$ rpki-client -vvf rpki.apnic.net/member_repository/A911D40B/4626BB1A8E0811EE9C9DE461C4F9AE02/2fpCBt8OmUfNUB39UlsuRmlv1EI.mft File: 2fpCBt8OmUfNUB39UlsuRmlv1EI.mft (raw, json) Hash identifier: pZEqCgOxtK0mglGhEFSV5qSx29NNa/sujbXLzUmR5mk= Subject key identifier: F9:15:0D:C4:3D:E1:4D:B6:56:98:19:BC:84:17:A0:8F:46:C9:52:6C Authority key identifier: D9:FA:42:06:DF:0E:99:47:CD:50:1D:FD:52:5B:2E:46:69:6F:D4:42 Certificate issuer: /CN=A911D40B/serialNumber=D9FA4206DF0E9947CD501DFD525B2E46696FD442 Certificate serial: 011F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fpCBt8OmUfNUB39UlsuRmlv1EI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D40B/4626BB1A8E0811EE9C9DE461C4F9AE02/2fpCBt8OmUfNUB39UlsuRmlv1EI.mft Manifest number: 011C Signing time: Sat 31 May 2025 04:25:35 +0000 Manifest this update: Sat 31 May 2025 04:25:35 +0000 Manifest next update: Sat 07 Jun 2025 04:25:35 +0000 Files and hashes: 1: 2fpCBt8OmUfNUB39UlsuRmlv1EI.crl (hash: 76swgG3eXxYiZMdWEYNO4mR/mcL547hK75C2APVadLc=) 2: 91BCF5D08E0811EE91C7BD62C4F9AE02.roa (hash: 16O4tOIwTKe9KyjFOBLZvUGIgda/sT358bnVtxfjCnM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D40B/4626BB1A8E0811EE9C9DE461C4F9AE02/2fpCBt8OmUfNUB39UlsuRmlv1EI.crl rsync://rpki.apnic.net/member_repository/A911D40B/4626BB1A8E0811EE9C9DE461C4F9AE02/2fpCBt8OmUfNUB39UlsuRmlv1EI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fpCBt8OmUfNUB39UlsuRmlv1EI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:25:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 287 (0x11f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D40B, serialNumber=D9FA4206DF0E9947CD501DFD525B2E46696FD442 Validity Not Before: May 31 04:25:35 2025 GMT Not After : Jun 7 04:25:35 2025 GMT Subject: CN=683a84bf-7ef7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:35:cc:3a:3b:dd:63:ab:1d:18:b8:9b:52:e5: 95:d3:f1:23:27:91:32:5c:88:38:3d:d3:12:0a:16: ae:8e:28:14:b4:2c:06:ff:93:da:f6:4f:d4:93:93: b4:f0:a5:e8:5c:18:0f:93:50:b6:53:80:0f:80:f9: bd:e7:f6:20:c4:0b:c5:c6:5f:d7:fc:87:a5:9b:ce: 0b:e9:30:eb:9d:e9:8d:2b:8a:51:14:02:02:e2:64: ce:b6:46:82:c8:c4:38:8d:dc:f7:49:3d:ea:79:c8: ed:47:29:ce:31:7c:fb:aa:70:d9:20:e0:9e:2d:ec: ae:e7:b5:1f:47:c1:53:a9:59:4b:96:3b:13:14:40: 92:e2:7d:49:54:74:c8:2e:94:b9:07:9c:0f:60:bb: 31:78:56:01:1f:82:43:f6:5a:b3:ff:82:61:5f:fb: dd:f3:aa:1f:17:ae:a9:63:5e:c6:4f:6b:02:6c:19: d9:2e:2d:c0:4c:42:bb:d1:36:75:73:56:07:95:63: b9:41:a4:d3:51:93:2e:28:8f:9f:95:12:57:b0:ef: 21:84:4b:12:52:fc:34:b3:12:e0:96:27:9f:23:2d: 53:30:ba:00:bd:e2:86:99:ff:58:f5:90:ac:07:fc: 69:62:e7:aa:ce:ac:a1:4c:a5:b1:13:9b:ce:5d:f8: f0:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:15:0D:C4:3D:E1:4D:B6:56:98:19:BC:84:17:A0:8F:46:C9:52:6C X509v3 Authority Key Identifier: keyid:D9:FA:42:06:DF:0E:99:47:CD:50:1D:FD:52:5B:2E:46:69:6F:D4:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D40B/4626BB1A8E0811EE9C9DE461C4F9AE02/2fpCBt8OmUfNUB39UlsuRmlv1EI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fpCBt8OmUfNUB39UlsuRmlv1EI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D40B/4626BB1A8E0811EE9C9DE461C4F9AE02/2fpCBt8OmUfNUB39UlsuRmlv1EI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:de:6d:76:11:b5:ca:52:00:38:bc:e3:f1:b0:78:99:5e:b7: ce:1e:3c:d1:8c:73:d1:3e:0c:b0:ec:df:c5:6a:d8:2b:e4:b0: bb:09:bf:b5:17:27:07:be:43:dc:f1:9b:4a:c9:64:92:2a:0e: 8d:f5:7e:88:84:11:46:d0:11:ad:d3:f3:04:ad:62:32:01:30: 2f:53:c9:ec:ab:dc:8c:5f:52:cf:35:fc:5d:df:df:15:cb:e9: 76:46:e9:dd:7d:75:7a:6a:d6:88:02:f0:43:e2:cd:6f:7d:06: d2:e0:61:f2:2a:08:cc:98:9c:85:c6:92:21:6c:a4:7e:61:92: 74:2d:be:8d:7a:ad:65:d4:ff:a8:4f:1c:ec:ef:c0:4f:7f:4c: 17:51:20:57:9d:93:46:7e:86:21:aa:93:c8:b1:c0:19:48:f1: bf:32:01:20:55:ed:db:64:e8:fb:f5:09:f2:ce:0b:86:e4:58: a4:49:47:6d:58:84:13:5e:16:b9:1b:bb:eb:12:8f:b3:58:30: 2a:e0:a0:d6:c8:3a:63:9a:3c:87:1c:b3:9e:9e:ce:79:dd:eb: c5:d1:54:5a:d2:4d:3f:ec:57:38:d3:83:bd:5f:13:af:59:72: 9c:fe:20:18:82:26:6e:10:28:1c:6b:0a:08:04:8a:8e:c0:93: a8:46:71:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAR8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQ0MEIxMTAvBgNVBAUTKEQ5RkE0MjA2REYwRTk5NDdDRDUwMURGRDUyNUIyRTQ2 Njk2RkQ0NDIwHhcNMjUwNTMxMDQyNTM1WhcNMjUwNjA3MDQyNTM1WjAYMRYwFAYD VQQDEw02ODNhODRiZi03ZWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvDXMOjvdY6sdGLibUuWV0/EjJ5EyXIg4PdMSChaujigUtCwG/5Pa9k/Uk5O0 8KXoXBgPk1C2U4APgPm95/YgxAvFxl/X/Ielm84L6TDrnemNK4pRFAIC4mTOtkaC yMQ4jdz3ST3qecjtRynOMXz7qnDZIOCeLeyu57UfR8FTqVlLljsTFECS4n1JVHTI LpS5B5wPYLsxeFYBH4JD9lqz/4JhX/vd86ofF66pY17GT2sCbBnZLi3ATEK70TZ1 c1YHlWO5QaTTUZMuKI+flRJXsO8hhEsSUvw0sxLgliefIy1TMLoAveKGmf9Y9ZCs B/xpYueqzqyhTKWxE5vOXfjwMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPkVDcQ9 4U22VpgZvIQXoI9GyVJsMB8GA1UdIwQYMBaAFNn6QgbfDplHzVAd/VJbLkZpb9RC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDQwQi80NjI2QkIxQThF MDgxMUVFOUM5REU0NjFDNEY5QUUwMi8yZnBDQnQ4T21VZk5VQjM5VWxzdVJtbHYx RUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJmcENCdDhPbVVmTlVCMzlVbHN1Um1sdjFFSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDQwQi80NjI2QkIxQThFMDgxMUVFOUM5REU0NjFDNEY5QUUwMi8yZnBDQnQ4T21V Zk5VQjM5VWxzdVJtbHYxRUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAh3m12EbXKUgA4vOPxsHiZXrfOHjzRjHPRPgyw7N/Fatgr5LC7Cb+1 FycHvkPc8ZtKyWSSKg6N9X6IhBFG0BGt0/MErWIyATAvU8nsq9yMX1LPNfxd398V y+l2RundfXV6ataIAvBD4s1vfQbS4GHyKgjMmJyFxpIhbKR+YZJ0Lb6Neq1l1P+o Txzs78BPf0wXUSBXnZNGfoYhqpPIscAZSPG/MgEgVe3bZOj79QnyzguG5FikSUdt WIQTXha5G7vrEo+zWDAq4KDWyDpjmjyHHLOens553evF0VRa0k0/7Fc404O9XxOv WXKc/iAYgiZuECgcawoIBIqOwJOoRnGg -----END CERTIFICATE-----Generated at Sat May 31 14:58:05 2025 by rpki-client