$ rpki-client -vvf rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.mft File: EpTEi8aWr-ggvRWC80NnutqwJDI.mft (raw, json) Hash identifier: +ixX2jjcxcjyCvDMVYYPDcde3fMnvw2Xg9ODVpWCz8M= Subject key identifier: AC:2E:18:F2:11:17:8F:93:45:9D:F1:D9:A4:EA:43:AF:88:D8:40:86 Authority key identifier: 12:94:C4:8B:C6:96:AF:E8:20:BD:15:82:F3:43:67:BA:DA:B0:24:32 Certificate issuer: /CN=A9117817/serialNumber=1294C48BC696AFE820BD1582F34367BADAB02432 Certificate serial: 0456 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EpTEi8aWr-ggvRWC80NnutqwJDI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.mft Manifest number: 044E Signing time: Fri 11 Apr 2025 00:10:51 +0000 Manifest this update: Fri 11 Apr 2025 00:10:51 +0000 Manifest next update: Fri 18 Apr 2025 00:10:51 +0000 Files and hashes: 1: EpTEi8aWr-ggvRWC80NnutqwJDI.crl (hash: heRWtWwuc7fXCgorQO+IL2c9LIZY3QJouLIOoWTCuQQ=) 2: 2A84118CE0A311EC9CF2B738C4F9AE02.roa (hash: d5/NJRnIjibSymNbNk/lOaJ1Q3nAQoqs/MS6HVTtaFE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.crl rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EpTEi8aWr-ggvRWC80NnutqwJDI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 00:10:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1110 (0x456) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117817, serialNumber=1294C48BC696AFE820BD1582F34367BADAB02432 Validity Not Before: Apr 11 00:10:51 2025 GMT Not After : Apr 18 00:10:51 2025 GMT Subject: CN=67f85e0b-02a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:b7:43:0e:15:b8:c1:70:03:02:4e:5e:3f:15: da:63:5d:3d:93:e1:11:49:f5:b5:d2:38:6d:c6:56: ee:ce:57:5d:53:bc:eb:cd:f0:18:fd:c7:82:4f:e9: 7a:08:2d:9b:2a:18:a3:a8:ab:8f:8a:64:77:22:33: 93:ca:01:44:39:d6:14:33:29:55:4d:ef:40:85:50: f6:90:e3:7e:bc:e2:1a:e0:1e:7b:7c:1b:bf:f6:88: 8e:a4:61:82:59:ce:3a:5e:bd:51:94:46:06:a7:09: 4e:c7:a0:48:bd:83:a8:54:1d:7e:7e:e4:cd:fa:b2: 71:47:4a:6e:00:ed:2a:8c:8d:f8:c8:e2:f9:21:24: 3c:06:25:00:e1:d9:4f:e1:1d:cc:e0:12:a0:02:a6: a9:67:b8:14:2c:bf:5a:b6:fe:68:99:bf:62:6c:0e: f5:67:9d:3f:6a:69:35:fc:cc:ec:8b:e1:fd:ee:88: 14:07:ca:4d:89:fe:58:20:80:65:71:23:e4:2f:ea: 80:f6:ea:11:c0:34:57:a7:d3:e9:e2:2d:12:07:f5: 53:1e:cd:2f:3e:98:3b:bb:f8:89:44:70:1b:cf:eb: c0:4e:7b:29:bb:3a:f0:2f:9f:6c:12:19:06:fc:a5: fd:5d:89:1a:7e:9c:35:59:a0:1b:84:3f:49:a7:18: b2:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:2E:18:F2:11:17:8F:93:45:9D:F1:D9:A4:EA:43:AF:88:D8:40:86 X509v3 Authority Key Identifier: keyid:12:94:C4:8B:C6:96:AF:E8:20:BD:15:82:F3:43:67:BA:DA:B0:24:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EpTEi8aWr-ggvRWC80NnutqwJDI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:f4:9d:a4:1f:7b:19:4e:5f:2b:0c:16:ba:5b:be:2b:83:87: f1:81:3c:34:e6:60:dc:21:8a:c4:ab:52:b8:cf:02:1b:38:ca: ac:48:06:30:15:08:66:8e:83:fa:f9:8d:a8:68:7f:5e:8e:82: 25:18:c5:e2:ad:42:c2:27:fc:37:03:ce:60:7d:a0:05:fa:1a: aa:15:e7:9d:44:c7:4c:48:e5:9c:7d:c7:b5:03:20:3f:9c:da: 3c:1d:06:0a:c5:c2:42:21:06:fd:31:76:7a:fd:35:bf:94:f7: d9:c1:97:81:34:20:5e:ed:00:df:77:02:29:46:b0:67:53:d4: 84:f1:1e:90:95:36:a9:8e:80:b2:ce:f0:4c:c5:1d:30:6e:ad: 85:f0:68:a0:49:e5:a1:d0:24:c6:ae:11:98:3d:08:1d:3f:a0: fd:86:6c:f9:5e:12:17:16:16:00:f7:03:b0:36:06:c8:b2:a3: f1:c5:59:ca:e8:0f:5f:a5:1e:46:f0:e9:0b:9a:b1:f5:98:ca: 68:90:a3:aa:5b:16:b1:9d:39:b1:9c:0e:23:a8:ef:1b:52:a2: 06:32:fb:6f:4e:e0:e1:54:19:c0:92:f1:92:f1:50:64:b1:a2: 80:02:f3:de:70:38:e8:84:8c:26:02:10:20:bc:d9:2e:b3:e3: 26:6a:c9:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc4MTcxMTAvBgNVBAUTKDEyOTRDNDhCQzY5NkFGRTgyMEJEMTU4MkYzNDM2N0JB REFCMDI0MzIwHhcNMjUwNDExMDAxMDUxWhcNMjUwNDE4MDAxMDUxWjAYMRYwFAYD VQQDEw02N2Y4NWUwYi0wMmE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr7dDDhW4wXADAk5ePxXaY109k+ERSfW10jhtxlbuzlddU7zrzfAY/ceCT+l6 CC2bKhijqKuPimR3IjOTygFEOdYUMylVTe9AhVD2kON+vOIa4B57fBu/9oiOpGGC Wc46Xr1RlEYGpwlOx6BIvYOoVB1+fuTN+rJxR0puAO0qjI34yOL5ISQ8BiUA4dlP 4R3M4BKgAqapZ7gULL9atv5omb9ibA71Z50/amk1/Mzsi+H97ogUB8pNif5YIIBl cSPkL+qA9uoRwDRXp9Pp4i0SB/VTHs0vPpg7u/iJRHAbz+vATnspuzrwL59sEhkG /KX9XYkafpw1WaAbhD9JpxiyKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKwuGPIR F4+TRZ3x2aTqQ6+I2ECGMB8GA1UdIwQYMBaAFBKUxIvGlq/oIL0VgvNDZ7rasCQy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzgxNy8wNjgzRUI3MDRE QUMxMUVDODU3MTYwMjNDNEY5QUUwMi9FcFRFaThhV3ItZ2d2UldDODBObnV0cXdK REkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VwVEVpOGFXci1nZ3ZSV0M4ME5udXRxd0pESS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzgxNy8wNjgzRUI3MDREQUMxMUVDODU3MTYwMjNDNEY5QUUwMi9FcFRFaThhV3It Z2d2UldDODBObnV0cXdKREkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBC9J2kH3sZTl8rDBa6W74rg4fxgTw05mDcIYrEq1K4zwIbOMqsSAYw FQhmjoP6+Y2oaH9ejoIlGMXirULCJ/w3A85gfaAF+hqqFeedRMdMSOWcfce1AyA/ nNo8HQYKxcJCIQb9MXZ6/TW/lPfZwZeBNCBe7QDfdwIpRrBnU9SE8R6QlTapjoCy zvBMxR0wbq2F8GigSeWh0CTGrhGYPQgdP6D9hmz5XhIXFhYA9wOwNgbIsqPxxVnK 6A9fpR5G8OkLmrH1mMpokKOqWxaxnTmxnA4jqO8bUqIGMvtvTuDhVBnAkvGS8VBk saKAAvPecDjohIwmAhAgvNkus+MmasnR -----END CERTIFICATE-----Generated at Sat Apr 12 17:40:55 2025 by rpki-client