$ rpki-client -vvf rpki.apnic.net/member_repository/A918B241/B649CA96F07411EC9A51D548C4F9AE02/2gElQupZNV_ohHjSHXPjbOvN88s.mft File: 2gElQupZNV_ohHjSHXPjbOvN88s.mft (raw, json) Hash identifier: Q7b44T8UP/rsf56EHRQ3OKYCZUi/8VkWYj1qG2moId0= Subject key identifier: F3:41:3E:E4:95:60:AA:A7:A5:24:90:13:C5:3D:3F:5B:3F:1B:5A:6D Authority key identifier: DA:01:25:42:EA:59:35:5F:E8:84:78:D2:1D:73:E3:6C:EB:CD:F3:CB Certificate issuer: /CN=A918B241/serialNumber=DA012542EA59355FE88478D21D73E36CEBCDF3CB Certificate serial: 02C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gElQupZNV_ohHjSHXPjbOvN88s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B241/B649CA96F07411EC9A51D548C4F9AE02/2gElQupZNV_ohHjSHXPjbOvN88s.mft Manifest number: 02BC Signing time: Tue 13 May 2025 01:14:10 +0000 Manifest this update: Tue 13 May 2025 01:14:09 +0000 Manifest next update: Tue 20 May 2025 01:14:09 +0000 Files and hashes: 1: 2gElQupZNV_ohHjSHXPjbOvN88s.crl (hash: XIvGYQ+QTVbpMFdx5wRwQkA8PwzE5V5HngdgMVmhEV0=) 2: A33B03A2F07911ECBDB1BC4BC4F9AE02.roa (hash: 06qlKoNMAgG5qkJwM6sNlRAgtRr58eOsszFhlsT8L0o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B241/B649CA96F07411EC9A51D548C4F9AE02/2gElQupZNV_ohHjSHXPjbOvN88s.crl rsync://rpki.apnic.net/member_repository/A918B241/B649CA96F07411EC9A51D548C4F9AE02/2gElQupZNV_ohHjSHXPjbOvN88s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gElQupZNV_ohHjSHXPjbOvN88s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 01:14:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 705 (0x2c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B241, serialNumber=DA012542EA59355FE88478D21D73E36CEBCDF3CB Validity Not Before: May 13 01:14:09 2025 GMT Not After : May 20 01:14:09 2025 GMT Subject: CN=68229ce1-d92b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:2e:f9:a7:f5:f0:9f:02:5f:d6:f0:4c:1c:2a: d6:54:9e:c7:bf:9c:77:33:a7:ba:63:f2:4a:42:ca: f3:22:3d:95:e7:da:0f:37:73:69:3d:44:b6:e2:c6: b5:01:6f:b6:d0:73:ce:0d:e6:4b:8b:38:34:9a:1e: 70:99:d6:d6:2d:12:c7:1f:f9:4b:5a:75:c5:6c:91: ae:bc:c6:ed:fd:67:7f:a7:cd:5a:b7:27:87:89:aa: a7:46:94:b5:58:57:1c:99:4d:f8:68:ac:0c:7a:44: f0:c8:72:1a:56:bd:5a:18:7a:ed:1e:23:b5:4f:8c: ac:ea:db:6d:13:e8:fb:d6:67:ee:64:33:2e:0d:9a: 6d:63:17:65:9c:9e:f5:81:26:ca:1b:7b:93:25:56: bb:bf:02:eb:c4:a3:e0:5e:c2:8c:3e:a1:90:1a:fc: 9b:d1:22:96:15:6e:7f:14:04:82:d9:98:15:e7:3b: 3a:a3:fd:64:d9:54:03:e2:42:5f:4d:00:7a:ea:c7: 50:80:01:e5:ae:c6:b6:c2:69:d3:9d:fa:28:b6:31: 77:17:cb:5f:4c:81:3a:ca:12:13:8b:06:d4:f1:a3: ed:08:b6:62:dd:4c:0e:0e:51:1f:d7:38:12:85:f6: 3c:fc:78:9c:5b:24:cb:15:06:95:00:f0:51:47:d1: 5d:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:41:3E:E4:95:60:AA:A7:A5:24:90:13:C5:3D:3F:5B:3F:1B:5A:6D X509v3 Authority Key Identifier: keyid:DA:01:25:42:EA:59:35:5F:E8:84:78:D2:1D:73:E3:6C:EB:CD:F3:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B241/B649CA96F07411EC9A51D548C4F9AE02/2gElQupZNV_ohHjSHXPjbOvN88s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gElQupZNV_ohHjSHXPjbOvN88s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B241/B649CA96F07411EC9A51D548C4F9AE02/2gElQupZNV_ohHjSHXPjbOvN88s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:d0:74:b2:86:74:80:4b:7d:d3:ab:58:22:60:ac:00:62:14: f1:8f:fe:9a:cf:8d:17:04:08:61:7d:b5:fb:92:ff:1b:5a:ec: 9f:40:19:8a:43:f9:66:d6:6a:3c:69:82:2f:fa:87:04:ee:7c: 4d:33:03:01:e1:f2:71:5a:89:7e:67:78:ab:6a:d0:3b:5f:f2: 66:04:2a:97:98:e8:31:14:9e:0f:ca:5a:13:eb:6d:d2:d1:0f: 4d:e6:45:28:9b:ae:be:be:56:6f:0d:a0:30:f9:72:6f:df:b4: 24:0d:db:fa:30:16:2e:13:c5:6c:99:3c:6d:80:7f:a0:63:dc: a2:85:69:94:5f:4d:4a:4d:2b:4e:28:0e:be:48:bf:0a:cf:99: 3e:92:00:7b:a0:86:df:55:de:9e:99:db:4c:cc:ff:c2:21:9a: 0a:7d:bd:3c:8e:02:e0:7c:4c:2f:07:d2:25:f9:49:02:18:cb: 31:07:94:c9:fb:35:96:bd:c3:96:72:76:c6:30:7b:76:30:c5: 16:c4:f3:36:38:d8:46:82:b6:4a:44:64:d9:8d:b5:b1:6f:d4: 17:ee:c9:41:08:93:15:3e:0b:2a:52:4a:e6:73:b4:d0:64:9d: b0:7d:f0:94:ec:b7:ee:f5:c5:03:91:a7:f7:07:44:23:41:30: 4f:cc:d2:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAsEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEIyNDExMTAvBgNVBAUTKERBMDEyNTQyRUE1OTM1NUZFODg0NzhEMjFENzNFMzZD RUJDREYzQ0IwHhcNMjUwNTEzMDExNDA5WhcNMjUwNTIwMDExNDA5WjAYMRYwFAYD VQQDEw02ODIyOWNlMS1kOTJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxi75p/XwnwJf1vBMHCrWVJ7Hv5x3M6e6Y/JKQsrzIj2V59oPN3NpPUS24sa1 AW+20HPODeZLizg0mh5wmdbWLRLHH/lLWnXFbJGuvMbt/Wd/p81atyeHiaqnRpS1 WFccmU34aKwMekTwyHIaVr1aGHrtHiO1T4ys6tttE+j71mfuZDMuDZptYxdlnJ71 gSbKG3uTJVa7vwLrxKPgXsKMPqGQGvyb0SKWFW5/FASC2ZgV5zs6o/1k2VQD4kJf TQB66sdQgAHlrsa2wmnTnfootjF3F8tfTIE6yhITiwbU8aPtCLZi3UwODlEf1zgS hfY8/HicWyTLFQaVAPBRR9FdjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPNBPuSV YKqnpSSQE8U9P1s/G1ptMB8GA1UdIwQYMBaAFNoBJULqWTVf6IR40h1z42zrzfPL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjI0MS9CNjQ5Q0E5NkYw NzQxMUVDOUE1MUQ1NDhDNEY5QUUwMi8yZ0VsUXVwWk5WX29oSGpTSFhQamJPdk44 OHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJnRWxRdXBaTlZfb2hIalNIWFBqYk92Tjg4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjI0MS9CNjQ5Q0E5NkYwNzQxMUVDOUE1MUQ1NDhDNEY5QUUwMi8yZ0VsUXVwWk5W X29oSGpTSFhQamJPdk44OHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAk0HSyhnSAS33Tq1giYKwAYhTxj/6az40XBAhhfbX7kv8bWuyfQBmK Q/lm1mo8aYIv+ocE7nxNMwMB4fJxWol+Z3iratA7X/JmBCqXmOgxFJ4PyloT623S 0Q9N5kUom66+vlZvDaAw+XJv37QkDdv6MBYuE8VsmTxtgH+gY9yihWmUX01KTStO KA6+SL8Kz5k+kgB7oIbfVd6emdtMzP/CIZoKfb08jgLgfEwvB9Il+UkCGMsxB5TJ +zWWvcOWcnbGMHt2MMUWxPM2ONhGgrZKRGTZjbWxb9QX7slBCJMVPgsqUkrmc7TQ ZJ2wffCU7Lfu9cUDkaf3B0QjQTBPzNJN -----END CERTIFICATE-----Generated at Wed May 14 20:45:00 2025 by rpki-client