$ rpki-client -vvf rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/2-7rwlp6m5tnWgTi9CHv5G6nJSA.mft File: 2-7rwlp6m5tnWgTi9CHv5G6nJSA.mft (raw, json) Hash identifier: rTaiN/cx8zTQNiphQ0eBUlE57Jff6W0ZANlrfCqMns0= Subject key identifier: 8C:CE:4A:D7:8D:ED:4C:B0:1C:8D:AB:AF:C1:CF:B0:EA:4A:D3:18:FD Authority key identifier: DB:EE:EB:C2:5A:7A:9B:9B:67:5A:04:E2:F4:21:EF:E4:6E:A7:25:20 Certificate issuer: /CN=A91A300F/serialNumber=DBEEEBC25A7A9B9B675A04E2F421EFE46EA72520 Certificate serial: 0430 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-7rwlp6m5tnWgTi9CHv5G6nJSA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/2-7rwlp6m5tnWgTi9CHv5G6nJSA.mft Manifest number: 042C Signing time: Wed 07 May 2025 00:12:11 +0000 Manifest this update: Wed 07 May 2025 00:12:11 +0000 Manifest next update: Wed 14 May 2025 00:12:11 +0000 Files and hashes: 1: 2-7rwlp6m5tnWgTi9CHv5G6nJSA.crl (hash: x+OmtLKZMtk5MuumsGd6I5+G0n6S1L4gClc5SR2eQOY=) 2: 9C2DE17A5D9311ECB2ABB63FC4F9AE02.roa (hash: NlMZe5gqmVPJHi7tBl3pc3oKWd3PWEvyri4lhroQCrA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/2-7rwlp6m5tnWgTi9CHv5G6nJSA.crl rsync://rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/2-7rwlp6m5tnWgTi9CHv5G6nJSA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-7rwlp6m5tnWgTi9CHv5G6nJSA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 14 May 2025 00:12:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1072 (0x430) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A300F, serialNumber=DBEEEBC25A7A9B9B675A04E2F421EFE46EA72520 Validity Not Before: May 7 00:12:11 2025 GMT Not After : May 14 00:12:11 2025 GMT Subject: CN=681aa55b-532f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:2f:6a:ae:56:4f:eb:7e:26:e3:49:06:75:af: 27:7f:34:29:a8:80:9b:c8:d2:da:70:3f:1f:92:98: 44:d3:4a:c9:fe:fb:41:0e:0d:90:35:16:ef:84:76: 3d:6d:39:af:59:4b:ba:14:68:c1:e3:4e:d1:c6:d6: 8c:e9:e7:00:df:24:e4:08:03:09:1e:3f:34:cb:8c: 9c:28:31:7a:36:0d:13:d6:3e:44:8e:79:78:71:ba: 32:d7:a0:4c:0f:7e:3f:3e:40:20:55:6d:5c:c9:9a: 97:23:41:60:b8:62:eb:e3:1d:39:bd:8b:f8:c0:dd: ed:5b:d5:3f:cf:1e:83:f9:30:34:c9:31:fa:86:2c: c7:4c:e9:69:a5:86:0f:f4:21:08:7b:17:65:8d:62: 9d:6b:f9:77:f1:0c:61:66:d3:68:d1:91:04:36:90: ee:39:fb:b9:7e:38:f7:1c:27:6b:4c:be:8d:e8:10: d7:9a:11:c7:07:bb:1e:23:10:d5:aa:99:b6:5d:47: 6c:df:f6:14:38:ab:50:9a:e0:76:1b:af:03:ba:aa: 8c:df:0c:b6:d5:88:cf:dc:cc:f6:2f:a7:25:3d:ef: 5b:f9:d7:e8:47:be:e7:8b:c4:45:1a:bf:d5:cd:f8: 14:09:95:be:de:ee:f9:05:ce:17:e2:8d:71:e6:7e: 8c:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:CE:4A:D7:8D:ED:4C:B0:1C:8D:AB:AF:C1:CF:B0:EA:4A:D3:18:FD X509v3 Authority Key Identifier: keyid:DB:EE:EB:C2:5A:7A:9B:9B:67:5A:04:E2:F4:21:EF:E4:6E:A7:25:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/2-7rwlp6m5tnWgTi9CHv5G6nJSA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-7rwlp6m5tnWgTi9CHv5G6nJSA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/2-7rwlp6m5tnWgTi9CHv5G6nJSA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:f5:ac:b0:ef:71:a8:ec:0f:82:77:d0:91:82:63:ca:b9:c5: b4:93:35:4e:a1:b9:fa:70:7b:2f:fc:c8:51:c8:59:1e:66:c4: 3c:72:75:18:02:6e:19:1a:31:b8:61:83:2e:90:91:36:e9:69: ef:5c:c5:6b:80:d3:82:d4:ee:21:c5:74:b6:ed:a9:c8:19:2e: 68:5f:42:fa:40:d8:b0:af:43:2f:e2:e2:53:db:63:88:f8:f9: 62:59:32:42:0f:03:39:fc:86:97:51:51:d1:5e:e7:cf:91:77: 5c:2a:b3:de:d3:d0:72:9c:bc:cf:e1:45:3c:e1:58:9d:92:cb: 7d:cc:de:96:6c:19:5f:18:0c:c6:ef:64:2a:0f:79:cd:e7:03: 5c:02:df:6d:2a:fd:38:07:82:cc:a8:36:e9:d5:45:e6:b0:c9: b2:43:4c:a5:6a:2d:bf:ea:24:88:81:30:95:02:60:f5:56:a5: ce:f5:cc:18:52:6a:e2:94:46:54:20:70:28:87:26:26:85:4e: 36:38:63:ac:58:b5:58:9c:4f:23:04:15:92:cb:9b:62:d7:61: 61:82:44:b2:81:e2:63:89:25:76:22:0d:79:a9:23:53:bd:2b: 00:79:66:c6:dd:7d:f5:91:57:c9:ba:0c:03:4e:27:13:4d:5b: 3f:45:e6:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTMwMEYxMTAvBgNVBAUTKERCRUVFQkMyNUE3QTlCOUI2NzVBMDRFMkY0MjFFRkU0 NkVBNzI1MjAwHhcNMjUwNTA3MDAxMjExWhcNMjUwNTE0MDAxMjExWjAYMRYwFAYD VQQDEw02ODFhYTU1Yi01MzJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0y9qrlZP634m40kGda8nfzQpqICbyNLacD8fkphE00rJ/vtBDg2QNRbvhHY9 bTmvWUu6FGjB407RxtaM6ecA3yTkCAMJHj80y4ycKDF6Ng0T1j5Ejnl4cboy16BM D34/PkAgVW1cyZqXI0FguGLr4x05vYv4wN3tW9U/zx6D+TA0yTH6hizHTOlppYYP 9CEIexdljWKda/l38QxhZtNo0ZEENpDuOfu5fjj3HCdrTL6N6BDXmhHHB7seIxDV qpm2XUds3/YUOKtQmuB2G68DuqqM3wy21YjP3Mz2L6clPe9b+dfoR77ni8RFGr/V zfgUCZW+3u75Bc4X4o1x5n6M+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIzOSteN 7UywHI2rr8HPsOpK0xj9MB8GA1UdIwQYMBaAFNvu68JaepubZ1oE4vQh7+RupyUg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzAwRi8xQUQ1QUY3NDVE OTExMUVDOUFGQjhEM0RDNEY5QUUwMi8yLTdyd2xwNm01dG5XZ1RpOUNIdjVHNm5K U0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzItN3J3bHA2bTV0bldnVGk5Q0h2NUc2bkpTQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzAwRi8xQUQ1QUY3NDVEOTExMUVDOUFGQjhEM0RDNEY5QUUwMi8yLTdyd2xwNm01 dG5XZ1RpOUNIdjVHNm5KU0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCv9ayw73Go7A+Cd9CRgmPKucW0kzVOobn6cHsv/MhRyFkeZsQ8cnUY Am4ZGjG4YYMukJE26WnvXMVrgNOC1O4hxXS27anIGS5oX0L6QNiwr0Mv4uJT22OI +PliWTJCDwM5/IaXUVHRXufPkXdcKrPe09BynLzP4UU84Vidkst9zN6WbBlfGAzG 72QqD3nN5wNcAt9tKv04B4LMqDbp1UXmsMmyQ0ylai2/6iSIgTCVAmD1VqXO9cwY UmrilEZUIHAohyYmhU42OGOsWLVYnE8jBBWSy5ti12FhgkSygeJjiSV2Ig15qSNT vSsAeWbG3X31kVfJugwDTicTTVs/RebI -----END CERTIFICATE-----Generated at Fri May 9 00:07:28 2025 by rpki-client