$ rpki-client -vvf rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft File: 2iwTK47FBxr425BJG63bwPCntEU.mft (raw, json) Hash identifier: Bti/tR6NEYrkDDZsSgAHCe3OBaA4lHGS9+78LvqGAD4= Subject key identifier: D8:89:A8:83:49:D8:EC:9C:32:78:1A:8A:BC:FA:1E:75:C0:01:EA:09 Authority key identifier: DA:2C:13:2B:8E:C5:07:1A:F8:DB:90:49:1B:AD:DB:C0:F0:A7:B4:45 Certificate issuer: /CN=A91534B8/serialNumber=DA2C132B8EC5071AF8DB90491BADDBC0F0A7B445 Certificate serial: 0282 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/2iwTK47FBxr425BJG63bwPCntEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft Manifest number: 0282 Signing time: Thu 15 May 2025 01:40:18 +0000 Manifest this update: Thu 15 May 2025 01:40:18 +0000 Manifest next update: Thu 22 May 2025 01:40:18 +0000 Files and hashes: 1: 2iwTK47FBxr425BJG63bwPCntEU.crl (hash: Y23jeMNtWy4Frfk7TwmSZ/rCqybjoVtbqMQcGg/g8hU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.crl rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/2iwTK47FBxr425BJG63bwPCntEU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 01:40:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 642 (0x282) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91534B8, serialNumber=DA2C132B8EC5071AF8DB90491BADDBC0F0A7B445 Validity Not Before: May 15 01:40:18 2025 GMT Not After : May 22 01:40:18 2025 GMT Subject: CN=68254602-c0e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:ed:97:5f:08:61:b4:86:a6:97:2d:19:86:07: 28:c9:47:17:49:07:b4:9b:4c:a9:ba:97:1c:32:28: 8f:8b:88:81:d7:85:33:6f:84:69:f1:13:5b:df:cb: 73:27:af:22:ab:2f:95:95:8f:b7:9e:db:e6:ec:89: 49:8c:64:ce:19:c1:57:e5:5f:e8:6f:da:3a:66:73: 9d:07:bc:bc:84:1e:34:c2:eb:12:c7:0a:d4:06:4c: fe:2e:1e:5a:5a:9d:5a:d0:63:35:05:33:df:69:ea: 0e:40:53:4b:2f:3b:04:c6:28:62:9d:63:0f:27:81: 45:8a:b3:89:37:5a:b7:cf:34:e2:66:fb:d6:d9:3a: df:62:ca:b3:ae:60:62:63:32:07:2c:6a:c1:a4:9a: 90:f2:fd:26:17:a1:e1:b1:f3:19:c5:c6:f9:67:cd: 65:c6:5c:af:4d:1e:f5:07:bd:47:50:bf:86:95:dc: 4f:2c:40:e5:7b:e5:4a:96:d1:10:af:d5:bc:eb:cc: 5e:99:69:f1:9b:1c:54:2e:aa:d7:91:f2:08:2e:e8: 34:77:53:78:15:6b:c8:06:cc:8a:94:52:9a:ac:9a: 8d:63:26:10:6c:6e:a4:f6:44:a7:54:b6:06:9e:9f: 7e:83:c3:de:a6:a1:94:10:be:34:68:bf:17:69:f2: 6b:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:89:A8:83:49:D8:EC:9C:32:78:1A:8A:BC:FA:1E:75:C0:01:EA:09 X509v3 Authority Key Identifier: keyid:DA:2C:13:2B:8E:C5:07:1A:F8:DB:90:49:1B:AD:DB:C0:F0:A7:B4:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/2iwTK47FBxr425BJG63bwPCntEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:56:57:9b:b6:30:22:aa:c8:67:ea:66:7b:53:06:4d:76:34: 97:bd:8c:2d:f0:af:a4:cd:5f:46:7b:86:17:f0:ed:43:7f:fe: 12:fd:74:9c:1c:ad:18:f0:33:0d:0a:0a:a5:51:89:ba:c6:6d: c9:e3:14:a8:cc:dd:fd:dd:a3:5d:b6:e3:41:a6:ab:ca:50:f8: a5:74:8e:c4:21:ff:64:29:a0:1e:76:27:e7:cc:8d:56:be:6b: bc:c3:5f:13:a2:7e:27:30:f0:1e:f4:de:62:ff:91:ef:72:6e: 2a:23:ca:d2:8b:96:0d:c5:d1:e4:2a:78:de:9f:0d:b3:34:92: c0:c2:44:0b:98:89:b4:25:0d:0d:8f:20:ac:a8:dc:a2:2e:93: ec:b7:40:7f:37:32:0b:5e:70:56:46:36:58:3e:f6:e9:2d:d4: b7:91:8f:15:28:2f:e3:6f:f0:99:c4:5d:fe:c6:8c:05:08:40: 54:f8:02:53:fe:c2:fa:88:4e:e1:00:e3:9c:cb:32:bf:98:80: 17:78:bf:ae:0a:95:96:55:67:31:95:1f:3a:b2:31:ee:e8:45: d4:1b:eb:df:85:ba:51:f3:5c:3f:8b:ba:ff:d4:ce:37:e7:01: 96:f7:b5:a2:83:c4:5a:7a:40:3a:66:87:e2:15:30:e4:eb:2a: 9a:52:00:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAoIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM0QjgxMTAvBgNVBAUTKERBMkMxMzJCOEVDNTA3MUFGOERCOTA0OTFCQUREQkMw RjBBN0I0NDUwHhcNMjUwNTE1MDE0MDE4WhcNMjUwNTIyMDE0MDE4WjAYMRYwFAYD VQQDEw02ODI1NDYwMi1jMGUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAle2XXwhhtIamly0ZhgcoyUcXSQe0m0ypupccMiiPi4iB14Uzb4Rp8RNb38tz J68iqy+VlY+3ntvm7IlJjGTOGcFX5V/ob9o6ZnOdB7y8hB40wusSxwrUBkz+Lh5a Wp1a0GM1BTPfaeoOQFNLLzsExihinWMPJ4FFirOJN1q3zzTiZvvW2TrfYsqzrmBi YzIHLGrBpJqQ8v0mF6HhsfMZxcb5Z81lxlyvTR71B71HUL+GldxPLEDle+VKltEQ r9W868xemWnxmxxULqrXkfIILug0d1N4FWvIBsyKlFKarJqNYyYQbG6k9kSnVLYG np9+g8PepqGUEL40aL8XafJrGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNiJqINJ 2OycMngairz6HnXAAeoJMB8GA1UdIwQYMBaAFNosEyuOxQca+NuQSRut28Dwp7RF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzRCOC85NjY1OTk3RTA5 NDQxMUVEOEREMTA5NzFDNEY5QUUwMi8yaXdUSzQ3RkJ4cjQyNUJKRzYzYndQQ250 RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzJpd1RLNDdGQnhyNDI1QkpHNjNid1BDbnRFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzRCOC85NjY1OTk3RTA5NDQxMUVEOEREMTA5NzFDNEY5QUUwMi8yaXdUSzQ3RkJ4 cjQyNUJKRzYzYndQQ250RVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACVlebtjAiqshn6mZ7UwZNdjSXvYwt8K+kzV9Ge4YX8O1Df/4S/XSc HK0Y8DMNCgqlUYm6xm3J4xSozN393aNdtuNBpqvKUPildI7EIf9kKaAedifnzI1W vmu8w18Ton4nMPAe9N5i/5Hvcm4qI8rSi5YNxdHkKnjenw2zNJLAwkQLmIm0JQ0N jyCsqNyiLpPst0B/NzILXnBWRjZYPvbpLdS3kY8VKC/jb/CZxF3+xowFCEBU+AJT /sL6iE7hAOOcyzK/mIAXeL+uCpWWVWcxlR86sjHu6EXUG+vfhbpR81w/i7r/1M43 5wGW97Wig8RaekA6ZofiFTDk6yqaUgA+ -----END CERTIFICATE-----Generated at Thu May 15 11:43:50 2025 by rpki-client