$ rpki-client -vvf rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.mft File: EW-SD4cwZnR6jO3a_-hLz72wNRo.mft (raw, json) Hash identifier: nY3ByU3c/W9FlwAfxV0yCBaU5pJxkegR5zQ4XhbfSvo= Subject key identifier: 49:28:08:73:53:B8:08:79:38:66:9C:D1:CA:0B:AD:46:4D:A0:E4:C8 Authority key identifier: 11:6F:92:0F:87:30:66:74:7A:8C:ED:DA:FF:E8:4B:CF:BD:B0:35:1A Certificate issuer: /CN=A9120CDE/serialNumber=116F920F873066747A8CEDDAFFE84BCFBDB0351A Certificate serial: 1186 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EW-SD4cwZnR6jO3a_-hLz72wNRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.mft Manifest number: 117A Signing time: Thu 24 Apr 2025 17:13:55 +0000 Manifest this update: Thu 24 Apr 2025 17:13:55 +0000 Manifest next update: Thu 01 May 2025 17:13:55 +0000 Files and hashes: 1: EW-SD4cwZnR6jO3a_-hLz72wNRo.crl (hash: KkFyYSPP1qAyV0a1qWVRRC48qmMFlEGag7r09JBjDeQ=) 2: D8D63660B9A811ECB7EE5A71C4F9AE02.roa (hash: DIX09IMqDwhYz9qe1Nv5iQBk3kT+S7TLOQSBMI/PtT0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.crl rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EW-SD4cwZnR6jO3a_-hLz72wNRo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:13:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4486 (0x1186) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120CDE, serialNumber=116F920F873066747A8CEDDAFFE84BCFBDB0351A Validity Not Before: Apr 24 17:13:55 2025 GMT Not After : May 1 17:13:55 2025 GMT Subject: CN=680a7153-6bdf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:54:48:0e:56:79:e2:a8:3c:16:bb:81:2e:19: e6:73:30:40:79:78:55:d5:11:e9:0e:05:0f:30:0e: ca:32:74:53:f2:95:c8:26:07:5f:a4:08:ff:5b:93: 9e:f8:05:78:d6:44:ba:bd:49:90:4b:9a:5e:c4:ff: 76:c2:df:fe:5c:5d:46:bc:94:df:e8:e0:e6:3e:7b: a0:32:f8:6a:6f:c5:b4:bf:3c:c4:36:d6:ae:41:a1: 70:04:39:97:ff:fa:0f:d9:f6:67:3e:c4:13:3d:7a: b0:89:a5:da:02:43:32:6b:8a:95:04:68:b9:96:a4: e8:54:6a:ad:07:6e:cc:70:a1:42:61:01:c6:ec:ac: e0:32:77:51:45:a1:6e:09:3f:ca:a9:aa:ae:ba:c0: 3f:97:34:04:b9:bf:03:0c:de:64:16:1e:96:70:f0: 95:ff:eb:c6:12:49:75:fb:de:e1:c8:67:8d:5a:20: 79:cc:27:53:8a:6a:02:ac:2b:59:21:61:bd:ab:46: 4a:fd:0e:be:f7:a4:05:7d:87:c4:b2:4f:50:99:63: ff:f7:6a:24:25:02:1e:90:fa:e5:de:ff:7e:8f:1d: f4:d9:05:1d:aa:50:a8:98:2c:c3:8c:a1:c5:cf:61: eb:73:fe:a1:7f:a1:e3:4c:4c:ab:bf:ef:ea:9e:b7: 06:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:28:08:73:53:B8:08:79:38:66:9C:D1:CA:0B:AD:46:4D:A0:E4:C8 X509v3 Authority Key Identifier: keyid:11:6F:92:0F:87:30:66:74:7A:8C:ED:DA:FF:E8:4B:CF:BD:B0:35:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EW-SD4cwZnR6jO3a_-hLz72wNRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:c7:a1:03:de:36:91:b3:a3:bb:09:6f:3f:cd:3f:9f:5d:95: 38:55:6e:66:50:47:0c:f7:e4:fb:ad:bd:db:97:9d:6f:f9:86: 9a:fc:3b:8c:55:80:08:fe:5c:ab:49:e7:7c:b5:6b:98:17:8f: ad:5d:a9:53:9f:10:db:cd:f0:c8:bc:f8:87:42:ff:0b:f6:c5: f7:c2:5b:d7:e0:99:be:12:7c:46:8c:22:92:68:02:62:6a:4b: 6d:85:4d:56:3c:48:f4:d1:a5:89:97:71:cf:33:88:78:27:50: 18:ef:7a:c3:07:e2:e9:94:e1:11:7d:d2:4f:31:64:ac:3b:51: 14:07:38:f9:4e:8d:8e:4d:66:78:12:a7:d5:9b:d7:cc:ca:df: ac:f8:5a:92:ec:25:65:b6:73:2b:17:fb:a8:a0:0f:8c:e6:36: 61:d8:e7:d0:cf:48:f7:8d:f1:b4:b5:79:26:13:54:99:66:c8: ad:67:7f:d7:15:7d:73:a2:a3:f7:fb:05:8c:15:fb:29:45:92: 9b:b2:74:bc:57:6a:12:c3:f7:b7:90:df:4c:79:31:28:93:40: 59:8e:2c:61:2e:19:93:5e:29:44:53:f3:ab:e8:4c:95:f7:90: fe:1e:df:dd:90:e4:a8:1f:77:1f:fd:50:9c:97:72:19:51:0c: 20:22:22:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEYYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBDREUxMTAvBgNVBAUTKDExNkY5MjBGODczMDY2NzQ3QThDRUREQUZGRTg0QkNG QkRCMDM1MUEwHhcNMjUwNDI0MTcxMzU1WhcNMjUwNTAxMTcxMzU1WjAYMRYwFAYD VQQDEw02ODBhNzE1My02YmRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy1RIDlZ54qg8FruBLhnmczBAeXhV1RHpDgUPMA7KMnRT8pXIJgdfpAj/W5Oe +AV41kS6vUmQS5pexP92wt/+XF1GvJTf6ODmPnugMvhqb8W0vzzENtauQaFwBDmX //oP2fZnPsQTPXqwiaXaAkMya4qVBGi5lqToVGqtB27McKFCYQHG7KzgMndRRaFu CT/KqaquusA/lzQEub8DDN5kFh6WcPCV/+vGEkl1+97hyGeNWiB5zCdTimoCrCtZ IWG9q0ZK/Q6+96QFfYfEsk9QmWP/92okJQIekPrl3v9+jx302QUdqlComCzDjKHF z2Hrc/6hf6HjTEyrv+/qnrcG3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEkoCHNT uAh5OGac0coLrUZNoOTIMB8GA1UdIwQYMBaAFBFvkg+HMGZ0eozt2v/oS8+9sDUa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMENERS8yM0Q4NTY2RUZC REIxMUU4OTIwQ0IwNDRDNEY5QUUwMi9FVy1TRDRjd1puUjZqTzNhXy1oTHo3MndO Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VXLVNENGN3Wm5SNmpPM2FfLWhMejcyd05Sby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MENERS8yM0Q4NTY2RUZCREIxMUU4OTIwQ0IwNDRDNEY5QUUwMi9FVy1TRDRjd1pu UjZqTzNhXy1oTHo3MndOUm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKx6ED3jaRs6O7CW8/zT+fXZU4VW5mUEcM9+T7rb3bl51v+Yaa/DuM VYAI/lyrSed8tWuYF4+tXalTnxDbzfDIvPiHQv8L9sX3wlvX4Jm+EnxGjCKSaAJi aktthU1WPEj00aWJl3HPM4h4J1AY73rDB+LplOERfdJPMWSsO1EUBzj5To2OTWZ4 EqfVm9fMyt+s+FqS7CVltnMrF/uooA+M5jZh2OfQz0j3jfG0tXkmE1SZZsitZ3/X FX1zoqP3+wWMFfspRZKbsnS8V2oSw/e3kN9MeTEok0BZjixhLhmTXilEU/Or6EyV 95D+Ht/dkOSoH3cf/VCcl3IZUQwgIiJy -----END CERTIFICATE-----Generated at Sat Apr 26 04:31:40 2025 by rpki-client