$ rpki-client -vvf rpki.apnic.net/member_repository/A9160DEB/A331F474726911EEA3F8E757C4F9AE02/Epbn674wET_h0_KXMDOkyzEUSB0.mft File: Epbn674wET_h0_KXMDOkyzEUSB0.mft (raw, json) Hash identifier: xTXgXpJL5yY2NDsImQOmso0BJVHCBeqd2D4fNIqmBgo= Subject key identifier: B6:9F:F9:BE:60:AE:F8:31:7B:CC:60:1B:FB:D6:73:9E:D6:3F:6E:4E Authority key identifier: 12:96:E7:EB:BE:30:11:3F:E1:D3:F2:97:30:33:A4:CB:31:14:48:1D Certificate issuer: /CN=A9160DEB/serialNumber=1296E7EBBE30113FE1D3F2973033A4CB3114481D Certificate serial: 0114 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Epbn674wET_h0_KXMDOkyzEUSB0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160DEB/A331F474726911EEA3F8E757C4F9AE02/Epbn674wET_h0_KXMDOkyzEUSB0.mft Manifest number: 0111 Signing time: Thu 03 Apr 2025 04:09:22 +0000 Manifest this update: Thu 03 Apr 2025 04:09:22 +0000 Manifest next update: Thu 10 Apr 2025 04:09:22 +0000 Files and hashes: 1: Epbn674wET_h0_KXMDOkyzEUSB0.crl (hash: mtlSJcujkWAAp1HxgPQO1j2OsZFVwD2h41O1epIwKVk=) 2: F0E06498748B11EE92D55F6AC4F9AE02.roa (hash: NDSD+KkV1yB3rzPC/NhFv9JI1zaXTY8fuhw8gPA8DhQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160DEB/A331F474726911EEA3F8E757C4F9AE02/Epbn674wET_h0_KXMDOkyzEUSB0.crl rsync://rpki.apnic.net/member_repository/A9160DEB/A331F474726911EEA3F8E757C4F9AE02/Epbn674wET_h0_KXMDOkyzEUSB0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Epbn674wET_h0_KXMDOkyzEUSB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 04:09:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 276 (0x114) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160DEB Validity Not Before: Apr 3 04:09:22 2025 GMT Not After : Apr 10 04:09:22 2025 GMT Subject: CN=67ee09f2-18d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:7e:86:75:4a:ea:b1:64:7b:c1:f2:c0:95:75: 8c:74:93:47:6b:d4:d4:6e:c2:2f:fb:69:4e:90:d5: 27:84:50:d9:ac:73:76:9e:bf:72:9c:2c:f1:fe:de: fd:e5:34:cb:33:ea:e9:cc:99:66:5c:65:84:46:d5: d7:c4:d1:01:c8:1a:4c:8e:a6:99:9e:bc:71:ac:0a: d2:89:9e:c5:1b:3f:8e:b8:1f:1a:68:c8:a8:13:cb: 0a:a3:f5:9a:af:f7:df:20:5e:64:65:5d:37:85:13: 55:f9:f2:d7:8b:47:b3:3a:f2:86:7b:2d:f7:3e:75: 5d:d0:5e:7a:d4:2b:d7:9f:cb:c0:c2:95:4b:6b:a8: e1:d6:f3:92:e9:26:04:a3:da:38:b7:31:32:45:56: fc:0b:a7:72:10:5f:21:48:cb:6b:34:b7:72:78:ad: 26:cd:08:25:99:26:13:c4:c2:10:e0:9e:14:a3:9e: a0:8d:64:e9:b9:f9:2c:86:b0:38:73:b5:a9:c0:12: 80:ca:68:aa:21:f2:86:58:51:df:46:0b:85:c1:b9: 2a:21:e7:ce:d9:81:32:57:54:b8:e4:4c:cd:22:22: c7:cf:32:6b:f7:6c:2e:37:d2:0b:c3:e9:05:69:76: 57:34:b1:b1:05:aa:43:77:13:b7:29:7e:1c:99:13: c5:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:9F:F9:BE:60:AE:F8:31:7B:CC:60:1B:FB:D6:73:9E:D6:3F:6E:4E X509v3 Authority Key Identifier: keyid:12:96:E7:EB:BE:30:11:3F:E1:D3:F2:97:30:33:A4:CB:31:14:48:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160DEB/A331F474726911EEA3F8E757C4F9AE02/Epbn674wET_h0_KXMDOkyzEUSB0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Epbn674wET_h0_KXMDOkyzEUSB0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160DEB/A331F474726911EEA3F8E757C4F9AE02/Epbn674wET_h0_KXMDOkyzEUSB0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:a5:61:65:a6:50:65:7a:b7:db:cb:04:65:da:bd:f1:e1:e9: 50:13:29:36:1c:57:49:50:38:a5:c2:e9:4b:1e:3b:ec:60:fd: 5f:ed:43:2e:61:55:1d:e6:8d:b3:72:48:c1:12:99:57:98:2b: fc:39:ec:e9:00:06:ed:da:56:b3:c3:b3:62:53:1b:d8:19:67: 04:1e:a5:4a:39:0b:10:bc:f0:a7:78:8c:19:2d:f4:fd:60:70: 9a:77:f1:0f:77:13:d8:07:6c:e8:b6:3f:d0:e6:60:af:21:e9: 5f:72:7b:f5:47:3e:41:6e:14:e0:72:87:e2:ae:47:97:26:48: 62:6f:bc:99:56:4a:ee:c9:d2:1d:ce:dc:b3:14:6b:a7:bd:d3: eb:7f:55:17:d5:6c:3c:6a:57:f6:b5:26:03:d7:9d:11:ff:bd: 16:00:28:1c:f3:60:c4:3a:5c:fa:a1:3d:ce:64:9b:4d:72:c4: 40:e6:25:de:12:58:de:f7:ec:ef:af:e3:78:41:c9:94:49:37: a4:fe:3d:14:fb:7a:a5:d1:e3:da:7f:2b:24:53:b2:45:d5:e2: 00:57:e1:f2:d7:0e:58:04:c9:bf:de:2f:c3:38:a0:7f:89:10: 67:6d:a6:9d:0a:82:3d:b0:6b:a3:57:7c:47:56:9e:56:a3:80: 24:4b:2d:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjBERUIxMTAvBgNVBAUTKDEyOTZFN0VCQkUzMDExM0ZFMUQzRjI5NzMwMzNBNENC MzExNDQ4MUQwHhcNMjUwNDAzMDQwOTIyWhcNMjUwNDEwMDQwOTIyWjAYMRYwFAYD VQQDEw02N2VlMDlmMi0xOGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0H6GdUrqsWR7wfLAlXWMdJNHa9TUbsIv+2lOkNUnhFDZrHN2nr9ynCzx/t79 5TTLM+rpzJlmXGWERtXXxNEByBpMjqaZnrxxrArSiZ7FGz+OuB8aaMioE8sKo/Wa r/ffIF5kZV03hRNV+fLXi0ezOvKGey33PnVd0F561CvXn8vAwpVLa6jh1vOS6SYE o9o4tzEyRVb8C6dyEF8hSMtrNLdyeK0mzQglmSYTxMIQ4J4Uo56gjWTpufkshrA4 c7WpwBKAymiqIfKGWFHfRguFwbkqIefO2YEyV1S45EzNIiLHzzJr92wuN9ILw+kF aXZXNLGxBapDdxO3KX4cmRPFRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLaf+b5g rvgxe8xgG/vWc57WP25OMB8GA1UdIwQYMBaAFBKW5+u+MBE/4dPylzAzpMsxFEgd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MERFQi9BMzMxRjQ3NDcy NjkxMUVFQTNGOEU3NTdDNEY5QUUwMi9FcGJuNjc0d0VUX2gwX0tYTURPa3l6RVVT QjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VwYm42NzR3RVRfaDBfS1hNRE9reXpFVVNCMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MERFQi9BMzMxRjQ3NDcyNjkxMUVFQTNGOEU3NTdDNEY5QUUwMi9FcGJuNjc0d0VU X2gwX0tYTURPa3l6RVVTQjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbpWFlplBlerfbywRl2r3x4elQEyk2HFdJUDilwulLHjvsYP1f7UMu YVUd5o2zckjBEplXmCv8OezpAAbt2lazw7NiUxvYGWcEHqVKOQsQvPCneIwZLfT9 YHCad/EPdxPYB2zotj/Q5mCvIelfcnv1Rz5BbhTgcofirkeXJkhib7yZVkruydId ztyzFGunvdPrf1UX1Ww8alf2tSYD150R/70WACgc82DEOlz6oT3OZJtNcsRA5iXe Elje9+zvr+N4QcmUSTek/j0U+3ql0ePafyskU7JF1eIAV+Hy1w5YBMm/3i/DOKB/ iRBnbaadCoI9sGujV3xHVp5Wo4AkSy3l -----END CERTIFICATE-----Generated at Fri Apr 4 22:40:14 2025 by rpki-client