$ rpki-client -vvf rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.mft File: ejHVc5eYsGSmAHEzqj5bnNDu1F8.mft (raw, json) Hash identifier: XscpLVJjae/9N+sRopSPjh6w0UGG3mn6/11xakQlNHY= Subject key identifier: E3:4C:45:BD:B6:15:B7:90:E4:83:60:85:C4:5C:EE:10:81:B7:E5:EB Authority key identifier: 7A:31:D5:73:97:98:B0:64:A6:00:71:33:AA:3E:5B:9C:D0:EE:D4:5F Certificate issuer: /CN=A919A285/serialNumber=7A31D5739798B064A6007133AA3E5B9CD0EED45F Certificate serial: 0851 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ejHVc5eYsGSmAHEzqj5bnNDu1F8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.mft Manifest number: 084A Signing time: Wed 02 Apr 2025 20:45:48 +0000 Manifest this update: Wed 02 Apr 2025 20:45:47 +0000 Manifest next update: Wed 09 Apr 2025 20:45:47 +0000 Files and hashes: 1: ejHVc5eYsGSmAHEzqj5bnNDu1F8.crl (hash: mZCFwEBe2N5BtI3rmaxHOesjT+IwJeJPIqM07bO0SQI=) 2: 1DCABC72C57811EA950A8643C4F9AE02.roa (hash: 3y+P8Wjw2NbNvaqBtjPXBVu0eGWr6eeBTOCTDHgw4uI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.crl rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ejHVc5eYsGSmAHEzqj5bnNDu1F8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 20:45:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2129 (0x851) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A285 Validity Not Before: Apr 2 20:45:47 2025 GMT Not After : Apr 9 20:45:47 2025 GMT Subject: CN=67eda1fb-a376 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:00:d6:10:78:6c:75:a8:2b:55:c3:25:39:50: 00:e3:7e:c0:02:7d:4e:2e:61:58:c0:f9:47:16:d2: fa:f6:7c:b5:02:35:f5:52:2e:d9:a9:4c:9e:f7:4f: 71:7a:85:d2:4b:b5:9a:6c:be:e4:6b:80:87:12:aa: 6e:4a:65:96:ce:c1:b6:71:23:bd:3f:86:40:54:88: 83:2a:34:0f:62:db:82:ac:c6:1a:1c:50:21:8a:a2: 9a:47:0c:14:c4:c8:53:a9:f6:84:9f:25:bc:93:0b: c1:95:fb:bc:f5:0a:9e:d2:44:19:c8:34:de:c9:73: 50:30:49:66:66:f8:00:cb:5c:c7:08:2b:00:80:b5: 8d:ad:99:fa:69:84:0a:19:bf:0e:c4:be:1a:a4:90: d9:87:a4:2b:88:cd:67:52:cf:f1:45:d1:b7:e4:5b: 2a:95:66:4a:1c:5a:56:46:ff:fd:b7:d3:9d:49:97: 0f:c5:e4:4a:4b:f1:41:74:82:0c:0d:ef:c8:00:81: f6:77:a5:76:39:af:e4:58:86:99:08:a3:73:c1:ea: e4:b4:a6:61:a3:5e:0a:9a:f5:e7:f1:ca:f9:8f:8b: 6f:80:88:67:ef:74:57:88:d8:e0:66:76:ee:53:fb: c0:d3:15:4e:8c:90:41:46:01:93:99:76:66:a3:fd: ed:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:4C:45:BD:B6:15:B7:90:E4:83:60:85:C4:5C:EE:10:81:B7:E5:EB X509v3 Authority Key Identifier: keyid:7A:31:D5:73:97:98:B0:64:A6:00:71:33:AA:3E:5B:9C:D0:EE:D4:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ejHVc5eYsGSmAHEzqj5bnNDu1F8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e4:91:7d:6a:c8:eb:86:a4:48:9d:e5:10:b3:e8:b2:4d:b3:3b: bf:b0:83:1c:96:31:1c:7b:df:b6:83:fb:82:0d:61:09:9e:99: 1b:06:05:d0:2e:b4:1d:b7:0e:2a:73:ad:04:df:b1:20:64:b7: 68:72:37:fe:6f:ff:ff:60:c6:c4:c3:5c:4a:70:05:79:2a:20: ce:62:cd:27:1b:08:90:c8:25:42:be:a3:ed:73:85:b8:d3:93: 6c:5e:8d:e5:fd:8e:af:e0:84:0e:32:c6:a4:78:77:b7:f2:e2: f3:1b:4c:b4:f6:6f:6b:52:9a:1a:2f:71:fc:e5:02:71:b0:56: c4:be:f4:7e:d6:1b:98:84:3c:97:da:d6:7b:ef:37:e3:30:6e: bc:3b:6e:f0:1e:d1:3f:57:3b:8b:34:91:4a:f6:20:63:e2:d8: 96:8a:da:79:70:d0:30:98:d9:18:b7:5d:4c:e9:df:89:80:b8: 85:d1:e7:5d:77:1a:35:82:c6:03:a2:af:7e:59:ed:1e:e3:78: 13:39:b1:8d:c7:aa:55:74:f8:19:5f:b6:70:f1:8b:eb:4c:52: 78:92:11:42:b5:70:7d:5e:7e:07:5e:76:2f:33:fd:a1:b1:d2: 66:f6:76:5a:de:62:c4:9f:34:72:98:e5:56:97:95:1a:e4:ea: f3:d9:09:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCFEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUEyODUxMTAvBgNVBAUTKDdBMzFENTczOTc5OEIwNjRBNjAwNzEzM0FBM0U1QjlD RDBFRUQ0NUYwHhcNMjUwNDAyMjA0NTQ3WhcNMjUwNDA5MjA0NTQ3WjAYMRYwFAYD VQQDEw02N2VkYTFmYi1hMzc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1wDWEHhsdagrVcMlOVAA437AAn1OLmFYwPlHFtL69ny1AjX1Ui7ZqUye909x eoXSS7WabL7ka4CHEqpuSmWWzsG2cSO9P4ZAVIiDKjQPYtuCrMYaHFAhiqKaRwwU xMhTqfaEnyW8kwvBlfu89Qqe0kQZyDTeyXNQMElmZvgAy1zHCCsAgLWNrZn6aYQK Gb8OxL4apJDZh6QriM1nUs/xRdG35FsqlWZKHFpWRv/9t9OdSZcPxeRKS/FBdIIM De/IAIH2d6V2Oa/kWIaZCKNzwerktKZho14KmvXn8cr5j4tvgIhn73RXiNjgZnbu U/vA0xVOjJBBRgGTmXZmo/3tWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFONMRb22 FbeQ5INghcRc7hCBt+XrMB8GA1UdIwQYMBaAFHox1XOXmLBkpgBxM6o+W5zQ7tRf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTI4NS9ERDYyODlBQUM1 NzUxMUVBQTU1ODFDNDBDNEY5QUUwMi9lakhWYzVlWXNHU21BSEV6cWo1Ym5ORHUx RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VqSFZjNWVZc0dTbUFIRXpxajVibk5EdTFGOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTI4NS9ERDYyODlBQUM1NzUxMUVBQTU1ODFDNDBDNEY5QUUwMi9lakhWYzVlWXNH U21BSEV6cWo1Ym5ORHUxRjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDkkX1qyOuGpEid5RCz6LJNszu/sIMcljEce9+2g/uCDWEJnpkbBgXQ LrQdtw4qc60E37EgZLdocjf+b///YMbEw1xKcAV5KiDOYs0nGwiQyCVCvqPtc4W4 05NsXo3l/Y6v4IQOMsakeHe38uLzG0y09m9rUpoaL3H85QJxsFbEvvR+1huYhDyX 2tZ77zfjMG68O27wHtE/VzuLNJFK9iBj4tiWitp5cNAwmNkYt11M6d+JgLiF0edd dxo1gsYDoq9+We0e43gTObGNx6pVdPgZX7Zw8YvrTFJ4khFCtXB9Xn4HXnYvM/2h sdJm9nZa3mLEnzRymOVWl5Ua5Orz2Qn8 -----END CERTIFICATE-----Generated at Fri Apr 4 22:32:12 2025 by rpki-client