$ rpki-client -vvf rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.mft File: A2aKIfDwHwaydP2IzJ4KboPVX4U.mft (raw, json) Hash identifier: KMgEdACuoHOlYGITXvQGpZEHHy2hKOGrO/qDsh+v2yE= Subject key identifier: E6:86:35:E7:FA:B7:08:4C:2C:4A:08:06:71:78:DE:A7:53:C6:AA:CB Authority key identifier: 03:66:8A:21:F0:F0:1F:06:B2:74:FD:88:CC:9E:0A:6E:83:D5:5F:85 Certificate issuer: /CN=A9141620/serialNumber=03668A21F0F01F06B274FD88CC9E0A6E83D55F85 Certificate serial: 0746 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A2aKIfDwHwaydP2IzJ4KboPVX4U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.mft Manifest number: 0740 Signing time: Mon 12 May 2025 21:29:55 +0000 Manifest this update: Mon 12 May 2025 21:29:55 +0000 Manifest next update: Mon 19 May 2025 21:29:55 +0000 Files and hashes: 1: A2aKIfDwHwaydP2IzJ4KboPVX4U.crl (hash: ayNVdj593SHR9K4ACtGjzBIQdDY0SKpQQZkwRT97jIc=) 2: 5DDE6BC2293E11EB9DFA3C72C4F9AE02.roa (hash: dyvPcZxPt0csBuZZARHE9y3XiMCjfKdl2w86flcHLuE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.crl rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A2aKIfDwHwaydP2IzJ4KboPVX4U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 21:29:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1862 (0x746) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9141620, serialNumber=03668A21F0F01F06B274FD88CC9E0A6E83D55F85 Validity Not Before: May 12 21:29:55 2025 GMT Not After : May 19 21:29:55 2025 GMT Subject: CN=68226853-efec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ad:7c:5e:b6:97:70:76:9f:ec:b1:a4:5b:9b: 74:83:2e:4e:8c:dc:b3:bf:bc:f7:95:33:ed:f5:00: 2c:1e:c7:81:75:f3:f6:d6:a3:0c:72:71:38:b4:c8: 06:74:1a:1b:c0:4b:50:34:f8:fe:73:e5:b6:57:ee: b9:52:5e:51:2c:eb:9c:3d:31:2f:d0:f7:d6:7a:d7: 31:8b:83:b6:da:9a:47:bd:ce:49:51:e2:01:dc:73: 66:ea:6a:94:0e:20:bf:1b:62:1f:ae:9f:f2:e1:22: 0e:fe:cc:25:84:11:29:df:58:e8:40:ae:ae:52:c7: 3c:6f:7d:df:da:f4:eb:99:5a:4a:50:bc:65:8b:a1: c6:d1:9f:5f:a7:1b:73:03:72:16:56:e9:1f:da:d7: 1b:c4:e4:58:fc:bd:b6:7f:31:71:ea:6b:c8:de:67: 1d:41:90:ca:59:5e:a8:01:11:8e:68:a8:7c:c3:55: 71:6f:47:52:43:f4:fb:dd:fb:65:8b:72:3e:03:73: d3:03:f8:20:33:72:7c:f7:24:fc:41:30:1e:f4:14: 55:a7:03:55:0c:05:ef:5b:16:ee:af:33:82:f8:17: c7:5e:b6:16:f8:34:5e:05:74:3e:78:e0:15:35:e0: ad:d8:7a:c7:8e:96:f4:ee:9e:7b:f0:95:37:ea:61: 86:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:86:35:E7:FA:B7:08:4C:2C:4A:08:06:71:78:DE:A7:53:C6:AA:CB X509v3 Authority Key Identifier: keyid:03:66:8A:21:F0:F0:1F:06:B2:74:FD:88:CC:9E:0A:6E:83:D5:5F:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A2aKIfDwHwaydP2IzJ4KboPVX4U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:66:2d:71:4c:51:d8:a1:38:21:b6:0c:a2:a0:ac:0d:db:94: f6:3f:c9:b4:75:3d:c0:09:b8:30:83:e8:24:0c:4d:4e:d4:7a: 88:3b:08:fb:cc:67:2e:7e:76:96:1c:b7:51:9d:59:62:3b:5f: 28:60:a6:3b:b0:52:aa:17:36:b5:b6:3a:75:87:20:0c:bd:0c: ee:ae:c5:9d:a5:1c:ec:48:9f:3d:0d:fb:d3:c9:07:f2:d2:63: 40:21:e1:8f:65:18:5f:00:fc:a1:b9:c1:73:e8:74:50:29:78: 80:15:3c:e7:73:fa:58:82:38:6c:21:42:70:5b:28:16:1a:fa: 05:7e:97:05:eb:98:8a:af:68:be:db:0f:6e:d8:8d:91:34:57: b5:14:42:bb:3c:5c:7a:51:3e:c2:a1:e1:3d:5c:97:2d:5e:69: ac:1d:c8:f8:03:b4:35:e9:bb:42:d5:ca:0b:f5:02:d4:2e:ec: f9:6b:b1:e8:71:f3:80:ac:4d:e8:16:08:82:ba:02:4e:29:6c: 0e:62:71:4e:b1:eb:82:f4:83:8a:38:0f:0c:c3:6d:f8:d3:3a: 6d:4b:0b:5d:af:cb:cf:77:1c:21:c2:d3:c5:bb:fb:3c:55:0e: 9b:3c:e2:8d:be:e2:94:dd:55:09:3e:01:87:2a:cf:ab:68:a2: de:63:0c:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB0YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDE2MjAxMTAvBgNVBAUTKDAzNjY4QTIxRjBGMDFGMDZCMjc0RkQ4OENDOUUwQTZF ODNENTVGODUwHhcNMjUwNTEyMjEyOTU1WhcNMjUwNTE5MjEyOTU1WjAYMRYwFAYD VQQDEw02ODIyNjg1My1lZmVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyq18XraXcHaf7LGkW5t0gy5OjNyzv7z3lTPt9QAsHseBdfP21qMMcnE4tMgG dBobwEtQNPj+c+W2V+65Ul5RLOucPTEv0PfWetcxi4O22ppHvc5JUeIB3HNm6mqU DiC/G2Ifrp/y4SIO/swlhBEp31joQK6uUsc8b33f2vTrmVpKULxli6HG0Z9fpxtz A3IWVukf2tcbxORY/L22fzFx6mvI3mcdQZDKWV6oARGOaKh8w1Vxb0dSQ/T73ftl i3I+A3PTA/ggM3J89yT8QTAe9BRVpwNVDAXvWxburzOC+BfHXrYW+DReBXQ+eOAV NeCt2HrHjpb07p578JU36mGGJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOaGNef6 twhMLEoIBnF43qdTxqrLMB8GA1UdIwQYMBaAFANmiiHw8B8GsnT9iMyeCm6D1V+F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MTYyMC8yMTk4MTZBQTI5 M0QxMUVCQkZDMTQ3NzFDNEY5QUUwMi9BMmFLSWZEd0h3YXlkUDJJeko0S2JvUFZY NFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EyYUtJZkR3SHdheWRQMkl6SjRLYm9QVlg0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MTYyMC8yMTk4MTZBQTI5M0QxMUVCQkZDMTQ3NzFDNEY5QUUwMi9BMmFLSWZEd0h3 YXlkUDJJeko0S2JvUFZYNFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAZi1xTFHYoTghtgyioKwN25T2P8m0dT3ACbgwg+gkDE1O1HqIOwj7 zGcufnaWHLdRnVliO18oYKY7sFKqFza1tjp1hyAMvQzursWdpRzsSJ89DfvTyQfy 0mNAIeGPZRhfAPyhucFz6HRQKXiAFTznc/pYgjhsIUJwWygWGvoFfpcF65iKr2i+ 2w9u2I2RNFe1FEK7PFx6UT7CoeE9XJctXmmsHcj4A7Q16btC1coL9QLULuz5a7Ho cfOArE3oFgiCugJOKWwOYnFOseuC9IOKOA8Mw2340zptSwtdr8vPdxwhwtPFu/s8 VQ6bPOKNvuKU3VUJPgGHKs+raKLeYwwB -----END CERTIFICATE-----Generated at Wed May 14 04:38:02 2025 by rpki-client