$ rpki-client -vvf rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.mft File: 2RBlAbU10PfK1XyOenR8oGnQTVk.mft (raw, json) Hash identifier: K43gcZsYRQ80MdP0OXI7qfPIgLMiN5T+SvZ1tk1Cq4Q= Subject key identifier: E2:A6:B4:D6:7F:2D:CD:7D:C2:15:D6:0F:89:AE:50:33:E7:08:F6:6D Authority key identifier: D9:10:65:01:B5:35:D0:F7:CA:D5:7C:8E:7A:74:7C:A0:69:D0:4D:59 Certificate issuer: /CN=A916FACB/serialNumber=D9106501B535D0F7CAD57C8E7A747CA069D04D59 Certificate serial: 03AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2RBlAbU10PfK1XyOenR8oGnQTVk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.mft Manifest number: 03AA Signing time: Tue 13 May 2025 00:31:30 +0000 Manifest this update: Tue 13 May 2025 00:31:30 +0000 Manifest next update: Tue 20 May 2025 00:31:30 +0000 Files and hashes: 1: 2RBlAbU10PfK1XyOenR8oGnQTVk.crl (hash: c+72mNEDb0K9t0V7l+pUBsRQ4dFlY61fAhSh2UIbQB0=) 2: 97D35382924311EC927C972FC4F9AE02.roa (hash: F5cT4m4LGvhZopgIl7MS1o33/eaQaKX2bSwBB1GnJYA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.crl rsync://rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2RBlAbU10PfK1XyOenR8oGnQTVk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 00:31:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 942 (0x3ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916FACB, serialNumber=D9106501B535D0F7CAD57C8E7A747CA069D04D59 Validity Not Before: May 13 00:31:30 2025 GMT Not After : May 20 00:31:30 2025 GMT Subject: CN=682292e2-071e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:e2:5d:c3:02:f9:15:6d:1c:5f:60:be:fc:08: 68:3a:f3:cb:71:56:4d:16:fd:02:03:f5:d5:36:7a: d5:db:f1:8e:2e:e0:da:ed:28:8f:fa:d5:97:d0:3b: 18:29:30:58:8a:af:8a:b8:ec:4c:37:01:f0:7c:cd: 81:30:54:09:08:79:e2:28:88:69:10:39:c3:93:9f: c5:96:8a:33:c4:72:95:ad:b9:39:07:13:29:23:98: 4c:65:d0:ef:93:b9:c9:de:6e:db:5b:f2:8e:29:97: 02:d1:f0:f4:85:13:6c:e8:b9:c5:7c:62:50:db:aa: e8:35:a2:e2:c4:19:a2:06:5d:b6:8c:d9:c4:5a:0c: 70:e8:61:20:4b:7c:81:2a:b4:d3:2b:31:ab:38:3b: bb:c9:1e:c6:7b:80:2b:42:e2:f6:36:0c:55:36:1b: 20:6e:5e:f6:be:7e:7d:a7:67:06:bf:c1:3b:aa:63: cf:b0:f2:82:78:1e:29:48:8d:98:57:97:06:1c:19: 8a:71:73:27:51:03:e6:84:70:74:b5:62:76:fa:32: 12:20:f6:da:32:9c:09:a9:6b:8f:a9:a8:01:86:21: 53:9d:65:34:34:fc:be:81:66:c0:6f:51:a8:f6:5f: 2f:5b:85:88:2d:ae:e6:17:19:74:2b:b2:14:46:1a: a8:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:A6:B4:D6:7F:2D:CD:7D:C2:15:D6:0F:89:AE:50:33:E7:08:F6:6D X509v3 Authority Key Identifier: keyid:D9:10:65:01:B5:35:D0:F7:CA:D5:7C:8E:7A:74:7C:A0:69:D0:4D:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2RBlAbU10PfK1XyOenR8oGnQTVk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:84:03:ff:6e:a5:28:63:01:d2:3b:fd:5c:4c:9f:da:b1:8b: 5f:61:46:21:b4:95:c5:98:8d:25:a7:d2:cd:16:ff:5a:a4:d0: a1:3b:bf:83:a2:cc:60:2d:cb:bb:8c:2d:82:63:81:1e:c9:f9: f4:f7:30:6a:42:94:6b:53:30:10:d0:5f:3a:73:c5:50:6c:4d: cd:51:f2:0c:ad:36:ec:da:4b:c7:03:d5:2d:1a:60:6f:05:7b: da:9d:04:a6:16:e9:5f:a9:34:b3:34:14:89:ee:fa:d4:e8:14: 6a:8e:85:7b:a9:87:d8:16:52:e7:7b:df:8e:65:6c:ef:8b:22: 29:3e:c3:00:85:a5:53:7a:ab:7c:f1:e7:4a:47:40:2e:3c:a6: 2c:4d:a2:82:c6:6b:a2:9d:2e:fa:03:21:80:cf:ee:34:d2:bc: 05:28:8e:75:5d:75:76:37:72:a4:33:02:9c:41:f2:01:99:ee: 0a:59:d8:06:85:04:76:a8:55:4c:f9:24:d0:54:d6:de:c0:fa: a7:80:52:2e:f3:dc:ed:05:ec:c5:75:22:e1:3f:5f:be:e9:ff: 5f:3a:82:68:4d:e1:11:f8:70:0f:f9:d0:91:64:6e:f2:c7:ed: 20:57:f9:a5:22:8b:ca:5c:fb:56:d3:6e:97:50:27:98:e1:2b: 73:8b:fe:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA64wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkZBQ0IxMTAvBgNVBAUTKEQ5MTA2NTAxQjUzNUQwRjdDQUQ1N0M4RTdBNzQ3Q0Ew NjlEMDRENTkwHhcNMjUwNTEzMDAzMTMwWhcNMjUwNTIwMDAzMTMwWjAYMRYwFAYD VQQDEw02ODIyOTJlMi0wNzFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAquJdwwL5FW0cX2C+/AhoOvPLcVZNFv0CA/XVNnrV2/GOLuDa7SiP+tWX0DsY KTBYiq+KuOxMNwHwfM2BMFQJCHniKIhpEDnDk5/FloozxHKVrbk5BxMpI5hMZdDv k7nJ3m7bW/KOKZcC0fD0hRNs6LnFfGJQ26roNaLixBmiBl22jNnEWgxw6GEgS3yB KrTTKzGrODu7yR7Ge4ArQuL2NgxVNhsgbl72vn59p2cGv8E7qmPPsPKCeB4pSI2Y V5cGHBmKcXMnUQPmhHB0tWJ2+jISIPbaMpwJqWuPqagBhiFTnWU0NPy+gWbAb1Go 9l8vW4WILa7mFxl0K7IURhqowwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOKmtNZ/ Lc19whXWD4muUDPnCPZtMB8GA1UdIwQYMBaAFNkQZQG1NdD3ytV8jnp0fKBp0E1Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RkFDQi9GNTU5OEQwODky NDAxMUVDQkVENERBMkNDNEY5QUUwMi8yUkJsQWJVMTBQZksxWHlPZW5SOG9HblFU VmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJSQmxBYlUxMFBmSzFYeU9lblI4b0duUVRWay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RkFDQi9GNTU5OEQwODkyNDAxMUVDQkVENERBMkNDNEY5QUUwMi8yUkJsQWJVMTBQ ZksxWHlPZW5SOG9HblFUVmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBShAP/bqUoYwHSO/1cTJ/asYtfYUYhtJXFmI0lp9LNFv9apNChO7+D osxgLcu7jC2CY4Eeyfn09zBqQpRrUzAQ0F86c8VQbE3NUfIMrTbs2kvHA9UtGmBv BXvanQSmFulfqTSzNBSJ7vrU6BRqjoV7qYfYFlLne9+OZWzviyIpPsMAhaVTeqt8 8edKR0AuPKYsTaKCxmuinS76AyGAz+400rwFKI51XXV2N3KkMwKcQfIBme4KWdgG hQR2qFVM+STQVNbewPqngFIu89ztBezFdSLhP1++6f9fOoJoTeER+HAP+dCRZG7y x+0gV/mlIovKXPtW026XUCeY4Stzi/67 -----END CERTIFICATE-----Generated at Tue May 13 11:12:49 2025 by rpki-client