$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft File: 2H4ClpVGrcVaesygjK2yh5vGmck.mft (raw, json) Hash identifier: UIT9KyxB6ILmFpvmqkzy/7BSxjSMe3TF33laWQxizVI= Subject key identifier: 2C:2B:4A:84:41:A8:B6:3A:26:BC:29:6B:10:41:1D:DE:5D:1B:91:49 Authority key identifier: D8:7E:02:96:95:46:AD:C5:5A:7A:CC:A0:8C:AD:B2:87:9B:C6:99:C9 Certificate issuer: /CN=A9185B5F/serialNumber=D87E02969546ADC55A7ACCA08CADB2879BC699C9 Certificate serial: 0184 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2H4ClpVGrcVaesygjK2yh5vGmck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft Manifest number: 0181 Signing time: Sat 31 May 2025 03:19:55 +0000 Manifest this update: Sat 31 May 2025 03:19:55 +0000 Manifest next update: Sat 07 Jun 2025 03:19:55 +0000 Files and hashes: 1: 2H4ClpVGrcVaesygjK2yh5vGmck.crl (hash: fxk8AWhfeN+S3E3aHOKebJf82kdcLZR/VhilRnHbxBE=) 2: A4B0D326F0A311ED99A1471CC4F9AE02.roa (hash: YT1DLrJvP+2w7lodtwm2stNsNaNoq+ytHid9uR561S8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.crl rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2H4ClpVGrcVaesygjK2yh5vGmck.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:19:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 388 (0x184) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B5F, serialNumber=D87E02969546ADC55A7ACCA08CADB2879BC699C9 Validity Not Before: May 31 03:19:55 2025 GMT Not After : Jun 7 03:19:55 2025 GMT Subject: CN=683a755b-756c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:ea:be:71:ae:5e:5b:67:f2:8d:bc:d8:16:16: 5b:90:21:26:e9:be:08:ad:91:bb:ff:f3:83:7c:23: ec:d4:c6:bf:fd:9f:85:4c:dc:b4:f8:44:cf:57:dc: f4:b2:f7:40:a8:10:6f:95:27:f0:d9:e8:e3:76:70: 37:2f:6f:99:9e:04:cd:ef:dc:33:f8:d8:1f:37:7c: 24:f8:af:a9:af:71:2c:69:93:eb:ec:60:d7:84:65: da:ef:bc:2f:5f:a4:16:c3:60:5e:7b:69:98:06:35: 1a:3f:fa:2b:42:d8:0e:fd:17:17:4d:1b:a2:8f:9b: c9:d8:33:ec:e8:6f:98:66:04:14:b8:dd:0b:c8:75: a0:94:6f:41:e0:56:f3:fa:1c:d9:ca:9a:ec:5a:9b: 23:f5:91:74:3a:90:16:6b:9c:82:0c:82:34:5f:47: 38:9c:4b:e0:b1:72:da:d7:78:6a:52:db:9f:f3:07: d2:a9:45:46:cc:9b:f9:f7:75:3f:d1:2a:3d:f8:c5: 70:67:fe:57:23:9a:94:8e:bf:1d:c9:b7:32:08:0c: 88:e1:4f:d6:4f:97:40:bc:d3:f0:9f:c9:b8:47:1c: 9f:df:12:6f:a8:23:e6:e5:6e:29:47:e9:5b:56:92: ff:35:14:19:f6:55:99:29:c2:66:c2:82:67:19:2c: c8:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:2B:4A:84:41:A8:B6:3A:26:BC:29:6B:10:41:1D:DE:5D:1B:91:49 X509v3 Authority Key Identifier: keyid:D8:7E:02:96:95:46:AD:C5:5A:7A:CC:A0:8C:AD:B2:87:9B:C6:99:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2H4ClpVGrcVaesygjK2yh5vGmck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:73:ac:b2:7b:23:8c:c0:1e:d1:a9:f8:93:76:49:de:af:33: c7:07:06:c2:6a:2b:90:0c:0d:84:a9:42:a3:e5:2d:15:0b:be: ee:86:6d:f5:85:99:7b:9d:0e:5d:f7:9f:01:b1:3a:6d:7e:e9: 05:26:c5:73:66:22:7b:2e:88:7b:30:6e:24:86:f3:1f:49:44: 81:1a:ff:85:d5:dd:3c:16:a3:f3:0a:67:b2:05:f8:e3:40:bf: 23:4b:4b:37:e9:9b:0b:5b:5e:38:4d:1a:6e:73:dc:5b:a8:e3: a0:c2:88:39:0e:e7:44:18:3c:ac:24:63:41:ec:85:2a:f9:2a: d8:4d:1f:8b:17:53:b1:05:27:5d:2f:76:d3:a3:60:41:ae:9f: 7a:56:e6:09:4e:d1:2c:88:00:6e:38:cd:bf:1a:1c:c7:d7:c3: 29:73:44:7c:cd:55:a9:bd:cd:53:87:3f:fb:9d:71:55:4e:15: f9:e1:58:9a:f6:fc:fa:ea:fc:96:52:ae:02:fb:34:fe:0e:ae: 4d:73:1f:76:ea:40:6b:78:d1:ee:f2:95:10:0b:4b:22:35:94: 1a:7d:c8:55:97:eb:23:2d:f2:22:55:d8:cd:2b:ef:7b:3d:9b: 6d:ec:46:df:fc:ad:a4:70:7f:7e:1d:a5:b7:a4:df:67:bf:64: 40:ac:c0:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCNUYxMTAvBgNVBAUTKEQ4N0UwMjk2OTU0NkFEQzU1QTdBQ0NBMDhDQURCMjg3 OUJDNjk5QzkwHhcNMjUwNTMxMDMxOTU1WhcNMjUwNjA3MDMxOTU1WjAYMRYwFAYD VQQDEw02ODNhNzU1Yi03NTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2eq+ca5eW2fyjbzYFhZbkCEm6b4IrZG7//ODfCPs1Ma//Z+FTNy0+ETPV9z0 svdAqBBvlSfw2ejjdnA3L2+ZngTN79wz+NgfN3wk+K+pr3EsaZPr7GDXhGXa77wv X6QWw2Bee2mYBjUaP/orQtgO/RcXTRuij5vJ2DPs6G+YZgQUuN0LyHWglG9B4Fbz +hzZyprsWpsj9ZF0OpAWa5yCDII0X0c4nEvgsXLa13hqUtuf8wfSqUVGzJv593U/ 0So9+MVwZ/5XI5qUjr8dybcyCAyI4U/WT5dAvNPwn8m4Rxyf3xJvqCPm5W4pR+lb VpL/NRQZ9lWZKcJmwoJnGSzIqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCwrSoRB qLY6JrwpaxBBHd5dG5FJMB8GA1UdIwQYMBaAFNh+ApaVRq3FWnrMoIytsoebxpnJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUI1Ri84RTQxODAyMEYw OUIxMUVEQTYwNkJENjJDNEY5QUUwMi8ySDRDbHBWR3JjVmFlc3lnaksyeWg1dkdt Y2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJINENscFZHcmNWYWVzeWdqSzJ5aDV2R21jay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUI1Ri84RTQxODAyMEYwOUIxMUVEQTYwNkJENjJDNEY5QUUwMi8ySDRDbHBWR3Jj VmFlc3lnaksyeWg1dkdtY2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWc6yyeyOMwB7RqfiTdknerzPHBwbCaiuQDA2EqUKj5S0VC77uhm31 hZl7nQ5d958BsTptfukFJsVzZiJ7Loh7MG4khvMfSUSBGv+F1d08FqPzCmeyBfjj QL8jS0s36ZsLW144TRpuc9xbqOOgwog5DudEGDysJGNB7IUq+SrYTR+LF1OxBSdd L3bTo2BBrp96VuYJTtEsiABuOM2/GhzH18Mpc0R8zVWpvc1Thz/7nXFVThX54Via 9vz66vyWUq4C+zT+Dq5Ncx926kBreNHu8pUQC0siNZQafchVl+sjLfIiVdjNK+97 PZtt7Ebf/K2kcH9+HaW3pN9nv2RArMBP -----END CERTIFICATE-----Generated at Sat May 31 17:51:31 2025 by rpki-client