$ rpki-client -vvf rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft File: 2h2yzTH0VPaVYdhmXck--BLzl7A.mft (raw, json) Hash identifier: G13n2i5yvknt6RJNwpzXc85Ft68qmMeT80TjLwDiGJQ= Subject key identifier: 88:28:70:49:D2:9B:70:1B:53:C2:97:4B:64:68:41:CB:AB:A6:A8:8E Authority key identifier: DA:1D:B2:CD:31:F4:54:F6:95:61:D8:66:5D:C9:3E:F8:12:F3:97:B0 Certificate issuer: /CN=A919A7CA/serialNumber=DA1DB2CD31F454F69561D8665DC93EF812F397B0 Certificate serial: 012C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft Manifest number: 0125 Signing time: Sat 31 May 2025 04:19:26 +0000 Manifest this update: Sat 31 May 2025 04:19:25 +0000 Manifest next update: Sat 07 Jun 2025 04:19:25 +0000 Files and hashes: 1: 2h2yzTH0VPaVYdhmXck--BLzl7A.crl (hash: rAvqBshWKMYGWGb+8wXdD0Ka18fhddESBGtV9jhqFiU=) 2: 730B201A81E911EEAEFE7735C4F9AE02.roa (hash: +MbNfxyhCamzN9tHOdSAmjfpdzIa0MaUiU8CGByu53M=) 3: 4317395081E611EE9EFE132BC4F9AE02.roa (hash: nEgdbI6cuLNeRuLPJnkG4QO1ReMDMeUPyTkJXfsO5xE=) 4: E71AB92A7F7D11EE8C183162C4F9AE02.roa (hash: shdTH9d6PBZ6zz9OKDDb+zRKMfpyDz4E/FhykKTuDEk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.crl rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:19:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 300 (0x12c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A7CA, serialNumber=DA1DB2CD31F454F69561D8665DC93EF812F397B0 Validity Not Before: May 31 04:19:25 2025 GMT Not After : Jun 7 04:19:25 2025 GMT Subject: CN=683a834e-6f9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:8f:22:2a:71:46:f6:07:22:c2:e8:8d:2a:86: 66:5e:88:e5:e4:04:19:51:af:83:82:49:c8:19:c8: e0:1e:d3:f0:12:64:9f:67:7c:6a:03:54:bf:85:96: cb:78:2e:68:fd:88:db:bf:02:c6:18:32:df:ed:37: 3d:4e:6a:42:0d:42:92:83:45:de:b0:c1:37:6f:d0: 43:6f:55:af:81:eb:0c:d7:f0:9d:00:77:99:c2:2d: 9b:fd:15:ee:ab:24:2d:6d:eb:f0:7b:e3:06:40:49: fd:0f:5e:0b:39:81:fa:1e:ce:ce:5f:d4:13:08:44: 32:b6:28:8a:04:0d:9e:01:38:a1:1a:1b:74:01:fc: 92:9c:33:a0:a3:d5:74:ef:36:92:08:d8:a1:d5:f9: c6:9b:fd:c5:29:56:5c:ce:64:76:72:63:fd:a7:8e: 72:89:23:de:d4:a9:c8:1c:b0:ad:97:67:11:14:8a: 08:5c:1a:c1:35:ff:51:8b:f9:50:55:94:54:73:c9: c5:35:ee:df:94:3b:7d:d6:78:1e:16:d1:44:49:6a: 46:f3:a3:a8:b0:ce:92:36:1a:22:8f:ec:6e:27:87: 8d:48:1c:cc:e3:a1:cb:77:92:7a:76:78:d8:55:a2: a2:f0:81:37:a8:a6:bb:02:7c:f0:15:47:f5:67:b0: 3b:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:28:70:49:D2:9B:70:1B:53:C2:97:4B:64:68:41:CB:AB:A6:A8:8E X509v3 Authority Key Identifier: keyid:DA:1D:B2:CD:31:F4:54:F6:95:61:D8:66:5D:C9:3E:F8:12:F3:97:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:95:55:29:a3:71:7a:8d:e6:7d:d2:48:a6:b6:ad:8e:ea:58: c3:a7:ab:79:ff:76:83:db:b8:ed:99:11:96:b9:33:ce:4d:f2: cc:79:8c:52:45:90:93:eb:60:55:a8:91:11:1e:e9:46:25:87: ec:bd:11:f1:0d:ab:2d:5a:00:63:65:07:9f:30:19:76:e0:c5: d4:81:b8:6f:15:0e:28:be:e3:a4:6b:55:7c:77:cd:85:e7:f7: fe:e5:f5:1f:23:b0:64:a0:38:80:e1:79:20:c4:74:06:40:a1: 3d:e1:6d:b3:51:05:d6:d8:d7:d1:06:ae:5b:3d:65:d9:1e:8d: 11:d7:02:4f:5c:4c:be:50:b8:33:a4:3d:6e:c8:49:6a:3f:d8: 27:91:d4:1b:40:30:e7:f7:61:c7:7e:12:2f:6d:93:84:de:02: c4:d4:a6:7c:9d:4f:c5:d6:46:a1:1d:38:32:73:96:07:45:1a: c7:4c:55:83:d2:e1:61:0d:0e:50:ca:c2:9e:30:23:ce:54:c6: a1:5e:b4:b5:ca:8e:e9:9a:32:03:db:1d:cd:cf:94:1e:76:85: 19:c8:a2:62:a9:60:ed:e9:85:27:7b:5e:78:67:30:0d:1c:e1: 6a:8d:20:be:b3:88:73:b7:72:99:9d:e4:70:4f:7d:9b:f3:a5: 91:f5:75:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE3Q0ExMTAvBgNVBAUTKERBMURCMkNEMzFGNDU0RjY5NTYxRDg2NjVEQzkzRUY4 MTJGMzk3QjAwHhcNMjUwNTMxMDQxOTI1WhcNMjUwNjA3MDQxOTI1WjAYMRYwFAYD VQQDEw02ODNhODM0ZS02ZjllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApI8iKnFG9gciwuiNKoZmXojl5AQZUa+DgknIGcjgHtPwEmSfZ3xqA1S/hZbL eC5o/YjbvwLGGDLf7Tc9TmpCDUKSg0XesME3b9BDb1WvgesM1/CdAHeZwi2b/RXu qyQtbevwe+MGQEn9D14LOYH6Hs7OX9QTCEQytiiKBA2eATihGht0AfySnDOgo9V0 7zaSCNih1fnGm/3FKVZczmR2cmP9p45yiSPe1KnIHLCtl2cRFIoIXBrBNf9Ri/lQ VZRUc8nFNe7flDt91ngeFtFESWpG86OosM6SNhoij+xuJ4eNSBzM46HLd5J6dnjY VaKi8IE3qKa7AnzwFUf1Z7A7yQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIgocEnS m3AbU8KXS2RoQcurpqiOMB8GA1UdIwQYMBaAFNodss0x9FT2lWHYZl3JPvgS85ew MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTdDQS80Q0Y3RjE1ODdF QjcxMUVFOTYyM0U5MUFDNEY5QUUwMi8yaDJ5elRIMFZQYVZZZGhtWGNrLS1CTHps N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJoMnl6VEgwVlBhVllkaG1YY2stLUJMemw3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTdDQS80Q0Y3RjE1ODdFQjcxMUVFOTYyM0U5MUFDNEY5QUUwMi8yaDJ5elRIMFZQ YVZZZGhtWGNrLS1CTHpsN0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKlVUpo3F6jeZ90kimtq2O6ljDp6t5/3aD27jtmRGWuTPOTfLMeYxS RZCT62BVqJERHulGJYfsvRHxDastWgBjZQefMBl24MXUgbhvFQ4ovuOka1V8d82F 5/f+5fUfI7BkoDiA4XkgxHQGQKE94W2zUQXW2NfRBq5bPWXZHo0R1wJPXEy+ULgz pD1uyElqP9gnkdQbQDDn92HHfhIvbZOE3gLE1KZ8nU/F1kahHTgyc5YHRRrHTFWD 0uFhDQ5QysKeMCPOVMahXrS1yo7pmjID2x3Nz5QedoUZyKJiqWDt6YUne154ZzAN HOFqjSC+s4hzt3KZneRwT32b86WR9XVM -----END CERTIFICATE-----Generated at Sat May 31 17:48:39 2025 by rpki-client