$ rpki-client -vvf rpki.apnic.net/member_repository/A9169CD3/812286D2471111E5A4496335C4F9AE02/rEGRrDoak5bnjWEvN026zI8tkbU.mft File: rEGRrDoak5bnjWEvN026zI8tkbU.mft (raw, json) Hash identifier: GRBX/xFSyMjGu4F9HUci9AuBeZuTgnJbi82PaSm5tCo= Subject key identifier: 78:D1:BA:1E:17:3C:EC:77:D5:47:81:F9:E7:87:38:86:97:CD:48:9D Authority key identifier: AC:41:91:AC:3A:1A:93:96:E7:8D:61:2F:37:4D:BA:CC:8F:2D:91:B5 Certificate issuer: /CN=A9169CD3/serialNumber=AC4191AC3A1A9396E78D612F374DBACC8F2D91B5 Certificate serial: 248C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rEGRrDoak5bnjWEvN026zI8tkbU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169CD3/812286D2471111E5A4496335C4F9AE02/rEGRrDoak5bnjWEvN026zI8tkbU.mft Manifest number: 2473 Signing time: Thu 24 Apr 2025 15:48:36 +0000 Manifest this update: Thu 24 Apr 2025 15:48:36 +0000 Manifest next update: Thu 01 May 2025 15:48:36 +0000 Files and hashes: 1: rEGRrDoak5bnjWEvN026zI8tkbU.crl (hash: Uo3Po9ubvz/++hxDGVhikwazVKDV6Nokh41RBX+hX0s=) 2: 842CE8807AE311EF91F51E42C4F9AE02.roa (hash: EQJEwI6hBDPCVTYBcU1MDA5dcAO+zNo1IBrEYTkEo78=) 3: 6FEB20F0EF3011EFB4C15420C4F9AE02.roa (hash: rk5n7G9m4WZW7jLcqxF5X+WaA+gvkbnGPhX3dWrSEeA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169CD3/812286D2471111E5A4496335C4F9AE02/rEGRrDoak5bnjWEvN026zI8tkbU.crl rsync://rpki.apnic.net/member_repository/A9169CD3/812286D2471111E5A4496335C4F9AE02/rEGRrDoak5bnjWEvN026zI8tkbU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rEGRrDoak5bnjWEvN026zI8tkbU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:48:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9356 (0x248c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169CD3, serialNumber=AC4191AC3A1A9396E78D612F374DBACC8F2D91B5 Validity Not Before: Apr 24 15:48:36 2025 GMT Not After : May 1 15:48:36 2025 GMT Subject: CN=680a5d54-999b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:58:d3:7e:78:7e:c1:bb:99:d1:8c:47:59:f0: c5:28:f9:e3:5b:f9:f1:72:cf:01:a4:bf:de:03:73: be:9f:97:27:bb:18:fc:f2:d2:9b:e8:75:1e:e3:6d: cf:be:f5:9c:1f:39:09:05:be:3d:ba:2d:df:49:ca: 4c:56:d3:ad:a0:ed:a3:e5:f7:8a:2b:9f:71:cf:de: bc:cc:bf:96:ce:ac:ff:a5:34:99:ee:08:0d:7e:f4: 57:a6:68:d9:07:af:74:42:57:c7:aa:22:d8:e4:7b: 73:a2:7f:2f:32:f7:fb:7e:0d:25:73:c6:e5:b5:6a: 92:cb:85:30:84:d2:10:50:2e:81:7b:39:35:1c:cd: 2b:79:e3:bc:fe:e6:23:b7:30:b3:c5:13:90:8d:19: 5b:e9:c9:5a:4e:a2:fb:58:8d:69:52:09:54:60:8a: 0f:43:80:10:5e:b1:e2:e3:ec:6e:01:a6:b8:88:1b: 47:e4:30:d5:49:29:88:5a:f5:cc:95:11:d4:0e:ba: 83:68:cd:57:33:08:fb:0f:c9:e9:a7:f7:5c:16:41: 0a:a1:c5:c1:e5:1b:03:74:81:6d:78:1d:9d:65:c0: 16:4d:32:b8:02:70:b0:fa:72:a1:b8:9a:38:0d:80: 15:37:07:3c:d5:e5:8e:e6:8a:50:b2:b0:be:70:2c: 78:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:D1:BA:1E:17:3C:EC:77:D5:47:81:F9:E7:87:38:86:97:CD:48:9D X509v3 Authority Key Identifier: keyid:AC:41:91:AC:3A:1A:93:96:E7:8D:61:2F:37:4D:BA:CC:8F:2D:91:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169CD3/812286D2471111E5A4496335C4F9AE02/rEGRrDoak5bnjWEvN026zI8tkbU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rEGRrDoak5bnjWEvN026zI8tkbU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169CD3/812286D2471111E5A4496335C4F9AE02/rEGRrDoak5bnjWEvN026zI8tkbU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:95:3f:38:5a:d3:29:44:27:46:21:a3:46:34:b9:49:db:66: e0:8b:6c:10:1d:bc:0d:fc:d5:d5:f9:f0:17:66:6b:ca:a9:af: 97:64:ac:e0:86:aa:52:96:22:69:f2:f1:d2:a1:45:7a:16:76: 15:ba:25:d7:54:b0:08:0b:bf:3d:5a:25:71:56:31:15:7d:de: 2b:f2:c4:b0:b6:d3:fe:32:1a:0b:bb:4e:a0:70:e2:68:72:40: d0:da:cb:38:94:2e:ec:98:3d:ec:4d:ed:96:da:8e:59:9b:9c: 8c:02:56:d4:c5:18:6c:18:c2:e5:3a:23:28:03:e2:dc:f7:58: 99:45:eb:ae:76:05:39:a9:6c:9a:a0:57:9b:d3:ee:52:b3:2e: 79:4a:02:d1:b5:d8:b8:f3:65:20:0e:e8:81:c2:ce:31:20:b8: 1c:7d:54:0c:24:83:c3:55:e3:df:82:82:a3:05:73:79:1d:15: 55:62:83:45:08:c7:c7:a6:72:02:d5:cc:72:22:f6:47:c8:5e: 50:28:49:6e:82:77:97:41:90:db:79:da:30:55:cd:43:35:1e: 4f:6e:76:2d:9a:c2:58:93:4f:0b:0d:0c:58:58:17:7c:fc:33: e5:49:85:35:5a:3e:31:ce:b3:6e:dc:94:9c:b8:63:0f:68:9e: 36:7f:d5:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjlDRDMxMTAvBgNVBAUTKEFDNDE5MUFDM0ExQTkzOTZFNzhENjEyRjM3NERCQUND OEYyRDkxQjUwHhcNMjUwNDI0MTU0ODM2WhcNMjUwNTAxMTU0ODM2WjAYMRYwFAYD VQQDEw02ODBhNWQ1NC05OTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr1jTfnh+wbuZ0YxHWfDFKPnjW/nxcs8BpL/eA3O+n5cnuxj88tKb6HUe423P vvWcHzkJBb49ui3fScpMVtOtoO2j5feKK59xz968zL+Wzqz/pTSZ7ggNfvRXpmjZ B690QlfHqiLY5Htzon8vMvf7fg0lc8bltWqSy4UwhNIQUC6Bezk1HM0reeO8/uYj tzCzxROQjRlb6claTqL7WI1pUglUYIoPQ4AQXrHi4+xuAaa4iBtH5DDVSSmIWvXM lRHUDrqDaM1XMwj7D8npp/dcFkEKocXB5RsDdIFteB2dZcAWTTK4AnCw+nKhuJo4 DYAVNwc81eWO5opQsrC+cCx4qwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHjRuh4X POx31UeB+eeHOIaXzUidMB8GA1UdIwQYMBaAFKxBkaw6GpOW541hLzdNusyPLZG1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OUNEMy84MTIyODZEMjQ3 MTExMUU1QTQ0OTYzMzVDNEY5QUUwMi9yRUdSckRvYWs1Ym5qV0V2TjAyNnpJOHRr YlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JFR1JyRG9hazVibmpXRXZOMDI2ekk4dGtiVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OUNEMy84MTIyODZEMjQ3MTExMUU1QTQ0OTYzMzVDNEY5QUUwMi9yRUdSckRvYWs1 Ym5qV0V2TjAyNnpJOHRrYlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9lT84WtMpRCdGIaNGNLlJ22bgi2wQHbwN/NXV+fAXZmvKqa+XZKzg hqpSliJp8vHSoUV6FnYVuiXXVLAIC789WiVxVjEVfd4r8sSwttP+MhoLu06gcOJo ckDQ2ss4lC7smD3sTe2W2o5Zm5yMAlbUxRhsGMLlOiMoA+Lc91iZReuudgU5qWya oFeb0+5Ssy55SgLRtdi482UgDuiBws4xILgcfVQMJIPDVePfgoKjBXN5HRVVYoNF CMfHpnIC1cxyIvZHyF5QKElugneXQZDbedowVc1DNR5PbnYtmsJYk08LDQxYWBd8 /DPlSYU1Wj4xzrNu3JScuGMPaJ42f9UY -----END CERTIFICATE-----Generated at Sat Apr 26 03:56:40 2025 by rpki-client