$ rpki-client -vvf rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft File: 2lexkcVbszGevZGC3A1Oau8-Ddg.mft (raw, json) Hash identifier: HOKMuSUHPPx/v34tW4Khg+8VyZBL02ROviuFeLWl/vQ= Subject key identifier: 71:5B:DB:DC:75:E3:8A:13:9E:0F:7E:21:97:CE:C6:D7:58:58:48:30 Authority key identifier: DA:57:B1:91:C5:5B:B3:31:9E:BD:91:82:DC:0D:4E:6A:EF:3E:0D:D8 Certificate issuer: /CN=A912A31E/serialNumber=DA57B191C55BB3319EBD9182DC0D4E6AEF3E0DD8 Certificate serial: 0189 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft Manifest number: 0186 Signing time: Sat 31 May 2025 03:16:05 +0000 Manifest this update: Sat 31 May 2025 03:16:04 +0000 Manifest next update: Sat 07 Jun 2025 03:16:04 +0000 Files and hashes: 1: 2lexkcVbszGevZGC3A1Oau8-Ddg.crl (hash: tiUtMtpV5J+VhbWDTp9fONUAr8p2uB85+3TjAt5lYmU=) 2: 5181F33CE8C011EDADA54A23C4F9AE02.roa (hash: 9wRwgsGB8Fy9z1Xq7bw5sLUsMsE1FSTZuA/DyllyXak=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.crl rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:16:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 393 (0x189) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A31E, serialNumber=DA57B191C55BB3319EBD9182DC0D4E6AEF3E0DD8 Validity Not Before: May 31 03:16:04 2025 GMT Not After : Jun 7 03:16:04 2025 GMT Subject: CN=683a7475-d19b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a4:a5:ef:b7:88:b7:ce:d3:2e:4f:30:6c:76: 69:ea:8f:78:af:69:a1:5a:cd:96:b0:21:29:25:52: 32:bf:2d:e0:2c:df:ef:81:bb:79:32:a5:dc:79:45: e4:53:e0:48:cb:f4:1c:36:a7:52:b6:7c:97:ff:df: 9c:44:77:49:5c:2f:c2:48:e6:37:ea:2a:26:1a:de: 25:9d:b7:1a:e6:90:3d:ae:33:ce:72:d2:08:74:74: f6:fe:e4:17:a8:5d:ee:06:92:2d:59:6a:05:07:a6: 33:7d:77:eb:b8:94:14:d8:5e:c6:fe:67:9a:ca:a3: d2:40:fc:0a:95:76:f3:df:68:a8:77:a6:58:0e:1a: f5:be:f1:cf:ff:49:fe:d1:8c:4a:a8:b5:2d:65:14: 4b:ef:d9:fd:c5:f6:8f:8d:5c:8b:65:66:a7:0d:8c: 3a:7c:49:a1:a9:77:ed:30:c7:35:ff:b0:15:d6:d6: 10:0e:11:f8:54:2a:a5:46:13:c7:3f:fc:4d:83:1d: 3c:8e:f9:07:1d:11:89:34:94:7b:ce:a3:74:b4:8a: fd:41:cb:db:f6:50:05:8f:86:39:30:cb:8e:66:1b: da:0e:a4:92:77:06:f2:34:cc:94:f7:23:21:c2:6a: 26:83:06:cb:c2:53:2b:4a:60:6a:4a:cc:da:a3:26: a3:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:5B:DB:DC:75:E3:8A:13:9E:0F:7E:21:97:CE:C6:D7:58:58:48:30 X509v3 Authority Key Identifier: keyid:DA:57:B1:91:C5:5B:B3:31:9E:BD:91:82:DC:0D:4E:6A:EF:3E:0D:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:b1:05:14:b0:6a:f9:d8:95:6a:13:c1:eb:82:26:22:4f:a9: d8:a0:f6:43:5f:9a:b2:8a:d5:d0:c6:84:6c:b5:46:b7:1c:78: 69:31:31:24:69:e7:97:8e:74:88:aa:29:fe:f5:17:30:0c:0e: ef:a9:58:52:b5:f1:e1:a4:4b:4b:cc:c0:4a:b6:0f:7c:51:c5: 7c:06:3e:dc:68:82:fb:e2:33:d5:2d:2f:7d:84:4f:d0:95:34: 35:e3:d1:a8:8f:7a:88:34:01:0d:cd:d0:d8:18:d5:8e:57:86: d6:a5:16:4b:db:89:ab:1c:c7:e9:dc:bc:97:5f:aa:5f:02:51: 8f:50:30:37:c8:37:4e:2d:9d:31:71:8d:7e:cb:f7:74:88:8d: b2:1a:ae:2a:18:91:a0:b2:7e:56:ab:5d:0a:a1:84:16:2e:13: 4d:b0:f4:a8:89:16:0b:52:84:b1:b9:5c:82:fb:27:02:0d:b6: 2e:07:ef:9e:8b:0b:94:c6:46:6f:9d:17:31:57:6c:ec:48:59: 7e:5a:50:b2:4b:32:1b:ff:20:db:a8:20:30:18:54:f8:69:c2: 55:1c:f4:ef:15:98:81:36:07:d8:e2:3f:b8:d4:4f:09:4e:b8: f3:a0:5f:bd:b8:ec:11:93:71:1f:37:44:02:e8:b9:a6:f4:d7: ea:72:74:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkEzMUUxMTAvBgNVBAUTKERBNTdCMTkxQzU1QkIzMzE5RUJEOTE4MkRDMEQ0RTZB RUYzRTBERDgwHhcNMjUwNTMxMDMxNjA0WhcNMjUwNjA3MDMxNjA0WjAYMRYwFAYD VQQDEw02ODNhNzQ3NS1kMTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsqSl77eIt87TLk8wbHZp6o94r2mhWs2WsCEpJVIyvy3gLN/vgbt5MqXceUXk U+BIy/QcNqdStnyX/9+cRHdJXC/CSOY36iomGt4lnbca5pA9rjPOctIIdHT2/uQX qF3uBpItWWoFB6YzfXfruJQU2F7G/meayqPSQPwKlXbz32iod6ZYDhr1vvHP/0n+ 0YxKqLUtZRRL79n9xfaPjVyLZWanDYw6fEmhqXftMMc1/7AV1tYQDhH4VCqlRhPH P/xNgx08jvkHHRGJNJR7zqN0tIr9Qcvb9lAFj4Y5MMuOZhvaDqSSdwbyNMyU9yMh wmomgwbLwlMrSmBqSszaoyajrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHFb29x1 44oTng9+IZfOxtdYWEgwMB8GA1UdIwQYMBaAFNpXsZHFW7Mxnr2RgtwNTmrvPg3Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTMxRS9DOEE0QzRFNEU4 QkIxMUVEQThEQjhBMUZDNEY5QUUwMi8ybGV4a2NWYnN6R2V2WkdDM0ExT2F1OC1E ZGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsZXhrY1Zic3pHZXZaR0MzQTFPYXU4LURkZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QTMxRS9DOEE0QzRFNEU4QkIxMUVEQThEQjhBMUZDNEY5QUUwMi8ybGV4a2NWYnN6 R2V2WkdDM0ExT2F1OC1EZGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvsQUUsGr52JVqE8HrgiYiT6nYoPZDX5qyitXQxoRstUa3HHhpMTEk aeeXjnSIqin+9RcwDA7vqVhStfHhpEtLzMBKtg98UcV8Bj7caIL74jPVLS99hE/Q lTQ149Goj3qINAENzdDYGNWOV4bWpRZL24mrHMfp3LyXX6pfAlGPUDA3yDdOLZ0x cY1+y/d0iI2yGq4qGJGgsn5Wq10KoYQWLhNNsPSoiRYLUoSxuVyC+ycCDbYuB++e iwuUxkZvnRcxV2zsSFl+WlCySzIb/yDbqCAwGFT4acJVHPTvFZiBNgfY4j+41E8J TrjzoF+9uOwRk3EfN0QC6Lmm9NfqcnRP -----END CERTIFICATE-----Generated at Sat May 31 16:49:13 2025 by rpki-client