$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5FA2/032544405C3211EB97BF7C45C4F9AE02/ealNKOVCRzgJE4PV9Jdb_bzqrnk.mft File: ealNKOVCRzgJE4PV9Jdb_bzqrnk.mft (raw, json) Hash identifier: CxuqlMv/ErB+TUvFTVP4CLUBt3j6WwYXTwIZQDmce04= Subject key identifier: 15:85:F7:3D:CF:8C:73:7A:1A:F5:8B:0B:2B:D3:AE:85:8A:61:46:8C Authority key identifier: 79:A9:4D:28:E5:42:47:38:09:13:83:D5:F4:97:5B:FD:BC:EA:AE:79 Certificate issuer: /CN=A91F5FA2/serialNumber=79A94D28E5424738091383D5F4975BFDBCEAAE79 Certificate serial: 06B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ealNKOVCRzgJE4PV9Jdb_bzqrnk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5FA2/032544405C3211EB97BF7C45C4F9AE02/ealNKOVCRzgJE4PV9Jdb_bzqrnk.mft Manifest number: 06A9 Signing time: Fri 04 Apr 2025 22:19:13 +0000 Manifest this update: Fri 04 Apr 2025 22:19:12 +0000 Manifest next update: Fri 11 Apr 2025 22:19:12 +0000 Files and hashes: 1: ealNKOVCRzgJE4PV9Jdb_bzqrnk.crl (hash: NxMQaPMHdYr1VRki2XgDc6P25sfZxRmVa5pMaemjrAU=) 2: FE4992F25C3411EBA2B9004DC4F9AE02.roa (hash: WLTZjRNFNOpt4obFHZLuXm6PcfO8k1Rl/GXdIhTWuLo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5FA2/032544405C3211EB97BF7C45C4F9AE02/ealNKOVCRzgJE4PV9Jdb_bzqrnk.crl rsync://rpki.apnic.net/member_repository/A91F5FA2/032544405C3211EB97BF7C45C4F9AE02/ealNKOVCRzgJE4PV9Jdb_bzqrnk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ealNKOVCRzgJE4PV9Jdb_bzqrnk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 22:19:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1713 (0x6b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5FA2 Validity Not Before: Apr 4 22:19:12 2025 GMT Not After : Apr 11 22:19:12 2025 GMT Subject: CN=67f05ae0-4d9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ca:4a:c9:d7:1c:a4:e1:b2:41:3d:e5:95:7c: 12:09:49:86:57:b5:bc:7a:e8:48:b6:de:47:14:96: 56:b9:1d:f7:94:15:d5:50:5c:36:79:53:ef:f2:3b: 55:03:09:ac:7d:0c:d2:7b:80:22:bf:4f:47:33:ad: 34:15:d1:76:0f:35:90:b6:34:cd:83:c6:bb:61:5e: 39:28:3a:20:89:81:ac:7e:dc:b4:c4:86:06:91:e6: 43:a6:cb:b4:fc:6b:3b:5d:b4:1f:15:ff:9c:6c:53: a2:89:dd:5e:48:ff:aa:6a:59:d8:f8:b8:e4:b1:5a: e9:67:47:b2:74:0a:ef:2c:ae:b2:af:4c:47:34:72: 0a:6d:2c:fb:00:db:0e:4b:b7:cb:a2:65:3e:8e:a3: bf:7d:ea:f4:63:43:75:d6:c7:5a:51:6e:99:d8:19: 17:20:d2:5b:59:49:39:74:b7:fb:f0:81:3e:94:4a: 49:bc:7b:a7:c3:66:c2:cf:ad:17:e1:bb:9c:cc:1b: 5c:a3:ba:dd:71:66:30:1d:e2:52:fa:4e:1a:c4:09: e0:7c:a9:73:10:13:af:b5:6b:ae:e1:4e:ca:03:3c: 56:24:0d:88:e2:54:5f:4a:df:0e:31:5f:8a:23:b9: b3:93:2b:b1:01:ea:c8:54:3e:38:6d:ad:99:2f:9c: 32:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:85:F7:3D:CF:8C:73:7A:1A:F5:8B:0B:2B:D3:AE:85:8A:61:46:8C X509v3 Authority Key Identifier: keyid:79:A9:4D:28:E5:42:47:38:09:13:83:D5:F4:97:5B:FD:BC:EA:AE:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5FA2/032544405C3211EB97BF7C45C4F9AE02/ealNKOVCRzgJE4PV9Jdb_bzqrnk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ealNKOVCRzgJE4PV9Jdb_bzqrnk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5FA2/032544405C3211EB97BF7C45C4F9AE02/ealNKOVCRzgJE4PV9Jdb_bzqrnk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:da:e2:03:1b:c4:ea:8b:8a:dc:45:24:4d:4f:07:a6:b7:f1: a1:ba:3b:92:2a:c9:0a:4d:4b:88:2f:19:fa:f2:f6:fc:a8:a7: ff:fc:e7:c5:a4:0a:0c:72:c8:77:fa:ac:b6:bc:0b:0e:72:de: 7d:01:5c:a3:f0:37:26:6c:2e:6c:48:e9:95:04:28:d2:eb:48: 53:79:d8:75:33:fe:2e:a4:11:51:f9:43:98:7d:33:04:d3:2a: b9:61:a9:63:c0:1b:14:7a:0e:b0:e5:13:98:96:81:cd:34:d9: 24:ac:b0:22:1c:41:ea:7f:a7:6c:08:84:98:7f:2b:67:20:f1: dc:36:97:df:31:98:a6:11:56:bb:48:14:52:3a:92:1a:f5:69: 4b:11:a3:25:b6:15:8f:13:2e:c5:c1:b4:f1:57:0d:f2:00:8c: a8:5c:dd:23:50:55:a2:a6:5f:da:c1:a3:1f:f0:4d:55:9d:2f: e5:6d:8d:73:88:fd:10:33:6e:c8:5a:d2:16:a7:37:88:1e:26: f8:56:c8:ab:b1:d8:f7:0b:09:bc:f3:0a:24:98:62:6e:4d:cf: 62:6b:0c:b4:fc:d9:76:55:a2:92:31:45:0a:3b:6e:51:ea:6b: 4b:d1:2c:be:23:35:3e:48:53:23:d8:1a:e9:e8:63:16:38:58: 83:3b:ab:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjVGQTIxMTAvBgNVBAUTKDc5QTk0RDI4RTU0MjQ3MzgwOTEzODNENUY0OTc1QkZE QkNFQUFFNzkwHhcNMjUwNDA0MjIxOTEyWhcNMjUwNDExMjIxOTEyWjAYMRYwFAYD VQQDEw02N2YwNWFlMC00ZDllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAucpKydccpOGyQT3llXwSCUmGV7W8euhItt5HFJZWuR33lBXVUFw2eVPv8jtV AwmsfQzSe4Aiv09HM600FdF2DzWQtjTNg8a7YV45KDogiYGsfty0xIYGkeZDpsu0 /Gs7XbQfFf+cbFOiid1eSP+qalnY+LjksVrpZ0eydArvLK6yr0xHNHIKbSz7ANsO S7fLomU+jqO/fer0Y0N11sdaUW6Z2BkXINJbWUk5dLf78IE+lEpJvHunw2bCz60X 4buczBtco7rdcWYwHeJS+k4axAngfKlzEBOvtWuu4U7KAzxWJA2I4lRfSt8OMV+K I7mzkyuxAerIVD44ba2ZL5wyDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBWF9z3P jHN6GvWLCyvTroWKYUaMMB8GA1UdIwQYMBaAFHmpTSjlQkc4CROD1fSXW/286q55 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNUZBMi8wMzI1NDQ0MDVD MzIxMUVCOTdCRjdDNDVDNEY5QUUwMi9lYWxOS09WQ1J6Z0pFNFBWOUpkYl9ienFy bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VhbE5LT1ZDUnpnSkU0UFY5SmRiX2J6cXJuay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NUZBMi8wMzI1NDQ0MDVDMzIxMUVCOTdCRjdDNDVDNEY5QUUwMi9lYWxOS09WQ1J6 Z0pFNFBWOUpkYl9ienFybmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBy2uIDG8Tqi4rcRSRNTwemt/GhujuSKskKTUuILxn68vb8qKf//OfF pAoMcsh3+qy2vAsOct59AVyj8DcmbC5sSOmVBCjS60hTedh1M/4upBFR+UOYfTME 0yq5YaljwBsUeg6w5ROYloHNNNkkrLAiHEHqf6dsCISYfytnIPHcNpffMZimEVa7 SBRSOpIa9WlLEaMlthWPEy7FwbTxVw3yAIyoXN0jUFWipl/awaMf8E1VnS/lbY1z iP0QM27IWtIWpzeIHib4Vsirsdj3Cwm88wokmGJuTc9iawy0/Nl2VaKSMUUKO25R 6mtL0Sy+IzU+SFMj2Brp6GMWOFiDO6uh -----END CERTIFICATE-----Generated at Sun Apr 6 06:39:51 2025 by rpki-client