$ rpki-client -vvf rpki.apnic.net/member_repository/A9164F6C/B88237280C0911EF9BD9132CC4F9AE02/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.mft File: 2c3AiUgqZ0m1IAUcDzhfYt6MtJM.mft (raw, json) Hash identifier: HJssfhcVVdCnfaCkNwKTJRMA+0WzklR8NTOugxeM62A= Subject key identifier: 3D:70:E7:F1:53:57:C4:6E:EE:60:04:F2:4D:A6:DE:91:8A:0D:7D:61 Authority key identifier: D9:CD:C0:89:48:2A:67:49:B5:20:05:1C:0F:38:5F:62:DE:8C:B4:93 Certificate issuer: /CN=A9164F6C/serialNumber=D9CDC089482A6749B520051C0F385F62DE8CB493 Certificate serial: C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164F6C/B88237280C0911EF9BD9132CC4F9AE02/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.mft Manifest number: C1 Signing time: Tue 13 May 2025 05:02:27 +0000 Manifest this update: Tue 13 May 2025 05:02:27 +0000 Manifest next update: Tue 20 May 2025 05:02:27 +0000 Files and hashes: 1: 2c3AiUgqZ0m1IAUcDzhfYt6MtJM.crl (hash: FtZf9QMf0Edm8bCKwHRpCdZ1NVNuH41IwvfCi2FCoQQ=) 2: EC1244C40C0A11EF86081F2FC4F9AE02.roa (hash: XJ6Cl0k/r34t0UIzqumXdg3IJ/QU+9th/mHz4X1ySQs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164F6C/B88237280C0911EF9BD9132CC4F9AE02/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.crl rsync://rpki.apnic.net/member_repository/A9164F6C/B88237280C0911EF9BD9132CC4F9AE02/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 05:02:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 197 (0xc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164F6C, serialNumber=D9CDC089482A6749B520051C0F385F62DE8CB493 Validity Not Before: May 13 05:02:27 2025 GMT Not After : May 20 05:02:27 2025 GMT Subject: CN=6822d263-069f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:5a:ae:1c:57:6d:c8:ba:2d:08:7f:9d:0e:ab: bb:4b:97:f8:0d:e3:ba:c2:c9:b9:ee:d4:45:b0:60: da:59:59:b2:a5:ce:83:7b:8e:ce:ac:27:f6:7f:a2: ad:95:61:27:87:55:44:5b:e7:e4:56:50:30:a5:b1: 70:42:b6:9c:37:9a:fc:56:e5:ec:ce:da:be:7e:3a: fd:b3:77:3e:37:f2:46:07:68:3a:54:c0:f9:23:ba: 20:80:60:92:69:62:c0:d3:19:71:93:82:e5:52:2f: bc:37:03:72:c0:b7:29:14:b5:6d:77:14:03:df:60: af:72:98:71:12:10:02:d6:91:30:8b:59:2e:95:75: 00:bb:2e:ca:5f:45:54:24:c1:6e:b6:1f:1d:fb:b2: 9d:08:d5:0b:2e:ce:d6:36:2e:7d:9b:9a:5f:71:24: 10:f9:72:56:2d:78:82:b8:ed:50:07:0b:c0:74:60: 2f:6c:b8:d4:2d:d3:c6:77:71:36:ed:aa:d1:3a:6d: af:5e:07:d8:e3:56:c6:1d:f3:c2:55:74:d2:ab:6d: 6c:85:ea:8e:79:9b:43:2e:9f:5c:29:0c:2b:c1:ef: 9b:a7:3d:b5:c0:93:24:88:49:58:1f:b3:c9:db:15: 07:02:f4:ec:91:b7:72:26:46:f8:4b:f3:c8:bf:1d: 64:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:70:E7:F1:53:57:C4:6E:EE:60:04:F2:4D:A6:DE:91:8A:0D:7D:61 X509v3 Authority Key Identifier: keyid:D9:CD:C0:89:48:2A:67:49:B5:20:05:1C:0F:38:5F:62:DE:8C:B4:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164F6C/B88237280C0911EF9BD9132CC4F9AE02/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164F6C/B88237280C0911EF9BD9132CC4F9AE02/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:4c:63:71:85:24:3b:ce:94:18:3d:29:98:02:32:f0:b6:c5: 79:17:f5:e0:14:25:a6:fa:56:b8:e5:1e:fa:d0:f5:09:eb:a2: a6:03:cd:50:fd:1c:c3:d1:56:00:27:a3:66:df:9f:6f:86:8c: f3:d6:36:38:3e:e5:1b:51:62:ba:c4:d2:05:1d:bd:9d:b8:36: cf:fa:bb:e2:a7:d4:09:50:fe:71:63:e0:20:6f:4f:87:6e:1f: d5:b5:22:ba:3d:0b:02:46:ee:9d:a5:40:69:41:c9:d1:16:b5: f1:aa:f1:4a:45:61:2b:d3:9b:b2:56:8d:46:79:e8:2b:52:98: 7a:8a:47:6b:d9:24:c1:e7:14:93:52:9e:aa:38:96:83:ff:b0: fa:c4:c6:70:ec:f6:6b:62:60:65:1e:c0:22:a4:cd:99:0b:1a: 74:f7:fa:99:4c:ec:4c:42:b7:e1:bb:ac:58:8a:98:cb:15:17: fc:15:47:a4:2b:c9:7b:7a:c4:43:6d:2b:72:e9:c6:67:86:7b: 76:2f:61:b4:e6:f1:3c:44:1c:05:4f:76:fd:af:a8:38:6f:27: 51:85:c4:07:c0:f9:0e:f8:80:3c:1a:0d:5e:30:26:78:3a:49: 67:c6:22:95:1c:d9:1c:95:b6:3c:3f:11:b9:42:2f:df:1e:dc: d4:87:f7:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjRGNkMxMTAvBgNVBAUTKEQ5Q0RDMDg5NDgyQTY3NDlCNTIwMDUxQzBGMzg1RjYy REU4Q0I0OTMwHhcNMjUwNTEzMDUwMjI3WhcNMjUwNTIwMDUwMjI3WjAYMRYwFAYD VQQDEw02ODIyZDI2My0wNjlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuVquHFdtyLotCH+dDqu7S5f4DeO6wsm57tRFsGDaWVmypc6De47OrCf2f6Kt lWEnh1VEW+fkVlAwpbFwQracN5r8VuXsztq+fjr9s3c+N/JGB2g6VMD5I7oggGCS aWLA0xlxk4LlUi+8NwNywLcpFLVtdxQD32CvcphxEhAC1pEwi1kulXUAuy7KX0VU JMFuth8d+7KdCNULLs7WNi59m5pfcSQQ+XJWLXiCuO1QBwvAdGAvbLjULdPGd3E2 7arROm2vXgfY41bGHfPCVXTSq21sheqOeZtDLp9cKQwrwe+bpz21wJMkiElYH7PJ 2xUHAvTskbdyJkb4S/PIvx1kwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD1w5/FT V8Ru7mAE8k2m3pGKDX1hMB8GA1UdIwQYMBaAFNnNwIlIKmdJtSAFHA84X2LejLST MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NEY2Qy9CODgyMzcyODBD MDkxMUVGOUJEOTEzMkNDNEY5QUUwMi8yYzNBaVVncVowbTFJQVVjRHpoZll0Nk10 Sk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJjM0FpVWdxWjBtMUlBVWNEemhmWXQ2TXRKTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NEY2Qy9CODgyMzcyODBDMDkxMUVGOUJEOTEzMkNDNEY5QUUwMi8yYzNBaVVncVow bTFJQVVjRHpoZll0Nk10Sk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmTGNxhSQ7zpQYPSmYAjLwtsV5F/XgFCWm+la45R760PUJ66KmA81Q /RzD0VYAJ6Nm359vhozz1jY4PuUbUWK6xNIFHb2duDbP+rvip9QJUP5xY+Agb0+H bh/VtSK6PQsCRu6dpUBpQcnRFrXxqvFKRWEr05uyVo1GeegrUph6ikdr2STB5xST Up6qOJaD/7D6xMZw7PZrYmBlHsAipM2ZCxp09/qZTOxMQrfhu6xYipjLFRf8FUek K8l7esRDbSty6cZnhnt2L2G05vE8RBwFT3b9r6g4bydRhcQHwPkO+IA8Gg1eMCZ4 OklnxiKVHNkclbY8PxG5Qi/fHtzUh/d7 -----END CERTIFICATE-----Generated at Wed May 14 07:21:27 2025 by rpki-client