$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft File: 2H4ClpVGrcVaesygjK2yh5vGmck.mft (raw, json) Hash identifier: oTB5B64Xh8XuebL7gekvURc+6F7CPEAVI8OxNpQ9Mtg= Subject key identifier: 41:D7:05:77:3C:46:F4:AB:AB:DF:5E:A5:17:D7:B9:93:09:31:B4:45 Authority key identifier: D8:7E:02:96:95:46:AD:C5:5A:7A:CC:A0:8C:AD:B2:87:9B:C6:99:C9 Certificate issuer: /CN=A9185B5F/serialNumber=D87E02969546ADC55A7ACCA08CADB2879BC699C9 Certificate serial: 017D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2H4ClpVGrcVaesygjK2yh5vGmck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft Manifest number: 017A Signing time: Thu 15 May 2025 03:08:51 +0000 Manifest this update: Thu 15 May 2025 03:08:50 +0000 Manifest next update: Thu 22 May 2025 03:08:50 +0000 Files and hashes: 1: 2H4ClpVGrcVaesygjK2yh5vGmck.crl (hash: /cBZVje30bmWArlWTqWk/OgpP1/OLNdIRg08USpN2xM=) 2: A4B0D326F0A311ED99A1471CC4F9AE02.roa (hash: YT1DLrJvP+2w7lodtwm2stNsNaNoq+ytHid9uR561S8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.crl rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2H4ClpVGrcVaesygjK2yh5vGmck.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 03:08:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 381 (0x17d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B5F, serialNumber=D87E02969546ADC55A7ACCA08CADB2879BC699C9 Validity Not Before: May 15 03:08:50 2025 GMT Not After : May 22 03:08:50 2025 GMT Subject: CN=68255ac3-ee91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:b4:ce:ae:d4:3c:e4:f4:92:d5:33:e8:25:91: 20:9f:41:f7:6f:f8:da:22:aa:03:d4:a5:34:43:76: f4:07:06:1d:e4:cb:88:87:12:af:df:87:2c:37:bd: 27:d9:f6:6e:f8:8b:dc:ee:37:d4:92:09:f9:e9:17: 54:a8:f0:ab:37:51:4b:0e:b6:0b:0a:b6:3e:a5:98: 8a:9e:05:28:47:64:d6:21:ac:67:d1:30:1c:f5:06: 42:1a:be:43:c5:fd:b3:07:0e:7f:f4:20:79:d4:d1: 9f:d2:70:e4:00:c6:4f:4c:c5:af:f2:5f:0d:21:58: 34:e2:d2:49:c5:ee:f5:ae:78:7f:ad:bc:93:31:3a: d3:97:07:c3:1e:95:c9:9c:e4:f1:88:06:29:8a:74: 28:a4:1f:43:1c:d7:a1:17:3f:6a:88:8a:68:8a:c4: 7a:d0:1f:fb:ea:c3:58:e4:86:26:fe:1d:88:83:3a: ce:61:26:7f:22:e9:6d:74:80:e2:bb:0d:2d:53:8d: 2f:a0:c8:18:3f:5a:a6:6b:c3:3b:25:38:82:47:e5: 9f:a8:ab:ef:ad:6a:78:7b:95:29:33:c5:f9:d9:cb: 7a:67:cb:5e:64:fd:1d:80:bd:54:08:b3:ef:da:be: 0b:dc:a2:e0:84:a3:5b:b9:cc:0e:38:6b:fa:41:ea: d0:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:D7:05:77:3C:46:F4:AB:AB:DF:5E:A5:17:D7:B9:93:09:31:B4:45 X509v3 Authority Key Identifier: keyid:D8:7E:02:96:95:46:AD:C5:5A:7A:CC:A0:8C:AD:B2:87:9B:C6:99:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2H4ClpVGrcVaesygjK2yh5vGmck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:8b:1a:e2:00:42:43:64:c0:2d:52:7a:cd:c1:ab:01:36:dd: bc:f2:f9:a2:06:08:9c:03:23:4e:e6:42:dd:fa:08:02:bb:72: e7:c5:0d:ca:ad:d3:90:a4:2b:13:4a:37:3b:09:1c:08:44:cd: c2:25:0b:2b:6b:a7:27:6f:6b:0a:d7:1f:c8:9c:d9:6c:de:b9: 86:20:fe:63:1e:2e:59:b5:b9:cc:7d:b0:a1:e8:ea:66:28:af: 6a:80:16:be:67:4c:fd:1b:ad:34:2b:4b:68:71:f4:4d:24:b7: 62:63:54:05:8c:04:1d:91:eb:5e:eb:0c:6e:0e:78:7c:34:56: c0:c5:32:4f:28:80:62:78:46:b1:0e:14:37:e0:03:2a:4d:bd: d7:f6:74:f1:1c:85:07:2f:95:71:e4:8a:df:db:61:3f:0c:56: f4:fd:68:c1:6b:55:8c:ec:e7:71:f1:c4:e6:f5:7f:8a:70:ba: e0:d2:5f:94:ed:6e:24:45:fa:db:e1:2b:db:74:01:27:b1:eb: 4a:17:af:5c:20:5a:47:36:db:91:7e:5f:ac:f3:e0:ef:3e:9e: 79:b8:da:03:3d:7b:0c:c7:20:6d:6d:2c:07:7b:5c:2e:a8:1f: a9:fb:2c:e5:93:b7:2a:73:0e:46:05:af:cf:53:a2:96:47:ff: a3:2b:6e:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAX0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCNUYxMTAvBgNVBAUTKEQ4N0UwMjk2OTU0NkFEQzU1QTdBQ0NBMDhDQURCMjg3 OUJDNjk5QzkwHhcNMjUwNTE1MDMwODUwWhcNMjUwNTIyMDMwODUwWjAYMRYwFAYD VQQDEw02ODI1NWFjMy1lZTkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1LTOrtQ85PSS1TPoJZEgn0H3b/jaIqoD1KU0Q3b0BwYd5MuIhxKv34csN70n 2fZu+Ivc7jfUkgn56RdUqPCrN1FLDrYLCrY+pZiKngUoR2TWIaxn0TAc9QZCGr5D xf2zBw5/9CB51NGf0nDkAMZPTMWv8l8NIVg04tJJxe71rnh/rbyTMTrTlwfDHpXJ nOTxiAYpinQopB9DHNehFz9qiIpoisR60B/76sNY5IYm/h2IgzrOYSZ/IultdIDi uw0tU40voMgYP1qma8M7JTiCR+WfqKvvrWp4e5UpM8X52ct6Z8teZP0dgL1UCLPv 2r4L3KLghKNbucwOOGv6QerQGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEHXBXc8 RvSrq99epRfXuZMJMbRFMB8GA1UdIwQYMBaAFNh+ApaVRq3FWnrMoIytsoebxpnJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUI1Ri84RTQxODAyMEYw OUIxMUVEQTYwNkJENjJDNEY5QUUwMi8ySDRDbHBWR3JjVmFlc3lnaksyeWg1dkdt Y2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJINENscFZHcmNWYWVzeWdqSzJ5aDV2R21jay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUI1Ri84RTQxODAyMEYwOUIxMUVEQTYwNkJENjJDNEY5QUUwMi8ySDRDbHBWR3Jj VmFlc3lnaksyeWg1dkdtY2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSixriAEJDZMAtUnrNwasBNt288vmiBgicAyNO5kLd+ggCu3LnxQ3K rdOQpCsTSjc7CRwIRM3CJQsra6cnb2sK1x/InNls3rmGIP5jHi5ZtbnMfbCh6Opm KK9qgBa+Z0z9G600K0tocfRNJLdiY1QFjAQdkete6wxuDnh8NFbAxTJPKIBieEax DhQ34AMqTb3X9nTxHIUHL5Vx5Irf22E/DFb0/WjBa1WM7Odx8cTm9X+KcLrg0l+U 7W4kRfrb4SvbdAEnsetKF69cIFpHNtuRfl+s8+DvPp55uNoDPXsMxyBtbSwHe1wu qB+p+yzlk7cqcw5GBa/PU6KWR/+jK24u -----END CERTIFICATE-----Generated at Fri May 16 22:38:44 2025 by rpki-client