$ rpki-client -vvf rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.mft File: EW-SD4cwZnR6jO3a_-hLz72wNRo.mft (raw, json) Hash identifier: bluo+d+R4owvjhKGJX7gdPRupUjs6PUSMcHd0GFz7JI= Subject key identifier: DE:EC:E9:D1:40:31:67:9D:D4:D4:1C:B7:89:74:C1:19:05:85:62:F8 Authority key identifier: 11:6F:92:0F:87:30:66:74:7A:8C:ED:DA:FF:E8:4B:CF:BD:B0:35:1A Certificate issuer: /CN=A9120CDE/serialNumber=116F920F873066747A8CEDDAFFE84BCFBDB0351A Certificate serial: 117C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EW-SD4cwZnR6jO3a_-hLz72wNRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.mft Manifest number: 1170 Signing time: Fri 04 Apr 2025 17:18:54 +0000 Manifest this update: Fri 04 Apr 2025 17:18:54 +0000 Manifest next update: Fri 11 Apr 2025 17:18:54 +0000 Files and hashes: 1: EW-SD4cwZnR6jO3a_-hLz72wNRo.crl (hash: F34bypA+/iRplbYTo6ati6QnOR48GYgPb3M04jqBKGs=) 2: D8D63660B9A811ECB7EE5A71C4F9AE02.roa (hash: DIX09IMqDwhYz9qe1Nv5iQBk3kT+S7TLOQSBMI/PtT0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.crl rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EW-SD4cwZnR6jO3a_-hLz72wNRo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 17:18:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4476 (0x117c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120CDE Validity Not Before: Apr 4 17:18:54 2025 GMT Not After : Apr 11 17:18:54 2025 GMT Subject: CN=67f0147e-1202 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:5c:a2:0b:34:75:b9:0d:50:66:2a:8b:20:0b: 62:37:62:4b:80:31:03:5c:65:4b:4f:72:91:ca:9f: 0f:f6:26:3e:56:a0:59:f6:93:e4:87:62:7c:e2:60: 62:9a:a9:57:96:94:02:36:99:cf:b6:46:54:04:22: b4:2a:f5:46:97:8e:90:9a:2d:d2:8d:4d:51:5b:d9: cf:08:f1:56:42:9e:d4:6a:77:e5:81:37:f6:d7:c7: 07:7e:6f:02:54:cd:7f:13:8a:01:bb:17:ef:3d:89: ba:40:0e:29:f5:4b:7e:c8:90:5b:73:7e:2a:b4:76: 71:6b:df:23:46:0c:c7:6e:0b:6d:86:aa:8a:8a:00: 40:05:b9:05:77:4c:7c:80:a7:02:12:d1:47:f6:ea: d0:9e:dc:35:cb:dd:19:97:6e:65:b1:ab:15:33:c3: 7a:03:0f:5c:70:bd:be:5b:63:db:77:e5:49:5d:11: 36:21:22:24:08:4e:78:3b:d5:bb:79:30:69:65:54: 82:37:f1:53:28:f1:32:6a:9a:ca:0a:9d:e7:a6:2d: 4a:89:76:90:2d:7c:57:71:24:73:2c:a8:9a:3f:9e: fc:a3:dc:99:02:a3:02:ca:e6:12:f6:47:f1:ee:66: 8d:ec:34:b8:fd:00:a5:8f:a6:76:31:45:51:b6:e5: 33:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:EC:E9:D1:40:31:67:9D:D4:D4:1C:B7:89:74:C1:19:05:85:62:F8 X509v3 Authority Key Identifier: keyid:11:6F:92:0F:87:30:66:74:7A:8C:ED:DA:FF:E8:4B:CF:BD:B0:35:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EW-SD4cwZnR6jO3a_-hLz72wNRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:84:f1:82:a8:03:38:65:c7:7c:ff:f4:43:b1:5e:52:9e:e2: 4e:d7:f1:28:e9:a8:8b:64:09:04:3b:bd:39:03:36:d2:d5:49: ed:a4:04:4e:cb:dc:e3:dc:62:4f:9a:d3:ac:14:89:60:cf:ee: 91:69:96:a6:43:22:18:47:4c:a9:9e:67:3d:6d:46:86:d5:02: db:bb:27:e4:5e:cd:0a:c7:db:82:fb:69:1e:fb:46:57:f7:c4: a2:41:68:29:34:cc:8b:03:d7:61:49:c1:36:6f:9b:47:69:78: e2:3f:84:55:05:76:f9:9d:0e:ca:a4:a8:b0:90:fc:07:4d:9c: 8a:c4:3c:12:2a:85:88:43:84:25:05:fe:49:59:ba:0b:ba:82: d5:54:c0:4c:62:7f:73:ff:72:67:ca:0a:ec:b0:e9:84:15:da: 09:ba:43:19:8b:17:f3:6f:5b:05:1d:d6:d7:10:f6:00:bc:5c: c0:fd:45:b7:ab:51:63:48:92:10:13:0b:84:db:86:3c:cd:b7: 25:51:9f:8e:59:bc:39:55:61:e9:5a:6f:fb:0e:85:ab:6d:b5: 6b:1b:df:be:13:d4:aa:a5:6b:a1:45:03:83:15:01:3f:d6:cf: 59:19:73:df:0c:46:e5:8a:4f:19:c2:80:5a:d9:ee:7d:78:e5: 61:61:e2:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEXwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBDREUxMTAvBgNVBAUTKDExNkY5MjBGODczMDY2NzQ3QThDRUREQUZGRTg0QkNG QkRCMDM1MUEwHhcNMjUwNDA0MTcxODU0WhcNMjUwNDExMTcxODU0WjAYMRYwFAYD VQQDEw02N2YwMTQ3ZS0xMjAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6VyiCzR1uQ1QZiqLIAtiN2JLgDEDXGVLT3KRyp8P9iY+VqBZ9pPkh2J84mBi mqlXlpQCNpnPtkZUBCK0KvVGl46Qmi3SjU1RW9nPCPFWQp7UanflgTf218cHfm8C VM1/E4oBuxfvPYm6QA4p9Ut+yJBbc34qtHZxa98jRgzHbgtthqqKigBABbkFd0x8 gKcCEtFH9urQntw1y90Zl25lsasVM8N6Aw9ccL2+W2Pbd+VJXRE2ISIkCE54O9W7 eTBpZVSCN/FTKPEyaprKCp3npi1KiXaQLXxXcSRzLKiaP578o9yZAqMCyuYS9kfx 7maN7DS4/QClj6Z2MUVRtuUzsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN7s6dFA MWed1NQct4l0wRkFhWL4MB8GA1UdIwQYMBaAFBFvkg+HMGZ0eozt2v/oS8+9sDUa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMENERS8yM0Q4NTY2RUZC REIxMUU4OTIwQ0IwNDRDNEY5QUUwMi9FVy1TRDRjd1puUjZqTzNhXy1oTHo3MndO Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VXLVNENGN3Wm5SNmpPM2FfLWhMejcyd05Sby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MENERS8yM0Q4NTY2RUZCREIxMUU4OTIwQ0IwNDRDNEY5QUUwMi9FVy1TRDRjd1pu UjZqTzNhXy1oTHo3MndOUm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJhPGCqAM4Zcd8//RDsV5SnuJO1/Eo6aiLZAkEO705AzbS1UntpARO y9zj3GJPmtOsFIlgz+6RaZamQyIYR0ypnmc9bUaG1QLbuyfkXs0Kx9uC+2ke+0ZX 98SiQWgpNMyLA9dhScE2b5tHaXjiP4RVBXb5nQ7KpKiwkPwHTZyKxDwSKoWIQ4Ql Bf5JWboLuoLVVMBMYn9z/3JnygrssOmEFdoJukMZixfzb1sFHdbXEPYAvFzA/UW3 q1FjSJIQEwuE24Y8zbclUZ+OWbw5VWHpWm/7DoWrbbVrG9++E9SqpWuhRQODFQE/ 1s9ZGXPfDEblik8ZwoBa2e59eOVhYeIE -----END CERTIFICATE-----Generated at Fri Apr 4 22:15:10 2025 by rpki-client