$ rpki-client -vvf rpki.apnic.net/member_repository/A915DFBD/D34A6830387811EC8CB59B0EC4F9AE02/er7uZ6xhMToeH6izhl0_sfY090M.mft File: er7uZ6xhMToeH6izhl0_sfY090M.mft (raw, json) Hash identifier: nwknPCPB5+3Z/n4gMPYJ4+LA8pQRI+RAlG7/ln3WbFU= Subject key identifier: 61:70:5C:29:1B:EE:44:8F:25:37:BB:07:2A:52:F4:59:4F:5D:65:5B Authority key identifier: 7A:BE:EE:67:AC:61:31:3A:1E:1F:A8:B3:86:5D:3F:B1:F6:34:F7:43 Certificate issuer: /CN=A915DFBD/serialNumber=7ABEEE67AC61313A1E1FA8B3865D3FB1F634F743 Certificate serial: 0489 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/er7uZ6xhMToeH6izhl0_sfY090M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915DFBD/D34A6830387811EC8CB59B0EC4F9AE02/er7uZ6xhMToeH6izhl0_sfY090M.mft Manifest number: 0485 Signing time: Thu 24 Apr 2025 23:49:15 +0000 Manifest this update: Thu 24 Apr 2025 23:49:15 +0000 Manifest next update: Thu 01 May 2025 23:49:15 +0000 Files and hashes: 1: er7uZ6xhMToeH6izhl0_sfY090M.crl (hash: XDJ7i3zDQnbJcgm0n7ZmN5QXY9mdMcP6E0iGpcoBQ1c=) 2: 449009F2387C11ECAE655C13C4F9AE02.roa (hash: LnHKmwGp8aCuXv2MpEec+GzNTX2xZYK5a57AEcKO+a0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915DFBD/D34A6830387811EC8CB59B0EC4F9AE02/er7uZ6xhMToeH6izhl0_sfY090M.crl rsync://rpki.apnic.net/member_repository/A915DFBD/D34A6830387811EC8CB59B0EC4F9AE02/er7uZ6xhMToeH6izhl0_sfY090M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/er7uZ6xhMToeH6izhl0_sfY090M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:49:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1161 (0x489) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915DFBD, serialNumber=7ABEEE67AC61313A1E1FA8B3865D3FB1F634F743 Validity Not Before: Apr 24 23:49:15 2025 GMT Not After : May 1 23:49:15 2025 GMT Subject: CN=680acdfb-d354 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:bc:55:07:9d:4b:ef:5c:7f:f3:24:62:4e:d4: c3:35:23:0e:38:f8:a4:6e:b9:da:8a:48:a8:86:1d: 71:d7:2d:04:6d:87:f1:6b:b4:18:ee:7a:73:a5:f7: bd:76:fc:d1:ed:5c:90:a9:7a:ea:01:22:5b:56:a1: 98:cd:57:dc:5b:ca:4b:8e:d8:62:95:c0:0b:7f:91: c1:2b:14:eb:59:b4:9e:af:00:95:46:e2:6d:ff:9b: 4a:7d:32:ed:05:d2:68:79:e0:4e:fe:e6:35:c0:4e: c3:7e:50:b9:ab:65:f7:ed:6a:07:44:97:34:42:82: 04:da:fb:aa:c8:d6:42:ad:bb:d0:5e:0f:b3:70:ad: e6:ef:ec:c1:f4:78:61:49:0d:77:0d:d4:57:1f:c1: e8:23:df:72:2e:10:5d:2b:d2:0d:57:8d:c8:61:6f: 57:10:27:00:a0:42:5b:bf:23:7c:5f:a7:6e:7a:a5: 90:3b:a5:5b:39:d0:fc:78:b0:7e:59:4e:be:25:45: 82:1a:7f:34:a3:f4:73:cc:25:d2:fe:13:ac:47:7d: bd:53:6b:fa:f4:94:03:9b:ee:9f:a3:5e:35:4c:22: fc:af:74:5b:83:b6:e8:01:f3:ff:f6:12:52:45:62: d9:e5:7c:c1:15:9f:68:c2:ed:92:f9:cf:81:d3:61: a6:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:70:5C:29:1B:EE:44:8F:25:37:BB:07:2A:52:F4:59:4F:5D:65:5B X509v3 Authority Key Identifier: keyid:7A:BE:EE:67:AC:61:31:3A:1E:1F:A8:B3:86:5D:3F:B1:F6:34:F7:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915DFBD/D34A6830387811EC8CB59B0EC4F9AE02/er7uZ6xhMToeH6izhl0_sfY090M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/er7uZ6xhMToeH6izhl0_sfY090M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915DFBD/D34A6830387811EC8CB59B0EC4F9AE02/er7uZ6xhMToeH6izhl0_sfY090M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:40:d5:d3:9f:26:05:d3:4a:f2:04:b4:63:d0:1f:da:b3:29: da:27:23:1e:95:74:2d:f0:fa:4d:1e:52:1d:66:d7:bf:9a:df: 49:dc:62:da:a9:1f:20:de:b6:5f:28:32:90:85:a9:ca:3b:e8: ef:42:6d:8e:c0:a2:2d:db:38:46:e0:1a:f7:40:d9:86:39:1d: 57:2d:8d:5d:d4:32:d4:c1:26:a4:3b:29:dc:41:3b:b4:79:e9: d2:22:e0:30:ae:8d:68:d9:81:ff:b9:1b:18:0d:e1:48:14:e5: 73:22:8e:7f:f2:44:cb:ce:12:4e:25:98:64:8e:cd:77:95:d1: 89:5e:2e:70:91:2f:b4:fa:e1:01:18:08:15:96:81:d6:1f:4e: e2:ab:11:50:fd:a7:74:bb:21:69:36:18:58:d5:9b:0c:12:40: aa:37:75:8c:88:14:ee:bd:25:df:d4:46:75:48:c5:7a:4d:d0: 6d:35:1d:d7:fc:78:5d:7a:6f:bc:14:14:f7:c1:7b:6d:09:5d: fe:3d:b7:a4:32:d9:e4:63:37:68:d8:d6:b3:a1:f6:98:fa:16: a5:d7:46:44:aa:02:21:6b:2e:8d:5d:97:af:79:10:a5:90:2f: c3:06:cf:9c:3c:19:b0:e8:dd:5b:eb:9b:02:4f:ab:02:85:03: 95:aa:1f:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NURGQkQxMTAvBgNVBAUTKDdBQkVFRTY3QUM2MTMxM0ExRTFGQThCMzg2NUQzRkIx RjYzNEY3NDMwHhcNMjUwNDI0MjM0OTE1WhcNMjUwNTAxMjM0OTE1WjAYMRYwFAYD VQQDEw02ODBhY2RmYi1kMzU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuLxVB51L71x/8yRiTtTDNSMOOPikbrnaikiohh1x1y0EbYfxa7QY7npzpfe9 dvzR7VyQqXrqASJbVqGYzVfcW8pLjthilcALf5HBKxTrWbSerwCVRuJt/5tKfTLt BdJoeeBO/uY1wE7DflC5q2X37WoHRJc0QoIE2vuqyNZCrbvQXg+zcK3m7+zB9Hhh SQ13DdRXH8HoI99yLhBdK9INV43IYW9XECcAoEJbvyN8X6dueqWQO6VbOdD8eLB+ WU6+JUWCGn80o/RzzCXS/hOsR329U2v69JQDm+6fo141TCL8r3Rbg7boAfP/9hJS RWLZ5XzBFZ9owu2S+c+B02GmvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGFwXCkb 7kSPJTe7BypS9FlPXWVbMB8GA1UdIwQYMBaAFHq+7mesYTE6Hh+os4ZdP7H2NPdD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1REZCRC9EMzRBNjgzMDM4 NzgxMUVDOENCNTlCMEVDNEY5QUUwMi9lcjd1WjZ4aE1Ub2VINml6aGwwX3NmWTA5 ME0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VyN3VaNnhoTVRvZUg2aXpobDBfc2ZZMDkwTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 REZCRC9EMzRBNjgzMDM4NzgxMUVDOENCNTlCMEVDNEY5QUUwMi9lcjd1WjZ4aE1U b2VINml6aGwwX3NmWTA5ME0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYQNXTnyYF00ryBLRj0B/asynaJyMelXQt8PpNHlIdZte/mt9J3GLa qR8g3rZfKDKQhanKO+jvQm2OwKIt2zhG4Br3QNmGOR1XLY1d1DLUwSakOyncQTu0 eenSIuAwro1o2YH/uRsYDeFIFOVzIo5/8kTLzhJOJZhkjs13ldGJXi5wkS+0+uEB GAgVloHWH07iqxFQ/ad0uyFpNhhY1ZsMEkCqN3WMiBTuvSXf1EZ1SMV6TdBtNR3X /Hhdem+8FBT3wXttCV3+PbekMtnkYzdo2NazofaY+hal10ZEqgIhay6NXZeveRCl kC/DBs+cPBmw6N1b65sCT6sChQOVqh95 -----END CERTIFICATE-----Generated at Sat Apr 26 13:57:48 2025 by rpki-client