$ rpki-client -vvf rpki.apnic.net/member_repository/A9111FFD/42EB0534DD3811EF9C346745C4F9AE02/EEz4cGO16r803k4l_s6ata9zbBQ.mft File: EEz4cGO16r803k4l_s6ata9zbBQ.mft (raw, json) Hash identifier: CP3n+PyT5t/LW0rkvNcyV44niZLDpuuo0YW/tpKpRSI= Subject key identifier: 51:17:42:07:18:D5:6E:48:16:C0:86:E9:3C:CE:21:0B:60:3F:73:C8 Authority key identifier: 10:4C:F8:70:63:B5:EA:BF:34:DE:4E:25:FE:CE:9A:B5:AF:73:6C:14 Certificate issuer: /CN=A9111FFD/serialNumber=104CF87063B5EABF34DE4E25FECE9AB5AF736C14 Certificate serial: 2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EEz4cGO16r803k4l_s6ata9zbBQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111FFD/42EB0534DD3811EF9C346745C4F9AE02/EEz4cGO16r803k4l_s6ata9zbBQ.mft Manifest number: 29 Signing time: Thu 03 Apr 2025 07:03:59 +0000 Manifest this update: Thu 03 Apr 2025 07:03:59 +0000 Manifest next update: Thu 10 Apr 2025 07:03:59 +0000 Files and hashes: 1: EEz4cGO16r803k4l_s6ata9zbBQ.crl (hash: r5jNVSD5+YB3sDjBjYbeMH8pCyuZ8bNkNmzN/HQq99M=) 2: 7BF6BA42E91A11EF804C4B57C4F9AE02.roa (hash: HNlYiglg+bBDY8hf2XbMc61T9NCbbnRV5gfydPimiu8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111FFD/42EB0534DD3811EF9C346745C4F9AE02/EEz4cGO16r803k4l_s6ata9zbBQ.crl rsync://rpki.apnic.net/member_repository/A9111FFD/42EB0534DD3811EF9C346745C4F9AE02/EEz4cGO16r803k4l_s6ata9zbBQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EEz4cGO16r803k4l_s6ata9zbBQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 07:03:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44 (0x2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111FFD Validity Not Before: Apr 3 07:03:59 2025 GMT Not After : Apr 10 07:03:59 2025 GMT Subject: CN=67ee32df-e7bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:5a:c2:9e:bb:50:13:7d:f1:d5:e9:96:1f:8a: 1b:a1:30:58:a3:db:f0:e4:c1:12:f2:43:84:53:17: d4:ff:dd:5d:c3:07:61:d5:31:b7:5a:89:87:84:57: 0a:f0:f5:04:e8:d6:68:b2:ab:f3:e6:43:ea:2f:80: 08:a4:c9:a9:0a:1a:80:4a:53:11:6a:12:70:f7:a1: b8:94:29:ee:99:0b:72:5f:75:f6:28:4e:42:ee:48: 0b:f9:66:26:d0:6a:3d:ce:ae:7a:68:e4:89:d0:7b: b0:10:74:3c:e5:b0:28:46:82:a6:3a:bd:aa:7d:91: 5b:5c:d7:00:15:aa:a6:26:22:f5:e0:81:0d:2d:d9: b3:40:8c:98:bf:8c:e4:05:91:2b:e8:50:75:a7:3d: f6:b6:45:c2:73:44:7c:9f:e7:e9:80:af:3a:50:31: 75:b5:a8:ed:12:ac:49:4e:eb:ad:4f:fa:1a:4e:79: 94:02:7d:c2:ff:e9:67:00:37:14:55:fb:91:86:43: 6e:2d:87:75:f8:ca:6c:05:c6:65:69:3c:ac:3c:3e: 53:38:d0:01:fe:cb:13:e2:b5:e7:c7:22:15:8c:53: 4d:55:a5:46:f7:95:83:f3:00:ee:56:08:9a:df:89: a2:1c:7b:3a:c7:f5:d3:cf:a1:ba:0b:58:4b:21:18: 63:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:17:42:07:18:D5:6E:48:16:C0:86:E9:3C:CE:21:0B:60:3F:73:C8 X509v3 Authority Key Identifier: keyid:10:4C:F8:70:63:B5:EA:BF:34:DE:4E:25:FE:CE:9A:B5:AF:73:6C:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111FFD/42EB0534DD3811EF9C346745C4F9AE02/EEz4cGO16r803k4l_s6ata9zbBQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EEz4cGO16r803k4l_s6ata9zbBQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111FFD/42EB0534DD3811EF9C346745C4F9AE02/EEz4cGO16r803k4l_s6ata9zbBQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:5e:27:02:46:d9:48:47:0b:dc:3e:71:6f:97:ff:0d:13:9e: 14:88:c5:f9:67:f5:c1:54:cf:20:19:9b:47:18:3d:fc:f3:f1: af:3d:ab:5f:d5:e4:1f:32:69:8b:ce:24:28:b9:c8:bb:8a:aa: a7:5d:9f:8e:80:4b:f8:c6:82:81:a7:fb:bb:85:ab:db:8b:44: 6f:0d:45:2b:f0:ca:7d:27:14:95:0a:f8:7b:c0:64:80:3f:4c: e3:8a:15:e9:1e:00:6d:12:f9:2b:32:a8:3e:a2:bd:d0:b0:57: 07:bf:d9:b0:6b:53:68:00:34:b2:95:1c:2d:10:72:22:e4:d1: ed:d9:6f:0f:84:45:d1:18:19:b1:0d:5a:b3:56:2a:3b:da:ed: 76:53:70:b0:83:98:19:38:13:06:cb:4f:f4:d0:e8:fd:bc:40: 25:7a:d8:c3:33:cb:b2:d2:5d:f9:2a:b3:75:b4:d6:b1:cc:14: e0:32:26:43:34:e6:22:11:6a:75:57:d9:83:2e:fd:9b:35:d0: d8:b5:44:80:11:5d:e7:a6:4d:66:bf:9e:7a:96:7d:7a:6f:06: 28:0b:80:f4:de:de:46:ed:98:5d:cc:e5:8f:ae:cc:ee:d0:be: a3:79:e5:5c:79:a1:e4:77:dd:04:84:ad:5d:ac:8f:65:67:97: 4a:1e:64:a2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx MUZGRDExMC8GA1UEBRMoMTA0Q0Y4NzA2M0I1RUFCRjM0REU0RTI1RkVDRTlBQjVB RjczNkMxNDAeFw0yNTA0MDMwNzAzNTlaFw0yNTA0MTAwNzAzNTlaMBgxFjAUBgNV BAMTDTY3ZWUzMmRmLWU3YmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCWsKeu1ATffHV6ZYfihuhMFij2/DkwRLyQ4RTF9T/3V3DB2HVMbdaiYeEVwrw 9QTo1miyq/PmQ+ovgAikyakKGoBKUxFqEnD3obiUKe6ZC3JfdfYoTkLuSAv5ZibQ aj3Ornpo5InQe7AQdDzlsChGgqY6vap9kVtc1wAVqqYmIvXggQ0t2bNAjJi/jOQF kSvoUHWnPfa2RcJzRHyf5+mArzpQMXW1qO0SrElO661P+hpOeZQCfcL/6WcANxRV +5GGQ24th3X4ymwFxmVpPKw8PlM40AH+yxPitefHIhWMU01VpUb3lYPzAO5WCJrf iaIcezrH9dPPoboLWEshGGPPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUURdCBxjV bkgWwIbpPM4hC2A/c8gwHwYDVR0jBBgwFoAUEEz4cGO16r803k4l/s6ata9zbBQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTExRkZELzQyRUIwNTM0REQz ODExRUY5QzM0Njc0NUM0RjlBRTAyL0VFejRjR08xNnI4MDNrNGxfczZhdGE5emJC US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRUV6NGNHTzE2cjgwM2s0bF9zNmF0YTl6YkJRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEx RkZELzQyRUIwNTM0REQzODExRUY5QzM0Njc0NUM0RjlBRTAyL0VFejRjR08xNnI4 MDNrNGxfczZhdGE5emJCUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHNeJwJG2UhHC9w+cW+X/w0TnhSIxfln9cFUzyAZm0cYPfzz8a89q1/V 5B8yaYvOJCi5yLuKqqddn46AS/jGgoGn+7uFq9uLRG8NRSvwyn0nFJUK+HvAZIA/ TOOKFekeAG0S+SsyqD6ivdCwVwe/2bBrU2gANLKVHC0QciLk0e3Zbw+ERdEYGbEN WrNWKjva7XZTcLCDmBk4EwbLT/TQ6P28QCV62MMzy7LSXfkqs3W01rHMFOAyJkM0 5iIRanVX2YMu/Zs10Ni1RIARXeemTWa/nnqWfXpvBigLgPTe3kbtmF3M5Y+uzO7Q vqN55Vx5oeR33QSErV2sj2Vnl0oeZKI= -----END CERTIFICATE-----Generated at Sat Apr 5 07:10:10 2025 by rpki-client