$ rpki-client -vvf rpki.apnic.net/member_repository/A916A39E/D64481F8EE4111EDB9545A16C4F9AE02/ck2EEAslmZMZA4aasFIgd2yLrEI.mft File: ck2EEAslmZMZA4aasFIgd2yLrEI.mft (raw, json) Hash identifier: +kuk2UAI3NLMorgKf/olAVeb7maLAGRHZp4+Lkbv+xc= Subject key identifier: 25:66:72:4B:F9:1A:B1:54:97:E9:47:A7:0D:FC:7B:77:C4:4E:87:F3 Authority key identifier: 72:4D:84:10:0B:25:99:93:19:03:86:9A:B0:52:20:77:6C:8B:AC:42 Certificate issuer: /CN=A916A39E/serialNumber=724D84100B2599931903869AB05220776C8BAC42 Certificate serial: 0180 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck2EEAslmZMZA4aasFIgd2yLrEI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A39E/D64481F8EE4111EDB9545A16C4F9AE02/ck2EEAslmZMZA4aasFIgd2yLrEI.mft Manifest number: 017C Signing time: Tue 13 May 2025 02:56:29 +0000 Manifest this update: Tue 13 May 2025 02:56:29 +0000 Manifest next update: Tue 20 May 2025 02:56:29 +0000 Files and hashes: 1: ck2EEAslmZMZA4aasFIgd2yLrEI.crl (hash: 1JlKE1rQu6+I2K84vPSg4Qf0XWwCUUGr/j2tvLslmPA=) 2: AF01BB42EE4B11EDA0FDF350C4F9AE02.roa (hash: XG0ognbrHuDFVvw75BGHMdtpiHu/beUvd7TsChbHkCg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A39E/D64481F8EE4111EDB9545A16C4F9AE02/ck2EEAslmZMZA4aasFIgd2yLrEI.crl rsync://rpki.apnic.net/member_repository/A916A39E/D64481F8EE4111EDB9545A16C4F9AE02/ck2EEAslmZMZA4aasFIgd2yLrEI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck2EEAslmZMZA4aasFIgd2yLrEI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 02:56:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 384 (0x180) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A39E, serialNumber=724D84100B2599931903869AB05220776C8BAC42 Validity Not Before: May 13 02:56:29 2025 GMT Not After : May 20 02:56:29 2025 GMT Subject: CN=6822b4dd-d958 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:e1:99:a4:b2:f1:21:15:80:62:a6:7a:31:7d: d6:57:01:85:11:1b:82:6b:2d:7d:d8:6d:e2:b3:b3: e2:a4:78:16:16:5a:e6:fe:19:02:1c:72:57:4b:a0: e2:2d:3b:a9:9a:f1:c8:96:d8:ae:68:47:86:f9:86: 76:4b:b8:93:fd:09:f2:63:21:43:80:a7:cc:6c:9d: 02:0c:fe:2f:70:fc:4a:b8:39:c2:5f:76:41:47:05: 36:92:72:4a:b7:63:b9:90:b7:a3:d0:16:1c:df:0c: 95:6c:49:1d:bd:b8:12:01:33:91:5d:22:0d:4c:a1: b5:27:83:6e:9a:4f:d3:36:d2:93:ef:b4:42:60:16: f7:c0:40:9b:c4:40:24:ad:22:56:86:f2:9b:38:0f: 6b:36:ec:a1:34:07:3f:20:29:0e:0f:77:d5:a2:40: ad:09:fb:72:fb:47:f6:f5:5e:47:33:e7:d1:ed:21: c6:00:68:5d:b7:da:98:4c:cd:d7:df:54:13:ff:5a: a7:62:63:3f:81:da:ad:40:36:92:72:0c:77:ca:6c: 13:4b:8d:7b:43:af:b3:03:32:4a:55:9c:31:ac:aa: 30:1f:19:40:34:a2:62:f3:76:24:2b:bd:8c:b4:6a: 8e:c3:46:bc:b8:81:c0:e2:d3:39:3f:a9:d1:36:ef: e1:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:66:72:4B:F9:1A:B1:54:97:E9:47:A7:0D:FC:7B:77:C4:4E:87:F3 X509v3 Authority Key Identifier: keyid:72:4D:84:10:0B:25:99:93:19:03:86:9A:B0:52:20:77:6C:8B:AC:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A39E/D64481F8EE4111EDB9545A16C4F9AE02/ck2EEAslmZMZA4aasFIgd2yLrEI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck2EEAslmZMZA4aasFIgd2yLrEI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A39E/D64481F8EE4111EDB9545A16C4F9AE02/ck2EEAslmZMZA4aasFIgd2yLrEI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:e7:03:07:79:f0:7a:c8:2f:f0:72:9d:85:4a:a6:72:68:7a: cb:bc:f1:d0:69:56:5b:32:2e:22:60:8c:c9:c1:eb:02:d8:7f: 74:3b:93:89:32:3e:46:a9:d6:76:d8:f9:07:2f:8b:be:11:5e: e8:4b:96:49:dc:b5:a0:e0:f1:2e:50:7f:e2:22:ba:b4:5f:3e: 61:1c:2f:6f:9a:f8:f3:c5:49:7f:a0:83:20:2a:b2:ea:e8:34: 0a:6f:e3:6c:fa:db:3f:2d:ac:08:ab:cd:71:c7:34:49:8e:b2: dd:d0:b9:90:18:fe:77:0d:0d:0a:ec:3e:dd:eb:4a:35:66:1a: e8:cf:65:a7:91:da:62:e7:a9:14:0a:ff:9a:41:a2:fc:21:be: 87:36:81:be:f8:79:33:65:90:a8:41:cc:c9:7d:11:5d:d2:63: 67:6d:cf:ab:e5:9a:8c:fa:da:7c:43:45:4d:ab:71:20:56:70: 4e:0f:65:ae:2c:25:d9:19:8b:ac:b5:7e:bf:2a:3d:22:97:66: a1:29:2c:66:fa:74:79:65:63:f0:fb:7c:f7:eb:10:44:51:a8: ea:2e:a6:3a:5b:62:a4:50:2b:6f:f0:c4:a0:b1:9e:0b:30:7e: fc:24:5d:ba:c3:ee:0e:91:da:b8:4b:b6:69:00:f7:4b:45:e3: 6f:c4:5e:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEzOUUxMTAvBgNVBAUTKDcyNEQ4NDEwMEIyNTk5OTMxOTAzODY5QUIwNTIyMDc3 NkM4QkFDNDIwHhcNMjUwNTEzMDI1NjI5WhcNMjUwNTIwMDI1NjI5WjAYMRYwFAYD VQQDEw02ODIyYjRkZC1kOTU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvOGZpLLxIRWAYqZ6MX3WVwGFERuCay192G3is7PipHgWFlrm/hkCHHJXS6Di LTupmvHIltiuaEeG+YZ2S7iT/QnyYyFDgKfMbJ0CDP4vcPxKuDnCX3ZBRwU2knJK t2O5kLej0BYc3wyVbEkdvbgSATORXSINTKG1J4Numk/TNtKT77RCYBb3wECbxEAk rSJWhvKbOA9rNuyhNAc/ICkOD3fVokCtCfty+0f29V5HM+fR7SHGAGhdt9qYTM3X 31QT/1qnYmM/gdqtQDaScgx3ymwTS417Q6+zAzJKVZwxrKowHxlANKJi83YkK72M tGqOw0a8uIHA4tM5P6nRNu/h6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCVmckv5 GrFUl+lHpw38e3fETofzMB8GA1UdIwQYMBaAFHJNhBALJZmTGQOGmrBSIHdsi6xC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTM5RS9ENjQ0ODFGOEVF NDExMUVEQjk1NDVBMTZDNEY5QUUwMi9jazJFRUFzbG1aTVpBNGFhc0ZJZ2QyeUxy RUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NrMkVFQXNsbVpNWkE0YWFzRklnZDJ5THJFSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTM5RS9ENjQ0ODFGOEVFNDExMUVEQjk1NDVBMTZDNEY5QUUwMi9jazJFRUFzbG1a TVpBNGFhc0ZJZ2QyeUxyRUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAM5wMHefB6yC/wcp2FSqZyaHrLvPHQaVZbMi4iYIzJwesC2H90O5OJ Mj5GqdZ22PkHL4u+EV7oS5ZJ3LWg4PEuUH/iIrq0Xz5hHC9vmvjzxUl/oIMgKrLq 6DQKb+Ns+ts/LawIq81xxzRJjrLd0LmQGP53DQ0K7D7d60o1Zhroz2Wnkdpi56kU Cv+aQaL8Ib6HNoG++HkzZZCoQczJfRFd0mNnbc+r5ZqM+tp8Q0VNq3EgVnBOD2Wu LCXZGYustX6/Kj0il2ahKSxm+nR5ZWPw+3z36xBEUajqLqY6W2KkUCtv8MSgsZ4L MH78JF26w+4Okdq4S7ZpAPdLReNvxF47 -----END CERTIFICATE-----Generated at Wed May 14 17:41:05 2025 by rpki-client