$ rpki-client -vvf rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft File: 2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft (raw, json) Hash identifier: o9KRAqTYktCV5TwOnEnxvQOe4OWpurPMJQqpPhz5EQA= Subject key identifier: A1:AF:2B:22:FF:CD:71:95:33:94:0C:CF:0D:8D:0F:B8:68:16:34:45 Authority key identifier: D9:5D:A1:17:14:12:30:0A:B5:3B:3E:48:70:F2:F4:41:F0:6C:81:24 Certificate issuer: /CN=A9159ECD/serialNumber=D95DA1171412300AB53B3E4870F2F441F06C8124 Certificate serial: 86 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft Manifest number: 84 Signing time: Wed 12 Mar 2025 23:17:55 +0000 Manifest this update: Wed 12 Mar 2025 23:17:55 +0000 Manifest next update: Wed 19 Mar 2025 23:17:55 +0000 Files and hashes: 1: 2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl (hash: 7+vP13UcHUlsHhi9h+JcgsqkHZDj72X+BAdqSaSHbw4=) 2: 5A4723DA6F3C11EF8FD45F13C4F9AE02.roa (hash: kyChUBrK7l3YN4vwLMgx+ZZf43nxmdSV9d2PzrRyBN4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 23:17:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 134 (0x86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159ECD Validity Not Before: Mar 12 23:17:55 2025 GMT Not After : Mar 19 23:17:55 2025 GMT Subject: CN=67d21623-ca17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:f5:9e:52:87:c8:f8:75:7c:0d:c1:92:ec:f1: 70:bc:d2:2d:30:86:7b:ef:4d:da:52:d4:7c:8e:7b: e8:17:27:7f:d7:f6:61:a9:6c:ef:f3:24:64:10:5e: a1:5f:4b:e0:21:31:1b:de:9a:f5:c1:30:71:9b:86: e5:8b:fb:7a:9f:50:f8:5b:a9:02:36:ab:e0:c4:b3: 12:13:61:48:79:39:b2:49:9e:47:5f:25:17:ef:9a: 91:1d:28:6f:fb:9c:3d:50:08:98:73:cb:52:00:9f: d0:8f:d9:97:91:ae:bc:92:80:79:61:fd:db:f7:3a: d7:4a:17:02:a0:03:99:6b:86:cc:d8:5d:01:0b:eb: aa:e4:4f:c8:9a:7e:ea:56:ca:48:a3:3a:e3:7b:da: 6c:aa:81:11:e7:c8:b2:1b:54:20:36:f3:1f:0b:32: 58:36:37:2c:4c:93:81:a7:63:70:08:f8:8d:ea:d3: b3:60:4c:6a:8a:98:22:21:f5:7d:ee:84:4c:97:1c: 6e:56:0b:30:48:27:f1:74:b0:57:e8:7b:e2:c3:ee: ed:95:a9:16:e0:ae:4f:58:95:d7:a3:3e:b4:65:20: 6c:be:20:1c:72:4f:89:36:25:81:bb:97:3b:ce:48: 0b:6e:23:25:2b:a7:05:a5:51:7e:d3:02:cf:b5:c7: 7c:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:AF:2B:22:FF:CD:71:95:33:94:0C:CF:0D:8D:0F:B8:68:16:34:45 X509v3 Authority Key Identifier: keyid:D9:5D:A1:17:14:12:30:0A:B5:3B:3E:48:70:F2:F4:41:F0:6C:81:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:6b:45:44:de:d5:fa:1c:12:52:69:79:9e:76:50:93:d2:7a: 97:92:0d:32:e8:a4:10:32:ae:2a:17:9b:23:61:72:18:5a:47: 12:75:87:89:8f:21:df:c3:a5:e1:5b:0b:49:a5:46:7b:f2:d7: 34:e2:cd:3d:46:a3:9e:f3:0a:70:a8:7f:83:17:73:69:37:3c: 27:45:9b:13:bc:45:46:43:30:08:0e:bc:2e:0e:5d:8b:91:08: a8:1e:0b:ec:72:70:f8:8e:fb:80:7e:0c:b7:e8:9e:49:ba:6f: 5b:49:d8:da:11:4b:10:cf:4d:90:d7:a7:48:c3:e1:87:4d:bf: 03:ed:c7:36:6c:c3:96:ee:30:a3:de:6f:0d:91:a4:b0:7c:90: e9:37:51:24:d3:5c:3b:66:37:a4:b6:9f:1a:c8:68:8e:13:9b: 45:8c:92:5d:e1:cc:cb:0c:3d:0f:2d:6a:82:e8:d3:41:08:d9: 31:3f:5d:08:54:e8:00:83:f0:14:9f:13:c1:b1:f2:70:61:9a: c8:bf:e3:7b:ac:e5:b8:f6:dc:71:3e:0a:16:89:24:af:c1:2f: 7e:71:62:17:86:9f:94:20:13:63:21:65:cb:cc:a4:41:7d:62: 48:a6:57:ef:21:24:49:f4:64:8a:85:42:ec:7b:4e:42:0b:61: 0d:92:e3:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTlFQ0QxMTAvBgNVBAUTKEQ5NURBMTE3MTQxMjMwMEFCNTNCM0U0ODcwRjJGNDQx RjA2QzgxMjQwHhcNMjUwMzEyMjMxNzU1WhcNMjUwMzE5MjMxNzU1WjAYMRYwFAYD VQQDEw02N2QyMTYyMy1jYTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0fWeUofI+HV8DcGS7PFwvNItMIZ7703aUtR8jnvoFyd/1/ZhqWzv8yRkEF6h X0vgITEb3pr1wTBxm4bli/t6n1D4W6kCNqvgxLMSE2FIeTmySZ5HXyUX75qRHShv +5w9UAiYc8tSAJ/Qj9mXka68koB5Yf3b9zrXShcCoAOZa4bM2F0BC+uq5E/Imn7q VspIozrje9psqoER58iyG1QgNvMfCzJYNjcsTJOBp2NwCPiN6tOzYExqipgiIfV9 7oRMlxxuVgswSCfxdLBX6Hviw+7tlakW4K5PWJXXoz60ZSBsviAcck+JNiWBu5c7 zkgLbiMlK6cFpVF+0wLPtcd8AwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKGvKyL/ zXGVM5QMzw2ND7hoFjRFMB8GA1UdIwQYMBaAFNldoRcUEjAKtTs+SHDy9EHwbIEk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OUVDRC9FRjYzODNFMjNE OUYxMUVGOTkwMzM3NjhDNEY5QUUwMi8yVjJoRnhRU01BcTFPejVJY1BMMFFmQnNn U1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJWMmhGeFFTTUFxMU96NUljUEwwUWZCc2dTUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OUVDRC9FRjYzODNFMjNEOUYxMUVGOTkwMzM3NjhDNEY5QUUwMi8yVjJoRnhRU01B cTFPejVJY1BMMFFmQnNnU1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAka0VE3tX6HBJSaXmedlCT0nqXkg0y6KQQMq4qF5sjYXIYWkcSdYeJ jyHfw6XhWwtJpUZ78tc04s09RqOe8wpwqH+DF3NpNzwnRZsTvEVGQzAIDrwuDl2L kQioHgvscnD4jvuAfgy36J5Jum9bSdjaEUsQz02Q16dIw+GHTb8D7cc2bMOW7jCj 3m8NkaSwfJDpN1Ek01w7Zjektp8ayGiOE5tFjJJd4czLDD0PLWqC6NNBCNkxP10I VOgAg/AUnxPBsfJwYZrIv+N7rOW49txxPgoWiSSvwS9+cWIXhp+UIBNjIWXLzKRB fWJIplfvISRJ9GSKhULse05CC2ENkuP7 -----END CERTIFICATE-----Generated at Thu Mar 13 21:31:52 2025 by rpki-client