:ad:96:f4:5b:82: 7d:7e:10:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDBIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlFMEUxMTAvBgNVBAUTKERBQ0E2MzY5OTZFODE5QUExRjk1MURDNjZGRjI5QUQw OTc5QzA1QzgwHhcNMjUwNDA0MTg1MTI5WhcNMjUwNDExMTg1MTI5WjAYMRYwFAYD VQQDEw02N2YwMmEzMi0xNWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxmlbBpJvTpfEhdP3Ke0ZOrjGe3g7ynpKOMRhIRqBCu7pdIgQuaUf063lRyyi YAaJVb72eLDFJFL+YiryR5DbzYTV5zNfZj6Zsp1YCKWFMppA0pcSef9Vuhp2xAln 1asEAM22gTNnZLSMIO+/Kp35ApwEf92LNq7z7UtAOJczYFGh8no1hxZXNQb6oErL m1sjSHXlAcaTqqh6dQyDBhgCHXoejk36VJN0xZZS9bw/XcFWNC4cJvlXfVa6xoo4 z3V8ZzkTtdDRDoT24uy4bMckE5G3TYHvspApA6q60o8WrH1aHJ7mYaTwRA4n7o/S ucvVzPM0UuC8ghMNg2fL0BM+FwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAvN3Ej2 ol+m3aUTP+0mhdSoQMFwMB8GA1UdIwQYMBaAFNrKY2mW6BmqH5Udxm/ymtCXnAXI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUUwRS80NzJDMzkyMjEw RUUxMUVBOTg1Mjk1N0ZDNEY5QUUwMi8yc3BqYVpib0dhb2ZsUjNHYl9LYTBKZWNC Y2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJzcGphWmJvR2FvZmxSM0diX0thMEplY0JjZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUUwRS80NzJDMzkyMjEwRUUxMUVBOTg1Mjk1N0ZDNEY5QUUwMi8yc3BqYVpib0dh b2ZsUjNHYl9LYTBKZWNCY2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFDtMi3R9P0iBOttlDvagoukXytsgM9EAgKnKbaLZm1V7o5Rbk+ci/ i3hQOnd8PelgQp7xgbydoxe24WEitAQwVz/N41SBSHtSewKG+EGOe5DaDQcBj6cu pkhImDbIWLJir+lUJhBkkfEp5VuZ9E9oDbMjjs9C/rHaqjR9VTO4L6++xzdQtH6M IqZNGSC6uRp27wc24RbYL1+AyE2YdTkADwrT+IiWA5ngl9cq2ukgE59+9pt0igC2 lVIjIteh88utkeoS1vsxKGDlK4JSWnVpDXKXSyW13WY5ljel2/XQDCGcRualoSlz kK/JLQ2s5nJ5HdLEclqHrZb0W4J9fhCI -----END CERTIFICATE-----Generated at Fri Apr 4 22:40:10 2025 by rpki-client