$ rpki-client -vvf rpki.apnic.net/member_repository/A9163BFD/858F9AAC72F511EE801CC83CC4F9AE02/EAiP7ctRWnPwDu3X7GDodfnfCvY.mft File: EAiP7ctRWnPwDu3X7GDodfnfCvY.mft (raw, json) Hash identifier: 2Iw94tfseH9NDxb/ZgArmdGF0gm7++fqDJIKYc9zGvI= Subject key identifier: 06:2E:75:19:E2:48:AA:60:B2:8D:84:C2:A4:67:05:A4:BE:E8:72:64 Authority key identifier: 10:08:8F:ED:CB:51:5A:73:F0:0E:ED:D7:EC:60:E8:75:F9:DF:0A:F6 Certificate issuer: /CN=A9163BFD/serialNumber=10088FEDCB515A73F00EEDD7EC60E875F9DF0AF6 Certificate serial: 011B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EAiP7ctRWnPwDu3X7GDodfnfCvY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163BFD/858F9AAC72F511EE801CC83CC4F9AE02/EAiP7ctRWnPwDu3X7GDodfnfCvY.mft Manifest number: 0119 Signing time: Fri 25 Apr 2025 03:53:25 +0000 Manifest this update: Fri 25 Apr 2025 03:53:24 +0000 Manifest next update: Fri 02 May 2025 03:53:24 +0000 Files and hashes: 1: EAiP7ctRWnPwDu3X7GDodfnfCvY.crl (hash: Fa9xvP54C+1L1XWa9Cw7nKz4+Xmq7J2tX/hONMeL5Ts=) 2: 29D7838672F611EEB309873EC4F9AE02.roa (hash: zu5oTBlWmiRJc0JKeXclVvx/PdtKlnfyN23W6szZl1s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163BFD/858F9AAC72F511EE801CC83CC4F9AE02/EAiP7ctRWnPwDu3X7GDodfnfCvY.crl rsync://rpki.apnic.net/member_repository/A9163BFD/858F9AAC72F511EE801CC83CC4F9AE02/EAiP7ctRWnPwDu3X7GDodfnfCvY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EAiP7ctRWnPwDu3X7GDodfnfCvY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:53:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 283 (0x11b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163BFD, serialNumber=10088FEDCB515A73F00EEDD7EC60E875F9DF0AF6 Validity Not Before: Apr 25 03:53:24 2025 GMT Not After : May 2 03:53:24 2025 GMT Subject: CN=680b0734-a5bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:0d:6a:21:81:83:e9:9f:93:22:b4:6f:ff:2b: 7c:ff:48:ea:f3:b5:80:5c:0a:df:df:a2:77:e3:bb: c4:c3:ea:76:37:bf:b1:ec:59:16:be:be:63:a7:0b: ee:5c:23:44:6a:e3:71:07:b7:0b:be:d3:31:5b:9e: e2:81:ce:99:a9:49:fd:60:17:1b:44:2e:95:d0:e7: 77:45:2a:8f:5d:b2:06:22:36:01:14:20:48:b6:07: 6a:b4:c9:cf:3b:26:6b:21:09:85:49:c2:5f:e0:bd: ea:42:fd:0b:9d:d2:19:40:15:e4:15:fe:4c:27:a0: 2a:90:6b:ba:dc:f1:ac:09:ed:98:40:6b:44:c6:a7: 90:e5:6d:b4:d5:ac:0d:ff:73:b5:d5:dd:25:09:b8: 2e:d6:18:53:a8:80:a6:dd:c8:77:29:13:8a:24:73: 7a:ee:87:0c:2f:ff:55:76:43:8c:39:b2:ee:42:f0: b9:99:44:55:e5:70:14:f2:1a:b0:b7:53:ab:c2:2a: 1a:37:15:d5:7f:da:ae:4f:36:af:a8:a9:80:68:be: 39:07:60:c9:89:be:b2:aa:06:32:15:16:00:b3:79: 6b:1e:ab:84:87:05:66:e8:c4:b0:e7:c5:40:3e:9e: 0e:86:bc:86:87:d0:41:87:7e:95:18:08:87:61:c7: f4:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:2E:75:19:E2:48:AA:60:B2:8D:84:C2:A4:67:05:A4:BE:E8:72:64 X509v3 Authority Key Identifier: keyid:10:08:8F:ED:CB:51:5A:73:F0:0E:ED:D7:EC:60:E8:75:F9:DF:0A:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163BFD/858F9AAC72F511EE801CC83CC4F9AE02/EAiP7ctRWnPwDu3X7GDodfnfCvY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EAiP7ctRWnPwDu3X7GDodfnfCvY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163BFD/858F9AAC72F511EE801CC83CC4F9AE02/EAiP7ctRWnPwDu3X7GDodfnfCvY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:e7:73:06:bb:c5:88:26:5f:8c:c9:a3:e1:f3:bd:f0:58:51: ae:06:ee:c6:a9:8c:9c:ab:d8:56:73:2f:94:f4:4d:2f:07:d2: 5b:8c:bc:9f:c5:13:62:c8:25:0d:75:66:d9:b3:3f:7c:91:a4: 1c:ab:a1:e4:7b:0c:ea:8a:b6:9e:c7:2a:20:23:a5:3f:be:44: 7e:f7:15:86:7c:f1:f9:d7:77:31:eb:47:bb:1d:c7:48:db:0a: f6:df:c4:6b:3c:15:e1:d7:4b:6f:96:4a:52:68:52:e2:55:85: e9:4f:14:89:ba:94:bd:ea:61:97:e6:37:52:c2:fe:51:35:6e: ec:f4:a4:85:cc:e0:d8:16:3c:3b:a1:8e:1d:65:01:d8:a6:aa: 9c:17:8b:6b:ea:a2:43:f2:74:86:af:67:80:7d:1c:44:85:c3: d3:fe:09:2d:89:2a:19:d8:d5:ad:3d:11:fe:09:ea:da:41:71: e0:0b:c2:16:b6:57:9b:02:d1:8e:1d:47:25:c1:89:22:17:43: fb:fe:99:c4:79:ff:3a:85:72:b9:6f:1d:17:d4:55:04:ab:af: a5:ef:f2:a0:94:19:82:e2:3d:06:0a:2c:ad:2c:8d:d0:f6:9f: f3:05:9d:2d:da:15:19:96:43:85:ac:d0:d3:7c:15:3a:ee:e0: 37:9b:40:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjNCRkQxMTAvBgNVBAUTKDEwMDg4RkVEQ0I1MTVBNzNGMDBFRUREN0VDNjBFODc1 RjlERjBBRjYwHhcNMjUwNDI1MDM1MzI0WhcNMjUwNTAyMDM1MzI0WjAYMRYwFAYD VQQDEw02ODBiMDczNC1hNWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuw1qIYGD6Z+TIrRv/yt8/0jq87WAXArf36J347vEw+p2N7+x7FkWvr5jpwvu XCNEauNxB7cLvtMxW57igc6ZqUn9YBcbRC6V0Od3RSqPXbIGIjYBFCBItgdqtMnP OyZrIQmFScJf4L3qQv0LndIZQBXkFf5MJ6AqkGu63PGsCe2YQGtExqeQ5W201awN /3O11d0lCbgu1hhTqICm3ch3KROKJHN67ocML/9VdkOMObLuQvC5mURV5XAU8hqw t1OrwioaNxXVf9quTzavqKmAaL45B2DJib6yqgYyFRYAs3lrHquEhwVm6MSw58VA Pp4OhryGh9BBh36VGAiHYcf0awIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAYudRni SKpgso2EwqRnBaS+6HJkMB8GA1UdIwQYMBaAFBAIj+3LUVpz8A7t1+xg6HX53wr2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2M0JGRC84NThGOUFBQzcy RjUxMUVFODAxQ0M4M0NDNEY5QUUwMi9FQWlQN2N0UlduUHdEdTNYN0dEb2RmbmZD dlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VBaVA3Y3RSV25Qd0R1M1g3R0RvZGZuZkN2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 M0JGRC84NThGOUFBQzcyRjUxMUVFODAxQ0M4M0NDNEY5QUUwMi9FQWlQN2N0Uldu UHdEdTNYN0dEb2RmbmZDdlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCP53MGu8WIJl+MyaPh873wWFGuBu7GqYycq9hWcy+U9E0vB9JbjLyf xRNiyCUNdWbZsz98kaQcq6HkewzqiraexyogI6U/vkR+9xWGfPH513cx60e7HcdI 2wr238RrPBXh10tvlkpSaFLiVYXpTxSJupS96mGX5jdSwv5RNW7s9KSFzODYFjw7 oY4dZQHYpqqcF4tr6qJD8nSGr2eAfRxEhcPT/gktiSoZ2NWtPRH+CeraQXHgC8IW tlebAtGOHUclwYkiF0P7/pnEef86hXK5bx0X1FUEq6+l7/KglBmC4j0GCiytLI3Q 9p/zBZ0t2hUZlkOFrNDTfBU67uA3m0Bw -----END CERTIFICATE-----Generated at Sat Apr 26 13:36:21 2025 by rpki-client