$ rpki-client -vvf rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft File: 2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft (raw, json) Hash identifier: dbMeA7M5B2iONbmISiemK1cLXtw6/MbFMegRIGvqoT4= Subject key identifier: 3C:73:8B:90:E2:7D:16:C2:97:69:31:8F:29:47:D7:E6:00:D5:2B:23 Authority key identifier: D9:85:29:14:8C:BA:5D:DE:D3:B7:3D:60:52:EE:05:16:C0:24:C4:F3 Certificate issuer: /CN=A914C4ED/serialNumber=D98529148CBA5DDED3B73D6052EE0516C024C4F3 Certificate serial: 01D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft Manifest number: 01D0 Signing time: Thu 15 May 2025 00:59:19 +0000 Manifest this update: Thu 15 May 2025 00:59:19 +0000 Manifest next update: Thu 22 May 2025 00:59:19 +0000 Files and hashes: 1: 2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.crl (hash: zESb0tf0MsJjDUEQXkFbnQhhOAtQWTJN/weU05Tyqn8=) 2: F060FF0E720D11EDA84BE02EC4F9AE02.roa (hash: GlAc5fAZweTglvbASziU5BwBtzuZgb2Uajdg0QEwpgc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.crl rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 00:59:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 468 (0x1d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C4ED, serialNumber=D98529148CBA5DDED3B73D6052EE0516C024C4F3 Validity Not Before: May 15 00:59:19 2025 GMT Not After : May 22 00:59:19 2025 GMT Subject: CN=68253c67-8bf8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:fb:7e:73:6c:e6:49:9e:32:1e:8c:e9:10:99: 24:44:83:0a:d3:c5:59:4b:cc:d2:8a:3e:7b:23:73: b9:7e:d2:9e:51:3c:62:ea:3d:21:b3:c2:17:b7:d0: 89:14:e9:4a:65:a2:0c:d5:39:26:d1:46:50:f3:2b: 85:58:b5:3f:f3:82:b2:8e:15:12:1b:9e:9c:9f:a9: 6a:93:62:03:c8:95:f9:d9:f2:94:e1:9a:19:f3:ce: 46:56:c6:55:7c:f6:a5:83:be:e0:2d:9a:f1:20:c2: 26:e1:e7:79:56:4e:e3:9c:e8:ef:78:d9:c7:02:c6: 13:d0:e3:82:42:4e:20:ca:b3:a6:6f:5f:47:da:69: 8b:9d:b1:43:c5:c2:b0:cd:0a:05:31:3a:f9:ee:66: 21:94:9c:2e:a2:1d:ba:c7:ec:00:a5:53:a4:6f:24: 62:8e:ba:49:21:be:45:1f:b8:b8:cd:e6:91:2e:40: 7a:c8:0a:9f:91:a0:89:63:c3:6b:25:c3:d8:f4:51: c7:d0:d4:52:8e:70:7b:29:5e:31:2c:b2:c2:d4:dd: cf:4d:e8:b2:f0:9a:6a:34:3e:1e:11:04:25:37:fc: 01:b9:41:7e:b8:5d:f2:4a:31:e4:54:ad:8a:b0:d4: 85:f7:a5:d3:b4:78:67:12:e6:49:9d:61:f1:bf:3e: df:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:73:8B:90:E2:7D:16:C2:97:69:31:8F:29:47:D7:E6:00:D5:2B:23 X509v3 Authority Key Identifier: keyid:D9:85:29:14:8C:BA:5D:DE:D3:B7:3D:60:52:EE:05:16:C0:24:C4:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:50:31:d0:bb:c2:0e:e9:97:e3:12:60:23:2c:48:48:0c:8c: ee:b8:db:71:82:47:dd:5a:2c:5d:1a:5e:67:7c:42:6f:db:e5: e5:49:66:3c:ef:17:9c:de:7d:ba:fc:2b:98:b5:32:fa:9d:bb: e6:85:a8:e7:39:f3:fa:87:15:ea:aa:20:d3:86:78:24:b5:30: ab:00:15:ec:5e:54:7c:bc:41:d7:bf:55:03:05:0a:22:d1:4d: a9:84:eb:42:5a:50:a8:d4:48:7e:92:eb:a1:77:da:df:39:62: 53:e2:d9:fb:fa:98:e2:95:7d:74:f7:a7:f1:6a:de:4c:10:c8: 95:b8:cc:fe:9f:68:42:55:da:9e:d0:6a:fd:6a:63:5a:b9:43: 46:b8:fb:89:75:53:17:7c:8e:53:c2:88:a5:6f:e9:68:fa:9c: b5:1d:8a:23:5d:06:23:5b:d2:1e:2e:30:17:91:7d:e5:79:cd: c4:a9:b6:8b:31:9c:d0:cb:14:16:3f:d9:8a:5b:d1:07:17:86: d0:e8:f2:fc:2d:e0:54:b6:6a:05:31:44:9b:15:fc:01:40:89: 27:f5:99:64:85:49:5f:54:47:45:4b:34:81:4e:b7:88:47:9c: db:08:8c:8c:e5:99:61:a3:c1:92:a3:a3:ec:1a:40:a3:60:d5: 05:6c:58:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0RUQxMTAvBgNVBAUTKEQ5ODUyOTE0OENCQTVEREVEM0I3M0Q2MDUyRUUwNTE2 QzAyNEM0RjMwHhcNMjUwNTE1MDA1OTE5WhcNMjUwNTIyMDA1OTE5WjAYMRYwFAYD VQQDEw02ODI1M2M2Ny04YmY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2/t+c2zmSZ4yHozpEJkkRIMK08VZS8zSij57I3O5ftKeUTxi6j0hs8IXt9CJ FOlKZaIM1Tkm0UZQ8yuFWLU/84KyjhUSG56cn6lqk2IDyJX52fKU4ZoZ885GVsZV fPalg77gLZrxIMIm4ed5Vk7jnOjveNnHAsYT0OOCQk4gyrOmb19H2mmLnbFDxcKw zQoFMTr57mYhlJwuoh26x+wApVOkbyRijrpJIb5FH7i4zeaRLkB6yAqfkaCJY8Nr JcPY9FHH0NRSjnB7KV4xLLLC1N3PTeiy8JpqND4eEQQlN/wBuUF+uF3ySjHkVK2K sNSF96XTtHhnEuZJnWHxvz7fkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDxzi5Di fRbCl2kxjylH1+YA1SsjMB8GA1UdIwQYMBaAFNmFKRSMul3e07c9YFLuBRbAJMTz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzRFRC83NTk4NDQ0NDcy MEQxMUVEQjU0NUUwMzBDNEY5QUUwMi8yWVVwRkl5NlhkN1R0ejFnVXU0RkZzQWt4 UE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJZVXBGSXk2WGQ3VHR6MWdVdTRGRnNBa3hQTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzRFRC83NTk4NDQ0NDcyMEQxMUVEQjU0NUUwMzBDNEY5QUUwMi8yWVVwRkl5Nlhk N1R0ejFnVXU0RkZzQWt4UE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbUDHQu8IO6ZfjEmAjLEhIDIzuuNtxgkfdWixdGl5nfEJv2+XlSWY8 7xec3n26/CuYtTL6nbvmhajnOfP6hxXqqiDThngktTCrABXsXlR8vEHXv1UDBQoi 0U2phOtCWlCo1Eh+kuuhd9rfOWJT4tn7+pjilX1096fxat5MEMiVuMz+n2hCVdqe 0Gr9amNauUNGuPuJdVMXfI5Twoilb+lo+py1HYojXQYjW9IeLjAXkX3lec3EqbaL MZzQyxQWP9mKW9EHF4bQ6PL8LeBUtmoFMUSbFfwBQIkn9ZlkhUlfVEdFSzSBTreI R5zbCIyM5Zlho8GSo6PsGkCjYNUFbFgG -----END CERTIFICATE-----Generated at Thu May 15 18:18:21 2025 by rpki-client