$ rpki-client -vvf rpki.apnic.net/member_repository/A91719F1/695F93FE21EE11EDB4C8BD6CC4F9AE02/2QhMrcO-yMIAxalrcu2v1KAOrug.mft File: 2QhMrcO-yMIAxalrcu2v1KAOrug.mft (raw, json) Hash identifier: XBtcaoiZhld4ByVgOtoAzUBciIHb83v19NL0SYpU/Wg= Subject key identifier: 1C:B9:28:44:E5:50:08:0D:A8:B2:23:5D:41:78:4C:E1:B6:EB:E6:3D Authority key identifier: D9:08:4C:AD:C3:BE:C8:C2:00:C5:A9:6B:72:ED:AF:D4:A0:0E:AE:E8 Certificate issuer: /CN=A91719F1/serialNumber=D9084CADC3BEC8C200C5A96B72EDAFD4A00EAEE8 Certificate serial: 0245 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhMrcO-yMIAxalrcu2v1KAOrug.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91719F1/695F93FE21EE11EDB4C8BD6CC4F9AE02/2QhMrcO-yMIAxalrcu2v1KAOrug.mft Manifest number: 023E Signing time: Tue 13 May 2025 01:40:40 +0000 Manifest this update: Tue 13 May 2025 01:40:39 +0000 Manifest next update: Tue 20 May 2025 01:40:39 +0000 Files and hashes: 1: 2QhMrcO-yMIAxalrcu2v1KAOrug.crl (hash: HiZ+n6gohP5A5YpPN+BUavvYBcfNw1W84Loqkuh/a+E=) 2: 00724F9621F111ED93774B6EC4F9AE02.roa (hash: 1MS8BgQSeLxFZfjzI2XVs+BA1y3N2nYBN3Uvkoalvq8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91719F1/695F93FE21EE11EDB4C8BD6CC4F9AE02/2QhMrcO-yMIAxalrcu2v1KAOrug.crl rsync://rpki.apnic.net/member_repository/A91719F1/695F93FE21EE11EDB4C8BD6CC4F9AE02/2QhMrcO-yMIAxalrcu2v1KAOrug.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhMrcO-yMIAxalrcu2v1KAOrug.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 01:40:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 581 (0x245) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91719F1, serialNumber=D9084CADC3BEC8C200C5A96B72EDAFD4A00EAEE8 Validity Not Before: May 13 01:40:39 2025 GMT Not After : May 20 01:40:39 2025 GMT Subject: CN=6822a317-9bfd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:b1:58:46:e5:f4:1e:0b:e2:d0:50:80:bb:42: d8:f7:19:d1:98:88:94:d8:68:2c:73:d7:d0:e2:4b: 9a:03:da:d7:d0:e8:30:99:f0:43:76:9f:c5:32:d2: d1:15:a7:09:00:60:99:61:42:12:85:5c:53:44:d1: 09:ab:8a:20:7f:76:3e:4b:e9:e9:84:9b:79:08:30: 4e:c6:8d:86:91:43:d5:b3:2b:a6:c9:9f:f1:98:ce: f0:d1:19:da:36:51:d2:03:83:ae:28:b7:61:4d:09: 87:c3:58:e6:b4:e0:5a:d8:d5:47:f1:35:a1:de:24: 4d:f2:20:15:74:7b:b0:93:35:82:5b:d4:f2:46:8c: 1c:3c:83:60:47:79:c8:ab:4e:e4:6d:46:04:7f:d7: 31:1d:48:50:6f:0d:29:72:e1:d4:fb:61:b2:ec:c6: 85:8d:87:70:86:4d:b6:10:2c:d3:c5:3e:19:f7:c5: 04:fe:09:5c:3e:8f:d8:73:38:6d:93:44:73:94:d0: 7c:31:65:a6:82:30:4d:4b:d7:77:dc:be:97:6a:aa: 3f:e0:4f:bf:96:b5:d2:1e:b6:14:bf:bb:16:d5:95: 27:da:82:19:61:e2:26:a7:bf:7f:24:00:db:8e:03: 8a:2c:9d:59:05:e3:1b:03:06:69:a4:9b:a3:5a:53: 51:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:B9:28:44:E5:50:08:0D:A8:B2:23:5D:41:78:4C:E1:B6:EB:E6:3D X509v3 Authority Key Identifier: keyid:D9:08:4C:AD:C3:BE:C8:C2:00:C5:A9:6B:72:ED:AF:D4:A0:0E:AE:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91719F1/695F93FE21EE11EDB4C8BD6CC4F9AE02/2QhMrcO-yMIAxalrcu2v1KAOrug.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhMrcO-yMIAxalrcu2v1KAOrug.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91719F1/695F93FE21EE11EDB4C8BD6CC4F9AE02/2QhMrcO-yMIAxalrcu2v1KAOrug.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:92:48:a2:e1:65:73:a0:b0:ac:14:61:94:fd:31:9d:e9:4c: 6c:b2:41:5f:db:17:1c:8a:8f:d7:4c:73:d7:a5:5b:d4:54:92: e8:5a:c4:70:1a:55:89:6c:e2:85:93:c2:d9:37:ba:66:0e:68: e8:fc:48:8e:df:09:b4:03:65:d2:a0:88:de:56:8e:ba:33:d1: 2c:bb:c2:4a:ef:3b:51:57:44:c9:a2:90:33:5b:37:17:88:71: d3:74:59:89:9c:3f:a5:bb:ac:12:9f:7d:51:b6:3b:c4:e8:de: 9b:f0:b4:55:bf:38:62:ac:be:10:f6:f7:66:ee:6f:e9:ba:d4: 51:0f:98:46:53:33:d9:56:bb:62:97:df:54:c7:f4:b5:15:0c: 42:2d:50:63:e3:19:b2:6f:f8:7c:7c:38:86:0d:d7:fc:df:bf: 8f:23:b5:8e:32:7c:2d:38:df:e4:df:98:dc:14:28:73:ae:3d: 66:9c:8d:d4:cf:73:35:3d:c9:b9:2a:20:1e:2c:9e:62:72:b6: d5:60:31:aa:67:1a:ff:3d:0c:52:c8:46:91:48:d8:70:4e:49: 29:40:24:c0:32:10:52:7c:f7:ab:84:d8:a4:0d:ba:a4:26:a8: ca:2e:c2:9c:ee:82:53:37:4a:65:4c:84:24:a8:a3:eb:f0:22: f5:90:a2:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE5RjExMTAvBgNVBAUTKEQ5MDg0Q0FEQzNCRUM4QzIwMEM1QTk2QjcyRURBRkQ0 QTAwRUFFRTgwHhcNMjUwNTEzMDE0MDM5WhcNMjUwNTIwMDE0MDM5WjAYMRYwFAYD VQQDEw02ODIyYTMxNy05YmZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6LFYRuX0Hgvi0FCAu0LY9xnRmIiU2Ggsc9fQ4kuaA9rX0OgwmfBDdp/FMtLR FacJAGCZYUIShVxTRNEJq4ogf3Y+S+nphJt5CDBOxo2GkUPVsyumyZ/xmM7w0Rna NlHSA4OuKLdhTQmHw1jmtOBa2NVH8TWh3iRN8iAVdHuwkzWCW9TyRowcPINgR3nI q07kbUYEf9cxHUhQbw0pcuHU+2Gy7MaFjYdwhk22ECzTxT4Z98UE/glcPo/Yczht k0RzlNB8MWWmgjBNS9d33L6Xaqo/4E+/lrXSHrYUv7sW1ZUn2oIZYeImp79/JADb jgOKLJ1ZBeMbAwZppJujWlNRjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBy5KETl UAgNqLIjXUF4TOG26+Y9MB8GA1UdIwQYMBaAFNkITK3DvsjCAMWpa3Ltr9SgDq7o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTlGMS82OTVGOTNGRTIx RUUxMUVEQjRDOEJENkNDNEY5QUUwMi8yUWhNcmNPLXlNSUF4YWxyY3UydjFLQU9y dWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJRaE1yY08teU1JQXhhbHJjdTJ2MUtBT3J1Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTlGMS82OTVGOTNGRTIxRUUxMUVEQjRDOEJENkNDNEY5QUUwMi8yUWhNcmNPLXlN SUF4YWxyY3UydjFLQU9ydWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+kkii4WVzoLCsFGGU/TGd6UxsskFf2xccio/XTHPXpVvUVJLoWsRw GlWJbOKFk8LZN7pmDmjo/EiO3wm0A2XSoIjeVo66M9Esu8JK7ztRV0TJopAzWzcX iHHTdFmJnD+lu6wSn31RtjvE6N6b8LRVvzhirL4Q9vdm7m/putRRD5hGUzPZVrti l99Ux/S1FQxCLVBj4xmyb/h8fDiGDdf837+PI7WOMnwtON/k35jcFChzrj1mnI3U z3M1Pcm5KiAeLJ5icrbVYDGqZxr/PQxSyEaRSNhwTkkpQCTAMhBSfPerhNikDbqk JqjKLsKc7oJTN0plTIQkqKPr8CL1kKIF -----END CERTIFICATE-----Generated at Wed May 14 08:16:31 2025 by rpki-client