$ rpki-client -vvf rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft File: epYXaVSeCq0Km_mSVoO673M6Lxo.mft (raw, json) Hash identifier: 7/sorGgDQijBswtBcM7IMlJbS0bJd5dQ/G2Sz+n+i9c= Subject key identifier: 1F:31:CE:03:EC:E8:1D:28:81:1D:EF:A8:75:1F:B9:B6:9F:E5:5D:4F Authority key identifier: 7A:96:17:69:54:9E:0A:AD:0A:9B:F9:92:56:83:BA:EF:73:3A:2F:1A Certificate issuer: /CN=A911C5B0/serialNumber=7A961769549E0AAD0A9BF9925683BAEF733A2F1A Certificate serial: 34D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft Manifest number: 34A4 Signing time: Thu 24 Apr 2025 14:22:13 +0000 Manifest this update: Thu 24 Apr 2025 14:22:13 +0000 Manifest next update: Thu 01 May 2025 14:22:13 +0000 Files and hashes: 1: epYXaVSeCq0Km_mSVoO673M6Lxo.crl (hash: 7P+DgFwExyyQZ8HQBLMhAh4FPAGueoDjN3m2zFEnBSg=) 2: A9B6556E064311F0BA61C549C4F9AE02.roa (hash: mrU8KGa9vRKneCJ+qshobXiYhxcrHfbX93WdWbCVAW8=) 3: 1F5CD892C35111EE9D744F36C4F9AE02.roa (hash: jIXmhGTsHnOLM/8Oki3QEi8c2FlMLFZ5ltRb0SYd+ig=) 4: 1A83389CC35211EE8CE04C38C4F9AE02.roa (hash: qt+b79qUZeUfV9aMLkK2Vf0knDB1FC/92rGPVNLCE5Y=) 5: DA202262C34F11EE93BC8317C4F9AE02.roa (hash: MRIxoftDwmp6WRJIoO9F8Xfh6zfeqVoYT85Plhiizjg=) 6: 61A65BF2C35011EE95366E18C4F9AE02.roa (hash: lJX0Rj0D2pXCWqSqPGBLqRXobNJsOmj1xve2tbokkqo=) 7: 1EEE3E0AC35111EE9D744F36C4F9AE02.roa (hash: ucV0kVixfHpuy12BVYVN62sGm8utgsjQ/0NVbfikRis=) 8: A50EE218C34D11EEBC95A913C4F9AE02.roa (hash: 1HeD3vEPTet+037gaAO1k2WACoSTrjT1BrLUthDQvck=) 9: 8C9959CE060A11F08CBBE511C4F9AE02.roa (hash: Y12eqR4kENble50Bxruc9jwO/MdOCmjFkivTDaJk12E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.crl rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:22:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13523 (0x34d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C5B0, serialNumber=7A961769549E0AAD0A9BF9925683BAEF733A2F1A Validity Not Before: Apr 24 14:22:13 2025 GMT Not After : May 1 14:22:13 2025 GMT Subject: CN=680a4915-a060 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:92:a9:52:dc:c3:9d:ca:fd:66:72:32:d4:b9: ce:8c:30:8c:55:1f:06:d2:e5:c2:a9:98:ec:16:96: 78:23:a4:23:cc:d4:ca:83:d4:73:e7:51:46:e0:08: 4a:9b:66:4a:1c:c2:95:c8:f2:66:6b:74:03:1f:cc: 6b:c0:64:11:32:b8:58:d3:fd:b9:29:06:3e:3b:0a: 21:e6:5b:34:d1:a3:b3:00:2e:c4:6a:dc:bb:23:b3: d7:af:ba:be:f7:eb:c7:00:19:9f:7d:cb:6a:04:f5: 8f:53:8a:c0:e4:dc:ee:03:e5:7b:bd:7a:55:45:0c: cb:65:ce:16:e3:da:cf:5e:c3:e9:ec:97:15:90:dc: 96:eb:ce:1c:e0:4e:ba:74:62:75:d0:45:99:0f:39: 78:3d:86:1f:93:fa:30:04:7a:c0:0b:a9:07:15:91: e5:82:57:9b:33:97:a0:8b:92:85:d9:6c:5c:bc:38: 90:50:68:4e:05:58:48:2f:5d:3c:96:7d:f5:a7:69: aa:0a:24:6c:d8:60:85:a6:20:08:f9:10:a1:76:23: 7d:bc:87:a5:56:d4:7f:b7:66:71:54:f2:15:c0:38: d2:f6:12:14:66:41:1a:84:b2:1b:8b:bd:c0:7d:fd: 54:5f:f4:6c:1d:ef:57:1c:a5:ee:14:c6:e0:1a:16: 0d:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:31:CE:03:EC:E8:1D:28:81:1D:EF:A8:75:1F:B9:B6:9F:E5:5D:4F X509v3 Authority Key Identifier: keyid:7A:96:17:69:54:9E:0A:AD:0A:9B:F9:92:56:83:BA:EF:73:3A:2F:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:ca:1a:fd:98:3e:4e:8b:94:9a:2a:3f:72:55:a9:2b:b3:a7: 6e:85:d1:b6:28:b3:e0:4f:0c:57:46:03:23:d7:67:30:b7:46: 1b:df:25:db:57:91:1e:6d:92:f9:ea:9b:f2:b8:36:5e:92:93: 2b:c9:5f:12:ad:63:a1:bf:ae:20:26:89:bb:be:e4:69:7a:8e: 12:da:42:88:e4:c7:9c:8c:3e:a3:4d:20:6f:ea:b5:15:ca:3f: f9:03:41:ae:05:d3:5c:a1:87:4a:dd:49:7c:fd:75:d7:79:ab: 86:ca:83:d0:11:07:41:72:e9:74:c0:29:98:8e:a8:d5:75:ab: 1e:c8:b1:21:65:ea:71:86:a6:22:55:05:3b:0f:6f:f6:53:fd: e3:86:94:7b:e6:5b:af:b6:ed:be:df:d8:1a:90:21:d0:de:4f: b9:e7:4a:96:f0:90:9d:75:7a:f2:3b:75:35:5b:e1:50:03:bc: 16:9b:74:91:3a:4f:19:2b:c9:1a:39:62:61:eb:7f:a0:12:a3: 55:03:a0:48:09:0e:5a:f4:ae:29:15:c2:b2:24:f2:cd:55:79: 90:df:43:b8:70:e2:aa:d3:f8:7b:24:60:11:61:b1:d0:20:b3: c7:c1:41:d3:e3:c1:61:73:85:63:d0:12:2d:f3:b4:52:42:94: f1:00:0e:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM1QjAxMTAvBgNVBAUTKDdBOTYxNzY5NTQ5RTBBQUQwQTlCRjk5MjU2ODNCQUVG NzMzQTJGMUEwHhcNMjUwNDI0MTQyMjEzWhcNMjUwNTAxMTQyMjEzWjAYMRYwFAYD VQQDEw02ODBhNDkxNS1hMDYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArZKpUtzDncr9ZnIy1LnOjDCMVR8G0uXCqZjsFpZ4I6QjzNTKg9Rz51FG4AhK m2ZKHMKVyPJma3QDH8xrwGQRMrhY0/25KQY+Owoh5ls00aOzAC7Eaty7I7PXr7q+ 9+vHABmffctqBPWPU4rA5NzuA+V7vXpVRQzLZc4W49rPXsPp7JcVkNyW684c4E66 dGJ10EWZDzl4PYYfk/owBHrAC6kHFZHlglebM5egi5KF2WxcvDiQUGhOBVhIL108 ln31p2mqCiRs2GCFpiAI+RChdiN9vIelVtR/t2ZxVPIVwDjS9hIUZkEahLIbi73A ff1UX/RsHe9XHKXuFMbgGhYNXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB8xzgPs 6B0ogR3vqHUfubaf5V1PMB8GA1UdIwQYMBaAFHqWF2lUngqtCpv5klaDuu9zOi8a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzVCMC80MEM4RDVBNjFE ODMxMUUyODIzQTVGRDgwOEIwMkNEMi9lcFlYYVZTZUNxMEttX21TVm9PNjczTTZM eG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VwWVhhVlNlQ3EwS21fbVNWb082NzNNNkx4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzVCMC80MEM4RDVBNjFEODMxMUUyODIzQTVGRDgwOEIwMkNEMi9lcFlYYVZTZUNx MEttX21TVm9PNjczTTZMeG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPyhr9mD5Oi5SaKj9yVakrs6duhdG2KLPgTwxXRgMj12cwt0Yb3yXb V5EebZL56pvyuDZekpMryV8SrWOhv64gJom7vuRpeo4S2kKI5MecjD6jTSBv6rUV yj/5A0GuBdNcoYdK3Ul8/XXXeauGyoPQEQdBcul0wCmYjqjVdaseyLEhZepxhqYi VQU7D2/2U/3jhpR75luvtu2+39gakCHQ3k+550qW8JCddXryO3U1W+FQA7wWm3SR Ok8ZK8kaOWJh63+gEqNVA6BICQ5a9K4pFcKyJPLNVXmQ30O4cOKq0/h7JGARYbHQ ILPHwUHT48Fhc4Vj0BIt87RSQpTxAA72 -----END CERTIFICATE-----Generated at Sat Apr 26 04:57:22 2025 by rpki-client