$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft File: 2nWrD7Oqh1r631o4-FK9zB3YJvc.mft (raw, json) Hash identifier: wVUtl4e8wiP0amryATYm0a6VD1F9Wnka8Q6asJSrnx4= Subject key identifier: 6C:11:9C:1D:1B:FD:6A:77:95:E7:E3:CE:1C:5F:3A:2A:90:3B:B6:5D Authority key identifier: DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 Certificate issuer: /CN=A91FEFBB/serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Certificate serial: 0188 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft Manifest number: 0180 Signing time: Sun 11 May 2025 02:37:35 +0000 Manifest this update: Sun 11 May 2025 02:37:34 +0000 Manifest next update: Sun 18 May 2025 02:37:34 +0000 Files and hashes: 1: 2nWrD7Oqh1r631o4-FK9zB3YJvc.crl (hash: iITSRaZ6yIounTDzG9jE15/M+vGT14EeCU8vE+gTIVo=) 2: 261D3B8AEE4611ED9BEFED31C4F9AE02.roa (hash: HkCOmQRPg+yDDZPtodRzZcHCpOQoTEGcVWS7eV1BiSA=) 3: 881C3F9CABD311EFBFED7130C4F9AE02.roa (hash: 4Vu2iECkKD+oqedLfhjWXd7CHOWEQhszvHID7EwF+IE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 02:37:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 392 (0x188) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEFBB, serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Validity Not Before: May 11 02:37:34 2025 GMT Not After : May 18 02:37:34 2025 GMT Subject: CN=68200d6e-700b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:d6:f6:22:d6:3d:c9:97:96:c6:48:40:99:98: 08:15:89:fd:9b:51:0c:dd:d5:14:73:8e:80:93:be: 5a:c2:13:cc:1f:bc:fa:36:b1:6c:c4:1c:9d:e0:63: 7a:89:86:12:1c:aa:2d:e6:98:06:14:b4:57:07:5d: 7e:2d:55:c4:a1:be:d5:86:5e:34:e0:b2:ef:a9:15: 82:79:f2:39:60:14:f8:9f:c1:74:ce:8f:12:46:2c: 18:b8:a8:66:b0:92:b0:84:00:cf:d3:48:1d:58:76: e1:16:1f:7b:d3:3a:cf:5a:2e:68:d8:27:a9:26:ff: d8:f3:42:16:05:3e:d3:0a:3f:d1:b6:69:b6:17:6c: ce:26:75:82:09:1d:ac:d6:7c:7a:e9:b3:e3:45:83: 81:9d:8c:cb:75:36:2d:9d:12:39:8a:95:48:09:79: d7:d3:14:10:76:c5:e5:0d:a1:ce:2a:54:a0:91:d3: 07:62:12:19:af:81:b4:8c:e9:65:6a:16:3b:29:ae: 68:c1:41:9c:6c:0f:6a:bc:7a:1e:eb:e7:15:5f:80: 8f:7a:54:aa:03:72:c5:5c:b8:91:6f:dc:21:cd:02: 41:de:5d:fa:90:e8:57:05:d1:68:0e:ec:f0:5e:af: ee:88:9d:70:3a:f3:41:c6:92:2c:ed:60:10:19:56: c5:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:11:9C:1D:1B:FD:6A:77:95:E7:E3:CE:1C:5F:3A:2A:90:3B:B6:5D X509v3 Authority Key Identifier: keyid:DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:f7:d3:6b:76:8a:bf:b1:37:1d:64:76:02:8a:73:2f:48:05: 36:34:6f:60:01:27:d9:37:90:bf:d6:f3:2b:51:4a:11:3b:16: df:e8:20:28:e8:66:b6:22:1f:83:f3:9c:6b:56:5f:82:ae:41: cd:c7:28:f7:d4:e3:a9:c0:f6:6a:c6:9b:1c:21:5e:fb:73:1d: 82:bc:2e:cc:7b:4e:da:62:ed:7d:82:cd:4b:50:66:4f:1d:cd: 78:af:1d:2f:1a:b5:d5:52:76:87:ec:93:87:53:04:2c:7e:ba: 0e:ec:2d:2a:8c:04:bd:bb:43:dc:b3:11:61:fc:21:71:12:1a: 9e:a2:40:2b:36:ee:80:da:40:46:eb:e3:56:ee:59:8b:49:ff: 68:ea:73:33:74:71:56:b6:8f:b3:7b:f3:09:2d:5b:71:67:ee: bb:02:77:94:55:57:37:90:a8:14:68:fa:d9:7e:57:54:d9:10: 1d:23:56:52:80:25:9d:e8:19:29:b4:03:c3:78:fd:4c:8f:75: 2c:c4:5d:d6:a1:c3:78:b5:ae:f4:35:84:ab:45:79:dd:95:c8: 13:59:c1:a1:4a:05:ab:4c:14:3d:cc:7c:63:75:79:77:45:99: 04:40:3e:75:1d:15:bf:54:4d:2b:57:9f:16:38:96:74:5b:3f: f7:48:47:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVGQkIxMTAvBgNVBAUTKERBNzVBQjBGQjNBQTg3NUFGQURGNUEzOEY4NTJCREND MUREODI2RjcwHhcNMjUwNTExMDIzNzM0WhcNMjUwNTE4MDIzNzM0WjAYMRYwFAYD VQQDEw02ODIwMGQ2ZS03MDBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAstb2ItY9yZeWxkhAmZgIFYn9m1EM3dUUc46Ak75awhPMH7z6NrFsxByd4GN6 iYYSHKot5pgGFLRXB11+LVXEob7Vhl404LLvqRWCefI5YBT4n8F0zo8SRiwYuKhm sJKwhADP00gdWHbhFh970zrPWi5o2CepJv/Y80IWBT7TCj/Rtmm2F2zOJnWCCR2s 1nx66bPjRYOBnYzLdTYtnRI5ipVICXnX0xQQdsXlDaHOKlSgkdMHYhIZr4G0jOll ahY7Ka5owUGcbA9qvHoe6+cVX4CPelSqA3LFXLiRb9whzQJB3l36kOhXBdFoDuzw Xq/uiJ1wOvNBxpIs7WAQGVbF4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGwRnB0b /Wp3lefjzhxfOiqQO7ZdMB8GA1UdIwQYMBaAFNp1qw+zqoda+t9aOPhSvcwd2Cb3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUZCQi9EODk2QjVDOEVB NkExMUVEQjVCNkI1NUVDNEY5QUUwMi8ybldyRDdPcWgxcjYzMW80LUZLOXpCM1lK dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJuV3JEN09xaDFyNjMxbzQtRks5ekIzWUp2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RUZCQi9EODk2QjVDOEVBNkExMUVEQjVCNkI1NUVDNEY5QUUwMi8ybldyRDdPcWgx cjYzMW80LUZLOXpCM1lKdmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCw99Nrdoq/sTcdZHYCinMvSAU2NG9gASfZN5C/1vMrUUoROxbf6CAo 6Ga2Ih+D85xrVl+CrkHNxyj31OOpwPZqxpscIV77cx2CvC7Me07aYu19gs1LUGZP Hc14rx0vGrXVUnaH7JOHUwQsfroO7C0qjAS9u0PcsxFh/CFxEhqeokArNu6A2kBG 6+NW7lmLSf9o6nMzdHFWto+ze/MJLVtxZ+67AneUVVc3kKgUaPrZfldU2RAdI1ZS gCWd6BkptAPDeP1Mj3UsxF3WocN4ta70NYSrRXndlcgTWcGhSgWrTBQ9zHxjdXl3 RZkEQD51HRW/VE0rV58WOJZ0Wz/3SEfi -----END CERTIFICATE-----Generated at Sun May 11 04:39:54 2025 by rpki-client