$ rpki-client -vvf rpki.apnic.net/member_repository/A918D701/D1878EF6C88711EDBBE6A32BC4F9AE02/2szbgPh19VKJMaiCXRqvoYCpsXk.mft File: 2szbgPh19VKJMaiCXRqvoYCpsXk.mft (raw, json) Hash identifier: gFkLv1wqj+QGznNdG1NnNs8Hq1G0SfXzFK0NJdP+yJE= Subject key identifier: F5:6E:C2:E8:13:D6:6A:4A:E5:EF:F7:9D:60:E8:52:7C:6F:CA:84:BB Authority key identifier: DA:CC:DB:80:F8:75:F5:52:89:31:A8:82:5D:1A:AF:A1:80:A9:B1:79 Certificate issuer: /CN=A918D701/serialNumber=DACCDB80F875F5528931A8825D1AAFA180A9B179 Certificate serial: 0199 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2szbgPh19VKJMaiCXRqvoYCpsXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D701/D1878EF6C88711EDBBE6A32BC4F9AE02/2szbgPh19VKJMaiCXRqvoYCpsXk.mft Manifest number: 0194 Signing time: Sun 11 May 2025 02:25:50 +0000 Manifest this update: Sun 11 May 2025 02:25:49 +0000 Manifest next update: Sun 18 May 2025 02:25:49 +0000 Files and hashes: 1: 2szbgPh19VKJMaiCXRqvoYCpsXk.crl (hash: 6CYcR6EhHLSrN659/MtPS6alVK6I9d+DXdf3jepDJYI=) 2: 98D5AE30C88C11ED907C1C0EC4F9AE02.roa (hash: /+RFC3ph8TBdVcE4Ho9sjOY2q50Lm+IUGN0ewBHECtI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D701/D1878EF6C88711EDBBE6A32BC4F9AE02/2szbgPh19VKJMaiCXRqvoYCpsXk.crl rsync://rpki.apnic.net/member_repository/A918D701/D1878EF6C88711EDBBE6A32BC4F9AE02/2szbgPh19VKJMaiCXRqvoYCpsXk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2szbgPh19VKJMaiCXRqvoYCpsXk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 02:25:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 409 (0x199) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D701, serialNumber=DACCDB80F875F5528931A8825D1AAFA180A9B179 Validity Not Before: May 11 02:25:49 2025 GMT Not After : May 18 02:25:49 2025 GMT Subject: CN=68200aae-031d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:77:df:34:ef:34:18:66:5d:65:f9:29:f6:09: 0b:c3:05:ee:88:e9:6e:5c:98:26:75:c2:eb:5d:2a: 64:88:4c:c1:5d:ce:df:22:2a:54:9f:e7:90:cd:16: a8:06:49:4d:d6:55:98:19:e2:a1:97:07:d8:a9:d5: 38:1d:e4:70:4c:41:1e:99:a6:92:bd:cf:cf:8f:e2: a8:27:c1:31:52:22:eb:6c:66:90:97:6c:82:45:42: c6:fd:dc:b4:3f:2d:0b:e6:c9:5a:22:e3:0b:68:c2: 09:c6:0e:6b:e3:8d:fb:e3:ff:06:2f:fb:a8:f8:02: ca:05:01:1f:b5:ce:4d:5b:5f:ee:ce:d0:28:d5:62: bb:e0:b0:da:d3:40:77:d9:71:6c:0c:16:4f:24:32: f3:db:dc:a9:ea:ba:a7:3f:5c:d5:19:20:5f:21:02: 33:a1:d5:08:27:99:dc:40:7c:b2:74:f3:30:9b:38: e6:53:d1:df:dc:74:5f:4b:1e:a5:fc:57:92:b9:57: d9:b6:11:36:d7:fe:b6:a0:39:b7:0a:d5:c2:11:6f: a7:2f:92:ea:74:2e:3c:8c:da:3c:25:0f:a5:94:35: 1d:d2:83:43:d3:73:81:f5:e0:7a:e6:31:72:dd:54: 0b:b2:1b:a7:43:5c:54:e0:5a:da:68:db:e7:d1:b6: 0e:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:6E:C2:E8:13:D6:6A:4A:E5:EF:F7:9D:60:E8:52:7C:6F:CA:84:BB X509v3 Authority Key Identifier: keyid:DA:CC:DB:80:F8:75:F5:52:89:31:A8:82:5D:1A:AF:A1:80:A9:B1:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D701/D1878EF6C88711EDBBE6A32BC4F9AE02/2szbgPh19VKJMaiCXRqvoYCpsXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2szbgPh19VKJMaiCXRqvoYCpsXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D701/D1878EF6C88711EDBBE6A32BC4F9AE02/2szbgPh19VKJMaiCXRqvoYCpsXk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:eb:49:b5:65:37:9f:92:3e:37:92:a5:45:1a:cd:f0:bb:44: 03:1f:f5:54:a3:83:f7:cd:f8:53:f3:9c:cc:77:04:05:5a:b9: 01:2c:70:7e:ff:17:d0:fa:b0:5d:77:47:ad:32:b9:2a:b9:99: 30:e9:1e:92:d0:32:25:ab:f9:61:02:39:e1:fa:67:19:11:85: de:65:6f:b1:46:ec:02:e8:cc:05:2c:ba:88:0d:e5:a9:32:a7: 0d:d3:ea:58:85:63:6a:47:31:63:0e:5c:0a:76:32:ae:d4:9c: 59:ec:67:bd:d6:35:4d:b7:e0:37:d2:6e:3d:06:80:4e:82:96: 2c:fc:50:36:d1:ac:27:29:d3:38:3d:f0:57:be:81:8a:c3:33: 8f:69:2f:ed:07:c4:87:32:58:e3:ab:78:b0:48:1d:35:09:a4: b6:77:63:83:95:83:69:c4:ac:fb:cb:ea:d9:bd:ef:ab:3d:15: 5d:bf:7a:90:5f:37:ef:19:87:53:65:b0:9e:2d:83:13:60:82: d6:97:59:d1:ec:5e:72:d6:45:03:b5:66:2c:d7:e4:07:53:8c: 78:38:37:e4:13:2a:dc:2d:b0:46:8a:f6:3f:ff:cd:6b:f3:eb: c4:25:97:94:1d:6b:61:7e:94:10:e4:a0:c0:cf:81:02:cd:05: b2:5e:55:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ3MDExMTAvBgNVBAUTKERBQ0NEQjgwRjg3NUY1NTI4OTMxQTg4MjVEMUFBRkEx ODBBOUIxNzkwHhcNMjUwNTExMDIyNTQ5WhcNMjUwNTE4MDIyNTQ5WjAYMRYwFAYD VQQDEw02ODIwMGFhZS0wMzFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyHffNO80GGZdZfkp9gkLwwXuiOluXJgmdcLrXSpkiEzBXc7fIipUn+eQzRao BklN1lWYGeKhlwfYqdU4HeRwTEEemaaSvc/Pj+KoJ8ExUiLrbGaQl2yCRULG/dy0 Py0L5slaIuMLaMIJxg5r44374/8GL/uo+ALKBQEftc5NW1/uztAo1WK74LDa00B3 2XFsDBZPJDLz29yp6rqnP1zVGSBfIQIzodUIJ5ncQHyydPMwmzjmU9Hf3HRfSx6l /FeSuVfZthE21/62oDm3CtXCEW+nL5LqdC48jNo8JQ+llDUd0oND03OB9eB65jFy 3VQLshunQ1xU4FraaNvn0bYOLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPVuwugT 1mpK5e/3nWDoUnxvyoS7MB8GA1UdIwQYMBaAFNrM24D4dfVSiTGogl0ar6GAqbF5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDcwMS9EMTg3OEVGNkM4 ODcxMUVEQkJFNkEzMkJDNEY5QUUwMi8yc3piZ1BoMTlWS0pNYWlDWFJxdm9ZQ3Bz WGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJzemJnUGgxOVZLSk1haUNYUnF2b1lDcHNYay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDcwMS9EMTg3OEVGNkM4ODcxMUVEQkJFNkEzMkJDNEY5QUUwMi8yc3piZ1BoMTlW S0pNYWlDWFJxdm9ZQ3BzWGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAc60m1ZTefkj43kqVFGs3wu0QDH/VUo4P3zfhT85zMdwQFWrkBLHB+ /xfQ+rBdd0etMrkquZkw6R6S0DIlq/lhAjnh+mcZEYXeZW+xRuwC6MwFLLqIDeWp MqcN0+pYhWNqRzFjDlwKdjKu1JxZ7Ge91jVNt+A30m49BoBOgpYs/FA20awnKdM4 PfBXvoGKwzOPaS/tB8SHMljjq3iwSB01CaS2d2ODlYNpxKz7y+rZve+rPRVdv3qQ XzfvGYdTZbCeLYMTYILWl1nR7F5y1kUDtWYs1+QHU4x4ODfkEyrcLbBGivY//81r 8+vEJZeUHWthfpQQ5KDAz4ECzQWyXlWI -----END CERTIFICATE-----Generated at Mon May 12 04:05:34 2025 by rpki-client