$ rpki-client -vvf rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft File: ehMEShEYWGwP2hOLs-vdSEiRTjc.mft (raw, json) Hash identifier: HFqSU2p1KWCWoZr0B3NMzy8ZR4u8gFQZ+tJ5OxhNPUY= Subject key identifier: 93:37:86:95:DF:9F:79:C8:6F:4C:1E:71:5B:AC:32:16:73:34:2B:9A Authority key identifier: 7A:13:04:4A:11:18:58:6C:0F:DA:13:8B:B3:EB:DD:48:48:91:4E:37 Certificate issuer: /CN=A9154EAF/serialNumber=7A13044A1118586C0FDA138BB3EBDD4848914E37 Certificate serial: 0247 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ehMEShEYWGwP2hOLs-vdSEiRTjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft Manifest number: 0244 Signing time: Mon 07 Apr 2025 01:28:20 +0000 Manifest this update: Mon 07 Apr 2025 01:28:19 +0000 Manifest next update: Mon 14 Apr 2025 01:28:19 +0000 Files and hashes: 1: ehMEShEYWGwP2hOLs-vdSEiRTjc.crl (hash: jWqUNy7HEQdK+80Q7GCTkiMmxOmuCfL54L3IDO004o4=) 2: 62A0C17A16C511ED91E80F56C4F9AE02.roa (hash: kng6fCGLTbPsbCoI7dxHc95AMq1MgoPXW3QCzJfYN0g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.crl rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ehMEShEYWGwP2hOLs-vdSEiRTjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 01:28:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 583 (0x247) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154EAF Validity Not Before: Apr 7 01:28:19 2025 GMT Not After : Apr 14 01:28:19 2025 GMT Subject: CN=67f32a33-52b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:ae:f9:51:bb:28:35:f6:4a:a7:83:b5:c8:f2: 4d:9a:36:4d:ac:66:ac:27:e3:67:17:2a:5c:d4:c4: 87:29:0d:a4:d6:e3:ba:ee:b5:fc:38:ef:67:49:97: 86:31:88:cd:c8:55:05:3c:f2:50:c0:3b:65:db:5c: 68:c1:7f:19:e8:b4:ae:61:70:96:c7:6f:a6:46:90: 6e:8f:0b:f5:cc:2b:5f:46:82:f6:23:2d:d0:04:c3: 18:48:7d:74:1b:b2:98:6b:74:2a:f2:24:34:d1:dd: 27:43:40:7a:6a:a7:66:1e:59:9d:ab:31:17:27:8b: 93:31:52:e1:45:ae:67:2d:cd:57:8b:cd:18:df:49: d9:11:b3:07:7f:eb:0a:f3:9b:c8:47:95:c7:35:e8: b5:12:76:af:31:ad:16:24:35:11:2a:3c:49:e9:1d: c1:6e:32:67:cd:7c:49:3b:f3:dc:a2:f3:df:25:18: 8e:7c:6f:85:99:d6:ac:5e:0f:a1:e9:07:d9:98:93: 96:10:0e:64:11:f4:cb:b0:3f:89:c6:cf:b1:78:5c: 6f:b0:2a:11:1b:ed:d5:43:92:b1:0f:ed:fd:3a:e1: 52:69:79:34:b9:ee:ae:a0:a2:8d:af:99:27:d0:f1: 49:00:b7:03:88:b0:fb:b5:a4:a3:4e:bc:22:f7:ee: 75:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:37:86:95:DF:9F:79:C8:6F:4C:1E:71:5B:AC:32:16:73:34:2B:9A X509v3 Authority Key Identifier: keyid:7A:13:04:4A:11:18:58:6C:0F:DA:13:8B:B3:EB:DD:48:48:91:4E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ehMEShEYWGwP2hOLs-vdSEiRTjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:ed:f9:3c:a1:e1:fa:7b:8e:ac:cd:ec:4d:12:04:4f:5e:bc: 72:f3:5f:13:fc:42:b6:0f:f9:f7:6d:80:cc:20:0b:6d:53:4c: 4b:a2:df:75:ca:7b:fd:d5:aa:e7:1e:20:5d:89:ab:12:40:24: 5d:7e:6b:c3:4a:44:37:9f:f1:15:b2:51:ff:7c:9e:db:3c:fa: c1:84:10:0d:08:27:ad:6d:9d:fe:27:3c:41:f1:a7:78:b7:69: f1:d7:30:ac:fb:72:79:85:86:3c:fc:f8:6e:39:17:1f:d7:fb: 80:5a:5c:96:9c:12:ab:e6:52:a1:ec:4c:45:d2:26:1e:cb:38: 0a:de:8f:6e:03:a9:fa:16:33:31:64:3d:2b:ad:c7:ae:38:c4: 84:f6:12:3a:d6:ef:b6:0f:16:69:ff:83:83:14:6e:a9:0d:11: 98:8b:63:34:a9:d2:00:b5:9d:8e:0f:c7:ce:a2:d4:f7:ab:35: fe:4e:e9:6c:bd:29:12:00:ea:ea:32:45:a2:27:66:71:be:7d: 7f:53:a6:0c:69:8d:a7:ce:be:74:df:b8:6a:cb:84:48:76:25: 6d:7b:bf:b9:2b:49:f4:71:b5:0e:40:ec:16:0a:a7:4f:02:ed: e4:b5:bc:1c:ef:f6:44:83:e2:08:0f:07:22:43:fb:94:aa:33: 38:31:8f:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRFQUYxMTAvBgNVBAUTKDdBMTMwNDRBMTExODU4NkMwRkRBMTM4QkIzRUJERDQ4 NDg5MTRFMzcwHhcNMjUwNDA3MDEyODE5WhcNMjUwNDE0MDEyODE5WjAYMRYwFAYD VQQDEw02N2YzMmEzMy01MmIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApK75UbsoNfZKp4O1yPJNmjZNrGasJ+NnFypc1MSHKQ2k1uO67rX8OO9nSZeG MYjNyFUFPPJQwDtl21xowX8Z6LSuYXCWx2+mRpBujwv1zCtfRoL2Iy3QBMMYSH10 G7KYa3Qq8iQ00d0nQ0B6aqdmHlmdqzEXJ4uTMVLhRa5nLc1Xi80Y30nZEbMHf+sK 85vIR5XHNei1EnavMa0WJDURKjxJ6R3BbjJnzXxJO/PcovPfJRiOfG+FmdasXg+h 6QfZmJOWEA5kEfTLsD+Jxs+xeFxvsCoRG+3VQ5KxD+39OuFSaXk0ue6uoKKNr5kn 0PFJALcDiLD7taSjTrwi9+51kwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJM3hpXf n3nIb0wecVusMhZzNCuaMB8GA1UdIwQYMBaAFHoTBEoRGFhsD9oTi7Pr3UhIkU43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEVBRi80N0Q1QTdFMDE2 QzMxMUVEQUU3RUI5NTVDNEY5QUUwMi9laE1FU2hFWVdHd1AyaE9Mcy12ZFNFaVJU amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VoTUVTaEVZV0d3UDJoT0xzLXZkU0VpUlRqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEVBRi80N0Q1QTdFMDE2QzMxMUVEQUU3RUI5NTVDNEY5QUUwMi9laE1FU2hFWVdH d1AyaE9Mcy12ZFNFaVJUamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAu7fk8oeH6e46szexNEgRPXrxy818T/EK2D/n3bYDMIAttU0xLot91 ynv91arnHiBdiasSQCRdfmvDSkQ3n/EVslH/fJ7bPPrBhBANCCetbZ3+JzxB8ad4 t2nx1zCs+3J5hYY8/PhuORcf1/uAWlyWnBKr5lKh7ExF0iYeyzgK3o9uA6n6FjMx ZD0rrceuOMSE9hI61u+2DxZp/4ODFG6pDRGYi2M0qdIAtZ2OD8fOotT3qzX+Tuls vSkSAOrqMkWiJ2Zxvn1/U6YMaY2nzr5037hqy4RIdiVte7+5K0n0cbUOQOwWCqdP Au3ktbwc7/ZEg+IIDwciQ/uUqjM4MY89 -----END CERTIFICATE-----Generated at Mon Apr 7 09:56:14 2025 by rpki-client