$ rpki-client -vvf rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft File: 2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft (raw, json) Hash identifier: mBNW+E0rSNw5Ofwbg5hw7Mk4L2iK3KxvP7EEIunWDYo= Subject key identifier: 64:52:B7:54:85:A2:81:56:13:C2:31:20:44:B6:A1:EB:A4:7B:74:E6 Authority key identifier: D8:3B:93:E3:1E:93:99:37:D8:CB:15:FE:39:CA:5E:6E:8F:EA:FA:9B Certificate issuer: /CN=A9197277/serialNumber=D83B93E31E939937D8CB15FE39CA5E6E8FEAFA9B Certificate serial: 0109 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft Manifest number: 0103 Signing time: Tue 03 Jun 2025 04:48:11 +0000 Manifest this update: Tue 03 Jun 2025 04:48:11 +0000 Manifest next update: Tue 10 Jun 2025 04:48:11 +0000 Files and hashes: 1: 2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl (hash: HyVzLpKksMjLOOUTvlArc94uf9pQo/y9s+VrMmq/s0s=) 2: 2DCC0688B57211EEBB68526DC4F9AE02.roa (hash: ISi9gMsFzLmCrnxNv9LX4WndyIlBo1W9bMj3vV8OrvU=) 3: 2E31B8FCB57211EEBB68526DC4F9AE02.roa (hash: XVC372fFbzyMJ0najd3nCWGY6qSm44Rgv1v3SKiEpsU=) 4: 6F5F30B8B56111EE91C72951C4F9AE02.roa (hash: g33ewG8+stt2H8q9hyzT5GDP+B5N5luEGnz8BVmfPXs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 04:48:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 265 (0x109) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197277, serialNumber=D83B93E31E939937D8CB15FE39CA5E6E8FEAFA9B Validity Not Before: Jun 3 04:48:11 2025 GMT Not After : Jun 10 04:48:11 2025 GMT Subject: CN=683e7e8b-58f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:aa:74:8f:72:39:fe:02:6d:37:91:b0:bf:08: d8:73:5a:7c:6b:7c:35:25:b4:ce:e1:2a:1d:52:a4: 30:3b:8c:34:c4:a8:b6:2e:28:ec:a0:f8:d0:81:c3: 2d:96:fb:dc:83:0a:fc:42:b8:17:62:7c:24:1b:fe: 6c:98:cd:b9:c9:ef:87:01:99:47:e9:68:33:94:43: f2:66:a5:10:c8:46:bc:6c:42:90:6c:91:f8:63:dd: 14:59:ac:ae:8d:24:12:94:9b:15:4a:17:ef:63:c0: 5c:b3:0a:42:48:d1:9b:af:c8:2d:08:7b:32:d3:43: 08:0c:c5:d4:05:27:07:40:24:ca:6c:c8:69:3f:45: 56:a2:aa:fd:ed:a8:6e:bd:a0:92:1d:10:c6:87:2e: b3:02:d5:43:5b:06:21:6b:58:c5:c2:0e:f3:c9:46: 45:3e:20:f9:73:59:97:62:38:0b:57:0e:8a:db:ef: d0:c6:e0:f1:31:0b:29:29:9a:9e:d6:50:bb:4f:87: 8a:8e:f8:8e:8d:18:00:b1:b7:1c:39:30:7b:ab:c0: b1:19:bf:89:e9:c1:aa:4f:2d:14:d9:73:14:e6:15: 58:b5:49:b8:44:91:6a:61:f0:2c:5b:58:33:19:91: a8:cf:9d:0c:94:d7:d3:00:a6:7f:c8:3a:62:82:54: 5c:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:52:B7:54:85:A2:81:56:13:C2:31:20:44:B6:A1:EB:A4:7B:74:E6 X509v3 Authority Key Identifier: keyid:D8:3B:93:E3:1E:93:99:37:D8:CB:15:FE:39:CA:5E:6E:8F:EA:FA:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:77:59:eb:24:8b:f5:a1:73:5d:cc:18:92:54:ca:2e:4c:38: 6f:a5:83:07:6b:c4:58:f4:a0:95:77:09:77:3f:db:1c:72:f6: d8:37:d8:ec:ea:7d:f1:b3:ff:5a:5b:57:5a:ac:37:9c:84:d6: b5:66:db:85:1c:51:5d:d0:26:08:67:41:9f:4f:76:46:28:df: a8:c9:38:0e:b6:89:c3:fc:28:79:6a:0a:12:bf:12:29:2d:90: b5:5b:b2:ec:63:79:3c:9c:4d:d9:e4:80:d6:b8:e8:55:61:8a: c0:f9:9c:f2:4a:eb:f6:f8:57:67:cd:d2:3f:d6:05:3e:d1:92: cc:14:bf:86:a3:3f:ae:bc:d8:9d:10:77:b7:0f:20:c2:c7:05: c5:bd:42:86:0b:ac:62:8d:53:19:cc:28:d3:c3:d3:02:a0:1d: 80:f0:da:1f:17:7a:dd:84:9a:e4:a3:f5:44:5e:c2:ef:aa:bf: fe:40:f9:80:c1:1e:43:a6:16:32:da:16:33:74:b8:5d:2f:62: 2a:c6:8c:f8:88:28:f9:86:81:c3:9f:68:3f:7f:f6:d9:af:d4: 77:61:4d:74:a3:41:ea:ed:a6:71:ea:b6:a8:37:a7:fb:ee:93: bd:9a:72:37:d7:28:42:93:24:81:8f:e4:a8:5f:a4:22:03:fa: b4:de:28:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyNzcxMTAvBgNVBAUTKEQ4M0I5M0UzMUU5Mzk5MzdEOENCMTVGRTM5Q0E1RTZF OEZFQUZBOUIwHhcNMjUwNjAzMDQ0ODExWhcNMjUwNjEwMDQ0ODExWjAYMRYwFAYD VQQDEw02ODNlN2U4Yi01OGYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyqp0j3I5/gJtN5GwvwjYc1p8a3w1JbTO4SodUqQwO4w0xKi2LijsoPjQgcMt lvvcgwr8QrgXYnwkG/5smM25ye+HAZlH6WgzlEPyZqUQyEa8bEKQbJH4Y90UWayu jSQSlJsVShfvY8BcswpCSNGbr8gtCHsy00MIDMXUBScHQCTKbMhpP0VWoqr97ahu vaCSHRDGhy6zAtVDWwYha1jFwg7zyUZFPiD5c1mXYjgLVw6K2+/QxuDxMQspKZqe 1lC7T4eKjviOjRgAsbccOTB7q8CxGb+J6cGqTy0U2XMU5hVYtUm4RJFqYfAsW1gz GZGoz50MlNfTAKZ/yDpiglRcxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGRSt1SF ooFWE8IxIES2oeuke3TmMB8GA1UdIwQYMBaAFNg7k+Mek5k32MsV/jnKXm6P6vqb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzI3Ny80M0E3RTg5NEI1 NjAxMUVFOTExQzVENEZDNEY5QUUwMi8yRHVUNHg2VG1UZll5eFgtT2NwZWJvX3Et cHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJEdVQ0eDZUbVRmWXl4WC1PY3BlYm9fcS1wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzI3Ny80M0E3RTg5NEI1NjAxMUVFOTExQzVENEZDNEY5QUUwMi8yRHVUNHg2VG1U Zll5eFgtT2NwZWJvX3EtcHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPd1nrJIv1oXNdzBiSVMouTDhvpYMHa8RY9KCVdwl3P9sccvbYN9js 6n3xs/9aW1darDechNa1ZtuFHFFd0CYIZ0GfT3ZGKN+oyTgOtonD/Ch5agoSvxIp LZC1W7LsY3k8nE3Z5IDWuOhVYYrA+ZzySuv2+FdnzdI/1gU+0ZLMFL+Goz+uvNid EHe3DyDCxwXFvUKGC6xijVMZzCjTw9MCoB2A8NofF3rdhJrko/VEXsLvqr/+QPmA wR5DphYy2hYzdLhdL2Iqxoz4iCj5hoHDn2g/f/bZr9R3YU10o0Hq7aZx6raoN6f7 7pO9mnI31yhCkySBj+SoX6QiA/q03ii8 -----END CERTIFICATE-----Generated at Wed Jun 4 00:04:14 2025 by rpki-client