$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1E30/5CA5052CC9D711ED92A1382CC4F9AE02/n2xg5qKluzMFUknUcjhHf4nhOnA.mft File: n2xg5qKluzMFUknUcjhHf4nhOnA.mft (raw, json) Hash identifier: hFfqwYBOeVXh4JMWmMpc4x1kml0k3AtgTvkl6+JTTJk= Subject key identifier: BC:7D:00:D6:1B:1F:2B:BD:F0:8D:15:BA:BF:0D:1B:4B:76:39:AB:38 Authority key identifier: 9F:6C:60:E6:A2:A5:BB:33:05:52:49:D4:72:38:47:7F:89:E1:3A:70 Certificate issuer: /CN=A91D1E30/serialNumber=9F6C60E6A2A5BB33055249D47238477F89E13A70 Certificate serial: 0186 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n2xg5qKluzMFUknUcjhHf4nhOnA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1E30/5CA5052CC9D711ED92A1382CC4F9AE02/n2xg5qKluzMFUknUcjhHf4nhOnA.mft Manifest number: 0185 Signing time: Sat 19 Apr 2025 02:52:46 +0000 Manifest this update: Sat 19 Apr 2025 02:52:46 +0000 Manifest next update: Sat 26 Apr 2025 02:52:46 +0000 Files and hashes: 1: n2xg5qKluzMFUknUcjhHf4nhOnA.crl (hash: lg0KMHeEJColYzaxuGXgiR2wcuB0a3MOTaLhm3Ik1GI=) 2: 51C204DAEA9011EFB8B82081C4F9AE02.roa (hash: 3+A2ANkp0TI4iEFiuxaHkbdXUeiNj96UO23AWbpZWqw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1E30/5CA5052CC9D711ED92A1382CC4F9AE02/n2xg5qKluzMFUknUcjhHf4nhOnA.crl rsync://rpki.apnic.net/member_repository/A91D1E30/5CA5052CC9D711ED92A1382CC4F9AE02/n2xg5qKluzMFUknUcjhHf4nhOnA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n2xg5qKluzMFUknUcjhHf4nhOnA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 390 (0x186) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1E30, serialNumber=9F6C60E6A2A5BB33055249D47238477F89E13A70 Validity Not Before: Apr 19 02:52:46 2025 GMT Not After : Apr 26 02:52:46 2025 GMT Subject: CN=68030ffe-61a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:af:21:ce:7d:3c:e2:d6:a9:66:42:37:b8:80: a9:2b:b4:50:bf:5b:af:8c:3d:14:5c:d0:d5:6a:58: 00:c7:c1:b1:b3:cd:b0:37:ec:ec:70:b4:58:fb:9a: c5:6f:80:ca:eb:e1:68:af:20:61:66:e9:c9:47:52: 0a:80:45:4b:f9:18:0e:0a:c8:e8:d4:b5:85:45:d9: f8:d0:22:88:ea:58:3e:a7:0c:4c:f2:ab:2d:6e:55: 6c:66:42:84:35:76:07:69:52:d3:ec:c8:47:95:8d: 08:97:27:ca:55:f1:39:8a:0e:11:d8:71:4b:26:3e: 95:6e:ce:9a:1f:43:b4:83:ad:af:01:ad:eb:d7:e7: 3a:37:7c:d1:79:fa:a5:ba:03:f3:a4:cf:d7:ef:5f: e8:ff:9d:7c:3b:8d:c8:d2:d3:14:0d:78:f3:db:7e: 54:ff:37:ef:60:c3:2c:3e:2b:e1:2c:46:a2:f7:9e: 94:48:4e:9f:2a:65:60:b8:3e:92:75:73:b9:1d:08: 6f:f4:8a:50:ef:be:1c:12:50:38:d0:aa:38:50:dd: 7f:b3:0e:23:12:01:71:5f:71:e7:e6:6c:2f:93:ce: 21:d4:09:27:0d:95:7f:be:c1:d3:1f:07:5f:c8:f6: d2:39:c7:d3:6b:82:f0:88:c2:1e:59:eb:0d:3e:50: a7:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:7D:00:D6:1B:1F:2B:BD:F0:8D:15:BA:BF:0D:1B:4B:76:39:AB:38 X509v3 Authority Key Identifier: keyid:9F:6C:60:E6:A2:A5:BB:33:05:52:49:D4:72:38:47:7F:89:E1:3A:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1E30/5CA5052CC9D711ED92A1382CC4F9AE02/n2xg5qKluzMFUknUcjhHf4nhOnA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n2xg5qKluzMFUknUcjhHf4nhOnA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1E30/5CA5052CC9D711ED92A1382CC4F9AE02/n2xg5qKluzMFUknUcjhHf4nhOnA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:8e:69:7c:c1:28:c9:9a:07:e8:2e:2a:b6:8e:dd:20:ca:25: 64:14:35:4c:e8:a4:ec:55:60:ac:f3:0d:3f:f8:e0:81:80:09: 08:3d:0f:5c:08:e6:2f:f6:bb:3e:4e:e8:d1:ef:1f:2b:fa:7a: dd:15:53:ff:cb:6a:16:af:93:49:17:9a:84:34:cf:0d:e5:42: fa:3a:65:5a:6d:35:fd:c6:2f:82:e4:af:41:2e:39:04:8c:a1: c6:34:a6:30:36:5c:01:61:79:a4:a5:05:45:c7:71:89:b6:cc: c5:6d:e0:6c:46:df:d5:76:e0:c3:e7:6f:ca:f0:36:3a:b4:82: 4f:fd:40:5e:61:13:52:ff:8e:fa:f9:bd:06:33:d2:64:6a:bb: fb:c2:5b:2e:f2:33:ba:d2:c5:89:79:8c:e6:7b:b8:8b:07:20: ce:af:fd:14:5c:2a:61:c5:95:cd:36:b5:d2:7e:38:f7:c1:2d: b9:45:60:ba:a8:7d:e6:ed:2c:15:75:88:02:5f:8f:1b:63:78: 7c:f1:a8:a5:ea:ef:45:5e:5a:1f:6e:e7:d7:52:60:c9:c7:ff: 60:f2:fd:63:56:28:ce:bd:f2:78:af:08:84:a9:a1:4e:ae:b4: 46:de:f0:e7:48:e1:87:f4:0d:c4:51:a4:d4:56:fb:ba:17:01: b0:70:7d:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDFFMzAxMTAvBgNVBAUTKDlGNkM2MEU2QTJBNUJCMzMwNTUyNDlENDcyMzg0NzdG ODlFMTNBNzAwHhcNMjUwNDE5MDI1MjQ2WhcNMjUwNDI2MDI1MjQ2WjAYMRYwFAYD VQQDEw02ODAzMGZmZS02MWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0q8hzn084tapZkI3uICpK7RQv1uvjD0UXNDValgAx8Gxs82wN+zscLRY+5rF b4DK6+ForyBhZunJR1IKgEVL+RgOCsjo1LWFRdn40CKI6lg+pwxM8qstblVsZkKE NXYHaVLT7MhHlY0IlyfKVfE5ig4R2HFLJj6Vbs6aH0O0g62vAa3r1+c6N3zRefql ugPzpM/X71/o/518O43I0tMUDXjz235U/zfvYMMsPivhLEai956USE6fKmVguD6S dXO5HQhv9IpQ774cElA40Ko4UN1/sw4jEgFxX3Hn5mwvk84h1AknDZV/vsHTHwdf yPbSOcfTa4LwiMIeWesNPlCnlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLx9ANYb Hyu98I0Vur8NG0t2Oas4MB8GA1UdIwQYMBaAFJ9sYOaipbszBVJJ1HI4R3+J4Tpw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMUUzMC81Q0E1MDUyQ0M5 RDcxMUVEOTJBMTM4MkNDNEY5QUUwMi9uMnhnNXFLbHV6TUZVa25VY2poSGY0bmhP bkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL24yeGc1cUtsdXpNRlVrblVjamhIZjRuaE9uQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MUUzMC81Q0E1MDUyQ0M5RDcxMUVEOTJBMTM4MkNDNEY5QUUwMi9uMnhnNXFLbHV6 TUZVa25VY2poSGY0bmhPbkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqjml8wSjJmgfoLiq2jt0gyiVkFDVM6KTsVWCs8w0/+OCBgAkIPQ9c COYv9rs+TujR7x8r+nrdFVP/y2oWr5NJF5qENM8N5UL6OmVabTX9xi+C5K9BLjkE jKHGNKYwNlwBYXmkpQVFx3GJtszFbeBsRt/VduDD52/K8DY6tIJP/UBeYRNS/476 +b0GM9Jkarv7wlsu8jO60sWJeYzme7iLByDOr/0UXCphxZXNNrXSfjj3wS25RWC6 qH3m7SwVdYgCX48bY3h88ail6u9FXlofbufXUmDJx/9g8v1jVijOvfJ4rwiEqaFO rrRG3vDnSOGH9A3EUaTUVvu6FwGwcH1C -----END CERTIFICATE-----Generated at Sat Apr 19 07:25:25 2025 by rpki-client