$ rpki-client -vvf rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft File: 2h2yzTH0VPaVYdhmXck--BLzl7A.mft (raw, json) Hash identifier: ZD63DobgPlwKQi20NDx/LHQSzhMAm46HxK9brrGtSmE= Subject key identifier: B9:08:4B:99:E5:49:5C:FE:BD:27:BD:03:94:37:9A:5B:EF:B5:3B:D4 Authority key identifier: DA:1D:B2:CD:31:F4:54:F6:95:61:D8:66:5D:C9:3E:F8:12:F3:97:B0 Certificate issuer: /CN=A919A7CA/serialNumber=DA1DB2CD31F454F69561D8665DC93EF812F397B0 Certificate serial: 0125 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft Manifest number: 011E Signing time: Thu 15 May 2025 04:08:23 +0000 Manifest this update: Thu 15 May 2025 04:08:23 +0000 Manifest next update: Thu 22 May 2025 04:08:23 +0000 Files and hashes: 1: 2h2yzTH0VPaVYdhmXck--BLzl7A.crl (hash: boHXp826Z3l+e6OIQ4nKWRDvbsooMuFzaXrJ2B2+VYc=) 2: 730B201A81E911EEAEFE7735C4F9AE02.roa (hash: +MbNfxyhCamzN9tHOdSAmjfpdzIa0MaUiU8CGByu53M=) 3: 4317395081E611EE9EFE132BC4F9AE02.roa (hash: nEgdbI6cuLNeRuLPJnkG4QO1ReMDMeUPyTkJXfsO5xE=) 4: E71AB92A7F7D11EE8C183162C4F9AE02.roa (hash: shdTH9d6PBZ6zz9OKDDb+zRKMfpyDz4E/FhykKTuDEk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.crl rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 04:08:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 293 (0x125) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A7CA, serialNumber=DA1DB2CD31F454F69561D8665DC93EF812F397B0 Validity Not Before: May 15 04:08:23 2025 GMT Not After : May 22 04:08:23 2025 GMT Subject: CN=682568b7-7a7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:1f:f8:86:06:e2:45:1d:54:c2:97:a3:ed:55: 95:03:7c:e2:e5:2f:dc:b8:1a:07:aa:89:20:86:ab: 2c:5f:de:12:88:6a:fd:92:02:bd:0f:03:e6:ff:5a: 27:46:4c:65:31:a3:11:e4:52:4b:4c:70:48:62:57: b2:2f:b0:c7:9b:99:fc:ad:eb:ef:00:29:b4:a7:ee: 6b:35:4f:73:70:7d:3d:95:d7:ba:ed:c2:fe:07:7c: 34:17:89:5f:10:6c:0d:fd:cd:ac:75:38:dd:60:7d: d1:55:69:08:ca:60:e3:7d:6d:4c:40:d4:69:bd:1e: 82:e7:bd:85:21:39:6a:3f:a5:25:b5:17:18:69:fd: f6:6f:19:f6:54:09:ab:41:bc:2e:9c:29:a2:b7:4c: 0d:f5:70:3f:24:54:95:95:54:4b:23:e0:34:2d:78: be:14:1b:71:14:94:1f:9d:a7:e3:31:2f:89:52:b0: 99:a1:37:7b:90:d0:fe:33:c2:a1:fa:3f:05:56:47: b7:05:2c:02:1d:16:73:89:7d:45:1c:27:69:19:b2: e9:d4:1c:04:ce:f8:61:b4:c9:9e:c9:f6:c4:3a:94: b2:6d:49:24:58:5a:bc:33:dd:4d:e2:4f:1d:c8:e0: 30:69:5b:a1:c7:81:7b:47:1f:44:13:b4:ee:d0:55: 8a:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:08:4B:99:E5:49:5C:FE:BD:27:BD:03:94:37:9A:5B:EF:B5:3B:D4 X509v3 Authority Key Identifier: keyid:DA:1D:B2:CD:31:F4:54:F6:95:61:D8:66:5D:C9:3E:F8:12:F3:97:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:16:83:09:80:e2:f8:f4:70:68:89:0a:2c:3c:ba:50:e9:35: 4a:b4:e7:27:69:41:84:28:26:73:c2:62:f2:d2:d8:b0:d4:43: 44:4e:4a:43:94:13:60:e1:d0:f4:bf:53:27:25:9d:cb:a1:ea: 07:ff:56:43:db:b3:a9:d1:2a:0d:2f:94:bf:f2:ca:36:78:81: fb:a9:44:c7:90:3d:c9:ea:79:99:83:82:3c:e5:08:d5:ef:ea: 21:e1:61:78:f8:83:55:d7:e4:a4:4d:42:59:d1:f0:e4:8e:97: 4f:05:10:74:06:3d:67:3a:38:76:87:36:25:93:62:2c:bc:4c: 58:7d:c9:07:2c:f2:08:b0:cc:19:6a:76:1f:06:0d:b7:ac:1e: 4b:a6:b4:83:ad:2d:b8:e4:c5:0c:59:57:c6:d3:c8:56:de:73: 49:ed:ac:bb:1b:8b:14:89:78:4d:8d:e0:cb:8b:ce:97:b1:5a: ed:b3:40:84:6a:a9:43:87:66:98:a4:df:48:d2:2d:28:62:b7: 2b:aa:54:d7:bc:15:18:2a:64:9e:ff:5c:26:23:2a:db:94:f6: e8:8a:86:84:b0:42:52:10:d6:b9:84:f0:67:8e:b1:6b:67:34: dd:6a:ef:f8:d1:08:37:55:8c:05:26:48:21:27:81:c0:1f:a6: 40:09:0e:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE3Q0ExMTAvBgNVBAUTKERBMURCMkNEMzFGNDU0RjY5NTYxRDg2NjVEQzkzRUY4 MTJGMzk3QjAwHhcNMjUwNTE1MDQwODIzWhcNMjUwNTIyMDQwODIzWjAYMRYwFAYD VQQDEw02ODI1NjhiNy03YTdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtx/4hgbiRR1Uwpej7VWVA3zi5S/cuBoHqokghqssX94SiGr9kgK9DwPm/1on RkxlMaMR5FJLTHBIYleyL7DHm5n8revvACm0p+5rNU9zcH09lde67cL+B3w0F4lf EGwN/c2sdTjdYH3RVWkIymDjfW1MQNRpvR6C572FITlqP6UltRcYaf32bxn2VAmr QbwunCmit0wN9XA/JFSVlVRLI+A0LXi+FBtxFJQfnafjMS+JUrCZoTd7kND+M8Kh +j8FVke3BSwCHRZziX1FHCdpGbLp1BwEzvhhtMmeyfbEOpSybUkkWFq8M91N4k8d yOAwaVuhx4F7Rx9EE7Tu0FWKjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLkIS5nl SVz+vSe9A5Q3mlvvtTvUMB8GA1UdIwQYMBaAFNodss0x9FT2lWHYZl3JPvgS85ew MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTdDQS80Q0Y3RjE1ODdF QjcxMUVFOTYyM0U5MUFDNEY5QUUwMi8yaDJ5elRIMFZQYVZZZGhtWGNrLS1CTHps N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJoMnl6VEgwVlBhVllkaG1YY2stLUJMemw3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTdDQS80Q0Y3RjE1ODdFQjcxMUVFOTYyM0U5MUFDNEY5QUUwMi8yaDJ5elRIMFZQ YVZZZGhtWGNrLS1CTHpsN0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2FoMJgOL49HBoiQosPLpQ6TVKtOcnaUGEKCZzwmLy0tiw1ENETkpD lBNg4dD0v1MnJZ3LoeoH/1ZD27Op0SoNL5S/8so2eIH7qUTHkD3J6nmZg4I85QjV 7+oh4WF4+INV1+SkTUJZ0fDkjpdPBRB0Bj1nOjh2hzYlk2IsvExYfckHLPIIsMwZ anYfBg23rB5LprSDrS245MUMWVfG08hW3nNJ7ay7G4sUiXhNjeDLi86XsVrts0CE aqlDh2aYpN9I0i0oYrcrqlTXvBUYKmSe/1wmIyrblPboioaEsEJSENa5hPBnjrFr ZzTdau/40Qg3VYwFJkghJ4HAH6ZACQ5Z -----END CERTIFICATE-----Generated at Sat May 17 05:46:44 2025 by rpki-client