$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.mft File: 2gNU-zgfRSHBCxY-y9IqCD-3omw.mft (raw, json) Hash identifier: cmntL8DUykkrnfveXTlY5vfqarMxddoRXkJNy6T1nIw= Subject key identifier: 81:9A:9D:CE:ED:A7:DE:8F:88:2A:9B:EC:C5:72:D3:DC:17:74:89:B2 Authority key identifier: DA:03:54:FB:38:1F:45:21:C1:0B:16:3E:CB:D2:2A:08:3F:B7:A2:6C Certificate issuer: /CN=A91B2CDA/serialNumber=DA0354FB381F4521C10B163ECBD22A083FB7A26C Certificate serial: 15CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gNU-zgfRSHBCxY-y9IqCD-3omw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.mft Manifest number: 15BA Signing time: Fri 04 Apr 2025 16:52:04 +0000 Manifest this update: Fri 04 Apr 2025 16:52:03 +0000 Manifest next update: Fri 11 Apr 2025 16:52:03 +0000 Files and hashes: 1: 2gNU-zgfRSHBCxY-y9IqCD-3omw.crl (hash: zU1eUmGPBXEobscBA54IuHnpnJn73+QSJ8/sgZxtyzw=) 2: 7F3ED5DE9C4411ECBD85CE4FC4F9AE02.roa (hash: oNHAY+RH8azs+WtnEjYSGA9lvHIaeiPbqTK24H6N+nw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.crl rsync://rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gNU-zgfRSHBCxY-y9IqCD-3omw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:52:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5578 (0x15ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2CDA Validity Not Before: Apr 4 16:52:03 2025 GMT Not After : Apr 11 16:52:03 2025 GMT Subject: CN=67f00e33-a67a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:c4:a5:b2:7e:0b:92:6a:39:bf:6f:53:7a:5a: 4c:f6:cb:a8:df:bb:01:ad:74:af:67:96:99:c4:a5: b3:c1:29:1d:c8:c7:6f:a6:1c:13:ab:93:84:d5:f4: e5:fd:da:36:70:98:5d:04:d7:7b:2b:43:38:5e:af: d0:9b:0c:9a:f4:81:9c:9d:88:62:c9:fa:7d:5a:8b: b9:ba:12:d9:fd:b4:0f:13:aa:d6:b4:8d:d2:51:c4: 78:24:54:c3:13:0a:f3:af:82:3e:1d:7b:12:e6:36: fd:5e:19:6a:f8:83:6d:5f:4b:11:93:79:f1:a3:1a: d5:37:69:8b:03:a3:1b:41:ee:e5:68:7d:f9:b3:87: 59:85:cd:26:94:b6:e1:ad:1c:25:34:98:f0:a1:48: 2b:3c:e0:6d:70:c8:85:69:32:c2:77:f0:b1:a7:0a: 57:e9:5c:18:9d:ac:05:cc:82:e3:dc:b7:8b:1c:37: af:a0:d5:52:1a:bd:c7:63:f4:9c:ca:75:4b:b0:a7: 46:e9:82:a0:8e:02:07:b7:37:e7:b7:d1:04:75:a1: 7a:48:e6:2b:95:52:26:17:d0:82:33:9a:26:45:0d: fa:25:b7:9a:2b:c6:54:a1:24:c4:e2:d3:4d:1a:b2: 18:e7:33:52:09:b2:6c:6d:16:06:e0:02:2f:41:75: a5:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:9A:9D:CE:ED:A7:DE:8F:88:2A:9B:EC:C5:72:D3:DC:17:74:89:B2 X509v3 Authority Key Identifier: keyid:DA:03:54:FB:38:1F:45:21:C1:0B:16:3E:CB:D2:2A:08:3F:B7:A2:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gNU-zgfRSHBCxY-y9IqCD-3omw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:26:0c:72:c1:02:e6:6a:82:cf:d4:1e:dc:a2:e5:34:19:f7: 1c:ff:15:f0:ea:55:2b:66:64:e8:e3:7b:b8:ac:9b:09:80:53: 54:8a:d4:5a:00:22:3a:37:63:bc:06:18:43:da:db:2f:50:5a: 5b:fd:24:f1:0d:95:c5:4d:47:3c:ee:89:59:9e:af:a8:2b:9a: 58:bb:be:e7:e5:71:fe:34:7b:ca:f6:d4:1a:96:22:32:99:c2: ed:bf:3f:24:7e:4c:8b:ce:67:52:98:76:26:39:f6:ad:10:be: 44:6b:a7:70:3e:29:20:07:07:66:b1:9f:8e:15:be:ab:e1:24: 95:0e:0d:93:be:62:c0:26:e5:fb:28:d3:d8:7d:b4:2d:94:68: 14:77:20:5e:91:1f:e0:24:bb:7c:dd:62:ac:03:04:63:97:eb: e3:b9:05:67:c8:fc:5d:c2:61:7d:40:cf:ab:da:e7:18:65:39: 45:55:64:2f:00:86:35:3c:8a:d8:25:7d:b2:05:12:ad:5a:4f: 41:48:3b:fc:8a:da:e6:5b:94:32:e5:9a:30:33:5e:54:f9:29: 00:2a:57:f2:10:74:8e:86:da:b6:09:81:32:67:83:f3:99:92: 23:2d:e3:b9:fc:ff:11:6f:8c:23:04:04:26:69:ef:ab:9e:40: 6d:f0:1f:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFcowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjJDREExMTAvBgNVBAUTKERBMDM1NEZCMzgxRjQ1MjFDMTBCMTYzRUNCRDIyQTA4 M0ZCN0EyNkMwHhcNMjUwNDA0MTY1MjAzWhcNMjUwNDExMTY1MjAzWjAYMRYwFAYD VQQDEw02N2YwMGUzMy1hNjdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAosSlsn4Lkmo5v29TelpM9suo37sBrXSvZ5aZxKWzwSkdyMdvphwTq5OE1fTl /do2cJhdBNd7K0M4Xq/Qmwya9IGcnYhiyfp9Wou5uhLZ/bQPE6rWtI3SUcR4JFTD Ewrzr4I+HXsS5jb9Xhlq+INtX0sRk3nxoxrVN2mLA6MbQe7laH35s4dZhc0mlLbh rRwlNJjwoUgrPOBtcMiFaTLCd/CxpwpX6VwYnawFzILj3LeLHDevoNVSGr3HY/Sc ynVLsKdG6YKgjgIHtzfnt9EEdaF6SOYrlVImF9CCM5omRQ36JbeaK8ZUoSTE4tNN GrIY5zNSCbJsbRYG4AIvQXWluwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIGanc7t p96PiCqb7MVy09wXdImyMB8GA1UdIwQYMBaAFNoDVPs4H0UhwQsWPsvSKgg/t6Js MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMkNEQS9GNEUyQkFCODI1 QzMxMUU4QTA3MTRBMzRDNEY5QUUwMi8yZ05VLXpnZlJTSEJDeFkteTlJcUNELTNv bXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJnTlUtemdmUlNIQkN4WS15OUlxQ0QtM29tdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MkNEQS9GNEUyQkFCODI1QzMxMUU4QTA3MTRBMzRDNEY5QUUwMi8yZ05VLXpnZlJT SEJDeFkteTlJcUNELTNvbXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqJgxywQLmaoLP1B7couU0Gfcc/xXw6lUrZmTo43u4rJsJgFNUitRa ACI6N2O8BhhD2tsvUFpb/STxDZXFTUc87olZnq+oK5pYu77n5XH+NHvK9tQaliIy mcLtvz8kfkyLzmdSmHYmOfatEL5Ea6dwPikgBwdmsZ+OFb6r4SSVDg2TvmLAJuX7 KNPYfbQtlGgUdyBekR/gJLt83WKsAwRjl+vjuQVnyPxdwmF9QM+r2ucYZTlFVWQv AIY1PIrYJX2yBRKtWk9BSDv8itrmW5Qy5ZowM15U+SkAKlfyEHSOhtq2CYEyZ4Pz mZIjLeO5/P8Rb4wjBAQmae+rnkBt8B+z -----END CERTIFICATE-----Generated at Sun Apr 6 12:54:54 2025 by rpki-client