$ rpki-client -vvf rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.mft File: 2kcELjdqlHP8Dt_IRFc53RMorg4.mft (raw, json) Hash identifier: DGNepaPIQxWhqeWo+howeXxzzWCGX1ZQPWm6M0EYo5M= Subject key identifier: 1A:46:20:D6:C4:48:87:15:CD:23:99:2E:F8:46:03:81:0E:79:96:C6 Authority key identifier: DA:47:04:2E:37:6A:94:73:FC:0E:DF:C8:44:57:39:DD:13:28:AE:0E Certificate issuer: /CN=A9191DF4/serialNumber=DA47042E376A9473FC0EDFC8445739DD1328AE0E Certificate serial: 0E0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcELjdqlHP8Dt_IRFc53RMorg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.mft Manifest number: 0DF1 Signing time: Fri 30 May 2025 18:03:07 +0000 Manifest this update: Fri 30 May 2025 18:03:06 +0000 Manifest next update: Fri 06 Jun 2025 18:03:06 +0000 Files and hashes: 1: 2kcELjdqlHP8Dt_IRFc53RMorg4.crl (hash: upPqu/498j5MHw3SxVRhHOZ3KnuOqlIHE9rYSUkVsSM=) 2: B5D4A156598B11EC82C8685CC4F9AE02.roa (hash: 4QYUWAD8mV7goqY2eyB8OTjIn05Ok4IHRMJOhxEL9Q0=) 3: B922DB22E84211EA918B8F09C4F9AE02.roa (hash: WrORF911HLcFuZdH0HRCb0Ilepojo6I2DwL+ZjMpcO0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.crl rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcELjdqlHP8Dt_IRFc53RMorg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 18:03:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3594 (0xe0a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191DF4, serialNumber=DA47042E376A9473FC0EDFC8445739DD1328AE0E Validity Not Before: May 30 18:03:06 2025 GMT Not After : Jun 6 18:03:06 2025 GMT Subject: CN=6839f2da-f24e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:98:ac:d5:30:b6:f5:6a:1d:7e:29:ed:40:9d: 8d:41:83:d6:23:b1:62:36:fc:da:84:2a:dd:f8:91: 65:da:1b:e6:d3:fe:52:37:2a:a7:3f:e0:ba:d8:79: 5e:2c:cf:75:1d:1e:31:dc:56:18:ae:40:23:6b:a1: 11:3c:52:ca:36:00:70:ae:0c:60:77:47:03:e2:e0: 60:a2:eb:e4:1f:fa:7f:d7:dd:a8:19:ba:82:44:1c: ac:f0:3f:61:6a:55:6d:e0:b8:c3:d9:a9:b9:99:57: 43:ee:de:84:5b:52:25:e3:9a:d1:cd:b6:7f:23:13: df:05:d5:8d:fb:2f:5f:63:50:02:0d:b5:61:30:10: 69:fa:ad:95:0a:09:e6:f2:23:16:3b:b0:8a:59:99: 15:cb:7d:3c:00:d3:e3:2b:fc:54:52:53:0a:2e:0a: fa:41:c3:14:3b:b3:75:df:b2:23:45:17:de:f0:52: 80:2c:2d:9b:b0:eb:57:44:ef:ba:15:42:b4:7f:ec: c4:f1:7e:c5:bc:b0:8a:b3:29:09:68:cf:44:05:82: dc:05:b5:7c:2d:c4:67:85:d1:5e:d1:33:73:3f:03: 26:0f:19:91:a8:91:78:0b:57:8b:0f:be:7d:3b:d6: 59:7c:e3:09:bd:26:ae:55:26:3d:81:54:73:fb:1b: 91:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:46:20:D6:C4:48:87:15:CD:23:99:2E:F8:46:03:81:0E:79:96:C6 X509v3 Authority Key Identifier: keyid:DA:47:04:2E:37:6A:94:73:FC:0E:DF:C8:44:57:39:DD:13:28:AE:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcELjdqlHP8Dt_IRFc53RMorg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:3b:3e:ac:93:b8:e2:e2:68:fb:fe:49:88:e9:a8:36:b3:e8: d7:09:3b:14:1e:de:ab:92:9f:ed:2c:4d:06:bc:8b:79:ea:a9: d4:5e:16:8e:a3:f6:0f:7e:8b:50:de:cf:c1:0d:29:60:0c:26: 28:cb:8d:e6:e9:ee:51:81:c6:93:0c:38:e8:fb:3c:8c:80:c9: 36:a8:59:94:22:03:c9:1f:5c:52:bc:94:b6:ad:b7:e2:bc:78: 9b:0b:7d:67:25:cf:55:d8:22:30:64:2e:1b:14:29:69:1e:b4: 00:e7:e3:19:f7:84:98:c7:a4:79:9c:2f:15:5d:07:15:9f:ab: a7:d4:c2:fd:c0:80:90:0b:e1:a2:3a:b7:98:20:11:e5:b0:ee: 91:2a:01:aa:95:7b:27:24:3a:50:8e:d7:88:09:f0:cf:73:5b: ec:93:f1:17:bd:70:ca:59:11:ae:4e:52:04:8f:85:5c:1a:f9: 4c:a1:ec:fb:39:0f:1d:99:89:df:ae:c3:6d:ed:db:84:a0:23: a1:f2:fe:24:81:09:26:0f:94:fc:df:ee:28:28:a6:22:cb:ff: 1a:a4:07:bb:b3:ce:f7:29:44:30:a4:cd:30:5e:fd:2a:7c:87: 6c:b3:89:36:3e:49:c4:e4:0c:ef:89:32:c3:24:43:d3:a2:65: 35:95:96:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDgowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFERjQxMTAvBgNVBAUTKERBNDcwNDJFMzc2QTk0NzNGQzBFREZDODQ0NTczOURE MTMyOEFFMEUwHhcNMjUwNTMwMTgwMzA2WhcNMjUwNjA2MTgwMzA2WjAYMRYwFAYD VQQDEw02ODM5ZjJkYS1mMjRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwZis1TC29WodfintQJ2NQYPWI7FiNvzahCrd+JFl2hvm0/5SNyqnP+C62Hle LM91HR4x3FYYrkAja6ERPFLKNgBwrgxgd0cD4uBgouvkH/p/192oGbqCRBys8D9h alVt4LjD2am5mVdD7t6EW1Il45rRzbZ/IxPfBdWN+y9fY1ACDbVhMBBp+q2VCgnm 8iMWO7CKWZkVy308ANPjK/xUUlMKLgr6QcMUO7N137IjRRfe8FKALC2bsOtXRO+6 FUK0f+zE8X7FvLCKsykJaM9EBYLcBbV8LcRnhdFe0TNzPwMmDxmRqJF4C1eLD759 O9ZZfOMJvSauVSY9gVRz+xuR3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBpGINbE SIcVzSOZLvhGA4EOeZbGMB8GA1UdIwQYMBaAFNpHBC43apRz/A7fyERXOd0TKK4O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MURGNC9GNDFEMUMxOEIz OEUxMUU5ODYyODJCNzNDNEY5QUUwMi8ya2NFTGpkcWxIUDhEdF9JUkZjNTNSTW9y ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJrY0VMamRxbEhQOER0X0lSRmM1M1JNb3JnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MURGNC9GNDFEMUMxOEIzOEUxMUU5ODYyODJCNzNDNEY5QUUwMi8ya2NFTGpkcWxI UDhEdF9JUkZjNTNSTW9yZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCOz6sk7ji4mj7/kmI6ag2s+jXCTsUHt6rkp/tLE0GvIt56qnUXhaO o/YPfotQ3s/BDSlgDCYoy43m6e5RgcaTDDjo+zyMgMk2qFmUIgPJH1xSvJS2rbfi vHibC31nJc9V2CIwZC4bFClpHrQA5+MZ94SYx6R5nC8VXQcVn6un1ML9wICQC+Gi OreYIBHlsO6RKgGqlXsnJDpQjteICfDPc1vsk/EXvXDKWRGuTlIEj4VcGvlMoez7 OQ8dmYnfrsNt7duEoCOh8v4kgQkmD5T83+4oKKYiy/8apAe7s873KUQwpM0wXv0q fIdss4k2PknE5AzviTLDJEPTomU1lZbZ -----END CERTIFICATE-----Generated at Sat May 31 14:44:56 2025 by rpki-client