$ rpki-client -vvf rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft File: 2lexkcVbszGevZGC3A1Oau8-Ddg.mft (raw, json) Hash identifier: 5r0PUFj2JMNs173oZBc7nAUINRY7qN3fPnG0q5V4cvg= Subject key identifier: 3A:ED:CE:D1:EC:DD:93:E1:C8:19:F8:B8:10:FC:4B:43:FD:41:BE:6D Authority key identifier: DA:57:B1:91:C5:5B:B3:31:9E:BD:91:82:DC:0D:4E:6A:EF:3E:0D:D8 Certificate issuer: /CN=A912A31E/serialNumber=DA57B191C55BB3319EBD9182DC0D4E6AEF3E0DD8 Certificate serial: 0180 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft Manifest number: 017D Signing time: Sun 11 May 2025 02:36:42 +0000 Manifest this update: Sun 11 May 2025 02:36:41 +0000 Manifest next update: Sun 18 May 2025 02:36:41 +0000 Files and hashes: 1: 2lexkcVbszGevZGC3A1Oau8-Ddg.crl (hash: heRH6jzzWJNpY2U2P77ZLHtD1HHxr7UQJNPuZqbmCPg=) 2: 5181F33CE8C011EDADA54A23C4F9AE02.roa (hash: 9wRwgsGB8Fy9z1Xq7bw5sLUsMsE1FSTZuA/DyllyXak=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.crl rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 02:36:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 384 (0x180) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A31E, serialNumber=DA57B191C55BB3319EBD9182DC0D4E6AEF3E0DD8 Validity Not Before: May 11 02:36:41 2025 GMT Not After : May 18 02:36:41 2025 GMT Subject: CN=68200d3a-dccb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:0a:5d:f0:b9:ee:8c:c4:d7:13:9f:ee:b2:64: ae:67:59:40:67:d0:94:48:12:7e:2e:7b:ec:49:bd: c9:e7:42:51:52:2f:0c:b4:d2:07:97:e9:6a:ec:c1: 19:57:ab:ba:d8:d1:5f:b5:72:5f:6c:86:e0:d4:1c: 72:5e:38:f6:5f:5d:20:39:9c:7a:57:97:58:c4:bf: 87:7b:24:67:6d:06:9e:c5:33:2f:7f:49:aa:0d:7e: 52:62:b7:37:e4:97:3d:03:22:c0:07:b9:1d:d3:ae: db:73:8d:c9:43:63:45:93:e8:4f:3a:d2:e2:27:5f: b7:7e:ff:e3:d8:d5:06:37:02:59:64:23:de:10:31: 01:12:13:4e:ad:b8:ad:50:77:a9:0f:e0:3b:dc:18: 69:37:f4:04:21:2e:96:51:28:36:f7:d6:87:0a:bb: 43:1b:0f:ac:41:e9:74:c3:0f:f5:7d:96:77:6f:92: d9:b0:99:cd:65:f9:b7:a6:69:b3:21:50:f5:69:26: 4d:87:90:dd:d7:22:0d:a9:eb:84:e1:46:05:fc:30: 90:02:41:be:1e:5f:5a:d9:12:85:45:94:49:e0:3a: f0:95:91:e3:60:ce:d6:2c:6b:da:70:d5:12:60:ec: d9:c2:f2:dd:f5:f4:de:76:15:67:95:11:b4:01:53: ed:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:ED:CE:D1:EC:DD:93:E1:C8:19:F8:B8:10:FC:4B:43:FD:41:BE:6D X509v3 Authority Key Identifier: keyid:DA:57:B1:91:C5:5B:B3:31:9E:BD:91:82:DC:0D:4E:6A:EF:3E:0D:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:51:cc:7b:fb:b0:7a:66:79:9c:0d:69:f0:46:19:5c:e5:73: 8f:29:e6:11:10:90:dc:40:d9:dd:1a:e7:35:63:1e:7a:9d:46: e6:4c:b4:de:e3:82:ac:46:3e:72:6c:51:41:89:10:66:ff:24: ac:71:05:17:bb:ca:a7:b3:d2:bc:7c:68:31:cc:2d:e3:d9:d6: 53:e3:15:f7:b7:7c:c7:26:65:7a:42:58:ef:3f:45:1c:6e:08: 0b:64:93:e6:a4:45:21:74:d3:f7:25:51:da:9a:ad:31:16:f7: ee:3c:c6:aa:6f:a4:0a:4c:70:da:4d:4a:11:75:be:0a:bc:2c: 0b:01:eb:9b:b1:dd:16:3f:b1:fe:35:d1:7e:36:ea:9b:1a:e6: 2d:9b:7e:6a:32:ae:fd:ca:79:80:33:5e:99:e6:9f:46:a3:8b: dc:55:23:90:25:86:9c:15:35:43:30:19:40:bb:69:83:34:f6: f8:13:3a:c3:ec:8f:ef:3f:fc:3c:fa:79:81:60:38:62:3c:dc: 61:57:72:f1:57:36:10:08:67:d7:ce:4f:70:3a:71:44:b2:65: 0f:b1:b9:fe:99:17:8a:5e:33:a7:6e:7c:4b:f1:53:35:06:78: 23:23:64:f4:10:59:c0:91:2a:bf:61:a8:dc:b0:5b:bc:ff:8d: b3:f1:97:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkEzMUUxMTAvBgNVBAUTKERBNTdCMTkxQzU1QkIzMzE5RUJEOTE4MkRDMEQ0RTZB RUYzRTBERDgwHhcNMjUwNTExMDIzNjQxWhcNMjUwNTE4MDIzNjQxWjAYMRYwFAYD VQQDEw02ODIwMGQzYS1kY2NiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Qpd8LnujMTXE5/usmSuZ1lAZ9CUSBJ+LnvsSb3J50JRUi8MtNIHl+lq7MEZ V6u62NFftXJfbIbg1BxyXjj2X10gOZx6V5dYxL+HeyRnbQaexTMvf0mqDX5SYrc3 5Jc9AyLAB7kd067bc43JQ2NFk+hPOtLiJ1+3fv/j2NUGNwJZZCPeEDEBEhNOrbit UHepD+A73BhpN/QEIS6WUSg299aHCrtDGw+sQel0ww/1fZZ3b5LZsJnNZfm3pmmz IVD1aSZNh5Dd1yINqeuE4UYF/DCQAkG+Hl9a2RKFRZRJ4DrwlZHjYM7WLGvacNUS YOzZwvLd9fTedhVnlRG0AVPtNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDrtztHs 3ZPhyBn4uBD8S0P9Qb5tMB8GA1UdIwQYMBaAFNpXsZHFW7Mxnr2RgtwNTmrvPg3Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTMxRS9DOEE0QzRFNEU4 QkIxMUVEQThEQjhBMUZDNEY5QUUwMi8ybGV4a2NWYnN6R2V2WkdDM0ExT2F1OC1E ZGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsZXhrY1Zic3pHZXZaR0MzQTFPYXU4LURkZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QTMxRS9DOEE0QzRFNEU4QkIxMUVEQThEQjhBMUZDNEY5QUUwMi8ybGV4a2NWYnN6 R2V2WkdDM0ExT2F1OC1EZGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBUcx7+7B6ZnmcDWnwRhlc5XOPKeYREJDcQNndGuc1Yx56nUbmTLTe 44KsRj5ybFFBiRBm/ySscQUXu8qns9K8fGgxzC3j2dZT4xX3t3zHJmV6QljvP0Uc bggLZJPmpEUhdNP3JVHamq0xFvfuPMaqb6QKTHDaTUoRdb4KvCwLAeubsd0WP7H+ NdF+NuqbGuYtm35qMq79ynmAM16Z5p9Go4vcVSOQJYacFTVDMBlAu2mDNPb4EzrD 7I/vP/w8+nmBYDhiPNxhV3LxVzYQCGfXzk9wOnFEsmUPsbn+mReKXjOnbnxL8VM1 BngjI2T0EFnAkSq/YajcsFu8/42z8Zdq -----END CERTIFICATE-----Generated at Mon May 12 13:28:04 2025 by rpki-client