$ rpki-client -vvf rpki.apnic.net/member_repository/A915C631/39E4D7A8DC7811ECA4E30617C4F9AE02/e9PkPRNOUjXpdgPOi6lIa2KpseY.mft File: e9PkPRNOUjXpdgPOi6lIa2KpseY.mft (raw, json) Hash identifier: /kTav8QCtcqnB8UeRw22DAHMi10CMVA/KrNhutmU1AE= Subject key identifier: 31:D1:68:A2:09:3D:D8:58:36:BF:88:05:DB:B3:97:78:58:AC:C0:BC Authority key identifier: 7B:D3:E4:3D:13:4E:52:35:E9:76:03:CE:8B:A9:48:6B:62:A9:B1:E6 Certificate issuer: /CN=A915C631/serialNumber=7BD3E43D134E5235E97603CE8BA9486B62A9B1E6 Certificate serial: 031B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e9PkPRNOUjXpdgPOi6lIa2KpseY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C631/39E4D7A8DC7811ECA4E30617C4F9AE02/e9PkPRNOUjXpdgPOi6lIa2KpseY.mft Manifest number: 0307 Signing time: Fri 25 Apr 2025 01:06:08 +0000 Manifest this update: Fri 25 Apr 2025 01:06:07 +0000 Manifest next update: Fri 02 May 2025 01:06:07 +0000 Files and hashes: 1: e9PkPRNOUjXpdgPOi6lIa2KpseY.crl (hash: 128TX4dfYOnYgP+BXnXCgg60X0nFtS7llmu1r01ICE0=) 2: 63F05DE02F1D11EDA3E29B09C4F9AE02.roa (hash: 7ge7oc+Q12aZ6z9y4wrsw9dW7SCxd3kpwR7gaglsC78=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C631/39E4D7A8DC7811ECA4E30617C4F9AE02/e9PkPRNOUjXpdgPOi6lIa2KpseY.crl rsync://rpki.apnic.net/member_repository/A915C631/39E4D7A8DC7811ECA4E30617C4F9AE02/e9PkPRNOUjXpdgPOi6lIa2KpseY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e9PkPRNOUjXpdgPOi6lIa2KpseY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:06:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 795 (0x31b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C631, serialNumber=7BD3E43D134E5235E97603CE8BA9486B62A9B1E6 Validity Not Before: Apr 25 01:06:07 2025 GMT Not After : May 2 01:06:07 2025 GMT Subject: CN=680ae000-4271 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:bb:88:f0:33:e7:18:b2:1a:1a:7e:7e:e2:b9: b3:5c:a6:6f:0e:42:19:4c:6a:f3:b7:a9:25:90:6d: 23:fe:8c:a6:be:c7:60:f5:c6:a4:79:d8:9e:41:88: 98:75:28:6d:82:92:d8:6e:31:7a:15:f5:47:2d:db: 28:99:2b:68:5a:3d:d9:97:68:8e:8f:70:0e:45:cc: 8a:eb:f2:36:02:98:42:4f:46:6f:15:f0:47:c8:aa: e6:a5:09:4e:69:ac:e5:f1:4b:63:1d:2a:b5:e5:85: a0:55:7e:ea:74:cb:9e:d5:c5:3d:08:95:1f:ae:23: 31:28:b2:57:c6:0b:1d:9d:55:da:99:b7:03:8f:fb: a3:99:f4:85:b0:9b:1a:48:f1:b7:40:59:37:a3:2a: e1:c7:37:ea:e4:e9:c4:68:25:a0:0f:28:0c:e3:76: b6:a1:21:b7:9b:34:c4:ec:70:34:13:e8:0b:e7:39: 57:da:cd:cb:07:57:6f:f2:48:33:d3:a1:12:c1:29: d6:c1:5a:15:a0:de:56:a9:13:23:b4:85:e0:c7:88: cc:3a:6d:55:4b:e5:51:39:7e:66:a5:cd:50:d9:d0: f7:d4:9c:5b:1c:ae:b7:dd:68:2a:7f:18:e7:df:f2: 1a:b1:47:3d:ae:90:56:54:f5:2d:b5:57:4b:1d:d0: 4a:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:D1:68:A2:09:3D:D8:58:36:BF:88:05:DB:B3:97:78:58:AC:C0:BC X509v3 Authority Key Identifier: keyid:7B:D3:E4:3D:13:4E:52:35:E9:76:03:CE:8B:A9:48:6B:62:A9:B1:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C631/39E4D7A8DC7811ECA4E30617C4F9AE02/e9PkPRNOUjXpdgPOi6lIa2KpseY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e9PkPRNOUjXpdgPOi6lIa2KpseY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C631/39E4D7A8DC7811ECA4E30617C4F9AE02/e9PkPRNOUjXpdgPOi6lIa2KpseY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:7f:1e:5c:ae:8c:3a:6b:25:b6:c5:ca:ca:de:bf:a4:42:fe: 73:c7:5d:25:70:4f:8d:e8:6d:94:5c:d1:be:d5:f3:69:1a:1d: c9:c2:94:0f:f8:7b:ab:66:ed:83:be:97:75:80:c2:1c:f6:7b: ec:71:47:9c:45:68:b2:5a:26:95:a8:c9:3b:bf:ea:d8:56:77: b8:91:e8:11:b6:f9:1a:a8:ed:f4:f1:01:1a:71:6a:83:5b:32: 1f:1a:cf:dd:7e:cf:f6:f7:05:8d:eb:62:e8:c1:a1:48:50:98: 06:f9:ec:ec:7d:ac:33:6b:6c:60:3d:92:c8:31:a9:6e:6c:6b: 27:d3:4e:82:7e:6d:ec:63:6d:62:4f:9a:a9:83:c3:ba:35:cf: c1:c0:8e:5a:b0:91:f7:a2:b0:89:10:b5:d9:ff:12:d5:4f:7d: 00:c8:fb:35:59:18:27:69:e5:48:b7:f6:36:d6:b3:1f:c6:05: 72:fa:f9:b6:77:37:f9:ea:89:fb:6a:88:fc:9f:42:a1:f9:16: f3:b7:1c:9f:9a:d9:0d:ff:61:8c:89:11:39:b4:39:d4:bb:8e: 88:6d:4d:48:de:49:4f:92:7f:36:aa:bd:97:19:97:22:70:07: c9:db:ed:76:60:9a:b7:22:fb:54:1a:e4:98:37:c8:35:5b:31: 28:2e:02:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAxswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUM2MzExMTAvBgNVBAUTKDdCRDNFNDNEMTM0RTUyMzVFOTc2MDNDRThCQTk0ODZC NjJBOUIxRTYwHhcNMjUwNDI1MDEwNjA3WhcNMjUwNTAyMDEwNjA3WjAYMRYwFAYD VQQDEw02ODBhZTAwMC00MjcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApbuI8DPnGLIaGn5+4rmzXKZvDkIZTGrzt6klkG0j/oymvsdg9cakedieQYiY dShtgpLYbjF6FfVHLdsomStoWj3Zl2iOj3AORcyK6/I2AphCT0ZvFfBHyKrmpQlO aazl8UtjHSq15YWgVX7qdMue1cU9CJUfriMxKLJXxgsdnVXambcDj/ujmfSFsJsa SPG3QFk3oyrhxzfq5OnEaCWgDygM43a2oSG3mzTE7HA0E+gL5zlX2s3LB1dv8kgz 06ESwSnWwVoVoN5WqRMjtIXgx4jMOm1VS+VROX5mpc1Q2dD31JxbHK633Wgqfxjn 3/IasUc9rpBWVPUttVdLHdBKMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDHRaKIJ PdhYNr+IBduzl3hYrMC8MB8GA1UdIwQYMBaAFHvT5D0TTlI16XYDzoupSGtiqbHm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzYzMS8zOUU0RDdBOERD NzgxMUVDQTRFMzA2MTdDNEY5QUUwMi9lOVBrUFJOT1VqWHBkZ1BPaTZsSWEyS3Bz ZVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2U5UGtQUk5PVWpYcGRnUE9pNmxJYTJLcHNlWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QzYzMS8zOUU0RDdBOERDNzgxMUVDQTRFMzA2MTdDNEY5QUUwMi9lOVBrUFJOT1Vq WHBkZ1BPaTZsSWEyS3BzZVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCafx5crow6ayW2xcrK3r+kQv5zx10lcE+N6G2UXNG+1fNpGh3JwpQP +HurZu2Dvpd1gMIc9nvscUecRWiyWiaVqMk7v+rYVne4kegRtvkaqO308QEacWqD WzIfGs/dfs/29wWN62LowaFIUJgG+ezsfawza2xgPZLIMalubGsn006Cfm3sY21i T5qpg8O6Nc/BwI5asJH3orCJELXZ/xLVT30AyPs1WRgnaeVIt/Y21rMfxgVy+vm2 dzf56on7aoj8n0Kh+RbztxyfmtkN/2GMiRE5tDnUu46IbU1I3klPkn82qr2XGZci cAfJ2+12YJq3IvtUGuSYN8g1WzEoLgIl -----END CERTIFICATE-----Generated at Sat Apr 26 04:24:48 2025 by rpki-client