$ rpki-client -vvf rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft File: 2QhrDfk0LcKwkbrobLd5_GJZvXs.mft (raw, json) Hash identifier: To/nx4W2I8wCw49T5uNFMHRiR8GY55/CuOAyYUW8hwc= Subject key identifier: 9F:14:3B:F9:9F:A7:91:53:87:EE:98:B2:94:5C:4D:CA:34:C9:2D:0B Authority key identifier: D9:08:6B:0D:F9:34:2D:C2:B0:91:BA:E8:6C:B7:79:FC:62:59:BD:7B Certificate issuer: /CN=A914F2EC/serialNumber=D9086B0DF9342DC2B091BAE86CB779FC6259BD7B Certificate serial: 3497 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhrDfk0LcKwkbrobLd5_GJZvXs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft Manifest number: 348E Signing time: Sat 31 May 2025 14:58:55 +0000 Manifest this update: Sat 31 May 2025 14:58:55 +0000 Manifest next update: Sat 07 Jun 2025 14:58:55 +0000 Files and hashes: 1: 2QhrDfk0LcKwkbrobLd5_GJZvXs.crl (hash: Q4KQwm1W0WU/s+VSoVapiWk0xSYYZbJnEuC3K5rFfB0=) 2: 588BD7269A1211E8B97A623AC4F9AE02.roa (hash: KKbAooYir9kiM+kQeIhamjhStk+gbSQk/A73xTUucXs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.crl rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhrDfk0LcKwkbrobLd5_GJZvXs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 14:58:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13463 (0x3497) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F2EC, serialNumber=D9086B0DF9342DC2B091BAE86CB779FC6259BD7B Validity Not Before: May 31 14:58:55 2025 GMT Not After : Jun 7 14:58:55 2025 GMT Subject: CN=683b192f-0556 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:69:21:eb:9c:94:9f:a4:71:7f:35:ca:44:b3: a7:10:57:18:7e:d9:f6:8d:39:a6:01:e4:fb:8b:60: 46:cc:56:98:d4:9e:00:73:cd:de:c7:93:ce:14:bf: 2c:58:d9:bd:54:cc:28:d4:74:0e:73:0d:b4:6d:6d: cf:dd:2d:c9:06:33:64:72:5e:7e:6b:fb:56:33:30: a0:53:70:7a:a4:50:90:09:cc:c8:5f:aa:94:cb:2d: 26:f9:c9:06:f5:d1:d1:f1:50:e0:32:33:db:f5:86: 52:85:0e:59:28:70:16:8e:c5:fc:62:8f:41:2e:0b: ae:47:d9:ea:68:ae:ff:7b:13:5c:e5:bd:83:04:bc: aa:f3:d2:42:a5:c2:d0:81:c3:46:f2:dd:54:b7:67: 5d:18:b3:c2:94:f4:ba:31:41:0f:72:68:53:eb:fd: a5:0f:ed:02:aa:fa:f9:88:79:e9:3c:c4:45:61:f3: 05:73:94:22:06:18:f2:4d:15:ff:16:58:4b:ef:40: 3e:a1:de:90:c6:31:a8:db:ec:a7:79:8c:f9:84:2c: 7f:e1:8c:70:8d:82:f0:b1:8f:54:40:a7:7a:00:2d: 46:c1:2c:78:b9:d2:4e:28:fb:35:fc:99:6e:55:95: 07:b7:f8:d1:54:8b:dc:93:7a:b5:fd:46:f6:1b:75: 47:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:14:3B:F9:9F:A7:91:53:87:EE:98:B2:94:5C:4D:CA:34:C9:2D:0B X509v3 Authority Key Identifier: keyid:D9:08:6B:0D:F9:34:2D:C2:B0:91:BA:E8:6C:B7:79:FC:62:59:BD:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhrDfk0LcKwkbrobLd5_GJZvXs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:71:9d:59:55:7e:be:e6:93:ee:2a:18:4a:af:30:e7:6d:76: 62:31:2d:7f:7b:f8:e8:18:50:57:5a:a3:b1:28:e9:d7:a9:35: 68:df:d9:f8:d8:09:22:74:9d:2d:3d:13:c3:89:7a:44:a0:1a: 37:1e:8c:0b:5c:68:32:0c:f1:f2:a9:b7:4c:9b:a5:76:a3:1c: 91:14:eb:55:1f:0a:6e:3f:1d:26:28:5a:a8:6e:f1:26:bc:c4: e0:4f:0b:6b:6f:65:16:26:97:48:58:49:4b:e9:ca:e2:34:97: 4b:54:82:31:b2:ad:0f:ce:ae:8e:68:6b:99:5c:27:71:41:8d: 4d:2c:bd:41:53:9d:2e:ca:3a:4a:00:8e:ce:06:59:99:28:e3: b4:71:43:20:f8:5f:c7:c1:ac:7d:24:73:b0:b7:f4:01:f2:0a: 81:3d:96:d0:e1:1d:41:a9:55:92:d5:ed:cb:cd:ad:22:91:89: 63:d3:37:8c:40:ab:53:01:52:e6:52:cd:4e:43:a2:c1:b8:8e: 96:b0:2c:f7:c9:b0:5f:d5:5d:d5:a6:4c:ff:92:5d:75:50:0d: fe:12:98:c8:b2:d4:87:cf:ee:04:c7:96:c3:f9:af:84:19:14: e7:e3:b4:0d:43:61:8a:28:53:ab:4d:96:a7:c3:c0:e7:b5:5c: 23:91:62:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEYyRUMxMTAvBgNVBAUTKEQ5MDg2QjBERjkzNDJEQzJCMDkxQkFFODZDQjc3OUZD NjI1OUJEN0IwHhcNMjUwNTMxMTQ1ODU1WhcNMjUwNjA3MTQ1ODU1WjAYMRYwFAYD VQQDEw02ODNiMTkyZi0wNTU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApGkh65yUn6RxfzXKRLOnEFcYftn2jTmmAeT7i2BGzFaY1J4Ac83ex5POFL8s WNm9VMwo1HQOcw20bW3P3S3JBjNkcl5+a/tWMzCgU3B6pFCQCczIX6qUyy0m+ckG 9dHR8VDgMjPb9YZShQ5ZKHAWjsX8Yo9BLguuR9nqaK7/exNc5b2DBLyq89JCpcLQ gcNG8t1Ut2ddGLPClPS6MUEPcmhT6/2lD+0Cqvr5iHnpPMRFYfMFc5QiBhjyTRX/ FlhL70A+od6QxjGo2+yneYz5hCx/4YxwjYLwsY9UQKd6AC1GwSx4udJOKPs1/Jlu VZUHt/jRVIvck3q1/Ub2G3VHrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ8UO/mf p5FTh+6YspRcTco0yS0LMB8GA1UdIwQYMBaAFNkIaw35NC3CsJG66Gy3efxiWb17 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjJFQy9ENThBMjI2QzFE OUMxMUUyOUJDM0IyOEIwOEIwMkNEMi8yUWhyRGZrMExjS3drYnJvYkxkNV9HSlp2 WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJRaHJEZmswTGNLd2ticm9iTGQ1X0dKWnZYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjJFQy9ENThBMjI2QzFEOUMxMUUyOUJDM0IyOEIwOEIwMkNEMi8yUWhyRGZrMExj S3drYnJvYkxkNV9HSlp2WHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdcZ1ZVX6+5pPuKhhKrzDnbXZiMS1/e/joGFBXWqOxKOnXqTVo39n4 2AkidJ0tPRPDiXpEoBo3HowLXGgyDPHyqbdMm6V2oxyRFOtVHwpuPx0mKFqobvEm vMTgTwtrb2UWJpdIWElL6criNJdLVIIxsq0Pzq6OaGuZXCdxQY1NLL1BU50uyjpK AI7OBlmZKOO0cUMg+F/Hwax9JHOwt/QB8gqBPZbQ4R1BqVWS1e3Lza0ikYlj0zeM QKtTAVLmUs1OQ6LBuI6WsCz3ybBf1V3Vpkz/kl11UA3+EpjIstSHz+4Ex5bD+a+E GRTn47QNQ2GKKFOrTZanw8DntVwjkWIW -----END CERTIFICATE-----Generated at Sat May 31 17:12:56 2025 by rpki-client