$ rpki-client -vvf rpki.apnic.net/member_repository/A913B1DA/A90F8DA44C7911EEA79DCD3BC4F9AE02/EQn7xzoYmz1kcTofbEhqBOe0Oxc.mft File: EQn7xzoYmz1kcTofbEhqBOe0Oxc.mft (raw, json) Hash identifier: b28Y4G5DeQrwsexGb1TN3gZkMnTv8opjUUktGcPBhjc= Subject key identifier: 54:84:3A:CB:C7:6E:52:A0:DE:3F:32:30:7F:E2:6A:03:5D:58:65:B2 Authority key identifier: 11:09:FB:C7:3A:18:9B:3D:64:71:3A:1F:6C:48:6A:04:E7:B4:3B:17 Certificate issuer: /CN=A913B1DA/serialNumber=1109FBC73A189B3D64713A1F6C486A04E7B43B17 Certificate serial: 012D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EQn7xzoYmz1kcTofbEhqBOe0Oxc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B1DA/A90F8DA44C7911EEA79DCD3BC4F9AE02/EQn7xzoYmz1kcTofbEhqBOe0Oxc.mft Manifest number: 012D Signing time: Tue 08 Apr 2025 15:28:41 +0000 Manifest this update: Tue 08 Apr 2025 15:28:41 +0000 Manifest next update: Tue 15 Apr 2025 15:28:41 +0000 Files and hashes: 1: EQn7xzoYmz1kcTofbEhqBOe0Oxc.crl (hash: DQPZmQ7tfXpBOGrMqegCo/5NkrkOk3kCVAM9rHNH1uU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B1DA/A90F8DA44C7911EEA79DCD3BC4F9AE02/EQn7xzoYmz1kcTofbEhqBOe0Oxc.crl rsync://rpki.apnic.net/member_repository/A913B1DA/A90F8DA44C7911EEA79DCD3BC4F9AE02/EQn7xzoYmz1kcTofbEhqBOe0Oxc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EQn7xzoYmz1kcTofbEhqBOe0Oxc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 15:28:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 301 (0x12d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B1DA Validity Not Before: Apr 8 15:28:41 2025 GMT Not After : Apr 15 15:28:41 2025 GMT Subject: CN=67f540a9-d87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:f5:74:42:c0:a1:24:29:e1:ae:a8:7c:bd:ca: 11:91:26:2b:92:2b:69:a5:f1:c4:98:de:d5:0a:27: ef:34:4e:96:f7:a3:77:7b:f2:27:27:e2:c7:b2:89: bb:af:0f:e4:9a:6f:b8:aa:58:37:09:f9:25:54:61: 60:21:ce:1a:4e:5c:20:7d:42:a2:f3:93:bc:e0:b0: 5f:28:85:24:64:9f:e4:1e:6e:50:7c:d5:5d:24:9c: 85:d3:4d:92:c3:4d:49:67:97:ec:64:bf:2c:0c:e3: 8c:e3:57:f8:13:9c:a3:2e:31:ac:6f:6e:b6:0a:29: dd:49:32:43:1c:85:b6:89:80:8e:19:a2:51:65:8c: 0d:2d:27:5d:9f:9a:d9:5b:43:f4:11:47:2f:c8:6e: 03:e0:0a:f2:e8:db:18:f0:9c:ff:19:31:44:c8:04: 35:4e:5e:b2:7d:e4:ac:57:58:a6:38:bd:ee:8b:49: 50:f2:49:bb:25:b8:f7:b3:aa:54:25:50:74:85:f2: ac:c6:9f:8e:8d:8d:e5:21:6a:cf:e7:2a:01:40:f6: a0:77:77:6c:41:ae:9d:1f:44:aa:78:9b:8f:9b:8e: 2f:75:c6:40:51:10:77:17:53:33:6b:fb:49:62:6b: 0d:20:a6:e0:09:55:62:16:26:c4:10:73:e3:25:5d: 64:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:84:3A:CB:C7:6E:52:A0:DE:3F:32:30:7F:E2:6A:03:5D:58:65:B2 X509v3 Authority Key Identifier: keyid:11:09:FB:C7:3A:18:9B:3D:64:71:3A:1F:6C:48:6A:04:E7:B4:3B:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B1DA/A90F8DA44C7911EEA79DCD3BC4F9AE02/EQn7xzoYmz1kcTofbEhqBOe0Oxc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EQn7xzoYmz1kcTofbEhqBOe0Oxc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B1DA/A90F8DA44C7911EEA79DCD3BC4F9AE02/EQn7xzoYmz1kcTofbEhqBOe0Oxc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:94:c8:28:1b:ac:e2:67:12:a7:2a:80:03:15:e6:d2:76:9e: 9c:0a:d3:ab:57:57:c0:a0:4b:f4:f7:9e:55:55:9d:ec:02:1d: 88:c6:63:42:42:d8:c7:49:69:94:6f:37:d8:8e:9b:04:de:d4: 58:69:4d:86:e9:b9:de:11:5a:e4:a2:67:0a:ee:c3:fe:84:47: 9f:4a:13:75:c0:a2:bd:a2:e2:73:83:c3:15:2a:3e:b8:87:37: d4:71:b7:03:2a:60:50:26:b3:d3:5b:98:c1:6b:64:7f:10:7c: 6b:20:ba:d3:07:fe:96:54:5d:85:69:95:be:54:50:12:af:d1: c5:47:62:b7:52:b1:31:f2:47:a8:27:92:47:50:f5:ee:26:93: 5d:61:ea:2c:11:e5:d9:37:a5:c1:ae:bb:3e:71:73:06:b2:9f: 0a:af:04:30:de:fc:3f:4d:f6:de:a3:f4:6c:94:0d:3f:a9:66: 2b:ef:99:1d:44:37:d5:02:00:f7:8f:62:53:ac:8d:ac:d7:b9: e1:19:27:37:b7:2c:48:ac:b1:96:3d:de:93:a4:fe:59:49:11: 97:b0:38:00:2c:d4:01:92:ba:aa:ef:af:d1:ed:c1:62:60:18: 8a:11:10:65:db:17:e1:23:ea:03:02:c1:b4:9e:7d:ae:c5:b5: e3:77:95:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0IxREExMTAvBgNVBAUTKDExMDlGQkM3M0ExODlCM0Q2NDcxM0ExRjZDNDg2QTA0 RTdCNDNCMTcwHhcNMjUwNDA4MTUyODQxWhcNMjUwNDE1MTUyODQxWjAYMRYwFAYD VQQDEw02N2Y1NDBhOS1kODdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApPV0QsChJCnhrqh8vcoRkSYrkitppfHEmN7VCifvNE6W96N3e/InJ+LHsom7 rw/kmm+4qlg3CfklVGFgIc4aTlwgfUKi85O84LBfKIUkZJ/kHm5QfNVdJJyF002S w01JZ5fsZL8sDOOM41f4E5yjLjGsb262CindSTJDHIW2iYCOGaJRZYwNLSddn5rZ W0P0EUcvyG4D4Ary6NsY8Jz/GTFEyAQ1Tl6yfeSsV1imOL3ui0lQ8km7Jbj3s6pU JVB0hfKsxp+OjY3lIWrP5yoBQPagd3dsQa6dH0SqeJuPm44vdcZAURB3F1Mza/tJ YmsNIKbgCVViFibEEHPjJV1kmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFSEOsvH blKg3j8yMH/iagNdWGWyMB8GA1UdIwQYMBaAFBEJ+8c6GJs9ZHE6H2xIagTntDsX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjFEQS9BOTBGOERBNDRD NzkxMUVFQTc5RENEM0JDNEY5QUUwMi9FUW43eHpvWW16MWtjVG9mYkVocUJPZTBP eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0VRbjd4em9ZbXoxa2NUb2ZiRWhxQk9lME94Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjFEQS9BOTBGOERBNDRDNzkxMUVFQTc5RENEM0JDNEY5QUUwMi9FUW43eHpvWW16 MWtjVG9mYkVocUJPZTBPeGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZlMgoG6ziZxKnKoADFebSdp6cCtOrV1fAoEv0955VVZ3sAh2IxmNC QtjHSWmUbzfYjpsE3tRYaU2G6bneEVrkomcK7sP+hEefShN1wKK9ouJzg8MVKj64 hzfUcbcDKmBQJrPTW5jBa2R/EHxrILrTB/6WVF2FaZW+VFASr9HFR2K3UrEx8keo J5JHUPXuJpNdYeosEeXZN6XBrrs+cXMGsp8KrwQw3vw/Tfbeo/RslA0/qWYr75kd RDfVAgD3j2JTrI2s17nhGSc3tyxIrLGWPd6TpP5ZSRGXsDgALNQBkrqq76/R7cFi YBiKERBl2xfhI+oDAsG0nn2uxbXjd5UH -----END CERTIFICATE-----Generated at Thu Apr 10 22:04:57 2025 by rpki-client