$ rpki-client -vvf rpki.apnic.net/member_repository/A919EC2D/82B725E8BCE311ED849F9331C4F9AE02/ME1k4_EFEpfktirH3jSA9Hoprg8.mft File: ME1k4_EFEpfktirH3jSA9Hoprg8.mft (raw, json) Hash identifier: O0nFmYQMpt0/05R+kH0NalJSS/UklPM7w04w11iRhos= Subject key identifier: BB:BA:38:86:BA:D8:4D:BA:2C:5D:5A:7C:22:09:9E:AA:2C:E9:86:F7 Authority key identifier: 30:4D:64:E3:F1:05:12:97:E4:B6:2A:C7:DE:34:80:F4:7A:29:AE:0F Certificate issuer: /CN=A919EC2D/serialNumber=304D64E3F1051297E4B62AC7DE3480F47A29AE0F Certificate serial: 46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ME1k4_EFEpfktirH3jSA9Hoprg8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EC2D/82B725E8BCE311ED849F9331C4F9AE02/ME1k4_EFEpfktirH3jSA9Hoprg8.mft Manifest number: 02DF Signing time: Sat 29 Mar 2025 03:08:36 +0000 Manifest this update: Sat 29 Mar 2025 03:08:35 +0000 Manifest next update: Sat 05 Apr 2025 03:08:35 +0000 Files and hashes: 1: ME1k4_EFEpfktirH3jSA9Hoprg8.crl (hash: bNIPuc5+sWCHm0FQ8tXl+uwPeNHXhR+KUGLD5vhpz+4=) 2: A8EF2B58A89A11EFA52A9970C4F9AE02.roa (hash: W41UGNX+U3pkh1MUhjtjxt+m5tecoSOo5ggoTHhxJd0=) 3: A9B82544A89A11EFA52A9970C4F9AE02.roa (hash: nMxWe2kO7DPOaQFUeR91icyhuLOvB3F+0nx9gT0fM2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EC2D/82B725E8BCE311ED849F9331C4F9AE02/ME1k4_EFEpfktirH3jSA9Hoprg8.crl rsync://rpki.apnic.net/member_repository/A919EC2D/82B725E8BCE311ED849F9331C4F9AE02/ME1k4_EFEpfktirH3jSA9Hoprg8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ME1k4_EFEpfktirH3jSA9Hoprg8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 03:08:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70 (0x46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EC2D Validity Not Before: Mar 29 03:08:35 2025 GMT Not After : Apr 5 03:08:35 2025 GMT Subject: CN=67e76433-d99c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:9b:cd:1e:30:71:54:30:3b:22:cc:11:c1:45: a2:6f:b6:9a:57:f3:7a:4d:54:89:6b:3e:72:4f:05: b6:e2:b3:b9:ca:a6:59:ef:81:27:70:a3:d4:52:a2: 52:eb:1f:42:7f:70:39:83:95:c8:50:a7:f1:06:09: be:6d:a2:0c:45:6c:ca:3a:ab:19:43:e9:4b:2e:c3: bb:92:fb:86:53:f4:1d:5a:a5:63:69:0a:4e:4d:e7: 1f:75:ec:74:ae:eb:3f:a0:6e:58:1d:b1:1d:85:db: cd:bc:63:77:98:7c:0d:0d:15:73:a7:af:0f:2d:5c: 9a:43:21:86:f1:33:53:60:ae:cc:0b:16:67:91:21: 3b:ae:6e:0d:5e:8d:eb:9c:50:f5:1c:e2:60:a5:95: b6:80:1c:16:a9:03:79:e4:ee:5b:8e:39:3e:8d:42: 1b:2c:27:dd:4f:d2:a1:08:f1:99:80:04:64:d5:da: 00:a2:a8:bb:58:3c:30:11:19:79:3f:29:28:1c:3b: 41:34:23:fc:24:71:df:e5:91:05:a6:db:34:30:0c: b7:f4:f3:ef:12:fe:14:3f:83:55:90:33:36:9b:c0: 05:e3:c0:0d:7a:96:29:c7:ee:61:98:1d:b7:a4:20: b0:18:58:df:f2:52:92:d4:4e:ab:1b:c2:44:40:c6: a7:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:BA:38:86:BA:D8:4D:BA:2C:5D:5A:7C:22:09:9E:AA:2C:E9:86:F7 X509v3 Authority Key Identifier: keyid:30:4D:64:E3:F1:05:12:97:E4:B6:2A:C7:DE:34:80:F4:7A:29:AE:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EC2D/82B725E8BCE311ED849F9331C4F9AE02/ME1k4_EFEpfktirH3jSA9Hoprg8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ME1k4_EFEpfktirH3jSA9Hoprg8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EC2D/82B725E8BCE311ED849F9331C4F9AE02/ME1k4_EFEpfktirH3jSA9Hoprg8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:2c:3c:d6:be:40:5b:0b:ea:e6:20:6a:2a:46:80:16:2e:67: c3:35:24:80:8d:fa:74:74:02:2b:02:3d:a8:4f:c2:35:2f:ee: 53:2d:76:d9:a5:66:f3:79:5e:42:30:ea:f8:6c:e3:90:0a:97: 34:e7:3c:d3:3e:6c:e6:54:8d:da:5e:c7:14:1e:20:5d:f7:28: 33:54:04:18:a5:c6:12:0a:cb:32:51:70:16:d0:ec:dc:f4:ba: 1f:43:cb:62:5b:bd:7f:77:13:12:d2:60:fd:d2:06:8f:dc:47: 46:89:05:0e:37:5d:63:ef:fc:ab:33:9d:d1:e5:bf:83:2a:0e: 4a:51:6f:1e:67:6f:9b:c9:ac:ae:79:15:bd:ee:8b:3f:d0:b3: fb:f5:99:b5:a6:f1:71:ec:3e:18:54:43:51:f9:77:af:d6:45: ca:18:57:71:84:be:f9:10:cb:9a:81:a8:98:06:7b:68:3c:8f: f0:e8:28:6a:07:5f:e6:03:b2:ae:cc:dc:42:f0:2f:28:2c:35: 1b:62:4a:49:97:60:6e:cc:86:a1:02:7f:ed:77:84:78:f2:c7: 2e:62:35:8f:49:3e:b7:e0:dd:ef:5e:d2:94:dd:5a:eb:80:71: 07:19:6b:88:96:a3:f4:45:5b:1e:d6:85:24:bb:a5:17:16:32: b7:8e:b9:c3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RUMyRDExMC8GA1UEBRMoMzA0RDY0RTNGMTA1MTI5N0U0QjYyQUM3REUzNDgwRjQ3 QTI5QUUwRjAeFw0yNTAzMjkwMzA4MzVaFw0yNTA0MDUwMzA4MzVaMBgxFjAUBgNV BAMTDTY3ZTc2NDMzLWQ5OWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCbm80eMHFUMDsizBHBRaJvtppX83pNVIlrPnJPBbbis7nKplnvgSdwo9RSolLr H0J/cDmDlchQp/EGCb5togxFbMo6qxlD6Usuw7uS+4ZT9B1apWNpCk5N5x917HSu 6z+gblgdsR2F2828Y3eYfA0NFXOnrw8tXJpDIYbxM1NgrswLFmeRITuubg1ejeuc UPUc4mCllbaAHBapA3nk7luOOT6NQhssJ91P0qEI8ZmABGTV2gCiqLtYPDARGXk/ KSgcO0E0I/wkcd/lkQWm2zQwDLf08+8S/hQ/g1WQMzabwAXjwA16linH7mGYHbek ILAYWN/yUpLUTqsbwkRAxqeNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUu7o4hrrY TbosXVp8IgmeqizphvcwHwYDVR0jBBgwFoAUME1k4/EFEpfktirH3jSA9Hoprg8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlFQzJELzgyQjcyNUU4QkNF MzExRUQ4NDlGOTMzMUM0RjlBRTAyL01FMWs0X0VGRXBma3RpckgzalNBOUhvcHJn OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTUUxazRfRUZFcGZrdGlySDNqU0E5SG9wcmc4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlF QzJELzgyQjcyNUU4QkNFMzExRUQ4NDlGOTMzMUM0RjlBRTAyL01FMWs0X0VGRXBm a3RpckgzalNBOUhvcHJnOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACAsPNa+QFsL6uYgaipGgBYuZ8M1JICN+nR0AisCPahPwjUv7lMtdtml ZvN5XkIw6vhs45AKlzTnPNM+bOZUjdpexxQeIF33KDNUBBilxhIKyzJRcBbQ7Nz0 uh9Dy2JbvX93ExLSYP3SBo/cR0aJBQ43XWPv/KszndHlv4MqDkpRbx5nb5vJrK55 Fb3uiz/Qs/v1mbWm8XHsPhhUQ1H5d6/WRcoYV3GEvvkQy5qBqJgGe2g8j/DoKGoH X+YDsq7M3ELwLygsNRtiSkmXYG7MhqECf+13hHjyxy5iNY9JPrfg3e9e0pTdWuuA cQcZa4iWo/RFWx7WhSS7pRcWMreOucM= -----END CERTIFICATE-----Generated at Fri Apr 4 22:01:49 2025 by rpki-client