$ rpki-client -vvf rpki.apnic.net/member_repository/A912582A/78D7496EDDE811EEA3B0E713C4F9AE02/eg_QMrwoEhCzyVIrRxWNVszepgo.mft File: eg_QMrwoEhCzyVIrRxWNVszepgo.mft (raw, json) Hash identifier: CShx5x4jCvDckVRebPQm8qLUWPVNPS71HXjGVfawDeY= Subject key identifier: D1:C8:9E:13:BA:DD:D5:91:77:E6:2E:7B:2C:A5:FF:D9:38:64:AA:DF Authority key identifier: 7A:0F:D0:32:BC:28:12:10:B3:C9:52:2B:47:15:8D:56:CC:DE:A6:0A Certificate issuer: /CN=A912582A/serialNumber=7A0FD032BC281210B3C9522B47158D56CCDEA60A Certificate serial: D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eg_QMrwoEhCzyVIrRxWNVszepgo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912582A/78D7496EDDE811EEA3B0E713C4F9AE02/eg_QMrwoEhCzyVIrRxWNVszepgo.mft Manifest number: CE Signing time: Wed 09 Apr 2025 04:36:05 +0000 Manifest this update: Wed 09 Apr 2025 04:36:05 +0000 Manifest next update: Wed 16 Apr 2025 04:36:05 +0000 Files and hashes: 1: eg_QMrwoEhCzyVIrRxWNVszepgo.crl (hash: xa7Y4kqArMRDA70lGXJD9XHKSK6svZcgnUnra7fijSg=) 2: AEC87CF641F111EFAA3E956BC4F9AE02.roa (hash: mXUMVXFLrrSWvJCpuu18ijJfWusFAjCWTTEEiobIVgs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912582A/78D7496EDDE811EEA3B0E713C4F9AE02/eg_QMrwoEhCzyVIrRxWNVszepgo.crl rsync://rpki.apnic.net/member_repository/A912582A/78D7496EDDE811EEA3B0E713C4F9AE02/eg_QMrwoEhCzyVIrRxWNVszepgo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eg_QMrwoEhCzyVIrRxWNVszepgo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 04:36:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 210 (0xd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912582A Validity Not Before: Apr 9 04:36:05 2025 GMT Not After : Apr 16 04:36:05 2025 GMT Subject: CN=67f5f935-2e87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:5d:a2:b9:ed:c2:78:11:40:a3:22:02:5a:9f: c2:f0:51:e1:ae:ca:f7:7d:a7:08:46:4e:55:75:2d: 38:a0:56:5d:c0:15:db:43:58:bb:f6:2b:f0:f9:9b: 94:85:9b:67:17:ba:14:d1:42:bb:fd:cc:91:48:d9: 69:c4:80:81:30:b2:16:0f:b0:14:dc:71:69:6f:3e: fd:ec:34:05:60:45:3a:81:b9:df:6e:62:a3:cc:c0: 70:8d:af:1c:6b:c8:dc:70:11:11:20:fc:1d:35:4c: 03:b4:a5:43:7f:35:55:04:d5:42:80:86:b7:1d:e4: 0e:1e:0e:31:80:19:b9:ae:e8:0b:1f:38:cf:ed:24: 57:72:fe:bc:a1:a7:e0:12:94:e9:96:65:35:d7:12: 1b:e7:6f:91:a6:e1:6c:ef:46:7a:ce:9a:93:74:01: ca:99:3f:77:39:77:68:7f:d8:cf:e8:b2:91:8b:54: 8a:5b:1d:97:10:78:f0:70:36:31:ad:b7:cb:a0:34: a5:6d:a1:92:0b:e6:49:43:19:c8:1e:a9:73:ee:bd: fb:5c:86:3c:fc:5c:cb:35:f7:5c:61:3b:a0:86:20: 5b:6c:20:61:a4:76:5b:2d:d9:38:be:65:3c:ae:c5: b6:af:0d:2d:d8:0b:8a:01:96:b2:65:99:73:ee:10: 38:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:C8:9E:13:BA:DD:D5:91:77:E6:2E:7B:2C:A5:FF:D9:38:64:AA:DF X509v3 Authority Key Identifier: keyid:7A:0F:D0:32:BC:28:12:10:B3:C9:52:2B:47:15:8D:56:CC:DE:A6:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912582A/78D7496EDDE811EEA3B0E713C4F9AE02/eg_QMrwoEhCzyVIrRxWNVszepgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eg_QMrwoEhCzyVIrRxWNVszepgo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912582A/78D7496EDDE811EEA3B0E713C4F9AE02/eg_QMrwoEhCzyVIrRxWNVszepgo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:fc:72:f8:b5:fc:e6:4c:92:8d:85:7d:4b:71:1c:7d:88:24: 3c:ee:c9:09:83:ab:dd:0f:e4:a0:7a:c4:ff:1b:58:da:c8:81: c9:c8:fe:25:3f:84:44:52:e1:55:6f:86:0f:a4:55:5f:0f:0f: 45:9f:ef:33:b5:f3:2b:c7:b8:b1:01:5f:0a:44:51:01:a7:16: f4:86:cc:f0:89:81:5d:7e:5a:a9:42:c3:1d:1d:fa:c2:12:10: 00:b4:64:1d:b1:e8:ae:40:12:15:9b:fa:4a:cb:68:f6:9e:16: 50:6f:88:38:97:d6:fe:5b:f6:9d:fd:dc:01:fe:e3:b3:8f:5d: 3b:18:ed:1c:1c:57:2c:27:38:3d:29:dc:ab:48:8f:79:37:cf: 8d:0f:08:b7:f2:25:55:e8:39:fb:8a:94:af:87:53:28:df:1e: db:c5:e1:09:8a:a4:7e:26:0a:16:3a:10:03:8c:83:ff:5f:4d: 5f:32:c5:05:9a:5b:19:6b:e1:c7:72:84:78:8c:ae:1d:9a:7f: cc:81:5a:39:d8:6c:7f:e5:0f:b2:90:4b:b8:15:a4:9b:73:34: 90:2a:2b:17:34:ff:40:8f:84:d4:98:fd:d7:b0:63:a1:6a:50: be:51:18:a4:58:09:0b:22:09:79:6d:d9:0e:84:02:a5:36:46: db:ba:b4:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU4MkExMTAvBgNVBAUTKDdBMEZEMDMyQkMyODEyMTBCM0M5NTIyQjQ3MTU4RDU2 Q0NERUE2MEEwHhcNMjUwNDA5MDQzNjA1WhcNMjUwNDE2MDQzNjA1WjAYMRYwFAYD VQQDEw02N2Y1ZjkzNS0yZTg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyl2iue3CeBFAoyICWp/C8FHhrsr3facIRk5VdS04oFZdwBXbQ1i79ivw+ZuU hZtnF7oU0UK7/cyRSNlpxICBMLIWD7AU3HFpbz797DQFYEU6gbnfbmKjzMBwja8c a8jccBERIPwdNUwDtKVDfzVVBNVCgIa3HeQOHg4xgBm5rugLHzjP7SRXcv68oafg EpTplmU11xIb52+RpuFs70Z6zpqTdAHKmT93OXdof9jP6LKRi1SKWx2XEHjwcDYx rbfLoDSlbaGSC+ZJQxnIHqlz7r37XIY8/FzLNfdcYTughiBbbCBhpHZbLdk4vmU8 rsW2rw0t2AuKAZayZZlz7hA4EwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNHInhO6 3dWRd+Yueyyl/9k4ZKrfMB8GA1UdIwQYMBaAFHoP0DK8KBIQs8lSK0cVjVbM3qYK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTgyQS83OEQ3NDk2RURE RTgxMUVFQTNCMEU3MTNDNEY5QUUwMi9lZ19RTXJ3b0VoQ3p5VklyUnhXTlZzemVw Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VnX1FNcndvRWhDenlWSXJSeFdOVnN6ZXBnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NTgyQS83OEQ3NDk2RURERTgxMUVFQTNCMEU3MTNDNEY5QUUwMi9lZ19RTXJ3b0Vo Q3p5VklyUnhXTlZzemVwZ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBo/HL4tfzmTJKNhX1LcRx9iCQ87skJg6vdD+SgesT/G1jayIHJyP4l P4REUuFVb4YPpFVfDw9Fn+8ztfMrx7ixAV8KRFEBpxb0hszwiYFdflqpQsMdHfrC EhAAtGQdseiuQBIVm/pKy2j2nhZQb4g4l9b+W/ad/dwB/uOzj107GO0cHFcsJzg9 KdyrSI95N8+NDwi38iVV6Dn7ipSvh1Mo3x7bxeEJiqR+JgoWOhADjIP/X01fMsUF mlsZa+HHcoR4jK4dmn/MgVo52Gx/5Q+ykEu4FaSbczSQKisXNP9Aj4TUmP3XsGOh alC+URikWAkLIgl5bdkOhAKlNkbburRM -----END CERTIFICATE-----Generated at Wed Apr 9 18:55:17 2025 by rpki-client