$ rpki-client -vvf rpki.apnic.net/member_repository/A914CF73/A68475502A0111E281723CA608B02CD2/eJ-LeH7T3TUgMzLOs7Uy4frwtsY.mft File: eJ-LeH7T3TUgMzLOs7Uy4frwtsY.mft (raw, json) Hash identifier: OY+LT1+RXtQ5qqRCjd4tf/g6LaBNZPXmQzMgM1nhDbw= Subject key identifier: 77:93:FF:15:B1:3A:D4:DA:C6:B1:40:78:A4:49:1D:99:1D:9A:F2:C7 Authority key identifier: 78:9F:8B:78:7E:D3:DD:35:20:33:32:CE:B3:B5:32:E1:FA:F0:B6:C6 Certificate issuer: /CN=A914CF73/serialNumber=789F8B787ED3DD35203332CEB3B532E1FAF0B6C6 Certificate serial: 3442 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eJ-LeH7T3TUgMzLOs7Uy4frwtsY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CF73/A68475502A0111E281723CA608B02CD2/eJ-LeH7T3TUgMzLOs7Uy4frwtsY.mft Manifest number: 343A Signing time: Sun 20 Apr 2025 15:19:51 +0000 Manifest this update: Sun 20 Apr 2025 15:19:50 +0000 Manifest next update: Sun 27 Apr 2025 15:19:50 +0000 Files and hashes: 1: eJ-LeH7T3TUgMzLOs7Uy4frwtsY.crl (hash: Irs9plZ/ws6ftszpER31DQzLo8gt/y0aiISBdcXJss4=) 2: 5007D8DECAB411E889484D32C4F9AE02.roa (hash: d/14FJHyt97NnvQezwZgszS2h7OqJIW+bhi4rgk0UNI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CF73/A68475502A0111E281723CA608B02CD2/eJ-LeH7T3TUgMzLOs7Uy4frwtsY.crl rsync://rpki.apnic.net/member_repository/A914CF73/A68475502A0111E281723CA608B02CD2/eJ-LeH7T3TUgMzLOs7Uy4frwtsY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eJ-LeH7T3TUgMzLOs7Uy4frwtsY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 15:19:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13378 (0x3442) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CF73, serialNumber=789F8B787ED3DD35203332CEB3B532E1FAF0B6C6 Validity Not Before: Apr 20 15:19:50 2025 GMT Not After : Apr 27 15:19:50 2025 GMT Subject: CN=68051097-c5d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:d2:8a:74:29:cc:14:6e:a2:b6:56:6a:fc:d8: fa:9f:25:13:12:54:2f:a0:ad:7e:97:e1:5f:86:64: ba:93:6c:c9:0d:ec:d6:10:b7:e8:50:e7:04:b9:97: 2c:89:62:69:b9:89:0c:11:e3:3c:14:01:3a:62:0c: a3:0b:65:ce:63:77:94:9a:df:42:e2:0e:d3:e3:6c: 5c:01:77:79:db:68:20:62:ee:77:3d:0d:bc:c9:82: 97:76:9b:f3:bd:54:39:2f:c9:f1:62:e6:9f:de:ec: 00:3b:96:49:9e:27:a8:06:53:70:3b:f6:bf:fa:c4: 5f:83:fc:69:0c:f1:e3:c8:18:bc:39:85:71:bc:2e: d9:aa:d1:f0:5f:6c:d6:7d:8c:b7:eb:f9:6f:b5:82: 4f:11:44:df:31:92:79:0c:ea:70:39:08:22:67:e2: dd:95:b0:4d:28:cc:02:e9:31:1f:ba:ce:60:fe:37: 1e:d5:4f:65:33:9b:96:ad:c2:4e:3a:c3:dc:f6:c7: 76:23:5d:22:a3:4c:4f:be:07:53:9d:62:d8:86:da: 42:a0:c6:dc:66:27:7d:92:fe:c4:5f:18:a3:44:6f: 90:1a:f4:27:20:97:91:6d:64:3e:a4:58:60:0b:ec: 08:38:ea:15:6e:ff:b2:0a:92:3e:98:aa:7d:56:db: 27:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:93:FF:15:B1:3A:D4:DA:C6:B1:40:78:A4:49:1D:99:1D:9A:F2:C7 X509v3 Authority Key Identifier: keyid:78:9F:8B:78:7E:D3:DD:35:20:33:32:CE:B3:B5:32:E1:FA:F0:B6:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CF73/A68475502A0111E281723CA608B02CD2/eJ-LeH7T3TUgMzLOs7Uy4frwtsY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eJ-LeH7T3TUgMzLOs7Uy4frwtsY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CF73/A68475502A0111E281723CA608B02CD2/eJ-LeH7T3TUgMzLOs7Uy4frwtsY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:3e:aa:28:34:c9:5a:ba:3f:e8:8e:d0:af:21:38:14:25:29: 7f:28:3d:af:a7:f0:0c:61:72:c9:b4:38:e5:f0:88:a7:8f:7d: f6:90:41:8d:04:f3:c8:59:6b:ad:76:4f:8b:98:cd:6c:33:8b: 19:74:93:4b:65:53:29:47:82:79:a9:52:48:0d:bf:19:1a:08: d7:84:16:ff:41:06:ae:2d:79:2f:35:fc:af:90:d3:f3:a0:a3: f9:45:20:04:a8:26:34:c7:f1:74:9a:9f:dc:af:e7:b1:06:06: 0b:ac:60:f5:4a:d6:64:85:de:b6:d2:9e:b1:7b:2a:e3:be:8c: 83:21:0f:1d:75:31:ed:75:7a:43:01:6f:86:b6:af:f2:47:7a: ef:95:c5:95:b9:ea:88:69:83:d1:12:35:43:bb:d0:4d:a3:ff: a6:bc:1e:32:46:e8:17:8a:8c:79:78:5c:61:1d:b3:75:50:b9: b8:d1:96:37:07:e8:86:f5:08:1c:b5:46:81:b9:ba:6d:7b:ff: e2:c3:59:8a:26:5f:63:73:80:a5:d4:7e:7c:f0:9f:35:b2:2b: 63:62:9f:7f:f6:bf:00:8b:4a:69:2a:b5:f9:8b:df:33:3a:e2: 95:00:0a:2e:30:a8:98:17:95:65:eb:29:48:6e:7f:89:b2:24: f7:63:f4:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNEIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENGNzMxMTAvBgNVBAUTKDc4OUY4Qjc4N0VEM0REMzUyMDMzMzJDRUIzQjUzMkUx RkFGMEI2QzYwHhcNMjUwNDIwMTUxOTUwWhcNMjUwNDI3MTUxOTUwWjAYMRYwFAYD VQQDEw02ODA1MTA5Ny1jNWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2tKKdCnMFG6itlZq/Nj6nyUTElQvoK1+l+FfhmS6k2zJDezWELfoUOcEuZcs iWJpuYkMEeM8FAE6YgyjC2XOY3eUmt9C4g7T42xcAXd522ggYu53PQ28yYKXdpvz vVQ5L8nxYuaf3uwAO5ZJnieoBlNwO/a/+sRfg/xpDPHjyBi8OYVxvC7ZqtHwX2zW fYy36/lvtYJPEUTfMZJ5DOpwOQgiZ+LdlbBNKMwC6TEfus5g/jce1U9lM5uWrcJO OsPc9sd2I10io0xPvgdTnWLYhtpCoMbcZid9kv7EXxijRG+QGvQnIJeRbWQ+pFhg C+wIOOoVbv+yCpI+mKp9VtsnYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHeT/xWx OtTaxrFAeKRJHZkdmvLHMB8GA1UdIwQYMBaAFHifi3h+0901IDMyzrO1MuH68LbG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0Y3My9BNjg0NzU1MDJB MDExMUUyODE3MjNDQTYwOEIwMkNEMi9lSi1MZUg3VDNUVWdNekxPczdVeTRmcnd0 c1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VKLUxlSDdUM1RVZ016TE9zN1V5NGZyd3RzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Q0Y3My9BNjg0NzU1MDJBMDExMUUyODE3MjNDQTYwOEIwMkNEMi9lSi1MZUg3VDNU VWdNekxPczdVeTRmcnd0c1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3PqooNMlauj/ojtCvITgUJSl/KD2vp/AMYXLJtDjl8Iinj332kEGN BPPIWWutdk+LmM1sM4sZdJNLZVMpR4J5qVJIDb8ZGgjXhBb/QQauLXkvNfyvkNPz oKP5RSAEqCY0x/F0mp/cr+exBgYLrGD1StZkhd620p6xeyrjvoyDIQ8ddTHtdXpD AW+Gtq/yR3rvlcWVueqIaYPREjVDu9BNo/+mvB4yRugXiox5eFxhHbN1ULm40ZY3 B+iG9QgctUaBubpte//iw1mKJl9jc4Cl1H588J81sitjYp9/9r8Ai0ppKrX5i98z OuKVAAouMKiYF5Vl6ylIbn+JsiT3Y/Tu -----END CERTIFICATE-----Generated at Tue Apr 22 14:18:35 2025 by rpki-client