$ rpki-client -vvf rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.mft File: EpTEi8aWr-ggvRWC80NnutqwJDI.mft (raw, json) Hash identifier: uUJRqlAFIfhFosPdSlQtah7L9Ce9r51uwA8v2QKZWHE= Subject key identifier: 33:D4:64:CC:24:C7:CB:87:B6:A8:E7:D2:3E:98:4E:8B:89:F1:5D:B7 Authority key identifier: 12:94:C4:8B:C6:96:AF:E8:20:BD:15:82:F3:43:67:BA:DA:B0:24:32 Certificate issuer: /CN=A9117817/serialNumber=1294C48BC696AFE820BD1582F34367BADAB02432 Certificate serial: 046E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EpTEi8aWr-ggvRWC80NnutqwJDI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.mft Manifest number: 0466 Signing time: Sat 31 May 2025 00:21:14 +0000 Manifest this update: Sat 31 May 2025 00:21:13 +0000 Manifest next update: Sat 07 Jun 2025 00:21:13 +0000 Files and hashes: 1: EpTEi8aWr-ggvRWC80NnutqwJDI.crl (hash: 7tLE1LRM8wt645wuWf5Ga5oa/kVwGi/KERgOgkAGKxQ=) 2: 2A84118CE0A311EC9CF2B738C4F9AE02.roa (hash: d5/NJRnIjibSymNbNk/lOaJ1Q3nAQoqs/MS6HVTtaFE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.crl rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EpTEi8aWr-ggvRWC80NnutqwJDI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:21:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1134 (0x46e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117817, serialNumber=1294C48BC696AFE820BD1582F34367BADAB02432 Validity Not Before: May 31 00:21:13 2025 GMT Not After : Jun 7 00:21:13 2025 GMT Subject: CN=683a4b79-45cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:df:43:38:8e:04:1f:6c:30:5c:6b:a7:13:d6: 2f:7a:0b:d6:85:da:02:56:b2:5d:72:c7:00:86:37: 25:c3:f2:53:e4:7b:17:5d:26:99:e1:f7:51:46:76: 71:ce:20:c7:c8:f4:74:7c:ef:33:6b:5f:d7:f7:b4: 47:59:c9:3a:78:aa:e7:bf:4e:08:c4:5e:f7:2b:88: e9:1c:05:43:56:25:64:83:c2:a0:92:79:ad:89:8a: 2f:a0:f3:2b:6b:a4:27:ea:85:fb:76:60:57:4a:c3: bb:f2:b6:ae:18:8d:2e:26:29:ee:78:a1:67:e4:fa: ec:8f:12:c1:d3:e4:8a:d9:f7:70:b8:59:a7:4c:7b: a9:b1:70:5e:26:b0:2c:1a:7f:28:36:f8:8f:2a:80: 56:a0:46:18:66:9b:91:23:95:22:eb:f9:e5:4a:6c: 99:31:5f:3d:ff:d3:a8:bb:9b:9c:7f:31:a9:41:48: bf:71:2c:5f:65:4d:a2:6d:3b:24:dc:a4:cf:ac:1c: a6:68:48:02:c7:3c:80:87:86:78:ff:26:8f:1f:cc: 67:fa:13:cd:c8:4a:56:49:21:00:0b:69:04:54:71: 40:9e:ff:75:67:7e:23:8f:9a:a6:ab:15:dd:e0:69: 4d:68:f1:1a:ca:5f:4d:9b:5b:e2:e5:d3:0e:4d:91: 4f:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:D4:64:CC:24:C7:CB:87:B6:A8:E7:D2:3E:98:4E:8B:89:F1:5D:B7 X509v3 Authority Key Identifier: keyid:12:94:C4:8B:C6:96:AF:E8:20:BD:15:82:F3:43:67:BA:DA:B0:24:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EpTEi8aWr-ggvRWC80NnutqwJDI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:6d:e6:b9:76:6a:29:50:ca:06:97:98:86:7b:f2:f1:bf:fe: a3:35:67:9d:2f:fe:bf:00:5e:41:ac:0d:45:2c:9d:ad:d1:d7: b6:a6:77:62:40:98:0c:99:2f:33:c4:53:98:df:f9:6f:11:9f: 3b:a3:74:d2:65:19:29:28:43:c8:92:dc:4a:f9:3c:8f:f8:a8: 1a:d3:36:bd:94:1d:69:eb:7b:0e:d4:b2:3e:c1:d6:39:af:69: c7:4d:76:a9:90:93:51:4a:0f:60:f3:4c:02:51:93:24:59:d1: cd:91:da:84:99:0f:d4:6f:b9:41:67:3d:f2:ab:ef:6e:d9:e0: 74:5f:be:0f:fe:9c:7e:f6:2c:f8:dc:a5:17:4a:eb:5d:e1:b5: 54:53:a4:27:70:55:e9:58:a4:a6:16:8a:f9:bb:8c:b2:68:bb: 8f:66:7c:b4:21:97:e9:8c:22:71:f0:9b:4f:7a:97:f4:35:d5: 7c:b2:16:3d:8a:5d:55:44:ef:2d:10:f3:c4:9a:96:54:cd:d9: 11:83:78:35:e1:59:b4:0f:00:39:c9:c2:b0:cd:45:f3:e9:52: 27:9b:40:c7:2b:88:7b:d4:c5:e2:f0:ff:55:24:db:3f:1d:c6: 30:8b:30:a2:21:29:e9:8a:46:ef:45:92:d7:38:d6:c1:26:f2: 83:06:17:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBG4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc4MTcxMTAvBgNVBAUTKDEyOTRDNDhCQzY5NkFGRTgyMEJEMTU4MkYzNDM2N0JB REFCMDI0MzIwHhcNMjUwNTMxMDAyMTEzWhcNMjUwNjA3MDAyMTEzWjAYMRYwFAYD VQQDEw02ODNhNGI3OS00NWNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3d9DOI4EH2wwXGunE9YvegvWhdoCVrJdcscAhjclw/JT5HsXXSaZ4fdRRnZx ziDHyPR0fO8za1/X97RHWck6eKrnv04IxF73K4jpHAVDViVkg8KgknmtiYovoPMr a6Qn6oX7dmBXSsO78rauGI0uJinueKFn5PrsjxLB0+SK2fdwuFmnTHupsXBeJrAs Gn8oNviPKoBWoEYYZpuRI5Ui6/nlSmyZMV89/9Oou5ucfzGpQUi/cSxfZU2ibTsk 3KTPrBymaEgCxzyAh4Z4/yaPH8xn+hPNyEpWSSEAC2kEVHFAnv91Z34jj5qmqxXd 4GlNaPEayl9Nm1vi5dMOTZFPgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDPUZMwk x8uHtqjn0j6YTouJ8V23MB8GA1UdIwQYMBaAFBKUxIvGlq/oIL0VgvNDZ7rasCQy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzgxNy8wNjgzRUI3MDRE QUMxMUVDODU3MTYwMjNDNEY5QUUwMi9FcFRFaThhV3ItZ2d2UldDODBObnV0cXdK REkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VwVEVpOGFXci1nZ3ZSV0M4ME5udXRxd0pESS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzgxNy8wNjgzRUI3MDREQUMxMUVDODU3MTYwMjNDNEY5QUUwMi9FcFRFaThhV3It Z2d2UldDODBObnV0cXdKREkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpbea5dmopUMoGl5iGe/Lxv/6jNWedL/6/AF5BrA1FLJ2t0de2pndi QJgMmS8zxFOY3/lvEZ87o3TSZRkpKEPIktxK+TyP+Kga0za9lB1p63sO1LI+wdY5 r2nHTXapkJNRSg9g80wCUZMkWdHNkdqEmQ/Ub7lBZz3yq+9u2eB0X74P/px+9iz4 3KUXSutd4bVUU6QncFXpWKSmFor5u4yyaLuPZny0IZfpjCJx8JtPepf0NdV8shY9 il1VRO8tEPPEmpZUzdkRg3g14Vm0DwA5ycKwzUXz6VInm0DHK4h71MXi8P9VJNs/ HcYwizCiISnpikbvRZLXONbBJvKDBhdU -----END CERTIFICATE-----Generated at Sat May 31 16:43:52 2025 by rpki-client