$ rpki-client -vvf rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft File: 2WQZRdW0z31j_JExr89yeuNtkCA.mft (raw, json) Hash identifier: x8Ff54AbHUkpJqUA2Aszj62LlKlCa4XFN4K/f/+xWeE= Subject key identifier: 9B:C3:EE:3D:6F:F5:B9:BF:BB:EF:B0:CC:2C:5C:B5:B9:38:78:F5:1C Authority key identifier: D9:64:19:45:D5:B4:CF:7D:63:FC:91:31:AF:CF:72:7A:E3:6D:90:20 Certificate issuer: /CN=A911F316/serialNumber=D9641945D5B4CF7D63FC9131AFCF727AE36D9020 Certificate serial: 01D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft Manifest number: 01CB Signing time: Thu 15 May 2025 02:25:29 +0000 Manifest this update: Thu 15 May 2025 02:25:29 +0000 Manifest next update: Thu 22 May 2025 02:25:29 +0000 Files and hashes: 1: 2WQZRdW0z31j_JExr89yeuNtkCA.crl (hash: udl5fKZ9PJOAc7JUJiCY++CygT1dwijztsmgcSBjDrU=) 2: 15714ED2776A11ED98AF7341C4F9AE02.roa (hash: WBxu67wj7qK+1XHnF6Gm/tpT83HjDxcRJ+5R7dbCf7I=) 3: 77490C9A792F11EEBF849942C4F9AE02.roa (hash: +qSb4R4TGVMwO8UibifLnyUfy5g07BZr/1fOfOFiaKg=) 4: 590A6A9A792E11EEA5AAB840C4F9AE02.roa (hash: TjgZvd8NTyfnTIYx+SMzczM6IMYvFc5scP1aWMMbHyE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.crl rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 02:25:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 469 (0x1d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F316, serialNumber=D9641945D5B4CF7D63FC9131AFCF727AE36D9020 Validity Not Before: May 15 02:25:29 2025 GMT Not After : May 22 02:25:29 2025 GMT Subject: CN=68255099-5a5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:db:09:3f:8d:63:64:70:9d:82:7b:b7:93:7f: 88:d5:9b:16:da:1c:02:ca:c2:1f:00:f7:25:28:67: 39:ba:51:11:97:c0:76:d3:ff:95:e5:6f:8c:25:d9: 59:26:29:5a:bd:68:c7:a0:d8:b6:c0:ba:7b:7b:1a: 18:2d:90:4f:f3:29:da:25:33:49:ad:90:69:c6:f9: 94:cc:f6:3d:3e:21:03:38:01:24:61:13:77:7e:df: 30:61:8f:aa:f4:ec:0e:20:a7:0e:13:70:b4:3a:a6: b0:3e:4b:fc:8d:2e:ab:ce:8c:a4:57:d4:6a:ec:86: 2a:ca:a4:0f:e8:01:db:99:fc:9a:79:6f:57:0e:cb: 9f:b6:aa:85:ad:bb:00:5d:6a:df:5a:7c:b0:a9:03: 06:03:0a:2d:16:b3:e8:2f:32:f7:80:76:9d:20:cf: 0d:87:f4:5a:f4:c5:73:19:75:a4:e7:19:47:4b:57: 83:86:5e:0a:0c:b4:0c:58:4c:96:a2:28:88:d1:a8: 60:a5:7a:78:61:bf:5a:8c:37:7a:a3:ba:ed:eb:36: 3e:6b:8f:42:05:f5:81:6e:e1:59:17:70:bf:87:48: 56:60:55:e2:55:f0:b8:8d:35:a0:a9:aa:88:80:48: 8d:f7:68:4d:af:e7:d2:8b:29:2b:20:0b:e7:35:2b: 41:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:C3:EE:3D:6F:F5:B9:BF:BB:EF:B0:CC:2C:5C:B5:B9:38:78:F5:1C X509v3 Authority Key Identifier: keyid:D9:64:19:45:D5:B4:CF:7D:63:FC:91:31:AF:CF:72:7A:E3:6D:90:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:e2:e3:05:ab:a8:64:c0:c8:ea:9d:da:48:f4:05:da:7f:5b: 77:66:58:ad:e0:6b:7d:14:26:e5:b8:f9:01:b5:62:db:1e:3d: a1:72:3d:06:78:f1:74:ea:a9:dc:3e:22:20:0f:c1:f6:98:e3: d8:c6:b9:ab:1a:72:41:e0:9b:4f:29:1e:a5:49:2f:83:87:6a: a1:5d:ea:2f:ad:ba:63:fa:86:46:00:c1:22:11:2b:2d:0c:8e: f7:a5:d6:fd:c0:bd:30:63:6b:5b:ad:06:a8:cd:69:20:5c:ee: 18:af:d5:8e:9d:d3:62:a0:41:22:6c:98:42:c2:9f:8a:ce:85: 7f:ef:07:e0:4b:c0:1b:41:eb:95:cf:9c:ea:30:a6:51:2c:08: 1a:82:bd:ff:e6:a9:ef:e2:d4:45:bd:f4:dc:ce:e6:1a:f8:09: 2e:54:a7:22:f9:a1:20:ac:f3:48:61:09:70:cc:a2:ff:84:79: b6:bf:0a:b3:a3:da:fb:3c:34:b2:90:8d:57:b4:5e:a9:0e:82: e5:56:b4:95:61:3a:71:2d:a4:7f:32:1d:6e:71:9a:96:71:2e: 5f:7c:d6:ad:3f:4e:d9:4e:ce:c5:dd:a2:a1:87:2e:5e:d1:f2: 1b:5f:f7:cc:fc:0f:17:d9:31:9b:54:cb:f5:e8:91:35:29:13: d8:2b:45:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUYzMTYxMTAvBgNVBAUTKEQ5NjQxOTQ1RDVCNENGN0Q2M0ZDOTEzMUFGQ0Y3MjdB RTM2RDkwMjAwHhcNMjUwNTE1MDIyNTI5WhcNMjUwNTIyMDIyNTI5WjAYMRYwFAYD VQQDEw02ODI1NTA5OS01YTVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA09sJP41jZHCdgnu3k3+I1ZsW2hwCysIfAPclKGc5ulERl8B20/+V5W+MJdlZ JilavWjHoNi2wLp7exoYLZBP8ynaJTNJrZBpxvmUzPY9PiEDOAEkYRN3ft8wYY+q 9OwOIKcOE3C0OqawPkv8jS6rzoykV9Rq7IYqyqQP6AHbmfyaeW9XDsuftqqFrbsA XWrfWnywqQMGAwotFrPoLzL3gHadIM8Nh/Ra9MVzGXWk5xlHS1eDhl4KDLQMWEyW oiiI0ahgpXp4Yb9ajDd6o7rt6zY+a49CBfWBbuFZF3C/h0hWYFXiVfC4jTWgqaqI gEiN92hNr+fSiykrIAvnNStB5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJvD7j1v 9bm/u++wzCxctbk4ePUcMB8GA1UdIwQYMBaAFNlkGUXVtM99Y/yRMa/PcnrjbZAg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjMxNi9BMURGMTUyMDc3 NEMxMUVEQjgyNkJDMEJDNEY5QUUwMi8yV1FaUmRXMHozMWpfSkV4cjg5eWV1TnRr Q0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJXUVpSZFcwejMxal9KRXhyODl5ZXVOdGtDQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjMxNi9BMURGMTUyMDc3NEMxMUVEQjgyNkJDMEJDNEY5QUUwMi8yV1FaUmRXMHoz MWpfSkV4cjg5eWV1TnRrQ0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA34uMFq6hkwMjqndpI9AXaf1t3Zlit4Gt9FCbluPkBtWLbHj2hcj0G ePF06qncPiIgD8H2mOPYxrmrGnJB4JtPKR6lSS+Dh2qhXeovrbpj+oZGAMEiESst DI73pdb9wL0wY2tbrQaozWkgXO4Yr9WOndNioEEibJhCwp+KzoV/7wfgS8AbQeuV z5zqMKZRLAgagr3/5qnv4tRFvfTczuYa+AkuVKci+aEgrPNIYQlwzKL/hHm2vwqz o9r7PDSykI1XtF6pDoLlVrSVYTpxLaR/Mh1ucZqWcS5ffNatP07ZTs7F3aKhhy5e 0fIbX/fM/A8X2TGbVMv16JE1KRPYK0UJ -----END CERTIFICATE-----Generated at Fri May 16 09:53:11 2025 by rpki-client