$ rpki-client -vvf rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft File: 2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft (raw, json) Hash identifier: T18X8hCUcjaI/VqKl5XwsnqxFw3Cbuhd8raEvdYRHg4= Subject key identifier: 56:41:52:93:5B:FA:46:FE:A8:CE:AE:2A:31:CF:9E:32:D6:E2:41:47 Authority key identifier: DA:54:7E:D6:92:8A:AD:1E:CF:B6:84:7A:1B:07:43:2B:D8:7B:19:EF Certificate issuer: /CN=A9140E66/serialNumber=DA547ED6928AAD1ECFB6847A1B07432BD87B19EF Certificate serial: 0C5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft Manifest number: 0C58 Signing time: Fri 16 May 2025 18:31:25 +0000 Manifest this update: Fri 16 May 2025 18:31:25 +0000 Manifest next update: Fri 23 May 2025 18:31:25 +0000 Files and hashes: 1: 2lR-1pKKrR7PtoR6GwdDK9h7Ge8.crl (hash: AV5FSf16vZGpKOI9qzbynw9ECqttrpL3EVigioV2Dx8=) 2: 7665CD0AFF7011E99CDC306AC4F9AE02.roa (hash: n/f1uTeEyARI3uLFtA8qgF3ZldlUFB3TY49ssy/Ns3A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.crl rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 18:31:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3166 (0xc5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140E66, serialNumber=DA547ED6928AAD1ECFB6847A1B07432BD87B19EF Validity Not Before: May 16 18:31:25 2025 GMT Not After : May 23 18:31:25 2025 GMT Subject: CN=6827847d-c101 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:c5:5f:7d:0f:32:cc:14:0b:3e:33:22:64:4c: d6:6f:d6:58:80:8e:29:e4:9b:6e:ab:2a:1d:5e:39: 2d:4a:1d:68:17:41:f0:99:d1:5c:78:ee:18:6d:3f: cc:3d:ab:7f:e7:40:a0:0b:92:e4:c4:f4:32:47:ca: 53:9a:56:da:6a:32:a0:88:92:4d:91:8c:65:9b:b2: ee:62:06:41:d8:b5:66:dc:4c:34:67:ed:84:8c:38: 40:f0:f3:8b:7d:9f:47:cd:48:61:9b:26:ad:44:1a: fc:83:4b:ae:b6:be:47:37:2a:2d:e3:86:dd:70:fb: 57:b1:f7:d2:aa:de:45:7e:f4:dd:cb:fc:b9:57:d0: d0:bc:cc:ed:da:5a:7f:99:2a:83:52:a5:4a:56:31: aa:e7:e9:11:14:3b:e7:9b:48:96:e1:43:e6:61:f0: e5:e1:46:d4:d8:0d:f9:4f:40:fa:48:d8:aa:31:02: c0:01:a0:cf:c7:44:e6:63:d8:58:9c:10:71:5d:fe: 63:37:c2:26:c2:68:3d:2f:25:46:fb:1a:fd:5f:21: f2:01:65:70:73:4e:30:50:e4:5e:6a:bf:74:f0:71: bc:5d:18:c0:ce:02:24:3f:f9:96:43:5a:e1:8b:3e: d5:6c:20:44:23:e7:3e:85:06:ae:8f:db:45:ca:0f: 96:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:41:52:93:5B:FA:46:FE:A8:CE:AE:2A:31:CF:9E:32:D6:E2:41:47 X509v3 Authority Key Identifier: keyid:DA:54:7E:D6:92:8A:AD:1E:CF:B6:84:7A:1B:07:43:2B:D8:7B:19:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:30:7e:02:01:a7:30:9b:ff:95:e5:da:56:2f:58:d7:ce:31: cc:5d:8f:a0:69:74:05:7c:51:b8:c1:be:4f:50:f6:6e:6d:ba: 4f:02:87:cb:90:ee:26:38:a3:93:b1:08:be:ec:e1:db:ec:1d: 94:d8:3b:71:53:ee:76:78:67:c1:ea:1e:2a:b4:f1:74:ed:b2: 17:8b:01:e2:de:9c:f1:be:37:2a:05:c5:cf:5c:7a:8e:45:f5: 23:65:37:8b:d1:35:38:ee:85:1b:20:33:25:bb:70:aa:a8:01: 38:5b:b1:71:64:54:72:54:2c:96:13:17:2d:70:4d:b6:a7:78: 03:1d:80:8e:23:51:6c:97:64:93:f1:56:7b:e3:06:ae:98:b9: e5:92:4d:b9:83:0a:74:3f:f0:c0:c7:c5:46:dc:b9:7c:d0:77: 86:d8:99:d1:df:80:d7:c5:d0:19:f6:d4:73:53:35:3a:01:1b: a7:63:fd:d5:47:4c:dd:54:9a:d6:db:1b:3a:4c:b2:e7:0f:39: c7:a2:07:b1:6e:48:cb:ab:23:74:51:45:62:66:9b:50:11:aa: 3c:b4:4b:1f:da:e5:2d:46:17:4a:27:67:52:c6:b4:e4:f6:9a: 9d:61:1f:48:11:bc:27:1e:0c:b4:67:2d:d0:0a:54:12:15:00: 48:ab:68:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDF4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBFNjYxMTAvBgNVBAUTKERBNTQ3RUQ2OTI4QUFEMUVDRkI2ODQ3QTFCMDc0MzJC RDg3QjE5RUYwHhcNMjUwNTE2MTgzMTI1WhcNMjUwNTIzMTgzMTI1WjAYMRYwFAYD VQQDEw02ODI3ODQ3ZC1jMTAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwcVffQ8yzBQLPjMiZEzWb9ZYgI4p5JtuqyodXjktSh1oF0HwmdFceO4YbT/M Pat/50CgC5LkxPQyR8pTmlbaajKgiJJNkYxlm7LuYgZB2LVm3Ew0Z+2EjDhA8POL fZ9HzUhhmyatRBr8g0uutr5HNyot44bdcPtXsffSqt5FfvTdy/y5V9DQvMzt2lp/ mSqDUqVKVjGq5+kRFDvnm0iW4UPmYfDl4UbU2A35T0D6SNiqMQLAAaDPx0TmY9hY nBBxXf5jN8Imwmg9LyVG+xr9XyHyAWVwc04wUORear908HG8XRjAzgIkP/mWQ1rh iz7VbCBEI+c+hQauj9tFyg+WuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFZBUpNb +kb+qM6uKjHPnjLW4kFHMB8GA1UdIwQYMBaAFNpUftaSiq0ez7aEehsHQyvYexnv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEU2Ni83MDYzOUVGQ0ZG NkUxMUU5ODVBODhDNjdDNEY5QUUwMi8ybFItMXBLS3JSN1B0b1I2R3dkREs5aDdH ZTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsUi0xcEtLclI3UHRvUjZHd2RESzloN0dlOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEU2Ni83MDYzOUVGQ0ZGNkUxMUU5ODVBODhDNjdDNEY5QUUwMi8ybFItMXBLS3JS N1B0b1I2R3dkREs5aDdHZTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgMH4CAacwm/+V5dpWL1jXzjHMXY+gaXQFfFG4wb5PUPZubbpPAofL kO4mOKOTsQi+7OHb7B2U2DtxU+52eGfB6h4qtPF07bIXiwHi3pzxvjcqBcXPXHqO RfUjZTeL0TU47oUbIDMlu3CqqAE4W7FxZFRyVCyWExctcE22p3gDHYCOI1Fsl2ST 8VZ74waumLnlkk25gwp0P/DAx8VG3Ll80HeG2JnR34DXxdAZ9tRzUzU6ARunY/3V R0zdVJrW2xs6TLLnDznHogexbkjLqyN0UUViZptQEao8tEsf2uUtRhdKJ2dSxrTk 9pqdYR9IEbwnHgy0Zy3QClQSFQBIq2hE -----END CERTIFICATE-----Generated at Sun May 18 07:08:40 2025 by rpki-client