$ rpki-client -vvf rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.mft File: 2gQijT7rRR_A8iM2aXFwV_irNmk.mft (raw, json) Hash identifier: fhBbkasIwartnTXGdP62lCOelUc/R3rlGS+LoMAiwD4= Subject key identifier: 4F:8A:46:00:56:3A:F2:88:59:0B:A2:E2:71:60:15:4A:73:31:AC:F8 Authority key identifier: DA:04:22:8D:3E:EB:45:1F:C0:F2:23:36:69:71:70:57:F8:AB:36:69 Certificate issuer: /CN=A914B165/serialNumber=DA04228D3EEB451FC0F2233669717057F8AB3669 Certificate serial: 0871 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gQijT7rRR_A8iM2aXFwV_irNmk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.mft Manifest number: 086B Signing time: Sat 10 May 2025 20:22:54 +0000 Manifest this update: Sat 10 May 2025 20:22:53 +0000 Manifest next update: Sat 17 May 2025 20:22:53 +0000 Files and hashes: 1: 2gQijT7rRR_A8iM2aXFwV_irNmk.crl (hash: wuMxal6jHJAh8DeQYgEevW0aeXTdNEyg9oqflQrud3Q=) 2: 26AECD92C2B211EABBD0ED4AC4F9AE02.roa (hash: 8bFMS7lUFa5a04616nMhBCIyPXjI0vGFlv2YHmEk/tM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.crl rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gQijT7rRR_A8iM2aXFwV_irNmk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 20:22:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2161 (0x871) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B165, serialNumber=DA04228D3EEB451FC0F2233669717057F8AB3669 Validity Not Before: May 10 20:22:53 2025 GMT Not After : May 17 20:22:53 2025 GMT Subject: CN=681fb59d-1872 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:12:31:54:90:95:dc:b9:e3:4c:83:6e:75:16: 32:da:93:63:95:48:f7:2d:7c:f8:9d:37:2b:76:a1: 1d:7f:e8:c4:cf:06:9f:91:67:6a:96:62:1d:b3:76: 85:c0:55:0e:35:84:2b:2c:fe:df:95:1c:a8:3b:6c: 5c:bc:f4:4c:03:14:fc:d6:08:66:f8:d6:56:61:7e: 5f:2e:ee:bd:cf:9b:bc:6e:3a:5d:6e:14:85:41:06: 3b:44:71:2f:de:6a:40:0c:24:b3:f1:69:01:48:ea: 52:32:35:cd:16:cf:ef:14:bd:c3:78:67:de:a5:2f: cf:aa:58:85:cd:64:6e:66:b4:11:83:2e:c2:6d:a1: 61:e8:0a:24:01:7f:ef:de:d5:6f:80:4d:d7:47:5e: 38:04:c0:c6:04:fe:be:fb:ce:f1:5f:71:24:31:32: a8:ff:25:19:ec:bd:70:9c:4a:58:95:10:3e:32:a4: 5e:24:7f:9c:01:ac:fc:46:f8:e6:92:23:52:e6:9f: db:27:35:3f:17:3e:00:ec:11:a6:a3:db:66:d3:7c: 9e:70:1a:02:21:09:32:fb:35:28:3d:99:bd:4e:41: a2:f5:f3:3e:ed:0d:39:e1:62:8f:2a:93:c5:bf:c2: 97:9d:b1:86:d4:88:b6:cc:9a:9f:fd:cf:79:23:3f: a1:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:8A:46:00:56:3A:F2:88:59:0B:A2:E2:71:60:15:4A:73:31:AC:F8 X509v3 Authority Key Identifier: keyid:DA:04:22:8D:3E:EB:45:1F:C0:F2:23:36:69:71:70:57:F8:AB:36:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gQijT7rRR_A8iM2aXFwV_irNmk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:60:61:7f:48:fc:81:60:4a:c6:cc:a4:d0:f2:78:9e:ff:d3: 52:c9:15:3b:a7:a3:8a:fe:8d:91:dd:25:fe:2a:78:40:9f:44: b9:08:7a:2d:f5:22:5e:79:22:f9:40:67:6e:e8:22:f7:91:87: 77:64:fc:58:d3:41:2c:5e:a2:83:46:fb:93:7b:d4:f1:4a:3e: 26:14:62:cd:00:7c:d3:4c:26:88:2a:60:92:99:e3:c5:51:52: e9:06:6f:61:70:84:d6:5b:16:3f:12:e3:99:e3:84:21:e0:65: 79:a2:56:e2:d3:26:23:67:a3:e7:93:b2:e1:00:20:a7:dc:55: b5:7b:7a:18:bb:fa:f4:60:04:ae:67:0b:c8:73:77:03:fa:a9: b4:38:b7:df:ea:d1:b2:c1:5b:5a:86:5b:6c:47:60:62:d7:09: 93:71:22:4f:d3:86:d8:cc:a0:42:4d:4b:ac:11:74:aa:5b:2f: 8f:c2:1e:86:c9:aa:d5:87:ff:07:5a:30:7a:84:5a:93:ac:45: 0b:2c:6f:05:c0:4c:6d:e6:68:66:85:f5:34:f0:c3:e2:c9:85: e0:aa:d9:8d:fb:81:47:1c:ad:a2:d3:a6:bb:04:7e:02:6a:dc: f3:f1:33:74:fa:8c:0d:a6:c3:92:0f:11:ef:2f:99:f6:38:7a: ba:83:fa:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCHEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEIxNjUxMTAvBgNVBAUTKERBMDQyMjhEM0VFQjQ1MUZDMEYyMjMzNjY5NzE3MDU3 RjhBQjM2NjkwHhcNMjUwNTEwMjAyMjUzWhcNMjUwNTE3MjAyMjUzWjAYMRYwFAYD VQQDEw02ODFmYjU5ZC0xODcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuhIxVJCV3LnjTINudRYy2pNjlUj3LXz4nTcrdqEdf+jEzwafkWdqlmIds3aF wFUONYQrLP7flRyoO2xcvPRMAxT81ghm+NZWYX5fLu69z5u8bjpdbhSFQQY7RHEv 3mpADCSz8WkBSOpSMjXNFs/vFL3DeGfepS/PqliFzWRuZrQRgy7CbaFh6AokAX/v 3tVvgE3XR144BMDGBP6++87xX3EkMTKo/yUZ7L1wnEpYlRA+MqReJH+cAaz8Rvjm kiNS5p/bJzU/Fz4A7BGmo9tm03yecBoCIQky+zUoPZm9TkGi9fM+7Q054WKPKpPF v8KXnbGG1Ii2zJqf/c95Iz+hKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE+KRgBW OvKIWQui4nFgFUpzMaz4MB8GA1UdIwQYMBaAFNoEIo0+60UfwPIjNmlxcFf4qzZp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjE2NS82QTNFQjhCNkMy QjExMUVBOTIwQkI5NEFDNEY5QUUwMi8yZ1FpalQ3clJSX0E4aU0yYVhGd1ZfaXJO bWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJnUWlqVDdyUlJfQThpTTJhWEZ3Vl9pck5tay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjE2NS82QTNFQjhCNkMyQjExMUVBOTIwQkI5NEFDNEY5QUUwMi8yZ1FpalQ3clJS X0E4aU0yYVhGd1ZfaXJObWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/YGF/SPyBYErGzKTQ8nie/9NSyRU7p6OK/o2R3SX+KnhAn0S5CHot 9SJeeSL5QGdu6CL3kYd3ZPxY00EsXqKDRvuTe9TxSj4mFGLNAHzTTCaIKmCSmePF UVLpBm9hcITWWxY/EuOZ44Qh4GV5olbi0yYjZ6Pnk7LhACCn3FW1e3oYu/r0YASu ZwvIc3cD+qm0OLff6tGywVtahltsR2Bi1wmTcSJP04bYzKBCTUusEXSqWy+Pwh6G yarVh/8HWjB6hFqTrEULLG8FwExt5mhmhfU08MPiyYXgqtmN+4FHHK2i06a7BH4C atzz8TN0+owNpsOSDxHvL5n2OHq6g/ru -----END CERTIFICATE-----Generated at Sun May 11 09:03:47 2025 by rpki-client