$ rpki-client -vvf rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft File: 2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft (raw, json) Hash identifier: wKrDqHB8JlkCBrOxXCsmBQOzwj2Gyv667+oO0AgLqQw= Subject key identifier: 75:F0:28:01:C5:74:BB:C0:4E:B4:12:63:80:AB:53:94:13:4C:29:7A Authority key identifier: D9:5D:A1:17:14:12:30:0A:B5:3B:3E:48:70:F2:F4:41:F0:6C:81:24 Certificate issuer: /CN=A9159ECD/serialNumber=D95DA1171412300AB53B3E4870F2F441F06C8124 Certificate serial: AE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft Manifest number: AC Signing time: Sat 31 May 2025 23:47:11 +0000 Manifest this update: Sat 31 May 2025 23:47:11 +0000 Manifest next update: Sat 07 Jun 2025 23:47:11 +0000 Files and hashes: 1: 2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl (hash: YiYwndbg10Z0FsfCLmDZB7nD4uPPvnEmzeFWXrbnEBg=) 2: 5A4723DA6F3C11EF8FD45F13C4F9AE02.roa (hash: kyChUBrK7l3YN4vwLMgx+ZZf43nxmdSV9d2PzrRyBN4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 23:47:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 174 (0xae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159ECD, serialNumber=D95DA1171412300AB53B3E4870F2F441F06C8124 Validity Not Before: May 31 23:47:11 2025 GMT Not After : Jun 7 23:47:11 2025 GMT Subject: CN=683b94ff-2c48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:51:df:94:9c:12:2a:58:44:da:9a:6a:76:f3: 52:b4:b1:8f:2e:e8:54:74:cc:af:83:9c:72:be:64: 8a:08:a9:e5:aa:7e:c1:1b:a7:50:2e:2f:dd:da:fe: 13:27:44:c6:cc:e9:ea:7a:53:6b:0f:66:33:56:85: 1d:53:be:67:4e:62:de:f9:5e:c8:20:3b:31:a3:9d: 37:ab:34:9e:6b:ad:53:d6:80:2d:7e:82:ef:c2:07: 3f:d9:bf:8a:5f:17:23:9d:00:95:4b:3b:98:5e:e0: c7:4c:c3:31:ac:7d:2f:5d:78:51:5d:7d:a2:55:1b: c6:6c:83:b3:70:0f:c6:54:71:1d:52:e4:e3:b1:1f: 25:ef:90:a1:c6:42:7e:19:e3:66:0f:f9:eb:f9:4c: 04:22:71:e0:30:1d:6c:72:48:02:02:94:55:2a:a0: 8f:c2:2f:e8:50:67:d9:f1:7d:da:fe:27:83:54:f7: 2a:43:2e:47:6d:b2:ca:a4:fc:11:7f:d0:a4:5e:3f: 0e:30:1d:c1:65:5e:08:e2:5c:a8:52:f6:f7:f3:e0: 05:2a:15:05:d5:75:96:a2:6a:46:e5:d7:54:38:eb: b3:12:17:45:1d:f5:1e:c1:e2:35:7b:fc:8f:13:f0: a2:9e:50:2d:2e:33:41:93:45:37:f1:b1:21:de:14: 85:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:F0:28:01:C5:74:BB:C0:4E:B4:12:63:80:AB:53:94:13:4C:29:7A X509v3 Authority Key Identifier: keyid:D9:5D:A1:17:14:12:30:0A:B5:3B:3E:48:70:F2:F4:41:F0:6C:81:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:90:64:dd:90:ab:20:b8:01:1d:a4:4a:8e:6d:4d:13:71:11: 65:3a:b7:a2:0c:ce:65:59:39:ce:d6:30:30:ab:87:54:d2:97: 1b:4c:cb:ae:6e:5d:bf:72:ef:85:a7:17:26:b1:1b:af:18:26: aa:0b:45:ca:5f:fa:5d:68:5b:16:52:7e:c6:cb:66:23:b7:8a: 3c:2b:2d:86:0b:e5:ee:0f:a4:fc:ee:3c:da:6c:97:83:ee:ab: f9:62:42:58:52:51:3d:44:f3:e9:15:e3:a9:78:c1:c5:1d:e1: a0:61:86:f3:03:72:0e:9a:ef:9c:dc:ac:fd:41:54:b9:96:d8: 97:24:47:e2:8f:ae:0a:22:62:ba:cd:98:b8:61:02:52:2f:04: 4c:43:d2:dc:8f:76:00:c1:55:9b:7a:e5:eb:f8:8c:33:85:8d: 37:5b:a1:2f:fb:10:2c:bf:c9:df:54:e7:80:fa:a0:2b:8b:49: 09:09:fd:02:41:2d:3f:9d:9a:09:27:15:4d:c3:87:d0:e8:91: b7:cf:d1:76:4f:65:a6:72:a6:44:fe:4f:a0:30:6d:53:ff:c5: da:b7:c8:a5:78:ba:06:03:5d:2f:bd:dd:fb:d9:18:12:1d:60: 6c:2c:b1:2f:01:f0:5c:5b:f1:26:0f:6c:ea:a1:8c:a4:c6:c4: 46:5a:bd:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTlFQ0QxMTAvBgNVBAUTKEQ5NURBMTE3MTQxMjMwMEFCNTNCM0U0ODcwRjJGNDQx RjA2QzgxMjQwHhcNMjUwNTMxMjM0NzExWhcNMjUwNjA3MjM0NzExWjAYMRYwFAYD VQQDEw02ODNiOTRmZi0yYzQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy1HflJwSKlhE2ppqdvNStLGPLuhUdMyvg5xyvmSKCKnlqn7BG6dQLi/d2v4T J0TGzOnqelNrD2YzVoUdU75nTmLe+V7IIDsxo503qzSea61T1oAtfoLvwgc/2b+K XxcjnQCVSzuYXuDHTMMxrH0vXXhRXX2iVRvGbIOzcA/GVHEdUuTjsR8l75ChxkJ+ GeNmD/nr+UwEInHgMB1sckgCApRVKqCPwi/oUGfZ8X3a/ieDVPcqQy5HbbLKpPwR f9CkXj8OMB3BZV4I4lyoUvb38+AFKhUF1XWWompG5ddUOOuzEhdFHfUeweI1e/yP E/CinlAtLjNBk0U38bEh3hSFPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHXwKAHF dLvATrQSY4CrU5QTTCl6MB8GA1UdIwQYMBaAFNldoRcUEjAKtTs+SHDy9EHwbIEk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OUVDRC9FRjYzODNFMjNE OUYxMUVGOTkwMzM3NjhDNEY5QUUwMi8yVjJoRnhRU01BcTFPejVJY1BMMFFmQnNn U1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJWMmhGeFFTTUFxMU96NUljUEwwUWZCc2dTUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OUVDRC9FRjYzODNFMjNEOUYxMUVGOTkwMzM3NjhDNEY5QUUwMi8yVjJoRnhRU01B cTFPejVJY1BMMFFmQnNnU1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkkGTdkKsguAEdpEqObU0TcRFlOreiDM5lWTnO1jAwq4dU0pcbTMuu bl2/cu+FpxcmsRuvGCaqC0XKX/pdaFsWUn7Gy2Yjt4o8Ky2GC+XuD6T87jzabJeD 7qv5YkJYUlE9RPPpFeOpeMHFHeGgYYbzA3IOmu+c3Kz9QVS5ltiXJEfij64KImK6 zZi4YQJSLwRMQ9Lcj3YAwVWbeuXr+IwzhY03W6Ev+xAsv8nfVOeA+qAri0kJCf0C QS0/nZoJJxVNw4fQ6JG3z9F2T2WmcqZE/k+gMG1T/8Xat8ileLoGA10vvd372RgS HWBsLLEvAfBcW/EmD2zqoYykxsRGWr3r -----END CERTIFICATE-----Generated at Mon Jun 2 22:09:01 2025 by rpki-client