$ rpki-client -vvf rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.mft File: 2gQijT7rRR_A8iM2aXFwV_irNmk.mft (raw, json) Hash identifier: nU5E25SDthKToBecuDDmiqEfw7RiMRYzHjN4PE8lntM= Subject key identifier: D3:8B:95:54:89:36:0F:43:E9:30:56:8C:FB:7B:68:4E:BE:D6:D2:5E Authority key identifier: DA:04:22:8D:3E:EB:45:1F:C0:F2:23:36:69:71:70:57:F8:AB:36:69 Certificate issuer: /CN=A914B165/serialNumber=DA04228D3EEB451FC0F2233669717057F8AB3669 Certificate serial: 087A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gQijT7rRR_A8iM2aXFwV_irNmk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.mft Manifest number: 0874 Signing time: Fri 30 May 2025 20:53:06 +0000 Manifest this update: Fri 30 May 2025 20:53:06 +0000 Manifest next update: Fri 06 Jun 2025 20:53:06 +0000 Files and hashes: 1: 2gQijT7rRR_A8iM2aXFwV_irNmk.crl (hash: Xtg4K1Ca10DtMIjApbjGosVs/+rQ6YUPs8gv84Wq7PE=) 2: 26AECD92C2B211EABBD0ED4AC4F9AE02.roa (hash: 8bFMS7lUFa5a04616nMhBCIyPXjI0vGFlv2YHmEk/tM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.crl rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gQijT7rRR_A8iM2aXFwV_irNmk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:53:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2170 (0x87a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B165, serialNumber=DA04228D3EEB451FC0F2233669717057F8AB3669 Validity Not Before: May 30 20:53:06 2025 GMT Not After : Jun 6 20:53:06 2025 GMT Subject: CN=683a1ab2-8a15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:2a:50:c8:ff:70:04:db:26:46:10:41:46:51: 97:46:45:a9:78:40:05:68:ca:7e:53:7f:e5:d3:cd: e5:1e:5b:12:a2:ad:65:03:3b:4e:99:b1:97:95:85: 10:1c:1d:d2:66:30:a6:d1:4c:d1:82:ba:41:6c:a1: d1:15:93:54:e6:f5:92:90:a4:67:f2:54:db:3f:51: 95:0c:5e:31:ba:c7:23:dd:ec:8a:57:60:42:43:4c: ce:8d:f9:44:ac:b6:2a:36:1e:0d:96:f9:1f:ef:f7: 6b:47:13:7b:b6:aa:9f:77:ce:49:73:5e:ee:9e:f7: e4:58:59:2f:87:de:33:20:c1:44:82:5a:f0:a6:ad: 11:d3:df:48:6e:e1:9e:ac:e4:10:aa:d4:ba:d0:e6: 02:06:4d:97:86:74:8f:81:e1:01:ea:0f:41:b8:55: 9c:cb:26:64:45:af:2d:79:58:75:dd:21:eb:02:af: 5a:02:4e:40:c8:63:a9:53:59:2b:a9:9f:41:1e:a3: 9f:32:c3:fc:0c:d4:18:de:50:80:16:35:c3:5a:e7: e8:0b:f1:c2:0e:c5:f8:18:7b:f4:a3:13:72:35:0a: 8b:f2:e3:fa:62:47:85:94:d7:b3:3d:d3:fe:d1:5f: 68:fe:0e:54:71:6d:84:83:55:e5:03:0e:27:fc:53: d9:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:8B:95:54:89:36:0F:43:E9:30:56:8C:FB:7B:68:4E:BE:D6:D2:5E X509v3 Authority Key Identifier: keyid:DA:04:22:8D:3E:EB:45:1F:C0:F2:23:36:69:71:70:57:F8:AB:36:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gQijT7rRR_A8iM2aXFwV_irNmk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c9:1b:c9:56:47:0f:69:50:f7:b3:7a:b6:4a:d2:6a:57:23:e2: 1a:f2:b3:64:b0:16:1d:45:9d:c9:7d:c7:a0:87:3f:58:f7:91: b9:2f:0c:46:33:f1:12:71:9a:fa:6d:9a:07:93:e6:74:e2:13: 1d:72:5f:5b:4b:49:dd:3b:35:ce:d7:20:6c:d3:89:d4:b2:bd: c5:76:6c:27:f5:d1:25:5e:b6:cf:b9:ef:14:d7:28:a7:b5:07: ce:66:9f:9c:ef:76:75:85:89:d6:26:94:7c:6e:02:6f:3d:45: df:90:0d:00:49:9b:36:36:68:e5:5f:ce:18:c1:35:12:bb:e4: 46:67:ea:86:3d:df:71:81:88:10:5f:fd:d0:31:83:84:fa:90: d2:71:ab:9e:f5:57:f8:95:8f:ae:65:f9:38:44:d7:40:94:7e: b6:7a:b9:21:5c:ee:05:57:7d:e7:19:71:48:fa:0a:a6:b9:7c: 82:44:80:9b:ce:69:af:c2:b2:31:8c:f8:35:8f:62:13:74:0a: 64:22:33:bf:8b:d9:e3:38:e3:1f:00:2a:02:23:4c:dc:e6:f6: 62:e1:93:65:23:99:4a:52:9d:08:0e:fe:16:08:de:a7:ad:d9: db:87:e0:c4:7c:11:aa:f4:1c:6d:08:fb:31:1b:3f:9a:19:aa: 55:96:b6:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCHowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEIxNjUxMTAvBgNVBAUTKERBMDQyMjhEM0VFQjQ1MUZDMEYyMjMzNjY5NzE3MDU3 RjhBQjM2NjkwHhcNMjUwNTMwMjA1MzA2WhcNMjUwNjA2MjA1MzA2WjAYMRYwFAYD VQQDEw02ODNhMWFiMi04YTE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzipQyP9wBNsmRhBBRlGXRkWpeEAFaMp+U3/l083lHlsSoq1lAztOmbGXlYUQ HB3SZjCm0UzRgrpBbKHRFZNU5vWSkKRn8lTbP1GVDF4xuscj3eyKV2BCQ0zOjflE rLYqNh4Nlvkf7/drRxN7tqqfd85Jc17unvfkWFkvh94zIMFEglrwpq0R099IbuGe rOQQqtS60OYCBk2XhnSPgeEB6g9BuFWcyyZkRa8teVh13SHrAq9aAk5AyGOpU1kr qZ9BHqOfMsP8DNQY3lCAFjXDWufoC/HCDsX4GHv0oxNyNQqL8uP6YkeFlNezPdP+ 0V9o/g5UcW2Eg1XlAw4n/FPZkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNOLlVSJ Ng9D6TBWjPt7aE6+1tJeMB8GA1UdIwQYMBaAFNoEIo0+60UfwPIjNmlxcFf4qzZp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjE2NS82QTNFQjhCNkMy QjExMUVBOTIwQkI5NEFDNEY5QUUwMi8yZ1FpalQ3clJSX0E4aU0yYVhGd1ZfaXJO bWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJnUWlqVDdyUlJfQThpTTJhWEZ3Vl9pck5tay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjE2NS82QTNFQjhCNkMyQjExMUVBOTIwQkI5NEFDNEY5QUUwMi8yZ1FpalQ3clJS X0E4aU0yYVhGd1ZfaXJObWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDJG8lWRw9pUPezerZK0mpXI+Ia8rNksBYdRZ3Jfceghz9Y95G5LwxG M/EScZr6bZoHk+Z04hMdcl9bS0ndOzXO1yBs04nUsr3Fdmwn9dElXrbPue8U1yin tQfOZp+c73Z1hYnWJpR8bgJvPUXfkA0ASZs2NmjlX84YwTUSu+RGZ+qGPd9xgYgQ X/3QMYOE+pDScaue9Vf4lY+uZfk4RNdAlH62erkhXO4FV33nGXFI+gqmuXyCRICb zmmvwrIxjPg1j2ITdApkIjO/i9njOOMfACoCI0zc5vZi4ZNlI5lKUp0IDv4WCN6n rdnbh+DEfBGq9BxtCPsxGz+aGapVlrat -----END CERTIFICATE-----Generated at Sat May 31 16:36:46 2025 by rpki-client