$ rpki-client -vvf rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft File: 2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft (raw, json) Hash identifier: JXVjcA/k+UFnS3PA9PLFv9+ayEhI86B+lUMz7CHg+Uk= Subject key identifier: 3A:D8:D3:16:59:CB:E3:4D:C0:C2:A7:F0:75:AF:29:3A:EE:DA:65:3A Authority key identifier: D8:3B:93:E3:1E:93:99:37:D8:CB:15:FE:39:CA:5E:6E:8F:EA:FA:9B Certificate issuer: /CN=A9197277/serialNumber=D83B93E31E939937D8CB15FE39CA5E6E8FEAFA9B Certificate serial: FF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft Manifest number: F9 Signing time: Tue 13 May 2025 04:23:16 +0000 Manifest this update: Tue 13 May 2025 04:23:15 +0000 Manifest next update: Tue 20 May 2025 04:23:15 +0000 Files and hashes: 1: 2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl (hash: axPg2Ba7F4kcCTpKhWjBC0fn1c+YCk3tFex3azcU914=) 2: 2DCC0688B57211EEBB68526DC4F9AE02.roa (hash: ISi9gMsFzLmCrnxNv9LX4WndyIlBo1W9bMj3vV8OrvU=) 3: 2E31B8FCB57211EEBB68526DC4F9AE02.roa (hash: XVC372fFbzyMJ0najd3nCWGY6qSm44Rgv1v3SKiEpsU=) 4: 6F5F30B8B56111EE91C72951C4F9AE02.roa (hash: g33ewG8+stt2H8q9hyzT5GDP+B5N5luEGnz8BVmfPXs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 04:23:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 255 (0xff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197277, serialNumber=D83B93E31E939937D8CB15FE39CA5E6E8FEAFA9B Validity Not Before: May 13 04:23:15 2025 GMT Not After : May 20 04:23:15 2025 GMT Subject: CN=6822c934-0a00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:bf:d8:60:8d:73:f4:7e:a7:40:42:85:3d:d2: eb:43:d3:8c:ab:6b:8b:aa:fb:03:b5:63:06:fe:74: 91:e4:2a:7d:c8:66:cd:91:59:a5:9d:e9:54:a2:b5: b9:63:48:6a:ec:57:5a:f9:2f:5a:50:36:e0:6c:85: 13:ac:67:a5:b6:01:c7:46:7a:dc:89:59:70:2c:0b: dc:db:a3:e9:df:e9:d7:a9:e8:a3:94:2b:4d:1c:06: 9f:6f:39:a8:ec:10:fc:54:be:30:64:e2:e5:d5:bc: 48:e4:a3:4b:0f:b4:92:b2:4a:fe:bc:fd:5d:e5:4c: 3d:14:30:c6:87:c7:bb:8a:68:76:bb:7d:4d:14:0d: 0c:78:14:95:0a:9b:e5:45:78:46:75:19:f5:02:18: 1c:ac:f7:21:d9:ea:e0:4d:d6:9b:87:5f:5d:ed:6d: ab:14:b3:94:58:10:69:eb:8c:36:a0:8d:6d:69:90: 52:bc:4f:d0:fa:65:aa:ae:58:bd:19:95:04:33:31: de:f5:b7:49:d6:ed:fe:04:93:f1:01:26:ba:a9:ef: d3:18:f4:60:8a:49:0b:0f:0c:4d:6b:db:88:53:87: 36:ed:91:82:36:cb:72:d9:33:8d:58:c4:63:9d:47: d6:54:6e:15:54:cd:d6:8d:a5:e1:71:92:8f:02:37: 09:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:D8:D3:16:59:CB:E3:4D:C0:C2:A7:F0:75:AF:29:3A:EE:DA:65:3A X509v3 Authority Key Identifier: keyid:D8:3B:93:E3:1E:93:99:37:D8:CB:15:FE:39:CA:5E:6E:8F:EA:FA:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:38:95:08:d0:3e:f7:fc:ba:33:88:de:ac:21:be:99:8c:92: 25:54:2f:04:b0:64:c0:a7:28:d7:4a:93:46:77:9e:1f:28:61: 0d:c5:e9:a1:07:61:3a:b1:c6:1f:ca:c8:ea:c4:31:cf:b5:06: 1d:23:94:52:3d:1c:0c:d4:b3:6a:18:cb:a5:8b:16:20:22:d8: f7:3e:60:71:59:ec:c4:8c:50:4d:b7:5f:4a:a3:a1:55:c0:a7: b9:96:28:32:bf:ee:6b:97:c7:86:af:bf:15:22:f2:41:80:bd: ba:86:2f:68:b5:c2:d9:22:b7:bb:29:37:0b:7c:c6:24:11:5c: 60:10:bb:85:ea:81:2f:81:91:a2:0d:bb:9f:d2:fd:b4:35:a2: 87:61:f9:3c:99:d3:ca:d2:d2:52:f3:de:a1:34:fa:57:d1:e5: ef:37:1e:c5:2f:cc:41:e2:af:28:e8:2e:a4:85:fa:14:2d:71: 71:c5:21:d2:e0:ef:c6:43:3f:d2:ef:e7:e3:e5:18:97:33:da: 62:66:7b:33:d0:de:89:56:8c:3e:6d:f9:0b:e6:bf:3e:b2:13: f6:d9:24:b2:7f:27:e6:11:83:3c:50:8e:58:94:4d:f1:4a:56: b5:b4:b1:d7:4d:23:b3:2f:84:20:f3:fa:74:61:b9:7e:2a:70: cb:af:96:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAP8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyNzcxMTAvBgNVBAUTKEQ4M0I5M0UzMUU5Mzk5MzdEOENCMTVGRTM5Q0E1RTZF OEZFQUZBOUIwHhcNMjUwNTEzMDQyMzE1WhcNMjUwNTIwMDQyMzE1WjAYMRYwFAYD VQQDEw02ODIyYzkzNC0wYTAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApL/YYI1z9H6nQEKFPdLrQ9OMq2uLqvsDtWMG/nSR5Cp9yGbNkVmlnelUorW5 Y0hq7Fda+S9aUDbgbIUTrGeltgHHRnrciVlwLAvc26Pp3+nXqeijlCtNHAafbzmo 7BD8VL4wZOLl1bxI5KNLD7SSskr+vP1d5Uw9FDDGh8e7imh2u31NFA0MeBSVCpvl RXhGdRn1AhgcrPch2ergTdabh19d7W2rFLOUWBBp64w2oI1taZBSvE/Q+mWqrli9 GZUEMzHe9bdJ1u3+BJPxASa6qe/TGPRgikkLDwxNa9uIU4c27ZGCNsty2TONWMRj nUfWVG4VVM3WjaXhcZKPAjcJ8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDrY0xZZ y+NNwMKn8HWvKTru2mU6MB8GA1UdIwQYMBaAFNg7k+Mek5k32MsV/jnKXm6P6vqb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzI3Ny80M0E3RTg5NEI1 NjAxMUVFOTExQzVENEZDNEY5QUUwMi8yRHVUNHg2VG1UZll5eFgtT2NwZWJvX3Et cHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJEdVQ0eDZUbVRmWXl4WC1PY3BlYm9fcS1wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzI3Ny80M0E3RTg5NEI1NjAxMUVFOTExQzVENEZDNEY5QUUwMi8yRHVUNHg2VG1U Zll5eFgtT2NwZWJvX3EtcHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBOJUI0D73/LoziN6sIb6ZjJIlVC8EsGTApyjXSpNGd54fKGENxemh B2E6scYfysjqxDHPtQYdI5RSPRwM1LNqGMulixYgItj3PmBxWezEjFBNt19Ko6FV wKe5ligyv+5rl8eGr78VIvJBgL26hi9otcLZIre7KTcLfMYkEVxgELuF6oEvgZGi Dbuf0v20NaKHYfk8mdPK0tJS896hNPpX0eXvNx7FL8xB4q8o6C6khfoULXFxxSHS 4O/GQz/S7+fj5RiXM9piZnsz0N6JVow+bfkL5r8+shP22SSyfyfmEYM8UI5YlE3x Sla1tLHXTSOzL4Qg8/p0Ybl+KnDLr5ZH -----END CERTIFICATE-----Generated at Wed May 14 11:46:03 2025 by rpki-client