$ rpki-client -vvf rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft File: 2UW2DwCc3xVcQp1Aha62z-BrzgA.mft (raw, json) Hash identifier: LLgpsobz6usD5voghyvNpxPcwRwNs2T2FuPrX4Mdi4g= Subject key identifier: D5:FE:F5:AB:1B:F2:8E:C3:01:E8:24:9C:F4:F8:38:41:A9:1C:49:DC Authority key identifier: D9:45:B6:0F:00:9C:DF:15:5C:42:9D:40:85:AE:B6:CF:E0:6B:CE:00 Certificate issuer: /CN=A9149CEF/serialNumber=D945B60F009CDF155C429D4085AEB6CFE06BCE00 Certificate serial: 04C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UW2DwCc3xVcQp1Aha62z-BrzgA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft Manifest number: 04B9 Signing time: Wed 04 Jun 2025 23:43:17 +0000 Manifest this update: Wed 04 Jun 2025 23:43:16 +0000 Manifest next update: Wed 11 Jun 2025 23:43:16 +0000 Files and hashes: 1: 2UW2DwCc3xVcQp1Aha62z-BrzgA.crl (hash: yFSgSP1Skz7DMYY7Fg3cyAwL8AcePPYUZGcnisrLJtg=) 2: AFAC764C2C1711EC817C5912C4F9AE02.roa (hash: Pxv8dePi1EpNPNL4ZdJ0nYxVU1Z8dZuP+ncTQy+eHOw=) 3: AF22E83C2C1711EC817C5912C4F9AE02.roa (hash: Qsapn7T7BSoVN2a752N9muKYuA54q3bOkNtfwyaphBI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.crl rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UW2DwCc3xVcQp1Aha62z-BrzgA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 23:43:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1217 (0x4c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149CEF, serialNumber=D945B60F009CDF155C429D4085AEB6CFE06BCE00 Validity Not Before: Jun 4 23:43:16 2025 GMT Not After : Jun 11 23:43:16 2025 GMT Subject: CN=6840da14-7be2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ee:4d:82:dd:16:87:31:c0:59:84:4f:2e:f5: fc:7e:4e:8a:91:1f:f7:4e:c8:07:a1:3e:00:98:2d: 16:c1:f6:79:08:8b:8d:39:11:b3:e3:3c:95:1a:21: a7:1a:49:3a:16:c2:ef:91:40:84:87:18:4c:6e:2d: f9:b9:0e:cd:b2:88:d7:6b:e5:84:f7:88:22:a7:92: 4e:d1:8c:7c:0d:c8:3b:b3:73:c8:db:4b:fc:a5:97: 98:6e:80:24:5d:d1:3e:ac:01:9c:a3:a5:ae:12:48: 75:7b:7d:8c:7a:40:bc:ea:1d:f6:e8:f5:85:2a:f7: 5a:b9:1e:45:13:8a:20:2b:f4:ab:9b:c1:66:1b:27: 2c:b3:d9:25:5e:0a:12:83:aa:e1:f6:1f:a3:e6:6e: 99:71:d8:bc:c0:45:fb:54:1c:9d:17:b6:37:8a:69: 7f:ed:2a:e7:ff:e2:6e:55:1d:7d:d2:fb:29:42:32: e3:58:c9:43:0a:4d:27:2b:4a:94:46:3f:90:f3:7c: ad:88:4b:52:d4:dd:5e:19:ed:7f:c6:2e:fa:f0:8f: 09:c1:cc:1d:90:67:55:ef:ac:9f:24:c0:4d:59:79: 2b:e4:5c:4a:4d:41:ae:be:24:e4:4b:63:23:4b:20: 22:7c:cd:d4:c7:15:0b:1c:70:c2:a7:17:ff:a0:5c: 41:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:FE:F5:AB:1B:F2:8E:C3:01:E8:24:9C:F4:F8:38:41:A9:1C:49:DC X509v3 Authority Key Identifier: keyid:D9:45:B6:0F:00:9C:DF:15:5C:42:9D:40:85:AE:B6:CF:E0:6B:CE:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UW2DwCc3xVcQp1Aha62z-BrzgA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:01:64:e4:4d:3a:81:f0:9f:2b:04:c6:de:b2:85:44:09:99: 62:a3:63:b3:39:70:ed:35:c3:5d:5f:0e:a3:aa:92:95:1f:ba: 7a:ff:5b:a1:b0:97:58:73:39:f1:86:a2:ca:77:a2:6a:39:62: c3:45:07:43:b9:a4:2c:c7:85:98:21:14:48:ee:a3:03:0d:d5: da:e4:88:82:36:fc:ad:f5:51:51:5d:ab:47:0f:f6:38:1f:ff: 43:c0:fb:8a:76:73:56:d6:c4:9e:d0:98:af:be:41:fe:04:c4: 0e:e1:3c:26:36:f0:a8:ed:01:fe:ee:5a:7c:8e:48:95:08:53: c8:88:9f:5f:7f:ae:6a:b5:cd:01:c8:a0:b5:fd:14:ca:cc:82: 27:ad:ae:06:2e:f4:56:2f:08:3b:37:0c:fa:8c:7c:71:f1:6f: 9b:d5:b2:10:99:8b:26:34:1b:4a:c7:bd:cf:7a:3b:bc:8e:35: fe:12:dd:4a:62:24:0d:12:ac:e7:2e:d5:28:7a:af:26:73:b6: 97:0c:51:7b:a5:e8:46:f4:ba:64:33:ce:ea:7b:fe:66:f9:92: 21:f1:cd:19:5c:df:07:63:00:5f:a2:03:87:a7:be:15:0a:e6: fd:78:47:4c:74:d9:67:f7:1f:85:38:b1:e6:24:c3:41:95:6f: 1d:bd:a3:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlDRUYxMTAvBgNVBAUTKEQ5NDVCNjBGMDA5Q0RGMTU1QzQyOUQ0MDg1QUVCNkNG RTA2QkNFMDAwHhcNMjUwNjA0MjM0MzE2WhcNMjUwNjExMjM0MzE2WjAYMRYwFAYD VQQDEw02ODQwZGExNC03YmUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqu5Ngt0WhzHAWYRPLvX8fk6KkR/3TsgHoT4AmC0WwfZ5CIuNORGz4zyVGiGn Gkk6FsLvkUCEhxhMbi35uQ7NsojXa+WE94gip5JO0Yx8Dcg7s3PI20v8pZeYboAk XdE+rAGco6WuEkh1e32MekC86h326PWFKvdauR5FE4ogK/Srm8FmGycss9klXgoS g6rh9h+j5m6Zcdi8wEX7VBydF7Y3iml/7Srn/+JuVR190vspQjLjWMlDCk0nK0qU Rj+Q83ytiEtS1N1eGe1/xi768I8JwcwdkGdV76yfJMBNWXkr5FxKTUGuviTkS2Mj SyAifM3UxxULHHDCpxf/oFxBJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNX+9asb 8o7DAegknPT4OEGpHEncMB8GA1UdIwQYMBaAFNlFtg8AnN8VXEKdQIWuts/ga84A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUNFRi9DNDAxOUQyNDJD MTMxMUVDQjQ1ODA4NDJDNEY5QUUwMi8yVVcyRHdDYzN4VmNRcDFBaGE2MnotQnJ6 Z0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJVVzJEd0NjM3hWY1FwMUFoYTYyei1CcnpnQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUNFRi9DNDAxOUQyNDJDMTMxMUVDQjQ1ODA4NDJDNEY5QUUwMi8yVVcyRHdDYzN4 VmNRcDFBaGE2MnotQnJ6Z0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtAWTkTTqB8J8rBMbesoVECZlio2OzOXDtNcNdXw6jqpKVH7p6/1uh sJdYcznxhqLKd6JqOWLDRQdDuaQsx4WYIRRI7qMDDdXa5IiCNvyt9VFRXatHD/Y4 H/9DwPuKdnNW1sSe0JivvkH+BMQO4TwmNvCo7QH+7lp8jkiVCFPIiJ9ff65qtc0B yKC1/RTKzIInra4GLvRWLwg7Nwz6jHxx8W+b1bIQmYsmNBtKx73Peju8jjX+Et1K YiQNEqznLtUoeq8mc7aXDFF7pehG9LpkM87qe/5m+ZIh8c0ZXN8HYwBfogOHp74V Cub9eEdMdNln9x+FOLHmJMNBlW8dvaMu -----END CERTIFICATE-----Generated at Thu Jun 5 19:22:06 2025 by rpki-client