$ rpki-client -vvf rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.mft File: 2v3gvG4K06iVvHVtbDGh5httODs.mft (raw, json) Hash identifier: Z48glOu1jR8Ww7+V6sm2LdVPZbFnJVDBTyf9iEX0I4Y= Subject key identifier: DF:E9:0D:D1:72:E3:6A:05:22:37:7C:98:A0:CB:72:6B:E5:EE:0A:45 Authority key identifier: DA:FD:E0:BC:6E:0A:D3:A8:95:BC:75:6D:6C:31:A1:E6:1B:6D:38:3B Certificate issuer: /CN=A918FCE2/serialNumber=DAFDE0BC6E0AD3A895BC756D6C31A1E61B6D383B Certificate serial: 0864 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2v3gvG4K06iVvHVtbDGh5httODs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.mft Manifest number: 0851 Signing time: Fri 30 May 2025 20:59:23 +0000 Manifest this update: Fri 30 May 2025 20:59:22 +0000 Manifest next update: Fri 06 Jun 2025 20:59:22 +0000 Files and hashes: 1: 2v3gvG4K06iVvHVtbDGh5httODs.crl (hash: cFMWxXyAn3Lc4ox3z0hiZCT3DU8h6lEC0UgTnMyRU2o=) 2: 311DA6AA78F611EFAFD81B5BC4F9AE02.roa (hash: N273KJZBVvsgocX2roxdV3igs8iuW9HGezq7GTon2t0=) 3: 312D1714A6F211EFBD311B19C4F9AE02.roa (hash: 3WiuON+DZCyyzbg9J4hxbgh73YCM3rOmSlSP3M274IM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.crl rsync://rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2v3gvG4K06iVvHVtbDGh5httODs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:59:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2148 (0x864) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FCE2, serialNumber=DAFDE0BC6E0AD3A895BC756D6C31A1E61B6D383B Validity Not Before: May 30 20:59:22 2025 GMT Not After : Jun 6 20:59:22 2025 GMT Subject: CN=683a1c2a-16bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:13:36:16:05:b6:76:80:78:16:1c:ff:f3:61: 16:3a:8f:f6:34:b9:39:c3:52:84:ca:46:f8:29:31: d2:90:36:99:84:b5:c6:de:91:6c:74:fe:08:1a:98: a3:ab:15:cf:df:ff:b2:e2:ee:5b:51:c5:d1:ea:c1: 88:ba:f2:5f:7c:60:93:5b:55:0d:8a:5a:97:c8:4b: dc:7d:28:72:ef:7e:49:b2:14:1f:a6:41:3a:6f:fc: 5c:c1:60:e0:2a:d7:95:15:83:39:58:dc:0d:10:10: da:a3:7d:af:af:a0:ce:53:64:0a:d3:ad:c0:5d:f9: 84:2c:45:6e:ff:a9:1c:08:45:4d:72:f9:73:f1:f7: f1:cb:ff:17:2e:96:fd:b9:c9:46:54:37:5e:47:e9: 1c:15:cd:86:3b:00:78:56:8f:e2:b4:cb:00:ec:4f: 3d:70:24:6e:cc:2f:99:cd:a1:48:be:c3:4e:49:09: 2b:5d:2c:46:54:16:68:ae:ea:9e:a8:00:e8:7f:d8: b2:80:1c:2e:f5:f5:27:cc:ea:93:15:a5:60:7a:17: 89:f1:db:63:bd:16:72:54:6c:3e:91:de:f5:d6:66: e1:37:b6:c5:e5:0c:c7:6c:07:ad:81:26:b1:50:06: 1d:f8:40:ff:c1:08:be:b0:af:a9:7f:32:9b:ee:76: f7:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:E9:0D:D1:72:E3:6A:05:22:37:7C:98:A0:CB:72:6B:E5:EE:0A:45 X509v3 Authority Key Identifier: keyid:DA:FD:E0:BC:6E:0A:D3:A8:95:BC:75:6D:6C:31:A1:E6:1B:6D:38:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2v3gvG4K06iVvHVtbDGh5httODs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:02:4a:bf:0e:19:e6:ff:34:d4:4a:c3:11:90:81:9b:d8:18: 3d:75:06:bc:73:74:8e:ee:f7:78:b9:64:40:ec:57:69:1b:77: 43:98:57:48:40:1c:ab:05:1a:3f:9a:62:6c:38:b3:1a:01:2a: 57:41:7d:02:dc:03:f2:3b:61:89:67:8c:45:f8:8f:9c:0e:6b: 28:ee:93:02:45:48:49:9f:57:bc:96:5c:16:7f:9e:93:dc:b8: 3d:ca:58:2e:8d:94:0d:a3:f5:6f:8f:32:53:8e:56:ac:30:a4: 70:3c:53:05:93:95:10:00:3b:14:fe:7d:7f:b7:3d:3e:66:06: b1:7b:d5:e6:88:f9:86:14:39:7e:37:9f:74:f2:08:b2:1e:2e: e5:18:9b:58:7d:6e:f4:e9:95:a9:89:5e:d4:0a:0a:54:65:fd: ca:76:46:7f:8e:04:c1:30:8f:8d:88:2d:36:41:e8:3d:a4:02: 38:af:9d:49:8d:ea:88:54:59:3d:76:58:0a:0d:3f:03:0b:38: c7:98:09:0c:21:20:32:1e:e3:14:e2:41:a5:d9:df:2c:fa:b4: eb:ad:5b:d2:53:b2:df:b3:55:33:ea:8b:af:0c:fe:50:53:86: 26:56:3f:0c:c6:93:3e:0a:d6:be:0c:5e:29:54:18:c9:64:6b: b4:c7:19:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCGQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZDRTIxMTAvBgNVBAUTKERBRkRFMEJDNkUwQUQzQTg5NUJDNzU2RDZDMzFBMUU2 MUI2RDM4M0IwHhcNMjUwNTMwMjA1OTIyWhcNMjUwNjA2MjA1OTIyWjAYMRYwFAYD VQQDEw02ODNhMWMyYS0xNmJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAohM2FgW2doB4Fhz/82EWOo/2NLk5w1KEykb4KTHSkDaZhLXG3pFsdP4IGpij qxXP3/+y4u5bUcXR6sGIuvJffGCTW1UNilqXyEvcfShy735JshQfpkE6b/xcwWDg KteVFYM5WNwNEBDao32vr6DOU2QK063AXfmELEVu/6kcCEVNcvlz8ffxy/8XLpb9 uclGVDdeR+kcFc2GOwB4Vo/itMsA7E89cCRuzC+ZzaFIvsNOSQkrXSxGVBZoruqe qADof9iygBwu9fUnzOqTFaVgeheJ8dtjvRZyVGw+kd711mbhN7bF5QzHbAetgSax UAYd+ED/wQi+sK+pfzKb7nb32wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN/pDdFy 42oFIjd8mKDLcmvl7gpFMB8GA1UdIwQYMBaAFNr94LxuCtOolbx1bWwxoeYbbTg7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkNFMi82MTgwQzBBMkNE NkYxMUVBOTc1NDgwNDNDNEY5QUUwMi8ydjNndkc0SzA2aVZ2SFZ0YkRHaDVodHRP RHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ2M2d2RzRLMDZpVnZIVnRiREdoNWh0dE9Ecy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkNFMi82MTgwQzBBMkNENkYxMUVBOTc1NDgwNDNDNEY5QUUwMi8ydjNndkc0SzA2 aVZ2SFZ0YkRHaDVodHRPRHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuAkq/Dhnm/zTUSsMRkIGb2Bg9dQa8c3SO7vd4uWRA7FdpG3dDmFdI QByrBRo/mmJsOLMaASpXQX0C3APyO2GJZ4xF+I+cDmso7pMCRUhJn1e8llwWf56T 3Lg9ylgujZQNo/VvjzJTjlasMKRwPFMFk5UQADsU/n1/tz0+Zgaxe9XmiPmGFDl+ N5908giyHi7lGJtYfW706ZWpiV7UCgpUZf3KdkZ/jgTBMI+NiC02Qeg9pAI4r51J jeqIVFk9dlgKDT8DCzjHmAkMISAyHuMU4kGl2d8s+rTrrVvSU7Lfs1Uz6ouvDP5Q U4YmVj8MxpM+Cta+DF4pVBjJZGu0xxm5 -----END CERTIFICATE-----Generated at Sat May 31 16:59:25 2025 by rpki-client