$ rpki-client -vvf rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.mft File: PS2TrIsQhlgX2adMyBoDDX010HQ.mft (raw, json) Hash identifier: 9+nocKBTFe7tphtFzzxS+qBT31lFbx0q67YuJ+GkCFo= Subject key identifier: FC:6A:53:ED:57:08:DA:D2:50:71:95:A5:9F:80:07:15:A9:0C:31:4F Authority key identifier: 3D:2D:93:AC:8B:10:86:58:17:D9:A7:4C:C8:1A:03:0D:7D:35:D0:74 Certificate issuer: /CN=A9196D9E/serialNumber=3D2D93AC8B10865817D9A74CC81A030D7D35D074 Certificate serial: 011B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PS2TrIsQhlgX2adMyBoDDX010HQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.mft Manifest number: 011A Signing time: Sun 11 May 2025 03:38:26 +0000 Manifest this update: Sun 11 May 2025 03:38:26 +0000 Manifest next update: Sun 18 May 2025 03:38:26 +0000 Files and hashes: 1: PS2TrIsQhlgX2adMyBoDDX010HQ.crl (hash: HKhaAbrSkn2BworMI9r6gY74gCFPO8oeS33cHOvpEYM=) 2: C8BDA37CF68A11EFB7F91E24C4F9AE02.roa (hash: aRDWwCB81f6X4Sbu5aqqdwftigSG3lRUiRjjd/98tJw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.crl rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PS2TrIsQhlgX2adMyBoDDX010HQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 03:38:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 283 (0x11b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196D9E, serialNumber=3D2D93AC8B10865817D9A74CC81A030D7D35D074 Validity Not Before: May 11 03:38:26 2025 GMT Not After : May 18 03:38:26 2025 GMT Subject: CN=68201bb2-3b28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:18:be:25:c2:88:74:a7:38:aa:8a:91:bc:c8: 58:08:0e:a3:cf:8f:cc:b3:4a:8f:6e:76:c1:1c:6e: 6d:fc:00:63:58:ba:29:76:76:02:ef:fc:85:da:5e: 67:72:79:f9:53:47:fc:7d:bc:5e:02:0c:b8:23:31: 72:14:3e:04:27:55:6e:1e:5b:bb:c5:de:d1:37:6e: 1a:c7:95:62:a5:01:38:6d:74:37:a0:12:e2:c2:eb: d4:b2:81:55:2d:57:bc:da:98:74:f4:59:5c:57:1e: 20:6d:9a:f4:b3:d0:45:c5:5a:0e:ba:aa:c7:88:01: 16:4c:bf:db:fc:2d:cd:2c:ed:9e:cc:e8:b0:25:67: 1f:ac:a7:76:df:ae:b2:f7:7e:84:02:31:28:cd:90: 7c:06:6b:24:92:41:17:e5:03:8d:e7:df:ae:cc:44: ad:75:65:a4:36:fb:f2:0d:2a:f3:d3:28:54:7d:db: cc:72:e2:4c:43:86:95:01:7d:e2:d8:af:ab:c6:71: 2f:fb:b5:6f:89:b3:0c:10:cd:f3:50:96:39:76:dd: ee:4e:94:a2:54:87:0b:18:c4:37:55:e3:bf:e1:1d: 5f:7a:61:d0:95:6b:42:70:2a:2a:be:ed:e3:d2:dd: 7b:40:c0:3a:18:23:09:cb:81:32:35:b1:cd:f8:d2: 86:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:6A:53:ED:57:08:DA:D2:50:71:95:A5:9F:80:07:15:A9:0C:31:4F X509v3 Authority Key Identifier: keyid:3D:2D:93:AC:8B:10:86:58:17:D9:A7:4C:C8:1A:03:0D:7D:35:D0:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PS2TrIsQhlgX2adMyBoDDX010HQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:20:6e:01:10:1c:4f:37:8e:79:e9:5e:f0:4c:1a:b7:72:4d: e7:2a:c9:07:50:ed:c5:6b:c1:3e:79:06:b8:a0:8c:de:d7:0f: 9e:59:ff:12:3e:9d:50:f7:b8:c5:b4:e2:d6:4f:79:40:88:75: cf:1d:a4:de:02:02:69:ea:05:d3:80:5c:49:59:e8:f5:41:cb: 59:8a:e6:35:80:06:e9:4f:1b:91:42:65:56:6f:69:4c:f4:2f: f2:8c:b1:df:aa:cf:64:34:25:cb:8b:58:c0:35:b5:f3:8c:e6: 06:9b:b2:2d:46:5c:e6:8f:b7:60:b5:4a:4b:5d:e7:97:a0:ef: f5:14:43:89:3f:55:87:cf:e0:18:46:38:f6:6f:58:97:52:45: d5:c5:51:20:5a:7f:c4:67:fe:f8:d0:19:fe:d9:7e:df:65:d5: eb:85:ad:a2:b6:8d:ef:69:5d:25:cc:9a:9b:c5:32:52:31:71: 43:a0:5b:01:34:4c:f9:4a:cd:50:bc:b8:48:78:4d:bb:90:fa: 9c:ad:d4:1e:78:cd:93:cf:45:f3:80:c5:ae:36:ad:e6:66:eb: 30:a8:27:a8:b8:aa:3b:6f:5e:94:a0:1d:ba:e9:a8:9b:44:68: 0a:3c:7a:97:29:8b:42:77:57:ca:d0:4a:ef:b5:9d:d0:31:2c: 76:29:e3:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZEOUUxMTAvBgNVBAUTKDNEMkQ5M0FDOEIxMDg2NTgxN0Q5QTc0Q0M4MUEwMzBE N0QzNUQwNzQwHhcNMjUwNTExMDMzODI2WhcNMjUwNTE4MDMzODI2WjAYMRYwFAYD VQQDEw02ODIwMWJiMi0zYjI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwBi+JcKIdKc4qoqRvMhYCA6jz4/Ms0qPbnbBHG5t/ABjWLopdnYC7/yF2l5n cnn5U0f8fbxeAgy4IzFyFD4EJ1VuHlu7xd7RN24ax5VipQE4bXQ3oBLiwuvUsoFV LVe82ph09FlcVx4gbZr0s9BFxVoOuqrHiAEWTL/b/C3NLO2ezOiwJWcfrKd2366y 936EAjEozZB8BmskkkEX5QON59+uzEStdWWkNvvyDSrz0yhUfdvMcuJMQ4aVAX3i 2K+rxnEv+7VvibMMEM3zUJY5dt3uTpSiVIcLGMQ3VeO/4R1femHQlWtCcCoqvu3j 0t17QMA6GCMJy4EyNbHN+NKGiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPxqU+1X CNrSUHGVpZ+ABxWpDDFPMB8GA1UdIwQYMBaAFD0tk6yLEIZYF9mnTMgaAw19NdB0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkQ5RS83N0JCOTg0QzdE NjExMUVFQjQ2M0M4NUFDNEY5QUUwMi9QUzJUcklzUWhsZ1gyYWRNeUJvRERYMDEw SFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BTMlRySXNRaGxnWDJhZE15Qm9ERFgwMTBIUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NkQ5RS83N0JCOTg0QzdENjExMUVFQjQ2M0M4NUFDNEY5QUUwMi9QUzJUcklzUWhs Z1gyYWRNeUJvRERYMDEwSFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtIG4BEBxPN4556V7wTBq3ck3nKskHUO3Fa8E+eQa4oIze1w+eWf8S Pp1Q97jFtOLWT3lAiHXPHaTeAgJp6gXTgFxJWej1QctZiuY1gAbpTxuRQmVWb2lM 9C/yjLHfqs9kNCXLi1jANbXzjOYGm7ItRlzmj7dgtUpLXeeXoO/1FEOJP1WHz+AY Rjj2b1iXUkXVxVEgWn/EZ/740Bn+2X7fZdXrha2ito3vaV0lzJqbxTJSMXFDoFsB NEz5Ss1QvLhIeE27kPqcrdQeeM2Tz0XzgMWuNq3mZuswqCeouKo7b16UoB266aib RGgKPHqXKYtCd1fK0ErvtZ3QMSx2KeNJ -----END CERTIFICATE-----Generated at Sun May 11 22:10:16 2025 by rpki-client