$ rpki-client -vvf rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft File: 2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft (raw, json) Hash identifier: lpQAez/4+daherLXL/qHlLnQ1IgBDv8gKaZCOGtGAb4= Subject key identifier: F3:C2:CC:98:58:B6:9A:9D:6B:7E:98:FB:6E:36:43:12:51:5B:57:FC Authority key identifier: D9:5D:A1:17:14:12:30:0A:B5:3B:3E:48:70:F2:F4:41:F0:6C:81:24 Certificate issuer: /CN=A9159ECD/serialNumber=D95DA1171412300AB53B3E4870F2F441F06C8124 Certificate serial: A6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft Manifest number: A4 Signing time: Wed 14 May 2025 23:38:49 +0000 Manifest this update: Wed 14 May 2025 23:38:48 +0000 Manifest next update: Wed 21 May 2025 23:38:48 +0000 Files and hashes: 1: 2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl (hash: 4sV2Qrgg4Wq0bSJr0eOePBB9YZd3XznGiASeU0N6nBs=) 2: 5A4723DA6F3C11EF8FD45F13C4F9AE02.roa (hash: kyChUBrK7l3YN4vwLMgx+ZZf43nxmdSV9d2PzrRyBN4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 23:38:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 166 (0xa6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159ECD, serialNumber=D95DA1171412300AB53B3E4870F2F441F06C8124 Validity Not Before: May 14 23:38:48 2025 GMT Not After : May 21 23:38:48 2025 GMT Subject: CN=68252988-5418 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:e4:08:ee:ee:04:26:3a:e6:54:fd:2b:88:01: 64:72:90:49:e3:40:2c:75:a8:57:2e:30:06:8d:de: 63:b2:90:96:89:e1:8d:45:49:84:39:fa:d8:c0:de: b7:4f:7f:52:3c:4e:63:31:06:11:bc:b2:ee:a9:df: 58:4f:ef:f4:3d:96:f4:27:2e:84:43:52:57:94:8c: f9:a2:29:26:d3:fd:8a:c5:49:84:69:d9:37:e1:32: 2a:e1:41:77:2f:21:86:24:81:cf:a8:19:1d:6c:30: 1d:fb:60:fe:90:10:38:a5:d4:46:6c:58:f9:63:cc: 91:a8:e7:95:c3:dd:75:8b:0e:8a:c3:1f:ab:82:e1: 5c:ac:ba:fd:9d:6c:33:6b:42:7f:a7:a6:2a:e5:fc: 05:63:b2:57:c4:9e:88:b4:fe:b9:56:de:48:e5:3d: 5c:3a:1f:7e:bd:f9:93:86:6e:6f:77:38:a7:27:04: 7a:e5:26:e1:74:c7:c0:5e:8a:47:f5:10:01:3a:e8: 3b:66:6d:8c:55:c8:21:f7:c4:61:f4:cf:14:ff:a6: 64:1c:65:31:87:60:aa:4c:69:81:b6:a0:72:8d:30: 46:f5:ad:65:a0:51:dc:13:9c:ea:57:d5:55:4c:72: 7f:ac:e1:a2:f3:9e:62:ca:74:f6:b7:e4:1e:30:b4: 72:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:C2:CC:98:58:B6:9A:9D:6B:7E:98:FB:6E:36:43:12:51:5B:57:FC X509v3 Authority Key Identifier: keyid:D9:5D:A1:17:14:12:30:0A:B5:3B:3E:48:70:F2:F4:41:F0:6C:81:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:33:24:7f:90:08:37:2d:d9:5f:97:a7:74:f0:b5:4b:84:10: c6:b8:a5:75:0f:61:17:6a:98:1d:01:46:71:50:10:ae:9a:96: 81:01:14:66:c5:d5:64:63:56:1a:89:b3:27:fa:25:59:17:9d: 76:17:d8:b7:06:24:10:37:93:89:47:44:76:36:c8:94:b0:bf: f2:fc:28:a8:ad:76:d9:57:b0:73:bc:01:41:1d:6f:48:80:80: f3:10:1d:34:c7:de:ad:5a:6e:59:80:6d:99:a5:59:48:7b:69: ee:53:79:bd:b6:b1:2f:f1:bb:06:df:0c:dc:dd:1c:21:99:fb: 9d:fa:f3:d0:94:d6:f7:da:e5:4b:61:2a:a0:e0:e1:3a:d0:88: 34:6a:0a:22:4b:19:86:e9:25:85:b2:38:40:c9:7e:64:43:f7: be:f1:d3:4a:81:f7:09:7a:2e:ab:f3:cf:6c:dc:31:a9:78:d2: 99:3e:2e:be:64:c4:76:3f:1a:23:68:95:2c:05:0f:ef:b4:6b: 93:65:64:5b:f5:98:07:5a:3b:19:36:f9:79:b1:8d:93:0a:b2: f3:24:18:69:d2:95:9b:28:6a:bc:b5:6a:a6:8f:5d:55:d1:ac: a4:3a:79:ae:b0:d0:ad:1d:16:ec:22:e8:7f:cc:62:79:58:b5: 2c:35:dd:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTlFQ0QxMTAvBgNVBAUTKEQ5NURBMTE3MTQxMjMwMEFCNTNCM0U0ODcwRjJGNDQx RjA2QzgxMjQwHhcNMjUwNTE0MjMzODQ4WhcNMjUwNTIxMjMzODQ4WjAYMRYwFAYD VQQDEw02ODI1Mjk4OC01NDE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy+QI7u4EJjrmVP0riAFkcpBJ40AsdahXLjAGjd5jspCWieGNRUmEOfrYwN63 T39SPE5jMQYRvLLuqd9YT+/0PZb0Jy6EQ1JXlIz5oikm0/2KxUmEadk34TIq4UF3 LyGGJIHPqBkdbDAd+2D+kBA4pdRGbFj5Y8yRqOeVw911iw6Kwx+rguFcrLr9nWwz a0J/p6Yq5fwFY7JXxJ6ItP65Vt5I5T1cOh9+vfmThm5vdzinJwR65SbhdMfAXopH 9RABOug7Zm2MVcgh98Rh9M8U/6ZkHGUxh2CqTGmBtqByjTBG9a1loFHcE5zqV9VV THJ/rOGi855iynT2t+QeMLRy5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPPCzJhY tpqda36Y+242QxJRW1f8MB8GA1UdIwQYMBaAFNldoRcUEjAKtTs+SHDy9EHwbIEk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OUVDRC9FRjYzODNFMjNE OUYxMUVGOTkwMzM3NjhDNEY5QUUwMi8yVjJoRnhRU01BcTFPejVJY1BMMFFmQnNn U1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJWMmhGeFFTTUFxMU96NUljUEwwUWZCc2dTUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OUVDRC9FRjYzODNFMjNEOUYxMUVGOTkwMzM3NjhDNEY5QUUwMi8yVjJoRnhRU01B cTFPejVJY1BMMFFmQnNnU1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1MyR/kAg3Ldlfl6d08LVLhBDGuKV1D2EXapgdAUZxUBCumpaBARRm xdVkY1YaibMn+iVZF512F9i3BiQQN5OJR0R2NsiUsL/y/CiorXbZV7BzvAFBHW9I gIDzEB00x96tWm5ZgG2ZpVlIe2nuU3m9trEv8bsG3wzc3Rwhmfud+vPQlNb32uVL YSqg4OE60Ig0agoiSxmG6SWFsjhAyX5kQ/e+8dNKgfcJei6r889s3DGpeNKZPi6+ ZMR2PxojaJUsBQ/vtGuTZWRb9ZgHWjsZNvl5sY2TCrLzJBhp0pWbKGq8tWqmj11V 0aykOnmusNCtHRbsIuh/zGJ5WLUsNd0p -----END CERTIFICATE-----Generated at Fri May 16 14:54:02 2025 by rpki-client