$ rpki-client -vvf rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.mft File: 2CVmixrBt_OBXwe82lfnSMSWSpo.mft (raw, json) Hash identifier: T3RZqzRKaPBPjJ2Dj6IISM+Fg1O8dQzi24CjJ1ioQbA= Subject key identifier: 96:2B:B9:AC:A5:B8:95:52:ED:8D:EA:68:AD:75:2F:62:FB:95:7A:29 Authority key identifier: D8:25:66:8B:1A:C1:B7:F3:81:5F:07:BC:DA:57:E7:48:C4:96:4A:9A Certificate issuer: /CN=A91756C3/serialNumber=D825668B1AC1B7F3815F07BCDA57E748C4964A9A Certificate serial: 3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CVmixrBt_OBXwe82lfnSMSWSpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.mft Manifest number: 3D Signing time: Sat 31 May 2025 07:03:52 +0000 Manifest this update: Sat 31 May 2025 07:03:52 +0000 Manifest next update: Sat 07 Jun 2025 07:03:52 +0000 Files and hashes: 1: 2CVmixrBt_OBXwe82lfnSMSWSpo.crl (hash: xHqMW7/wNHNvdXLhnbgaJ+rJAnnGA8aVrj3/Pwld+h8=) 2: 00078764E06811EF8716401DC4F9AE02.roa (hash: xskJHyJy9wOT0np+Xdp4jl5Zejz4/7Uevmd8xiyRBK0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.crl rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CVmixrBt_OBXwe82lfnSMSWSpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:03:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62 (0x3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91756C3, serialNumber=D825668B1AC1B7F3815F07BCDA57E748C4964A9A Validity Not Before: May 31 07:03:52 2025 GMT Not After : Jun 7 07:03:52 2025 GMT Subject: CN=683aa9d8-3bc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:cf:d0:20:73:eb:72:5b:31:a8:b3:6b:85:d8: 9f:bb:fa:34:75:ed:48:da:84:e8:83:84:94:4d:6f: cf:35:ff:b7:37:71:04:17:16:d8:36:49:58:2c:3c: e6:e1:42:16:72:4c:cb:d3:14:70:2e:fb:7c:cd:18: 0a:33:72:61:57:19:2b:e4:54:c5:5e:e4:c2:8d:02: 1b:b9:f0:1b:c4:7d:62:a8:b4:a2:f7:b2:65:43:aa: a2:7a:75:4c:82:88:24:19:e1:e6:ff:1b:c6:37:b1: 67:19:96:83:49:f9:1c:4c:39:7f:90:9a:0a:28:60: d5:57:ac:c7:17:16:4f:b4:bc:cc:7b:70:53:c6:74: ed:e5:da:e8:58:19:09:c8:5f:71:b9:6f:ab:16:c2: 76:09:cf:a2:95:85:1d:5b:90:55:1b:e8:26:72:fd: 1c:c4:5d:1f:a9:88:47:2a:27:5e:2d:58:9a:b7:fe: 85:20:d0:3c:b2:8f:6f:68:03:92:a4:7a:ef:83:8a: b3:b2:55:2d:ea:f8:f1:2a:6c:b5:85:6b:94:ac:e7: 25:dc:6d:78:87:95:7b:1d:24:2a:3c:ad:36:70:df: 7b:8c:a9:2c:d8:6b:8b:f0:d4:3a:1a:ab:2e:1b:ea: 2d:d6:d2:f0:d6:fe:4e:33:ba:ae:c8:f8:64:08:ba: 2e:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:2B:B9:AC:A5:B8:95:52:ED:8D:EA:68:AD:75:2F:62:FB:95:7A:29 X509v3 Authority Key Identifier: keyid:D8:25:66:8B:1A:C1:B7:F3:81:5F:07:BC:DA:57:E7:48:C4:96:4A:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CVmixrBt_OBXwe82lfnSMSWSpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:af:7e:cf:11:47:4d:6e:f3:34:83:5b:f9:0f:9f:97:8e:fd: f8:ad:5f:90:26:b6:bf:2e:90:e2:61:1f:49:d6:a9:96:21:53: d6:a7:59:d7:67:87:73:a2:27:e1:8c:ce:56:ff:3f:c8:e1:b9: 00:61:02:c1:e6:af:24:10:21:af:10:8b:59:99:38:63:62:01: c9:7f:c4:55:d4:3c:f8:65:df:08:4e:0d:d6:66:65:23:a6:60: 72:2f:74:63:7b:5c:3b:18:b5:7f:a1:e7:df:31:f5:0e:09:9e: 60:ac:31:a1:7d:68:88:89:f7:45:af:82:cd:cc:31:68:47:cb: bd:3b:52:4e:eb:84:f2:1f:a4:6d:89:0f:db:65:e9:9b:b1:49: cf:fd:f7:32:9c:14:f4:7e:0e:b0:45:49:4e:e2:a0:f4:62:19: 9e:ec:ce:13:ce:51:05:87:64:b1:06:c9:12:aa:ae:a4:4f:98: ca:3b:2b:9f:fa:85:61:dd:ed:7b:77:4a:42:c1:00:a6:f6:4c: 9c:b3:eb:5d:4f:5e:78:b1:05:f2:28:73:68:d2:e2:e1:6d:fc: 95:61:2e:9d:d3:d5:f7:ea:39:f9:a7:e8:bd:57:e7:fd:c7:3c: 99:53:36:a0:d5:b4:ef:0b:2b:9a:2f:67:33:f6:ef:04:ad:fb: 0b:6e:05:a3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NTZDMzExMC8GA1UEBRMoRDgyNTY2OEIxQUMxQjdGMzgxNUYwN0JDREE1N0U3NDhD NDk2NEE5QTAeFw0yNTA1MzEwNzAzNTJaFw0yNTA2MDcwNzAzNTJaMBgxFjAUBgNV BAMTDTY4M2FhOWQ4LTNiYzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCez9Agc+tyWzGos2uF2J+7+jR17UjahOiDhJRNb881/7c3cQQXFtg2SVgsPObh QhZyTMvTFHAu+3zNGAozcmFXGSvkVMVe5MKNAhu58BvEfWKotKL3smVDqqJ6dUyC iCQZ4eb/G8Y3sWcZloNJ+RxMOX+QmgooYNVXrMcXFk+0vMx7cFPGdO3l2uhYGQnI X3G5b6sWwnYJz6KVhR1bkFUb6CZy/RzEXR+piEcqJ14tWJq3/oUg0Dyyj29oA5Kk eu+DirOyVS3q+PEqbLWFa5Ss5yXcbXiHlXsdJCo8rTZw33uMqSzYa4vw1Doaqy4b 6i3W0vDW/k4zuq7I+GQIui4LAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUliu5rKW4 lVLtjeporXUvYvuVeikwHwYDVR0jBBgwFoAU2CVmixrBt/OBXwe82lfnSMSWSpow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1NkMzLzVCRjUxOTJBRTA2 NzExRUZCQzNEMTcxQkM0RjlBRTAyLzJDVm1peHJCdF9PQlh3ZTgybGZuU01TV1Nw by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMkNWbWl4ckJ0X09CWHdlODJsZm5TTVNXU3BvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1 NkMzLzVCRjUxOTJBRTA2NzExRUZCQzNEMTcxQkM0RjlBRTAyLzJDVm1peHJCdF9P Qlh3ZTgybGZuU01TV1Nwby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGmvfs8RR01u8zSDW/kPn5eO/fitX5Amtr8ukOJhH0nWqZYhU9anWddn h3OiJ+GMzlb/P8jhuQBhAsHmryQQIa8Qi1mZOGNiAcl/xFXUPPhl3whODdZmZSOm YHIvdGN7XDsYtX+h598x9Q4JnmCsMaF9aIiJ90Wvgs3MMWhHy707Uk7rhPIfpG2J D9tl6ZuxSc/99zKcFPR+DrBFSU7ioPRiGZ7szhPOUQWHZLEGyRKqrqRPmMo7K5/6 hWHd7Xt3SkLBAKb2TJyz611PXnixBfIoc2jS4uFt/JVhLp3T1ffqOfmn6L1X5/3H PJlTNqDVtO8LK5ovZzP27wSt+wtuBaM= -----END CERTIFICATE-----Generated at Sat May 31 16:50:42 2025 by rpki-client