$ rpki-client -vvf rpki.apnic.net/member_repository/A915BA28/A47D2028285511E9AD381151C4F9AE02/f2BFo3Z2W_gnkqpwW72JlRnLGcc.mft File: f2BFo3Z2W_gnkqpwW72JlRnLGcc.mft (raw, json) Hash identifier: L/vzaNKxnc9Dx2wKDCYz7EaJF8illJs9aET9+c2sG0I= Subject key identifier: 06:EC:F3:45:64:7E:C0:A5:7F:83:5D:36:38:3F:D9:86:9D:10:E9:82 Authority key identifier: 7F:60:45:A3:76:76:5B:F8:27:92:AA:70:5B:BD:89:95:19:CB:19:C7 Certificate issuer: /CN=A915BA28/serialNumber=7F6045A376765BF82792AA705BBD899519CB19C7 Certificate serial: 10B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f2BFo3Z2W_gnkqpwW72JlRnLGcc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915BA28/A47D2028285511E9AD381151C4F9AE02/f2BFo3Z2W_gnkqpwW72JlRnLGcc.mft Manifest number: 10A2 Signing time: Wed 14 May 2025 17:27:30 +0000 Manifest this update: Wed 14 May 2025 17:27:29 +0000 Manifest next update: Wed 21 May 2025 17:27:29 +0000 Files and hashes: 1: f2BFo3Z2W_gnkqpwW72JlRnLGcc.crl (hash: 3wc3lHrdbj5cfEHxZLKwnxoqxqfMlvsqkxUMys2EC/U=) 2: C90C4476FBA611E9BA00AB33C4F9AE02.roa (hash: ibzIHQiS71/cKL/AN17g76C8mULHtazMynL8XoJHu8M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915BA28/A47D2028285511E9AD381151C4F9AE02/f2BFo3Z2W_gnkqpwW72JlRnLGcc.crl rsync://rpki.apnic.net/member_repository/A915BA28/A47D2028285511E9AD381151C4F9AE02/f2BFo3Z2W_gnkqpwW72JlRnLGcc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f2BFo3Z2W_gnkqpwW72JlRnLGcc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 17:27:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4273 (0x10b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915BA28, serialNumber=7F6045A376765BF82792AA705BBD899519CB19C7 Validity Not Before: May 14 17:27:29 2025 GMT Not After : May 21 17:27:29 2025 GMT Subject: CN=6824d281-037f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:43:6b:65:7a:6c:b6:a3:b3:44:dc:30:1e:86: 05:22:19:29:0c:81:59:22:5c:d9:31:fd:70:c3:cb: 0d:ad:80:57:a5:0f:6e:ce:02:86:b5:9b:f2:05:cb: 95:f4:65:a1:51:9b:0a:da:e7:bc:57:e0:85:80:14: ac:38:40:ce:e5:c7:8a:07:93:94:f7:76:ed:2f:70: 4b:66:20:e8:87:1b:37:cb:55:66:3e:00:25:17:3f: 32:55:34:6d:60:11:62:f6:91:36:75:9a:2b:5c:7c: 3e:cc:17:fb:1d:eb:ed:8a:f8:37:0d:1b:9d:e9:97: 8f:f0:07:88:55:2d:55:d5:c3:87:88:01:51:d1:81: d0:ab:0b:fa:c7:d8:08:0b:31:57:30:04:ed:75:ec: b9:43:e9:26:79:7e:33:64:39:1c:94:a6:dd:c4:03: 4c:c2:de:9d:07:99:02:16:a4:6c:b6:02:c4:fd:0f: e0:4e:3f:77:3b:f6:af:e6:66:c6:96:f4:84:7d:6f: 72:f4:f7:92:15:13:06:bb:16:88:35:4a:3c:91:cc: 7c:a6:d1:b0:ca:88:5b:57:63:7a:9c:97:11:18:8b: 59:ff:48:ac:22:d7:47:53:6e:07:6c:1d:fa:8f:7a: 16:71:e6:67:80:cd:9a:da:67:da:a1:b0:31:e9:ed: 69:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:EC:F3:45:64:7E:C0:A5:7F:83:5D:36:38:3F:D9:86:9D:10:E9:82 X509v3 Authority Key Identifier: keyid:7F:60:45:A3:76:76:5B:F8:27:92:AA:70:5B:BD:89:95:19:CB:19:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915BA28/A47D2028285511E9AD381151C4F9AE02/f2BFo3Z2W_gnkqpwW72JlRnLGcc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f2BFo3Z2W_gnkqpwW72JlRnLGcc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915BA28/A47D2028285511E9AD381151C4F9AE02/f2BFo3Z2W_gnkqpwW72JlRnLGcc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:8f:b7:7d:f9:50:f6:c8:16:d4:41:09:56:bc:9e:9b:d5:fa: 70:24:29:c0:26:30:16:27:dd:31:53:5e:2a:ec:27:ab:98:12: e5:ee:c5:8a:6c:c4:36:b2:b5:1a:d8:cf:a5:cb:a0:49:16:21: 6e:de:9c:d1:99:c7:55:38:e1:e7:b4:cc:30:87:00:2c:4d:0e: 44:77:4a:bf:65:24:72:60:a2:d8:24:96:d2:5a:8c:0a:86:6c: d0:a7:d7:88:20:9b:3d:bf:c5:a1:86:63:c3:a9:29:be:5b:fe: 80:cd:30:1d:2b:ff:66:fd:cc:46:4d:b9:ed:c2:40:dc:99:ef: 6c:b8:e9:86:e0:69:47:0a:94:a2:8e:a6:70:a9:2a:e8:db:d6: f6:00:bb:34:0e:78:32:ab:f8:59:06:0b:b3:33:89:b5:31:d6: fd:2b:3f:2b:e6:70:87:cf:27:c6:1c:96:a1:71:7f:86:38:07: ce:76:51:25:5b:a6:93:24:dc:df:b7:ad:aa:92:9e:66:02:d7: b7:5f:f0:45:6b:b7:27:45:bc:73:59:fa:40:44:7e:91:b7:72: 20:94:e9:4b:0f:62:ec:c2:d6:a9:8f:10:b2:ea:72:6c:85:a7: a8:e6:40:94:47:39:40:85:c1:93:3c:43:6a:50:84:45:07:1f: 26:5c:78:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICELEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUJBMjgxMTAvBgNVBAUTKDdGNjA0NUEzNzY3NjVCRjgyNzkyQUE3MDVCQkQ4OTk1 MTlDQjE5QzcwHhcNMjUwNTE0MTcyNzI5WhcNMjUwNTIxMTcyNzI5WjAYMRYwFAYD VQQDEw02ODI0ZDI4MS0wMzdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyUNrZXpstqOzRNwwHoYFIhkpDIFZIlzZMf1ww8sNrYBXpQ9uzgKGtZvyBcuV 9GWhUZsK2ue8V+CFgBSsOEDO5ceKB5OU93btL3BLZiDohxs3y1VmPgAlFz8yVTRt YBFi9pE2dZorXHw+zBf7Hevtivg3DRud6ZeP8AeIVS1V1cOHiAFR0YHQqwv6x9gI CzFXMATtdey5Q+kmeX4zZDkclKbdxANMwt6dB5kCFqRstgLE/Q/gTj93O/av5mbG lvSEfW9y9PeSFRMGuxaINUo8kcx8ptGwyohbV2N6nJcRGItZ/0isItdHU24HbB36 j3oWceZngM2a2mfaobAx6e1plQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAbs80Vk fsClf4NdNjg/2YadEOmCMB8GA1UdIwQYMBaAFH9gRaN2dlv4J5KqcFu9iZUZyxnH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QkEyOC9BNDdEMjAyODI4 NTUxMUU5QUQzODExNTFDNEY5QUUwMi9mMkJGbzNaMldfZ25rcXB3VzcySmxSbkxH Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2YyQkZvM1oyV19nbmtxcHdXNzJKbFJuTEdjYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QkEyOC9BNDdEMjAyODI4NTUxMUU5QUQzODExNTFDNEY5QUUwMi9mMkJGbzNaMldf Z25rcXB3VzcySmxSbkxHY2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrj7d9+VD2yBbUQQlWvJ6b1fpwJCnAJjAWJ90xU14q7CermBLl7sWK bMQ2srUa2M+ly6BJFiFu3pzRmcdVOOHntMwwhwAsTQ5Ed0q/ZSRyYKLYJJbSWowK hmzQp9eIIJs9v8WhhmPDqSm+W/6AzTAdK/9m/cxGTbntwkDcme9suOmG4GlHCpSi jqZwqSro29b2ALs0Dngyq/hZBguzM4m1Mdb9Kz8r5nCHzyfGHJahcX+GOAfOdlEl W6aTJNzft62qkp5mAte3X/BFa7cnRbxzWfpARH6Rt3IglOlLD2LswtapjxCy6nJs haeo5kCURzlAhcGTPENqUIRFBx8mXHgv -----END CERTIFICATE-----Generated at Fri May 16 09:26:48 2025 by rpki-client