$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft File: 2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft (raw, json) Hash identifier: WNTZVWv6m4eFA3ULzDjbgEEe2+LHcIGYmsj/uJXygGM= Subject key identifier: E6:25:A6:53:DB:3C:26:F9:34:73:71:5D:D8:6E:F9:05:AF:41:33:8A Authority key identifier: D9:BD:70:E7:77:F8:61:AE:54:38:57:14:8E:63:35:2F:DA:84:C0:7A Certificate issuer: /CN=A91F0AF0/serialNumber=D9BD70E777F861AE543857148E63352FDA84C07A Certificate serial: 0C5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft Manifest number: 1D6A Signing time: Thu 08 May 2025 17:21:12 +0000 Manifest this update: Thu 08 May 2025 17:21:11 +0000 Manifest next update: Thu 15 May 2025 17:21:11 +0000 Files and hashes: 1: 2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl (hash: BJiTF7oIVEy2ZNJizv6gikn98c2GwKCdAGVFea33FfM=) 2: CE3C7EF66FEB11EB91967864C4F9AE02.roa (hash: rns6y4xnalGROKJT2q8Fjb3eMxdlbdFZdL9Xn8yjrx4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 May 2025 17:21:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3167 (0xc5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0AF0, serialNumber=D9BD70E777F861AE543857148E63352FDA84C07A Validity Not Before: May 8 17:21:11 2025 GMT Not After : May 15 17:21:11 2025 GMT Subject: CN=681ce808-8f75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:fe:49:7b:0d:df:35:fa:08:90:d4:33:0e:1f: 1c:2e:9c:f7:22:f2:e3:c9:8e:bb:f7:b8:73:a6:01: 89:7f:62:bb:01:b4:01:85:45:bb:9c:36:2c:78:c3: b6:41:da:02:fc:3d:2c:5f:81:07:c9:ba:30:d6:9a: bb:a8:10:40:cd:09:54:6c:c2:d4:26:03:c2:40:d5: c6:e0:1b:37:37:ed:63:06:42:40:50:15:dd:75:b0: c2:48:c1:d5:79:95:88:60:f6:1b:37:90:f5:73:a1: 82:fc:47:0a:b9:dd:ac:87:db:e4:b7:7b:f9:94:0a: 18:47:44:c0:2b:93:ed:3f:8a:05:5b:f6:48:3f:4e: 8e:26:1c:36:1b:bb:cc:ab:5d:4c:de:0f:57:96:dd: fd:dd:f6:6f:ad:7d:fb:84:a3:5d:4e:0f:73:4e:4e: c7:72:e5:2b:5e:63:94:66:bb:63:ee:05:b8:f9:5d: a5:73:b4:63:d4:50:fd:24:a4:a5:d6:33:d2:7d:00: c0:07:0e:ee:0d:7d:8f:11:0e:9a:7b:9a:fd:5e:fe: 1b:98:e4:16:c1:2a:6d:2c:8d:1d:8c:22:2e:6a:70: e5:24:9a:5e:5c:28:c2:87:04:9d:0a:fb:ee:d9:48: 3f:1a:e7:ed:5a:c2:5f:0f:48:fc:84:90:44:0a:e0: 42:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:25:A6:53:DB:3C:26:F9:34:73:71:5D:D8:6E:F9:05:AF:41:33:8A X509v3 Authority Key Identifier: keyid:D9:BD:70:E7:77:F8:61:AE:54:38:57:14:8E:63:35:2F:DA:84:C0:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:6d:99:4e:c9:a8:da:a7:94:f7:63:84:2c:02:c0:1c:e0:0a: 60:3a:42:46:ec:93:90:a9:df:2d:a6:d3:7a:e8:4b:a0:76:b3: e4:c2:69:6b:5e:77:5d:7f:b3:b5:e7:d1:44:c3:80:db:cc:65: 60:8f:22:a3:4f:91:3f:66:42:c0:5d:ba:b9:21:13:2b:c9:c5: ae:26:1c:ba:36:f2:fd:b6:ec:cf:7f:1a:3b:73:73:7a:6f:aa: f6:e8:ad:ac:76:ca:29:e1:25:fb:53:ce:4f:97:6e:b1:44:b7: e5:ae:86:35:ed:be:20:c2:1d:f4:dd:23:15:7f:1c:78:61:00: 74:54:0a:e6:78:cc:bb:ea:45:5b:7b:ec:6f:c3:8b:a4:3c:2b: 7d:85:41:d3:54:cb:6b:60:a8:3e:e7:30:eb:ef:0a:b0:00:b2: 13:fe:f3:e5:7e:60:69:65:e2:6a:26:94:e8:d4:79:a0:45:7b: 71:7c:dc:01:1b:38:60:3b:1a:89:ad:36:4c:c9:90:93:15:4d: 78:10:e3:09:89:61:4d:c9:ff:b1:93:74:14:3d:7f:8e:a5:32: 5b:17:17:25:c3:e7:56:a8:c2:5d:c2:ab:97:73:f8:b1:6f:cd: 5c:c3:0b:83:e5:7c:71:a1:73:28:b9:e0:f3:98:0b:ed:a1:96: 5f:a2:22:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDF8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBBRjAxMTAvBgNVBAUTKEQ5QkQ3MEU3NzdGODYxQUU1NDM4NTcxNDhFNjMzNTJG REE4NEMwN0EwHhcNMjUwNTA4MTcyMTExWhcNMjUwNTE1MTcyMTExWjAYMRYwFAYD VQQDEw02ODFjZTgwOC04Zjc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs/5Jew3fNfoIkNQzDh8cLpz3IvLjyY6797hzpgGJf2K7AbQBhUW7nDYseMO2 QdoC/D0sX4EHybow1pq7qBBAzQlUbMLUJgPCQNXG4Bs3N+1jBkJAUBXddbDCSMHV eZWIYPYbN5D1c6GC/EcKud2sh9vkt3v5lAoYR0TAK5PtP4oFW/ZIP06OJhw2G7vM q11M3g9Xlt393fZvrX37hKNdTg9zTk7HcuUrXmOUZrtj7gW4+V2lc7Rj1FD9JKSl 1jPSfQDABw7uDX2PEQ6ae5r9Xv4bmOQWwSptLI0djCIuanDlJJpeXCjChwSdCvvu 2Ug/GuftWsJfD0j8hJBECuBCxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOYlplPb PCb5NHNxXdhu+QWvQTOKMB8GA1UdIwQYMBaAFNm9cOd3+GGuVDhXFI5jNS/ahMB6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEFGMC9FMzc2Mjk1MDBG RkYxMUU5ODgxNUFFMjJDNEY5QUUwMi8yYjF3NTNmNFlhNVVPRmNVam1NMUw5cUV3 SG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJiMXc1M2Y0WWE1VU9GY1VqbU0xTDlxRXdIby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEFGMC9FMzc2Mjk1MDBGRkYxMUU5ODgxNUFFMjJDNEY5QUUwMi8yYjF3NTNmNFlh NVVPRmNVam1NMUw5cUV3SG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdbZlOyajap5T3Y4QsAsAc4ApgOkJG7JOQqd8tptN66EugdrPkwmlr Xnddf7O159FEw4DbzGVgjyKjT5E/ZkLAXbq5IRMrycWuJhy6NvL9tuzPfxo7c3N6 b6r26K2sdsop4SX7U85Pl26xRLflroY17b4gwh303SMVfxx4YQB0VArmeMy76kVb e+xvw4ukPCt9hUHTVMtrYKg+5zDr7wqwALIT/vPlfmBpZeJqJpTo1HmgRXtxfNwB GzhgOxqJrTZMyZCTFU14EOMJiWFNyf+xk3QUPX+OpTJbFxclw+dWqMJdwquXc/ix b81cwwuD5XxxoXMoueDzmAvtoZZfoiJi -----END CERTIFICATE-----Generated at Sat May 10 05:04:49 2025 by rpki-client