$ rpki-client -vvf rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.mft File: 2v3gvG4K06iVvHVtbDGh5httODs.mft (raw, json) Hash identifier: OQJan8mxFhb+4B2ugqDKDZre6w7i9Y3Qo4oJUqHSVDE= Subject key identifier: 76:DA:F0:93:5B:3E:58:C4:F3:65:9C:27:51:D5:91:10:FB:97:38:5C Authority key identifier: DA:FD:E0:BC:6E:0A:D3:A8:95:BC:75:6D:6C:31:A1:E6:1B:6D:38:3B Certificate issuer: /CN=A918FCE2/serialNumber=DAFDE0BC6E0AD3A895BC756D6C31A1E61B6D383B Certificate serial: 085C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2v3gvG4K06iVvHVtbDGh5httODs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.mft Manifest number: 0849 Signing time: Mon 12 May 2025 20:36:13 +0000 Manifest this update: Mon 12 May 2025 20:36:12 +0000 Manifest next update: Mon 19 May 2025 20:36:12 +0000 Files and hashes: 1: 2v3gvG4K06iVvHVtbDGh5httODs.crl (hash: 2KjphC1fmGNDQoRFacrQnjCt72nrYQvpJRWGyhTM+GE=) 2: 311DA6AA78F611EFAFD81B5BC4F9AE02.roa (hash: N273KJZBVvsgocX2roxdV3igs8iuW9HGezq7GTon2t0=) 3: 312D1714A6F211EFBD311B19C4F9AE02.roa (hash: 3WiuON+DZCyyzbg9J4hxbgh73YCM3rOmSlSP3M274IM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.crl rsync://rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2v3gvG4K06iVvHVtbDGh5httODs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 20:36:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2140 (0x85c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FCE2, serialNumber=DAFDE0BC6E0AD3A895BC756D6C31A1E61B6D383B Validity Not Before: May 12 20:36:12 2025 GMT Not After : May 19 20:36:12 2025 GMT Subject: CN=68225bbc-273b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:91:f9:f1:f8:3c:dc:44:84:0a:9e:0a:cb:27: da:76:9e:eb:70:c3:7e:69:33:19:17:8e:e3:75:dd: 4d:02:c5:74:59:d5:e5:bc:66:3d:8e:21:c6:e1:fd: b1:61:d5:76:20:e4:c0:b4:98:99:78:da:aa:0a:82: 39:7b:27:e8:47:31:8b:b2:f4:a7:0b:19:f5:84:aa: d1:60:62:c3:14:c5:a5:21:41:60:ac:ff:f4:6c:e7: 18:c6:8b:54:6c:85:6a:3e:45:fa:a9:1d:02:e0:c8: 59:b1:61:22:7b:55:f7:7e:41:df:ca:85:ca:1f:9a: bc:c3:83:22:79:ee:9b:74:e3:f0:e6:19:25:c9:9b: c7:58:5b:84:e9:de:cf:4b:97:5c:b8:53:8e:5e:a6: 45:fc:af:ce:7c:5b:82:bd:fa:03:28:b6:2f:d7:b6: b7:c8:72:03:b1:5f:34:ab:b5:dd:5e:9e:b1:d8:01: 0b:91:d2:f3:03:c7:a8:36:9b:54:d3:1c:48:eb:20: d8:aa:b1:ba:e3:7e:62:a6:5c:b5:d4:62:60:6f:c9: 8b:2c:4a:47:48:dc:22:62:9e:3f:aa:a7:eb:07:94: 0b:f8:c9:80:df:5a:c6:9d:da:d8:33:ff:94:8c:71: 84:b2:77:f9:d6:67:df:b8:a7:36:b7:44:1a:21:8d: 9e:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:DA:F0:93:5B:3E:58:C4:F3:65:9C:27:51:D5:91:10:FB:97:38:5C X509v3 Authority Key Identifier: keyid:DA:FD:E0:BC:6E:0A:D3:A8:95:BC:75:6D:6C:31:A1:E6:1B:6D:38:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2v3gvG4K06iVvHVtbDGh5httODs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:68:9b:cf:b6:21:c5:a2:a0:db:2d:c6:9f:cf:0d:9d:ca:1d: 12:b2:03:0a:7d:b7:6d:a6:41:f8:7d:77:3a:74:60:96:2f:08: 48:6e:63:e8:af:ef:5e:fb:cc:2d:ba:4f:26:93:ea:e0:02:58: d8:f8:c8:37:b4:d6:7c:08:b8:f5:ac:a7:35:8d:9e:f4:ad:cf: e0:85:b7:61:ef:7b:96:3e:ca:56:5c:6d:18:67:0b:aa:23:78: 17:a1:75:67:0d:8b:80:6c:5d:88:68:52:a0:2d:5b:c3:6b:0f: 8d:a5:55:e8:3f:30:8b:3e:b7:fb:db:f7:95:6f:7b:b3:ff:00: d5:b7:da:1f:ac:3d:41:c5:e4:64:14:ab:6f:85:d9:6b:f3:68: 80:a7:22:bb:77:d4:a9:d5:3b:ba:2d:a4:e8:79:c7:0b:f8:ff: 95:ed:0e:10:f3:8e:09:0f:cb:60:e8:82:44:ac:59:5c:86:e9: 45:0e:19:45:74:87:a6:bc:b1:b5:99:6a:c1:a2:c4:5e:b9:a2: a3:b4:7a:1d:05:ab:5c:5b:47:ab:f5:7f:78:36:e5:6d:e5:18: 41:50:fd:e6:ac:5b:1f:ed:6a:7f:b1:d2:c7:06:52:60:00:11: 8d:9b:0b:94:8a:c5:f8:87:0a:3f:30:c9:b7:38:be:87:12:a9: a5:4e:54:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCFwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZDRTIxMTAvBgNVBAUTKERBRkRFMEJDNkUwQUQzQTg5NUJDNzU2RDZDMzFBMUU2 MUI2RDM4M0IwHhcNMjUwNTEyMjAzNjEyWhcNMjUwNTE5MjAzNjEyWjAYMRYwFAYD VQQDEw02ODIyNWJiYy0yNzNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsJH58fg83ESECp4Kyyfadp7rcMN+aTMZF47jdd1NAsV0WdXlvGY9jiHG4f2x YdV2IOTAtJiZeNqqCoI5eyfoRzGLsvSnCxn1hKrRYGLDFMWlIUFgrP/0bOcYxotU bIVqPkX6qR0C4MhZsWEie1X3fkHfyoXKH5q8w4Miee6bdOPw5hklyZvHWFuE6d7P S5dcuFOOXqZF/K/OfFuCvfoDKLYv17a3yHIDsV80q7XdXp6x2AELkdLzA8eoNptU 0xxI6yDYqrG6435iply11GJgb8mLLEpHSNwiYp4/qqfrB5QL+MmA31rGndrYM/+U jHGEsnf51mffuKc2t0QaIY2ecQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHba8JNb PljE82WcJ1HVkRD7lzhcMB8GA1UdIwQYMBaAFNr94LxuCtOolbx1bWwxoeYbbTg7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkNFMi82MTgwQzBBMkNE NkYxMUVBOTc1NDgwNDNDNEY5QUUwMi8ydjNndkc0SzA2aVZ2SFZ0YkRHaDVodHRP RHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ2M2d2RzRLMDZpVnZIVnRiREdoNWh0dE9Ecy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkNFMi82MTgwQzBBMkNENkYxMUVBOTc1NDgwNDNDNEY5QUUwMi8ydjNndkc0SzA2 aVZ2SFZ0YkRHaDVodHRPRHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2aJvPtiHFoqDbLcafzw2dyh0SsgMKfbdtpkH4fXc6dGCWLwhIbmPo r+9e+8wtuk8mk+rgAljY+Mg3tNZ8CLj1rKc1jZ70rc/ghbdh73uWPspWXG0YZwuq I3gXoXVnDYuAbF2IaFKgLVvDaw+NpVXoPzCLPrf72/eVb3uz/wDVt9ofrD1BxeRk FKtvhdlr82iApyK7d9Sp1Tu6LaToeccL+P+V7Q4Q844JD8tg6IJErFlchulFDhlF dIemvLG1mWrBosReuaKjtHodBatcW0er9X94NuVt5RhBUP3mrFsf7Wp/sdLHBlJg ABGNmwuUisX4hwo/MMm3OL6HEqmlTlRf -----END CERTIFICATE-----Generated at Tue May 13 02:30:48 2025 by rpki-client