$ rpki-client -vvf rpki.apnic.net/member_repository/A914DF56/BD7FA038152311ECB74F2080C4F9AE02/E5bqlAlF_CBf8uPRsr4bkNcsxek.mft File: E5bqlAlF_CBf8uPRsr4bkNcsxek.mft (raw, json) Hash identifier: D0gstdv0npQQ8Jl+v3liApcjHS6TRSz6xH1qyWkMUaM= Subject key identifier: BD:F3:A7:BE:E9:06:24:D7:61:50:CA:BB:46:56:4E:95:A9:B7:82:34 Authority key identifier: 13:96:EA:94:09:45:FC:20:5F:F2:E3:D1:B2:BE:1B:90:D7:2C:C5:E9 Certificate issuer: /CN=A914DF56/serialNumber=1396EA940945FC205FF2E3D1B2BE1B90D72CC5E9 Certificate serial: 04F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E5bqlAlF_CBf8uPRsr4bkNcsxek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DF56/BD7FA038152311ECB74F2080C4F9AE02/E5bqlAlF_CBf8uPRsr4bkNcsxek.mft Manifest number: 04E9 Signing time: Thu 24 Apr 2025 23:33:05 +0000 Manifest this update: Thu 24 Apr 2025 23:33:04 +0000 Manifest next update: Thu 01 May 2025 23:33:04 +0000 Files and hashes: 1: E5bqlAlF_CBf8uPRsr4bkNcsxek.crl (hash: b82ErYhD3k8ntFDQhlChc8Pi1yGUfX2ZqEHAqTYv8Ik=) 2: EB17A8C2152511ECAD055780C4F9AE02.roa (hash: 3Who1qUDm6eD8QDguJD4EaJb2KgGViSYhJ9baOpktjo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DF56/BD7FA038152311ECB74F2080C4F9AE02/E5bqlAlF_CBf8uPRsr4bkNcsxek.crl rsync://rpki.apnic.net/member_repository/A914DF56/BD7FA038152311ECB74F2080C4F9AE02/E5bqlAlF_CBf8uPRsr4bkNcsxek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E5bqlAlF_CBf8uPRsr4bkNcsxek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:33:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1265 (0x4f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DF56, serialNumber=1396EA940945FC205FF2E3D1B2BE1B90D72CC5E9 Validity Not Before: Apr 24 23:33:04 2025 GMT Not After : May 1 23:33:04 2025 GMT Subject: CN=680aca31-a610 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:41:f4:92:cc:f1:f6:74:9e:10:fa:1e:2e:c5: 0d:40:d4:8b:e7:13:5e:70:7f:2a:f6:35:0a:cf:7e: f7:40:65:45:36:8c:e3:a6:b1:7b:1b:77:88:22:5f: 8f:8a:ca:bf:55:78:01:fd:77:7a:8b:e0:28:01:73: 80:7e:13:d7:ae:3f:6f:81:92:5e:e3:c0:ed:45:08: 45:5a:b9:22:40:55:02:ab:ee:af:62:22:76:36:e3: ec:63:a7:83:c2:3b:e0:72:d7:6f:e1:65:94:e2:e0: a4:5c:20:2d:ab:de:00:e8:65:5c:02:dc:c8:71:bf: ff:5a:15:2d:c1:ac:da:0d:d7:52:a9:d1:36:ad:ea: d6:4c:d1:50:d3:05:fa:f2:72:bb:64:f1:1e:ac:37: 05:d9:26:dd:6b:a0:1b:fd:bc:c6:59:16:82:7d:e4: 95:76:f5:e8:b0:1f:12:2d:e8:fd:66:a8:13:dd:00: c4:a7:39:5e:93:ca:6e:48:23:d3:4a:a9:f5:c3:96: de:5b:4c:10:fd:15:1a:a5:21:94:f2:b5:87:77:64: 04:9a:98:a7:12:aa:69:2a:cc:d8:0e:43:90:65:eb: 59:99:fa:33:25:1a:fa:fb:b7:fb:6d:3f:72:e1:b8: 46:35:66:5d:fe:43:4b:29:c7:93:db:29:27:58:b4: d0:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:F3:A7:BE:E9:06:24:D7:61:50:CA:BB:46:56:4E:95:A9:B7:82:34 X509v3 Authority Key Identifier: keyid:13:96:EA:94:09:45:FC:20:5F:F2:E3:D1:B2:BE:1B:90:D7:2C:C5:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DF56/BD7FA038152311ECB74F2080C4F9AE02/E5bqlAlF_CBf8uPRsr4bkNcsxek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E5bqlAlF_CBf8uPRsr4bkNcsxek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DF56/BD7FA038152311ECB74F2080C4F9AE02/E5bqlAlF_CBf8uPRsr4bkNcsxek.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:46:07:e0:31:a9:c3:2f:ab:00:73:f1:94:c4:61:46:c1:46: 76:85:ea:be:5d:39:eb:9a:e5:38:44:88:4c:f3:5e:65:cd:63: a4:06:33:16:11:53:83:3a:da:92:8e:e4:04:f8:93:8c:59:e0: ed:31:52:92:0e:9d:ac:6c:9e:bd:5d:fe:f4:33:34:f5:8f:5c: 25:13:a2:d4:91:e8:1d:97:3d:3a:35:c9:84:97:5b:e5:64:aa: 0a:9c:38:f6:ae:14:c3:6c:e5:16:f7:7c:1f:b8:90:d5:c6:f0: 0f:4b:b3:0d:b6:52:87:b5:a2:af:19:53:e0:7e:db:a4:f2:15: 15:89:c5:4f:f0:84:c9:3a:c5:00:76:94:c9:db:56:97:54:e4: 40:2e:af:fe:a1:d1:0b:21:da:aa:45:41:c7:dc:53:03:df:ff: 51:ad:52:cd:96:2b:4b:d0:66:5c:94:c1:6e:8e:ae:aa:f0:d3: d7:de:ca:77:20:26:e6:53:3f:57:e1:fb:c5:c1:3b:ab:9d:1b: 4d:bf:3b:f2:c0:f6:15:b8:ab:25:73:ee:6e:af:36:98:a0:e0: f1:84:56:44:1e:b7:29:9e:bf:7c:04:06:fd:56:52:d6:de:fc: 36:a6:7e:34:53:47:38:33:21:ea:6a:16:84:26:46:3d:c8:1d: a9:9a:da:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERGNTYxMTAvBgNVBAUTKDEzOTZFQTk0MDk0NUZDMjA1RkYyRTNEMUIyQkUxQjkw RDcyQ0M1RTkwHhcNMjUwNDI0MjMzMzA0WhcNMjUwNTAxMjMzMzA0WjAYMRYwFAYD VQQDEw02ODBhY2EzMS1hNjEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA10H0kszx9nSeEPoeLsUNQNSL5xNecH8q9jUKz373QGVFNozjprF7G3eIIl+P isq/VXgB/Xd6i+AoAXOAfhPXrj9vgZJe48DtRQhFWrkiQFUCq+6vYiJ2NuPsY6eD wjvgctdv4WWU4uCkXCAtq94A6GVcAtzIcb//WhUtwazaDddSqdE2rerWTNFQ0wX6 8nK7ZPEerDcF2Sbda6Ab/bzGWRaCfeSVdvXosB8SLej9ZqgT3QDEpzlek8puSCPT Sqn1w5beW0wQ/RUapSGU8rWHd2QEmpinEqppKszYDkOQZetZmfozJRr6+7f7bT9y 4bhGNWZd/kNLKceT2yknWLTQLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL3zp77p BiTXYVDKu0ZWTpWpt4I0MB8GA1UdIwQYMBaAFBOW6pQJRfwgX/Lj0bK+G5DXLMXp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REY1Ni9CRDdGQTAzODE1 MjMxMUVDQjc0RjIwODBDNEY5QUUwMi9FNWJxbEFsRl9DQmY4dVBSc3I0YmtOY3N4 ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0U1YnFsQWxGX0NCZjh1UFJzcjRia05jc3hlay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 REY1Ni9CRDdGQTAzODE1MjMxMUVDQjc0RjIwODBDNEY5QUUwMi9FNWJxbEFsRl9D QmY4dVBSc3I0YmtOY3N4ZWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCzRgfgManDL6sAc/GUxGFGwUZ2heq+XTnrmuU4RIhM815lzWOkBjMW EVODOtqSjuQE+JOMWeDtMVKSDp2sbJ69Xf70MzT1j1wlE6LUkegdlz06NcmEl1vl ZKoKnDj2rhTDbOUW93wfuJDVxvAPS7MNtlKHtaKvGVPgftuk8hUVicVP8ITJOsUA dpTJ21aXVORALq/+odELIdqqRUHH3FMD3/9RrVLNlitL0GZclMFujq6q8NPX3sp3 ICbmUz9X4fvFwTurnRtNvzvywPYVuKslc+5urzaYoODxhFZEHrcpnr98BAb9VlLW 3vw2pn40U0c4MyHqahaEJkY9yB2pmtqG -----END CERTIFICATE-----Generated at Sat Apr 26 04:23:37 2025 by rpki-client