$ rpki-client -vvf rpki.apnic.net/member_repository/A917B092/28230996EE2311EDBABE2A5DC4F9AE02/C2HEdIlppE_IPIiCoCV50NWSO2E.mft File: C2HEdIlppE_IPIiCoCV50NWSO2E.mft (raw, json) Hash identifier: M9YMSqmqrQo52uzm5/ISl3GRntYE1cLuXt9vKKiapho= Subject key identifier: 04:16:64:FE:28:68:4F:21:C1:48:C4:1A:98:44:61:9B:9F:46:D3:4A Authority key identifier: 0B:61:C4:74:89:69:A4:4F:C8:3C:88:82:A0:25:79:D0:D5:92:3B:61 Certificate issuer: /CN=A917B092/serialNumber=0B61C4748969A44FC83C8882A02579D0D5923B61 Certificate serial: 01A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2HEdIlppE_IPIiCoCV50NWSO2E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B092/28230996EE2311EDBABE2A5DC4F9AE02/C2HEdIlppE_IPIiCoCV50NWSO2E.mft Manifest number: 0198 Signing time: Sat 31 May 2025 03:17:48 +0000 Manifest this update: Sat 31 May 2025 03:17:48 +0000 Manifest next update: Sat 07 Jun 2025 03:17:48 +0000 Files and hashes: 1: C2HEdIlppE_IPIiCoCV50NWSO2E.crl (hash: uUpZO5bIFmCWMvZN21PYkxyCQhbGktPpAbuOIfw0oDc=) 2: 9816AE202ED111EF9B668069C4F9AE02.roa (hash: GMwqHbyGhuMSUm48op4I5mi1ydXZr2Sf2bThmTPQeU0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B092/28230996EE2311EDBABE2A5DC4F9AE02/C2HEdIlppE_IPIiCoCV50NWSO2E.crl rsync://rpki.apnic.net/member_repository/A917B092/28230996EE2311EDBABE2A5DC4F9AE02/C2HEdIlppE_IPIiCoCV50NWSO2E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2HEdIlppE_IPIiCoCV50NWSO2E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:17:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 421 (0x1a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B092, serialNumber=0B61C4748969A44FC83C8882A02579D0D5923B61 Validity Not Before: May 31 03:17:48 2025 GMT Not After : Jun 7 03:17:48 2025 GMT Subject: CN=683a74dc-b856 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:4d:82:a8:c9:50:54:cb:0e:e8:22:38:e1:bf: fb:f7:a7:dd:b9:59:5a:53:7b:2c:dc:0d:e4:87:52: dc:5e:a5:76:a8:79:37:5f:40:49:12:72:ab:5a:ca: 95:39:04:80:9e:ef:27:94:d8:66:f1:5c:36:86:7d: 79:ad:17:b0:14:57:42:2e:3b:ee:ac:48:a6:42:57: 8b:14:d0:87:b7:4b:7b:82:16:5e:8e:40:0d:70:0c: 7e:20:39:3c:7a:74:5c:ac:6e:3e:f2:c3:12:cb:14: 27:d6:fa:fc:e6:ab:4b:ab:29:d6:38:b5:4a:9d:1f: 24:49:c9:06:c8:62:3d:0c:5e:b2:c1:2b:19:12:7b: 92:1c:c9:25:61:1f:a1:42:94:40:0e:78:55:b7:ee: 73:f2:1f:23:28:50:7f:59:75:0f:22:e6:58:65:79: 35:9c:91:ff:9b:08:30:da:29:a3:99:95:32:71:2b: c5:63:29:c5:5b:90:19:25:a1:78:bf:87:9d:74:60: 70:cc:d0:9d:88:47:71:c5:7a:52:3d:66:3a:94:f6: f6:b8:09:f8:ff:65:b8:55:8f:41:0c:aa:e7:37:26: ce:cf:1e:b8:3b:a2:a2:e8:d0:ba:f2:bc:22:e1:7a: c5:82:0a:f8:ab:9b:63:a7:9f:02:5b:95:26:04:f9: b3:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:16:64:FE:28:68:4F:21:C1:48:C4:1A:98:44:61:9B:9F:46:D3:4A X509v3 Authority Key Identifier: keyid:0B:61:C4:74:89:69:A4:4F:C8:3C:88:82:A0:25:79:D0:D5:92:3B:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B092/28230996EE2311EDBABE2A5DC4F9AE02/C2HEdIlppE_IPIiCoCV50NWSO2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2HEdIlppE_IPIiCoCV50NWSO2E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B092/28230996EE2311EDBABE2A5DC4F9AE02/C2HEdIlppE_IPIiCoCV50NWSO2E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:8c:36:87:c3:50:8f:7e:20:5a:f1:f8:29:3f:f5:40:5d:6c: ec:4b:5a:ce:dd:dc:fe:f4:8d:ad:24:0d:cc:79:f3:53:ed:f8: ae:01:aa:0d:2c:4f:06:ca:30:03:62:75:53:c1:94:53:f7:88: 9a:ae:d4:33:59:93:6f:fa:a2:15:b5:d4:b7:48:82:41:52:38: 9a:31:8c:d3:5e:68:b5:f1:7a:5d:e8:82:5d:6a:e1:61:ba:90: 3f:58:0f:4b:0b:c4:1e:cb:ec:6f:8a:db:1b:ec:37:29:ff:b8: a5:5f:b0:cf:64:db:8c:9f:da:53:27:92:ad:c6:4d:8b:70:c6: 4e:61:52:62:c0:86:a3:79:be:43:c7:3a:7e:6c:aa:33:e2:73: b7:e3:67:3c:13:24:8f:1d:7b:a3:bb:c0:91:ea:1b:d3:93:2e: 7a:25:2b:64:34:90:19:75:a8:73:e2:c8:5e:5f:59:64:2e:a8: 9b:74:14:73:d8:bc:be:ee:5d:96:36:35:63:29:8d:ec:3e:3a: 59:18:48:84:e6:7d:88:8a:ca:c3:98:82:fc:d2:9b:cc:af:e4: 7c:67:fa:a1:60:19:88:65:9f:65:26:8e:8e:98:7c:a6:89:cf: d8:6e:6a:ca:28:c1:b3:3b:6d:71:9b:10:aa:be:94:9a:60:9d: 57:03:4f:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0IwOTIxMTAvBgNVBAUTKDBCNjFDNDc0ODk2OUE0NEZDODNDODg4MkEwMjU3OUQw RDU5MjNCNjEwHhcNMjUwNTMxMDMxNzQ4WhcNMjUwNjA3MDMxNzQ4WjAYMRYwFAYD VQQDEw02ODNhNzRkYy1iODU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx02CqMlQVMsO6CI44b/796fduVlaU3ss3A3kh1LcXqV2qHk3X0BJEnKrWsqV OQSAnu8nlNhm8Vw2hn15rRewFFdCLjvurEimQleLFNCHt0t7ghZejkANcAx+IDk8 enRcrG4+8sMSyxQn1vr85qtLqynWOLVKnR8kSckGyGI9DF6ywSsZEnuSHMklYR+h QpRADnhVt+5z8h8jKFB/WXUPIuZYZXk1nJH/mwgw2imjmZUycSvFYynFW5AZJaF4 v4eddGBwzNCdiEdxxXpSPWY6lPb2uAn4/2W4VY9BDKrnNybOzx64O6Ki6NC68rwi 4XrFggr4q5tjp58CW5UmBPmzbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAQWZP4o aE8hwUjEGphEYZufRtNKMB8GA1UdIwQYMBaAFAthxHSJaaRPyDyIgqAledDVkjth MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjA5Mi8yODIzMDk5NkVF MjMxMUVEQkFCRTJBNURDNEY5QUUwMi9DMkhFZElscHBFX0lQSWlDb0NWNTBOV1NP MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MySEVkSWxwcEVfSVBJaUNvQ1Y1ME5XU08yRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjA5Mi8yODIzMDk5NkVFMjMxMUVEQkFCRTJBNURDNEY5QUUwMi9DMkhFZElscHBF X0lQSWlDb0NWNTBOV1NPMkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATjDaHw1CPfiBa8fgpP/VAXWzsS1rO3dz+9I2tJA3MefNT7fiuAaoN LE8GyjADYnVTwZRT94iartQzWZNv+qIVtdS3SIJBUjiaMYzTXmi18Xpd6IJdauFh upA/WA9LC8Qey+xvitsb7Dcp/7ilX7DPZNuMn9pTJ5Ktxk2LcMZOYVJiwIajeb5D xzp+bKoz4nO342c8EySPHXuju8CR6hvTky56JStkNJAZdahz4sheX1lkLqibdBRz 2Ly+7l2WNjVjKY3sPjpZGEiE5n2IisrDmIL80pvMr+R8Z/qhYBmIZZ9lJo6OmHym ic/YbmrKKMGzO21xmxCqvpSaYJ1XA0/k -----END CERTIFICATE-----Generated at Sat May 31 16:55:06 2025 by rpki-client