$ rpki-client -vvf rpki.apnic.net/member_repository/A91719F1/695F93FE21EE11EDB4C8BD6CC4F9AE02/2QhMrcO-yMIAxalrcu2v1KAOrug.mft File: 2QhMrcO-yMIAxalrcu2v1KAOrug.mft (raw, json) Hash identifier: 6mTaHr0bqxB+obWb50YFiIJ538jBHbUsp3+YLsynU+8= Subject key identifier: 7F:D0:7B:57:F5:BC:12:F7:3D:AD:57:6C:71:24:5D:9B:2C:71:12:E9 Authority key identifier: D9:08:4C:AD:C3:BE:C8:C2:00:C5:A9:6B:72:ED:AF:D4:A0:0E:AE:E8 Certificate issuer: /CN=A91719F1/serialNumber=D9084CADC3BEC8C200C5A96B72EDAFD4A00EAEE8 Certificate serial: 024D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhMrcO-yMIAxalrcu2v1KAOrug.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91719F1/695F93FE21EE11EDB4C8BD6CC4F9AE02/2QhMrcO-yMIAxalrcu2v1KAOrug.mft Manifest number: 0246 Signing time: Sat 31 May 2025 02:02:28 +0000 Manifest this update: Sat 31 May 2025 02:02:27 +0000 Manifest next update: Sat 07 Jun 2025 02:02:27 +0000 Files and hashes: 1: 2QhMrcO-yMIAxalrcu2v1KAOrug.crl (hash: URVeZjFtWga2cqhaSnncFJx1ScyrpH9cdoLPyUO9VWE=) 2: 00724F9621F111ED93774B6EC4F9AE02.roa (hash: 1MS8BgQSeLxFZfjzI2XVs+BA1y3N2nYBN3Uvkoalvq8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91719F1/695F93FE21EE11EDB4C8BD6CC4F9AE02/2QhMrcO-yMIAxalrcu2v1KAOrug.crl rsync://rpki.apnic.net/member_repository/A91719F1/695F93FE21EE11EDB4C8BD6CC4F9AE02/2QhMrcO-yMIAxalrcu2v1KAOrug.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhMrcO-yMIAxalrcu2v1KAOrug.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:02:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 589 (0x24d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91719F1, serialNumber=D9084CADC3BEC8C200C5A96B72EDAFD4A00EAEE8 Validity Not Before: May 31 02:02:27 2025 GMT Not After : Jun 7 02:02:27 2025 GMT Subject: CN=683a6333-2b21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:dd:7d:6c:71:28:d4:06:ab:e4:f4:a9:55:2a: 07:43:6e:3e:e6:aa:0c:7c:ba:72:7f:cc:c3:97:80: 1b:57:32:ae:29:24:b7:c1:a2:37:0a:28:c6:51:83: d0:4a:34:df:50:0b:a4:05:e2:d0:79:75:0d:87:3a: d9:ca:3a:36:c1:4a:8a:fe:20:8c:51:04:43:87:86: cb:71:d6:16:b1:32:50:0a:dd:a5:6b:05:42:87:64: e1:37:07:99:e8:6f:ed:3b:c1:13:0d:32:bb:51:23: 4d:53:93:29:ae:ef:3b:04:f2:90:b7:f5:af:a5:a0: e1:f4:20:7a:3a:cc:fd:cc:02:2a:50:95:da:42:87: 2e:6b:a5:b8:06:84:a8:44:17:da:d7:cf:ff:a3:c9: fa:0c:1a:ac:cc:02:82:11:03:ee:78:fe:6c:f6:64: 41:f5:49:4f:22:28:00:e0:f1:53:b2:3f:7c:02:df: f6:96:4d:07:45:e5:67:c6:c5:97:28:80:10:a7:ed: f6:82:09:50:6c:17:ec:1c:9c:4f:8e:a6:9d:14:04: d3:2c:83:57:b6:36:2b:6b:e5:ae:5f:85:1c:08:2e: 0d:e0:b8:0d:42:e4:6e:b6:9c:b9:f7:f3:9e:4e:03: 7c:c1:fd:84:33:8b:12:65:5a:9b:0f:c1:17:6f:87: d0:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:D0:7B:57:F5:BC:12:F7:3D:AD:57:6C:71:24:5D:9B:2C:71:12:E9 X509v3 Authority Key Identifier: keyid:D9:08:4C:AD:C3:BE:C8:C2:00:C5:A9:6B:72:ED:AF:D4:A0:0E:AE:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91719F1/695F93FE21EE11EDB4C8BD6CC4F9AE02/2QhMrcO-yMIAxalrcu2v1KAOrug.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhMrcO-yMIAxalrcu2v1KAOrug.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91719F1/695F93FE21EE11EDB4C8BD6CC4F9AE02/2QhMrcO-yMIAxalrcu2v1KAOrug.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:11:5e:58:d5:ed:f4:7b:c3:ec:f2:40:b8:70:70:93:ee:f3: c8:e0:df:84:ea:89:cb:6a:b7:86:11:e8:6a:88:61:fb:bc:1a: 70:ff:7f:29:7d:73:26:93:f3:22:3d:52:9e:a6:07:75:09:68: b4:4e:52:af:27:3d:49:a5:6e:66:78:04:96:65:59:cd:a3:dd: 81:61:e9:eb:65:af:59:05:82:43:14:bd:40:fb:8e:ec:96:f6: 2e:55:8f:c5:fd:a0:7a:8f:3f:aa:87:27:ba:b5:53:e1:fa:7e: 56:64:ae:36:9d:de:91:b3:0d:c5:0c:c4:73:f0:2c:e1:b8:39: 30:62:fc:3f:43:0b:1e:58:e8:1e:7a:c4:07:12:41:b9:cd:b2: fe:79:75:d9:8e:20:8c:f4:a6:2b:8c:c0:82:81:c7:b2:48:e9: e7:ad:73:44:77:67:7f:a3:04:37:ed:5d:51:7f:3d:ad:98:2f: d8:e7:d5:3d:88:1d:7d:21:96:04:ba:18:a8:88:f6:5f:30:4d: be:90:68:36:e3:25:14:c6:2e:73:90:81:bd:69:c0:9f:c2:93: f1:bc:01:03:54:8e:e0:9b:3b:4b:09:f3:21:6e:2f:70:16:48: f2:14:63:04:97:5f:0e:fd:f7:4f:43:46:23:5a:0e:45:61:46: 97:42:5f:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAk0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE5RjExMTAvBgNVBAUTKEQ5MDg0Q0FEQzNCRUM4QzIwMEM1QTk2QjcyRURBRkQ0 QTAwRUFFRTgwHhcNMjUwNTMxMDIwMjI3WhcNMjUwNjA3MDIwMjI3WjAYMRYwFAYD VQQDEw02ODNhNjMzMy0yYjIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzt19bHEo1Aar5PSpVSoHQ24+5qoMfLpyf8zDl4AbVzKuKSS3waI3CijGUYPQ SjTfUAukBeLQeXUNhzrZyjo2wUqK/iCMUQRDh4bLcdYWsTJQCt2lawVCh2ThNweZ 6G/tO8ETDTK7USNNU5Mpru87BPKQt/WvpaDh9CB6Osz9zAIqUJXaQocua6W4BoSo RBfa18//o8n6DBqszAKCEQPueP5s9mRB9UlPIigA4PFTsj98At/2lk0HReVnxsWX KIAQp+32gglQbBfsHJxPjqadFATTLINXtjYra+WuX4UcCC4N4LgNQuRutpy59/Oe TgN8wf2EM4sSZVqbD8EXb4fQ4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH/Qe1f1 vBL3Pa1XbHEkXZsscRLpMB8GA1UdIwQYMBaAFNkITK3DvsjCAMWpa3Ltr9SgDq7o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTlGMS82OTVGOTNGRTIx RUUxMUVEQjRDOEJENkNDNEY5QUUwMi8yUWhNcmNPLXlNSUF4YWxyY3UydjFLQU9y dWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJRaE1yY08teU1JQXhhbHJjdTJ2MUtBT3J1Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTlGMS82OTVGOTNGRTIxRUUxMUVEQjRDOEJENkNDNEY5QUUwMi8yUWhNcmNPLXlN SUF4YWxyY3UydjFLQU9ydWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABEV5Y1e30e8Ps8kC4cHCT7vPI4N+E6onLareGEehqiGH7vBpw/38p fXMmk/MiPVKepgd1CWi0TlKvJz1JpW5meASWZVnNo92BYenrZa9ZBYJDFL1A+47s lvYuVY/F/aB6jz+qhye6tVPh+n5WZK42nd6Rsw3FDMRz8CzhuDkwYvw/QwseWOge esQHEkG5zbL+eXXZjiCM9KYrjMCCgceySOnnrXNEd2d/owQ37V1Rfz2tmC/Y59U9 iB19IZYEuhioiPZfME2+kGg24yUUxi5zkIG9acCfwpPxvAEDVI7gmztLCfMhbi9w FkjyFGMEl18O/fdPQ0YjWg5FYUaXQl/t -----END CERTIFICATE-----Generated at Sat May 31 17:16:21 2025 by rpki-client