$ rpki-client -vvf rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft File: 2HXmPHNQjdifas3MBgFEoIwIZtw.mft (raw, json) Hash identifier: R9X9G0OAw0qE5OtomyPoHRzQLk46F4J9SmJgPiPndbY= Subject key identifier: BA:BC:90:7C:4C:4E:97:38:6B:EC:E2:C3:B7:61:C0:8A:0F:A4:02:5D Authority key identifier: D8:75:E6:3C:73:50:8D:D8:9F:6A:CD:CC:06:01:44:A0:8C:08:66:DC Certificate issuer: /CN=A914E950/serialNumber=D875E63C73508DD89F6ACDCC060144A08C0866DC Certificate serial: 03B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft Manifest number: 03B4 Signing time: Tue 13 May 2025 00:29:00 +0000 Manifest this update: Tue 13 May 2025 00:29:00 +0000 Manifest next update: Tue 20 May 2025 00:29:00 +0000 Files and hashes: 1: 2HXmPHNQjdifas3MBgFEoIwIZtw.crl (hash: hOR1E6a7SKQIH6+Gw47sf5A8Y0BZ+E9xAtmFmLAi9jc=) 2: 6199B5668DE011ECB9F9C06EC4F9AE02.roa (hash: 2v76irvv8YBootZ9ixmNS7BdVolsdY5VCXkGVLqaKlA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.crl rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 00:28:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 952 (0x3b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E950, serialNumber=D875E63C73508DD89F6ACDCC060144A08C0866DC Validity Not Before: May 13 00:29:00 2025 GMT Not After : May 20 00:29:00 2025 GMT Subject: CN=6822924c-d9f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b4:69:d5:3e:7f:80:e5:d7:15:e7:5e:f4:6f: 02:8c:ea:6e:55:9a:1f:c2:ee:19:bd:1a:20:88:83: 95:b4:5f:f8:33:41:b1:74:96:dc:26:0f:17:33:cc: 42:ed:56:6c:c2:09:52:b2:64:bd:05:b6:9c:73:85: 88:26:fd:8f:70:81:b5:e2:b8:29:d1:af:af:f6:79: 19:cf:c8:5f:91:24:3c:bd:28:9b:71:35:59:98:44: 9c:79:04:ac:f8:b7:24:cf:6e:29:fe:e3:c2:d0:8a: 4d:32:f9:4e:2c:b4:f1:0a:6e:17:87:72:24:2b:8b: 3a:f1:9a:46:30:08:a9:a4:0a:4b:71:d6:b6:62:46: 02:e9:a6:cd:5d:80:d9:1c:fd:6c:b1:33:1c:77:48: a1:93:e2:8d:83:89:47:c7:60:83:33:aa:51:07:74: 4e:5e:c3:f7:82:e9:81:81:c1:d5:33:a7:33:f1:24: 60:2c:cf:bd:12:6e:d3:ce:b0:2e:62:11:05:df:8e: fd:31:db:fe:4e:eb:7d:31:1b:e0:ad:75:1e:2d:a4: ac:df:c5:66:b9:a2:90:91:1a:2b:e6:62:20:38:f8: d0:4d:f5:76:f0:97:c4:ae:1e:66:0d:a4:26:b2:fe: 74:c2:8a:55:c1:2d:c7:a3:42:36:19:d0:a3:c1:47: 85:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:BC:90:7C:4C:4E:97:38:6B:EC:E2:C3:B7:61:C0:8A:0F:A4:02:5D X509v3 Authority Key Identifier: keyid:D8:75:E6:3C:73:50:8D:D8:9F:6A:CD:CC:06:01:44:A0:8C:08:66:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:ae:4f:5a:77:b7:c2:d7:22:bd:79:7e:f3:87:57:e9:71:0c: 52:1d:fc:d9:bc:11:d8:6e:cc:f1:b0:5f:d7:19:c0:2a:e0:34: 32:b1:db:8f:f3:c7:cb:d0:5a:27:18:9a:1d:ca:5d:d5:e0:04: 4e:8c:c5:93:19:8b:4f:3e:36:ec:23:8c:96:30:a4:7b:83:4b: b1:d9:9a:08:fe:0c:50:83:8e:76:eb:55:d7:10:f4:7d:3e:41: 14:fb:93:74:9e:48:37:94:50:ef:c6:03:61:17:89:98:98:56: db:95:2e:8f:2c:f9:fa:46:ac:03:79:a0:e9:7b:8f:07:ff:fa: 64:52:b8:a7:00:fc:e3:db:02:13:c3:28:36:29:71:38:f1:8c: b8:90:59:d7:c4:04:43:e1:c3:e9:79:a6:20:61:1e:60:3d:84: 3c:5b:0e:a2:1f:3c:da:ad:b3:9c:3c:9b:cd:5e:af:66:59:ec: 20:e5:c8:c6:74:15:a4:99:c1:6c:e3:14:5b:13:2c:42:f4:d8: 7d:b5:13:48:cf:db:0e:db:cf:fd:f2:5a:84:83:cd:11:a7:da: 60:88:40:81:6e:89:c4:dc:86:c7:bd:69:ab:e3:89:8f:b4:27: ea:16:de:57:4b:ca:d7:4b:11:0a:9c:a7:15:ee:e3:c1:59:73: df:9b:8e:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA7gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU5NTAxMTAvBgNVBAUTKEQ4NzVFNjNDNzM1MDhERDg5RjZBQ0RDQzA2MDE0NEEw OEMwODY2REMwHhcNMjUwNTEzMDAyOTAwWhcNMjUwNTIwMDAyOTAwWjAYMRYwFAYD VQQDEw02ODIyOTI0Yy1kOWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwbRp1T5/gOXXFede9G8CjOpuVZofwu4ZvRogiIOVtF/4M0GxdJbcJg8XM8xC 7VZswglSsmS9Bbacc4WIJv2PcIG14rgp0a+v9nkZz8hfkSQ8vSibcTVZmESceQSs +Lckz24p/uPC0IpNMvlOLLTxCm4Xh3IkK4s68ZpGMAippApLcda2YkYC6abNXYDZ HP1ssTMcd0ihk+KNg4lHx2CDM6pRB3ROXsP3gumBgcHVM6cz8SRgLM+9Em7TzrAu YhEF3479Mdv+Tut9MRvgrXUeLaSs38VmuaKQkRor5mIgOPjQTfV28JfErh5mDaQm sv50wopVwS3Ho0I2GdCjwUeFXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLq8kHxM Tpc4a+ziw7dhwIoPpAJdMB8GA1UdIwQYMBaAFNh15jxzUI3Yn2rNzAYBRKCMCGbc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTk1MC9DQkYwNkYzMDhE REMxMUVDQTE0MDBDNjlDNEY5QUUwMi8ySFhtUEhOUWpkaWZhczNNQmdGRW9Jd0la dHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJIWG1QSE5RamRpZmFzM01CZ0ZFb0l3SVp0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTk1MC9DQkYwNkYzMDhEREMxMUVDQTE0MDBDNjlDNEY5QUUwMi8ySFhtUEhOUWpk aWZhczNNQmdGRW9Jd0ladHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6rk9ad7fC1yK9eX7zh1fpcQxSHfzZvBHYbszxsF/XGcAq4DQysduP 88fL0FonGJodyl3V4AROjMWTGYtPPjbsI4yWMKR7g0ux2ZoI/gxQg45261XXEPR9 PkEU+5N0nkg3lFDvxgNhF4mYmFbblS6PLPn6RqwDeaDpe48H//pkUrinAPzj2wIT wyg2KXE48Yy4kFnXxARD4cPpeaYgYR5gPYQ8Ww6iHzzarbOcPJvNXq9mWewg5cjG dBWkmcFs4xRbEyxC9Nh9tRNIz9sO28/98lqEg80Rp9pgiECBbonE3IbHvWmr44mP tCfqFt5XS8rXSxEKnKcV7uPBWXPfm45W -----END CERTIFICATE-----Generated at Tue May 13 22:01:32 2025 by rpki-client