$ rpki-client -vvf rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.mft File: 2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.mft (raw, json) Hash identifier: WCebuo72d5X1ArySYZl16QXWBqbZhLoXBPKZwiGI/dQ= Subject key identifier: 44:FA:0C:BB:4C:33:82:38:99:01:BD:48:05:82:50:5B:F0:63:AB:24 Authority key identifier: D8:FC:79:5B:63:CC:42:57:3F:D5:DB:44:F0:A8:38:6C:8D:64:3B:84 Certificate issuer: /CN=A91F89A2/serialNumber=D8FC795B63CC42573FD5DB44F0A8386C8D643B84 Certificate serial: D2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.mft Manifest number: D0 Signing time: Thu 13 Mar 2025 03:49:26 +0000 Manifest this update: Thu 13 Mar 2025 03:49:26 +0000 Manifest next update: Thu 20 Mar 2025 03:49:26 +0000 Files and hashes: 1: 2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.crl (hash: qOeI5Drj+wibu+gQ/eZ1UekKQkOnxfF/yd/ruCbFK6A=) 2: 6C363C0CF85911EE9EAE731BC4F9AE02.roa (hash: g3Rp9bNDQ9dW3bx4n0B6sKyw1hJKpt4SQCTG4hBG/Mw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.crl rsync://rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 03:49:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 210 (0xd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F89A2 Validity Not Before: Mar 13 03:49:26 2025 GMT Not After : Mar 20 03:49:26 2025 GMT Subject: CN=67d255c6-e31f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:04:fc:88:01:3a:af:3c:43:51:fa:91:22:af: ee:f7:d9:b5:1e:dc:31:e0:94:5d:dc:19:8d:89:c8: 90:be:7b:af:2c:92:ca:38:a7:75:0a:39:8d:18:af: af:2c:8f:cb:3a:4e:48:0d:f8:86:30:60:44:5f:92: 62:b0:79:30:ab:47:e3:f8:3a:a0:b5:ac:61:70:dc: 71:55:46:2f:bb:de:45:fa:e1:87:02:89:03:ef:91: d8:e9:9e:d7:36:42:4d:ea:7a:42:a3:f8:d9:89:7e: f7:b3:ba:15:02:2f:79:4b:c3:9e:02:98:c6:a8:0f: 40:bf:0e:48:2b:71:dc:b6:4a:51:a0:fe:ac:33:02: 2a:02:0b:8e:5e:be:43:65:cf:b0:b3:06:de:6e:8b: 27:5e:09:04:5a:5a:99:b9:0d:5c:3c:7a:12:99:98: 69:5a:0b:c8:64:72:4e:ef:7c:19:9c:69:53:6f:e7: 50:45:37:0f:3c:ec:48:6a:9d:b0:f2:aa:fa:a5:66: b6:a5:ca:c1:8a:43:e4:4d:82:74:54:eb:17:0f:14: ec:1d:ff:f8:10:4c:dd:c8:9a:37:6b:2a:4e:ab:b8: af:3c:0b:0a:28:8f:cd:81:8b:7b:57:ff:3b:0b:b3: 60:ab:5d:45:c7:ca:69:dd:f4:17:36:7d:0b:69:48: 94:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:FA:0C:BB:4C:33:82:38:99:01:BD:48:05:82:50:5B:F0:63:AB:24 X509v3 Authority Key Identifier: keyid:D8:FC:79:5B:63:CC:42:57:3F:D5:DB:44:F0:A8:38:6C:8D:64:3B:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:34:89:61:35:56:d6:c0:b8:29:cd:61:c9:db:cb:ba:57:61: da:07:9d:3a:1d:0f:49:e2:bb:03:a7:48:b4:ef:e6:29:f7:17: a1:44:f5:bb:d0:1a:81:10:9b:6c:2d:6b:17:c9:95:82:79:89: 53:7b:86:d6:38:d3:a7:d4:72:4b:96:28:a0:5d:47:f2:bb:7e: 44:61:1f:2c:04:7b:85:30:52:10:19:c0:51:b6:dc:7c:9e:41: 24:1f:6e:97:1d:2d:40:88:90:bf:96:66:c6:e8:20:00:c7:f0: 94:d9:36:e5:41:e2:12:b0:aa:5a:7a:ca:74:b9:81:50:d4:b9: f0:b2:f9:fe:11:ac:c9:76:e8:ef:ff:1a:37:00:20:53:25:d3: fd:94:76:86:2b:99:44:2e:d2:6b:fe:2f:b6:ed:2e:2b:e7:d0: f2:b0:58:20:d8:9f:41:9d:66:b7:58:5c:ab:5a:04:3d:a2:ff: 2b:7a:9f:af:5a:79:0f:34:05:fc:c3:3c:f7:2f:3b:4e:1b:9e: 40:e7:37:0b:cb:a2:d3:65:5d:0c:94:d5:e6:a3:5e:a1:70:a5: a7:a0:40:c9:3c:91:7f:2b:ea:f0:d1:87:d5:8d:1d:cd:22:da: 3a:56:f0:8f:4e:3d:15:89:1d:87:f9:92:ff:5e:75:79:42:ae: 48:72:23:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg5QTIxMTAvBgNVBAUTKEQ4RkM3OTVCNjNDQzQyNTczRkQ1REI0NEYwQTgzODZD OEQ2NDNCODQwHhcNMjUwMzEzMDM0OTI2WhcNMjUwMzIwMDM0OTI2WjAYMRYwFAYD VQQDEw02N2QyNTVjNi1lMzFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3QT8iAE6rzxDUfqRIq/u99m1Htwx4JRd3BmNiciQvnuvLJLKOKd1CjmNGK+v LI/LOk5IDfiGMGBEX5JisHkwq0fj+DqgtaxhcNxxVUYvu95F+uGHAokD75HY6Z7X NkJN6npCo/jZiX73s7oVAi95S8OeApjGqA9Avw5IK3HctkpRoP6sMwIqAguOXr5D Zc+wswbebosnXgkEWlqZuQ1cPHoSmZhpWgvIZHJO73wZnGlTb+dQRTcPPOxIap2w 8qr6pWa2pcrBikPkTYJ0VOsXDxTsHf/4EEzdyJo3aypOq7ivPAsKKI/NgYt7V/87 C7Ngq11Fx8pp3fQXNn0LaUiUtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFET6DLtM M4I4mQG9SAWCUFvwY6skMB8GA1UdIwQYMBaAFNj8eVtjzEJXP9XbRPCoOGyNZDuE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODlBMi9CMzk2RjNDMEM1 NDExMUVFQUJDMkMzODVDNEY5QUUwMi8yUHg1VzJQTVFsY18xZHRFOEtnNGJJMWtP NFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJQeDVXMlBNUWxjXzFkdEU4S2c0Ykkxa080US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODlBMi9CMzk2RjNDMEM1NDExMUVFQUJDMkMzODVDNEY5QUUwMi8yUHg1VzJQTVFs Y18xZHRFOEtnNGJJMWtPNFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmNIlhNVbWwLgpzWHJ28u6V2HaB506HQ9J4rsDp0i07+Yp9xehRPW7 0BqBEJtsLWsXyZWCeYlTe4bWONOn1HJLliigXUfyu35EYR8sBHuFMFIQGcBRttx8 nkEkH26XHS1AiJC/lmbG6CAAx/CU2TblQeISsKpaesp0uYFQ1Lnwsvn+EazJdujv /xo3ACBTJdP9lHaGK5lELtJr/i+27S4r59DysFgg2J9BnWa3WFyrWgQ9ov8rep+v WnkPNAX8wzz3LztOG55A5zcLy6LTZV0MlNXmo16hcKWnoEDJPJF/K+rw0YfVjR3N Ito6VvCPTj0ViR2H+ZL/XnV5Qq5IciOH -----END CERTIFICATE-----Generated at Thu Mar 13 21:30:58 2025 by rpki-client