$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5143/0DE9F776A86B11E9A701C856C4F9AE02/2S2tTXbh9aAmwn8tuRxE-62OSHw.mft File: 2S2tTXbh9aAmwn8tuRxE-62OSHw.mft (raw, json) Hash identifier: 5L8lVt+/Lhd3wz0if/0eeyCiT5HdtoX6HfOlGtjYthA= Subject key identifier: 35:AB:FF:E3:FA:4B:54:FE:FC:9C:AD:39:B2:FD:1B:45:9E:E3:95:C8 Authority key identifier: D9:2D:AD:4D:76:E1:F5:A0:26:C2:7F:2D:B9:1C:44:FB:AD:8E:48:7C Certificate issuer: /CN=A91F5143/serialNumber=D92DAD4D76E1F5A026C27F2DB91C44FBAD8E487C Certificate serial: 0E0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2S2tTXbh9aAmwn8tuRxE-62OSHw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5143/0DE9F776A86B11E9A701C856C4F9AE02/2S2tTXbh9aAmwn8tuRxE-62OSHw.mft Manifest number: 0E06 Signing time: Wed 16 Apr 2025 17:46:16 +0000 Manifest this update: Wed 16 Apr 2025 17:46:15 +0000 Manifest next update: Wed 23 Apr 2025 17:46:15 +0000 Files and hashes: 1: 2S2tTXbh9aAmwn8tuRxE-62OSHw.crl (hash: 7k1SF7C0I1yikKsuthdIIGeJratwwScHoP4wdmlsdHo=) 2: FBBFC6D8A86B11E9A1385758C4F9AE02.roa (hash: 3xSZw8Zvxp55d8XEuNe65AngqRjiPtOfsG/OL3mouOw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5143/0DE9F776A86B11E9A701C856C4F9AE02/2S2tTXbh9aAmwn8tuRxE-62OSHw.crl rsync://rpki.apnic.net/member_repository/A91F5143/0DE9F776A86B11E9A701C856C4F9AE02/2S2tTXbh9aAmwn8tuRxE-62OSHw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2S2tTXbh9aAmwn8tuRxE-62OSHw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 17:46:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3598 (0xe0e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5143, serialNumber=D92DAD4D76E1F5A026C27F2DB91C44FBAD8E487C Validity Not Before: Apr 16 17:46:15 2025 GMT Not After : Apr 23 17:46:15 2025 GMT Subject: CN=67ffece8-c6f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:72:0b:36:bc:d8:33:45:ce:06:ff:c3:0d:1b: 42:2b:08:52:e0:91:d0:f7:a9:da:6c:5a:66:29:02: ab:37:bc:b1:68:c3:11:8e:e7:e4:00:fc:83:56:8e: b9:b4:3c:82:d1:a1:34:f3:e2:7a:8b:c6:2b:0e:09: 5c:a6:97:73:7a:9b:b0:79:7d:48:27:ce:44:46:0d: 5f:45:81:d0:8d:d1:04:33:34:bf:8e:56:d1:3b:c0: d9:9e:f0:0d:15:f8:f7:5b:af:61:60:eb:48:be:56: fa:5f:e2:2f:52:89:9b:36:f5:b0:40:d6:5e:bd:f3: 9b:00:ed:09:4f:c7:9c:02:49:cf:bf:71:7e:57:5d: 99:e5:62:a6:f1:62:e7:bb:e6:be:0e:fc:4c:d0:bc: 36:72:61:ee:ef:23:90:60:73:c3:6f:b6:eb:a7:f4: 1e:35:f8:fe:21:88:81:09:db:87:f3:47:40:1e:82: f4:2e:92:91:23:85:d6:2c:04:7c:0b:19:f3:2d:7c: 4f:d5:e7:af:26:33:c3:7f:fa:ce:96:b9:af:00:c0: d8:a3:d4:84:eb:a9:35:cb:bb:e0:1f:da:a6:62:11: f6:91:ff:f5:9d:63:7a:cc:98:d2:c6:58:02:98:07: 18:19:a4:4f:fd:e8:bf:9c:6c:c3:a3:35:d8:b6:f7: 55:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:AB:FF:E3:FA:4B:54:FE:FC:9C:AD:39:B2:FD:1B:45:9E:E3:95:C8 X509v3 Authority Key Identifier: keyid:D9:2D:AD:4D:76:E1:F5:A0:26:C2:7F:2D:B9:1C:44:FB:AD:8E:48:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5143/0DE9F776A86B11E9A701C856C4F9AE02/2S2tTXbh9aAmwn8tuRxE-62OSHw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2S2tTXbh9aAmwn8tuRxE-62OSHw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5143/0DE9F776A86B11E9A701C856C4F9AE02/2S2tTXbh9aAmwn8tuRxE-62OSHw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:de:00:44:2c:c3:dc:99:02:9f:ca:a4:d7:f9:7b:dc:0f:3d: f8:10:77:83:5f:f0:22:15:38:71:7f:66:7f:d9:82:45:0b:5b: 87:20:5b:60:0b:32:ad:85:fb:9f:c6:65:cd:39:c9:14:02:f3: 38:92:7e:fe:0a:3c:ba:e7:cc:e0:2e:fc:b0:e0:f1:50:63:e2: d8:08:a4:42:68:20:87:e9:3c:77:7f:fe:8c:a2:8e:f9:c2:27: dc:ca:a7:50:6f:11:74:7f:7a:73:9c:21:c5:fe:3c:9a:aa:46: fa:3a:14:a2:00:0c:e4:ff:1e:03:f3:d1:f1:51:38:9c:39:3d: fb:fa:c1:c4:25:3d:17:0b:40:01:97:14:91:5b:13:f4:ec:45: 7a:a4:35:39:ce:d0:d2:7f:61:64:5f:de:71:18:39:c9:6d:2d: fc:b3:42:9e:a5:14:b8:6c:e6:66:95:46:ad:4f:bc:1b:45:7a: 7f:3d:a2:5b:3c:35:ad:e0:bb:9c:50:9b:0f:39:53:bb:1a:12: c0:1d:7b:2a:7c:c5:b2:54:d8:09:8d:9a:5f:6e:ef:bc:25:d1: 0f:78:5a:f2:7d:6e:16:67:84:0d:8a:06:ed:fa:da:79:7e:d6: 46:4a:c4:f2:e5:73:16:1e:2b:0f:2c:d9:fb:66:ba:2b:12:e4: 33:69:9f:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDg4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUxNDMxMTAvBgNVBAUTKEQ5MkRBRDRENzZFMUY1QTAyNkMyN0YyREI5MUM0NEZC QUQ4RTQ4N0MwHhcNMjUwNDE2MTc0NjE1WhcNMjUwNDIzMTc0NjE1WjAYMRYwFAYD VQQDEw02N2ZmZWNlOC1jNmYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA33ILNrzYM0XOBv/DDRtCKwhS4JHQ96nabFpmKQKrN7yxaMMRjufkAPyDVo65 tDyC0aE08+J6i8YrDglcppdzepuweX1IJ85ERg1fRYHQjdEEMzS/jlbRO8DZnvAN Ffj3W69hYOtIvlb6X+IvUombNvWwQNZevfObAO0JT8ecAknPv3F+V12Z5WKm8WLn u+a+DvxM0Lw2cmHu7yOQYHPDb7brp/QeNfj+IYiBCduH80dAHoL0LpKRI4XWLAR8 CxnzLXxP1eevJjPDf/rOlrmvAMDYo9SE66k1y7vgH9qmYhH2kf/1nWN6zJjSxlgC mAcYGaRP/ei/nGzDozXYtvdVVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDWr/+P6 S1T+/JytObL9G0We45XIMB8GA1UdIwQYMBaAFNktrU124fWgJsJ/LbkcRPutjkh8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTE0My8wREU5Rjc3NkE4 NkIxMUU5QTcwMUM4NTZDNEY5QUUwMi8yUzJ0VFhiaDlhQW13bjh0dVJ4RS02Mk9T SHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJTMnRUWGJoOWFBbXduOHR1UnhFLTYyT1NIdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTE0My8wREU5Rjc3NkE4NkIxMUU5QTcwMUM4NTZDNEY5QUUwMi8yUzJ0VFhiaDlh QW13bjh0dVJ4RS02Mk9TSHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAR3gBELMPcmQKfyqTX+XvcDz34EHeDX/AiFThxf2Z/2YJFC1uHIFtg CzKthfufxmXNOckUAvM4kn7+Cjy658zgLvyw4PFQY+LYCKRCaCCH6Tx3f/6Moo75 wifcyqdQbxF0f3pznCHF/jyaqkb6OhSiAAzk/x4D89HxUTicOT37+sHEJT0XC0AB lxSRWxP07EV6pDU5ztDSf2FkX95xGDnJbS38s0KepRS4bOZmlUatT7wbRXp/PaJb PDWt4LucUJsPOVO7GhLAHXsqfMWyVNgJjZpfbu+8JdEPeFryfW4WZ4QNigbt+tp5 ftZGSsTy5XMWHisPLNn7ZrorEuQzaZ/a -----END CERTIFICATE-----Generated at Fri Apr 18 18:32:45 2025 by rpki-client