$ rpki-client -vvf rpki.apnic.net/member_repository/A9177A7E/30353B8A6A6F11EFBF3F1136C4F9AE02/SeaE1Q2L14wYHgdBjG0SAjKT6ZQ.mft File: SeaE1Q2L14wYHgdBjG0SAjKT6ZQ.mft (raw, json) Hash identifier: gHV5xqCC8fvGtbXD64IjMaqp4/d/9vqYHgqAyugrAGk= Subject key identifier: C2:71:A0:59:3F:0F:75:D9:24:92:1B:00:A9:C7:DB:AC:3C:62:09:FD Authority key identifier: 49:E6:84:D5:0D:8B:D7:8C:18:1E:07:41:8C:6D:12:02:32:93:E9:94 Certificate issuer: /CN=A9177A7E/serialNumber=49E684D50D8BD78C181E07418C6D12023293E994 Certificate serial: 7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SeaE1Q2L14wYHgdBjG0SAjKT6ZQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9177A7E/30353B8A6A6F11EFBF3F1136C4F9AE02/SeaE1Q2L14wYHgdBjG0SAjKT6ZQ.mft Manifest number: 7A Signing time: Mon 21 Apr 2025 05:35:28 +0000 Manifest this update: Mon 21 Apr 2025 05:35:28 +0000 Manifest next update: Mon 28 Apr 2025 05:35:28 +0000 Files and hashes: 1: SeaE1Q2L14wYHgdBjG0SAjKT6ZQ.crl (hash: JpHg06lLB1aoyOK4HFF8sVWmfFFwWCSCpRt1sjKibg8=) 2: 228CC738816611EFA8852945C4F9AE02.roa (hash: rdEM/CyFmpFNhOKo2qBDJWFaCiXo+v07SKBD5Apef/4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9177A7E/30353B8A6A6F11EFBF3F1136C4F9AE02/SeaE1Q2L14wYHgdBjG0SAjKT6ZQ.crl rsync://rpki.apnic.net/member_repository/A9177A7E/30353B8A6A6F11EFBF3F1136C4F9AE02/SeaE1Q2L14wYHgdBjG0SAjKT6ZQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SeaE1Q2L14wYHgdBjG0SAjKT6ZQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 05:35:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 124 (0x7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9177A7E, serialNumber=49E684D50D8BD78C181E07418C6D12023293E994 Validity Not Before: Apr 21 05:35:28 2025 GMT Not After : Apr 28 05:35:28 2025 GMT Subject: CN=6805d920-235a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ee:1c:72:52:7c:a3:15:8c:79:b9:e6:43:7f: 06:98:b6:8e:3c:90:1e:c9:3b:ea:1d:f0:bb:63:cd: f5:7f:fc:9f:48:3f:cc:32:c8:31:dc:ec:8d:ac:5f: 3c:4b:16:b0:b0:fd:8c:ec:70:12:00:a7:8d:0d:df: 48:5c:0a:c1:b8:ea:a3:75:97:eb:f6:e9:0c:d2:63: 40:db:72:ae:96:7f:5b:da:c1:1a:bc:ea:b6:1e:e3: 93:28:ca:8b:a9:c2:a5:78:d6:d2:4d:cd:1e:ae:6a: eb:13:8a:6b:fa:8a:7f:66:bd:f7:42:43:a2:9f:ac: 87:ec:4a:57:3f:80:6f:03:47:0c:fd:85:c3:f4:3e: 14:cf:eb:94:f8:7b:44:ef:fe:b3:4b:c7:4d:22:03: 56:b1:b0:fc:55:cc:f8:72:d0:41:b2:5a:f4:cc:46: 47:18:18:a0:a6:0b:c8:08:ef:18:e2:ed:d1:1e:00: db:79:58:b4:04:be:1f:23:f9:e3:ea:79:32:fc:92: 76:f1:a3:00:a3:80:9f:f1:47:7f:c7:11:a0:63:77: 50:bf:87:f2:be:db:f3:03:0a:33:f2:9b:12:9f:b1: 21:c3:f7:85:6a:e9:0e:8e:fa:94:fa:bc:7d:25:83: f9:01:f5:c4:4d:ba:f7:87:08:5c:d6:1a:2f:d7:5e: ba:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:71:A0:59:3F:0F:75:D9:24:92:1B:00:A9:C7:DB:AC:3C:62:09:FD X509v3 Authority Key Identifier: keyid:49:E6:84:D5:0D:8B:D7:8C:18:1E:07:41:8C:6D:12:02:32:93:E9:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9177A7E/30353B8A6A6F11EFBF3F1136C4F9AE02/SeaE1Q2L14wYHgdBjG0SAjKT6ZQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SeaE1Q2L14wYHgdBjG0SAjKT6ZQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9177A7E/30353B8A6A6F11EFBF3F1136C4F9AE02/SeaE1Q2L14wYHgdBjG0SAjKT6ZQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:1f:ee:c4:46:a0:9b:16:e9:dd:5d:29:a6:b3:f1:be:7b:65: 11:7b:2f:2b:52:dd:14:90:38:eb:1f:93:f1:94:35:1e:f1:72: f2:f5:f8:5d:a4:57:bb:be:54:5d:0d:2b:1c:58:54:f6:35:fe: 82:19:d7:98:a2:c1:59:1d:ba:58:72:92:8d:cd:17:cf:21:e0: 58:50:ec:04:35:f6:3f:21:66:37:21:bc:06:5b:b7:1c:fa:46: 2a:e8:6a:d5:3d:73:8a:b6:12:49:47:45:de:e9:1b:c2:2a:d5: 78:f4:27:87:99:82:76:41:c9:56:8c:4a:68:e0:4c:28:c4:db: 70:9f:1b:72:2c:2a:e4:13:6f:3f:4c:a0:af:c6:94:f3:1c:59: b9:d2:dd:98:f3:88:ea:b0:68:fe:76:04:6e:cb:12:a4:5b:70: 82:af:83:b6:f7:f8:4f:48:f1:32:11:dc:3b:6b:b2:ab:b1:12: a6:98:20:06:6a:6b:cb:dc:f9:d9:da:a8:91:01:5e:17:fe:f7: 4b:33:a8:43:67:01:86:2c:99:0c:b5:d6:9e:a1:9e:18:ce:c1: 47:53:52:77:aa:7a:dc:dc:8f:d0:fe:1a:53:99:5d:5d:9b:be: a3:9b:ae:6d:1d:8e:5d:56:89:c5:29:fa:b6:48:a3:d1:b6:5c: 30:a5:60:7e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 N0E3RTExMC8GA1UEBRMoNDlFNjg0RDUwRDhCRDc4QzE4MUUwNzQxOEM2RDEyMDIz MjkzRTk5NDAeFw0yNTA0MjEwNTM1MjhaFw0yNTA0MjgwNTM1MjhaMBgxFjAUBgNV BAMTDTY4MDVkOTIwLTIzNWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDK7hxyUnyjFYx5ueZDfwaYto48kB7JO+od8LtjzfV//J9IP8wyyDHc7I2sXzxL FrCw/YzscBIAp40N30hcCsG46qN1l+v26QzSY0Dbcq6Wf1vawRq86rYe45Moyoup wqV41tJNzR6uausTimv6in9mvfdCQ6KfrIfsSlc/gG8DRwz9hcP0PhTP65T4e0Tv /rNLx00iA1axsPxVzPhy0EGyWvTMRkcYGKCmC8gI7xji7dEeANt5WLQEvh8j+ePq eTL8knbxowCjgJ/xR3/HEaBjd1C/h/K+2/MDCjPymxKfsSHD94Vq6Q6O+pT6vH0l g/kB9cRNuveHCFzWGi/XXrpnAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUwnGgWT8P ddkkkhsAqcfbrDxiCf0wHwYDVR0jBBgwFoAUSeaE1Q2L14wYHgdBjG0SAjKT6ZQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc3QTdFLzMwMzUzQjhBNkE2 RjExRUZCRjNGMTEzNkM0RjlBRTAyL1NlYUUxUTJMMTR3WUhnZEJqRzBTQWpLVDZa US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvU2VhRTFRMkwxNHdZSGdkQmpHMFNBaktUNlpRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc3 QTdFLzMwMzUzQjhBNkE2RjExRUZCRjNGMTEzNkM0RjlBRTAyL1NlYUUxUTJMMTR3 WUhnZEJqRzBTQWpLVDZaUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADkf7sRGoJsW6d1dKaaz8b57ZRF7LytS3RSQOOsfk/GUNR7xcvL1+F2k V7u+VF0NKxxYVPY1/oIZ15iiwVkdulhyko3NF88h4FhQ7AQ19j8hZjchvAZbtxz6 RiroatU9c4q2EklHRd7pG8Iq1Xj0J4eZgnZByVaMSmjgTCjE23CfG3IsKuQTbz9M oK/GlPMcWbnS3ZjziOqwaP52BG7LEqRbcIKvg7b3+E9I8TIR3DtrsquxEqaYIAZq a8vc+dnaqJEBXhf+90szqENnAYYsmQy11p6hnhjOwUdTUneqetzcj9D+GlOZXV2b vqObrm0djl1WicUp+rZIo9G2XDClYH4= -----END CERTIFICATE-----Generated at Tue Apr 22 19:14:46 2025 by rpki-client