$ rpki-client -vvf rpki.apnic.net/member_repository/A9174A5B/11E96B34701211EB8BEE0A1FC4F9AE02/tN_eECSMkMVYSwFupua0nnge2CA.mft File: tN_eECSMkMVYSwFupua0nnge2CA.mft (raw, json) Hash identifier: KbBGaa2Ae88Od6BrX1DaN7S3Y6ZBLLG0Pz0CHJbo2CI= Subject key identifier: 3A:C4:AB:16:46:EB:5F:A1:AC:AC:E0:6E:F7:66:92:28:F5:CC:24:E7 Authority key identifier: B4:DF:DE:10:24:8C:90:C5:58:4B:01:6E:A6:E6:B4:9E:78:1E:D8:20 Certificate issuer: /CN=A9174A5B/serialNumber=B4DFDE10248C90C5584B016EA6E6B49E781ED820 Certificate serial: 0683 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tN_eECSMkMVYSwFupua0nnge2CA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174A5B/11E96B34701211EB8BEE0A1FC4F9AE02/tN_eECSMkMVYSwFupua0nnge2CA.mft Manifest number: 067D Signing time: Thu 24 Apr 2025 22:05:22 +0000 Manifest this update: Thu 24 Apr 2025 22:05:22 +0000 Manifest next update: Thu 01 May 2025 22:05:22 +0000 Files and hashes: 1: tN_eECSMkMVYSwFupua0nnge2CA.crl (hash: qfHAefcvAkTtwc90+L47I1N0pVJienOSUTDIqmaR/oc=) 2: 9E9FA4C40AB011EC8906F464C4F9AE02.roa (hash: y+B4buIfbruqaejaK6x75+RSn7pa5KBjABUZlRGt/q8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174A5B/11E96B34701211EB8BEE0A1FC4F9AE02/tN_eECSMkMVYSwFupua0nnge2CA.crl rsync://rpki.apnic.net/member_repository/A9174A5B/11E96B34701211EB8BEE0A1FC4F9AE02/tN_eECSMkMVYSwFupua0nnge2CA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tN_eECSMkMVYSwFupua0nnge2CA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:05:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1667 (0x683) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174A5B, serialNumber=B4DFDE10248C90C5584B016EA6E6B49E781ED820 Validity Not Before: Apr 24 22:05:22 2025 GMT Not After : May 1 22:05:22 2025 GMT Subject: CN=680ab5a2-0522 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:9c:1d:78:1b:95:80:f2:d5:60:11:d5:91:bb: a1:34:54:69:02:0f:35:95:65:0d:c8:1e:e1:be:ef: aa:d8:fd:e7:b1:fd:fd:18:86:98:67:f0:78:48:07: 71:c0:00:0a:bc:f3:3d:fb:4c:f4:49:d5:7e:29:2b: 25:ff:21:85:b6:f9:5c:6f:23:a3:89:ca:6c:56:b6: bd:b7:b3:a6:c9:d2:6d:5f:c8:5d:f3:01:d9:9f:11: 4b:ec:37:66:61:de:60:aa:24:5e:8f:6e:3b:58:c0: ab:35:a3:91:8a:f6:53:68:e4:ca:8b:1c:79:e0:67: aa:e2:1a:e7:18:3d:cf:4e:b3:2b:ed:c4:39:78:ca: d9:9a:1f:b4:11:20:d4:da:5e:cf:f4:c9:66:ac:d4: ba:20:40:73:99:62:8b:9a:ab:f8:b7:c2:4e:b8:92: 2a:81:32:ad:cc:d6:e2:f3:dc:e7:d8:bd:b4:17:64: e5:7d:c5:70:18:91:eb:fa:c4:72:b0:79:a3:b6:68: 56:1a:86:fa:28:14:5b:bd:00:d7:eb:31:a7:7b:20: 8e:1f:30:80:76:8d:59:2a:fd:07:7b:1d:24:6b:fb: 59:fc:3f:f2:3d:59:ab:fd:75:8e:05:76:19:f2:61: 28:4a:4c:52:5e:67:c1:6d:ad:bb:89:2d:bf:98:4c: 52:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:C4:AB:16:46:EB:5F:A1:AC:AC:E0:6E:F7:66:92:28:F5:CC:24:E7 X509v3 Authority Key Identifier: keyid:B4:DF:DE:10:24:8C:90:C5:58:4B:01:6E:A6:E6:B4:9E:78:1E:D8:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174A5B/11E96B34701211EB8BEE0A1FC4F9AE02/tN_eECSMkMVYSwFupua0nnge2CA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tN_eECSMkMVYSwFupua0nnge2CA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174A5B/11E96B34701211EB8BEE0A1FC4F9AE02/tN_eECSMkMVYSwFupua0nnge2CA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:f3:4b:9a:b9:24:a2:04:f4:78:75:c8:07:f1:0e:7d:b4:4f: 89:31:68:f4:51:e0:59:17:59:4a:80:ef:97:e6:00:4e:3e:09: b4:15:c0:3f:3c:48:37:41:e0:1c:68:59:78:15:29:53:a9:9e: b8:b2:25:fe:db:d8:eb:a8:c2:3a:6c:07:94:12:fa:61:62:a2: 24:22:a4:cc:ee:fa:82:27:c8:83:f0:c1:93:6f:60:d8:6f:12: 74:db:f5:11:85:4d:16:37:40:de:4b:76:e6:e9:fb:aa:fb:55: 9f:03:45:25:6e:ff:a9:75:c0:22:54:57:b7:fc:d8:86:d2:6b: 13:1e:7b:66:10:d3:c3:a0:bc:33:4e:ea:77:a6:e3:09:80:36: 27:62:d0:a9:af:d5:5f:6c:6a:9d:a3:ce:40:66:fb:43:9d:75: 40:ce:a7:79:b7:b7:4c:7a:c3:f7:c6:a3:4e:c1:4b:c8:75:4a: b0:a6:99:48:dd:fe:bc:26:c5:c7:6c:df:2e:05:28:28:16:14: 28:c4:58:ba:c4:ed:65:12:22:5c:e2:98:b6:e5:1a:22:af:14: 5b:3f:50:66:ed:26:c3:c6:12:5e:68:5b:2b:cd:02:45:94:f8: e4:6a:ef:36:c1:3a:8a:89:ed:87:7f:50:8b:1f:bb:88:ab:da: db:aa:4a:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRBNUIxMTAvBgNVBAUTKEI0REZERTEwMjQ4QzkwQzU1ODRCMDE2RUE2RTZCNDlF NzgxRUQ4MjAwHhcNMjUwNDI0MjIwNTIyWhcNMjUwNTAxMjIwNTIyWjAYMRYwFAYD VQQDEw02ODBhYjVhMi0wNTIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsJwdeBuVgPLVYBHVkbuhNFRpAg81lWUNyB7hvu+q2P3nsf39GIaYZ/B4SAdx wAAKvPM9+0z0SdV+KSsl/yGFtvlcbyOjicpsVra9t7OmydJtX8hd8wHZnxFL7Ddm Yd5gqiRej247WMCrNaORivZTaOTKixx54Geq4hrnGD3PTrMr7cQ5eMrZmh+0ESDU 2l7P9MlmrNS6IEBzmWKLmqv4t8JOuJIqgTKtzNbi89zn2L20F2TlfcVwGJHr+sRy sHmjtmhWGob6KBRbvQDX6zGneyCOHzCAdo1ZKv0Hex0ka/tZ/D/yPVmr/XWOBXYZ 8mEoSkxSXmfBba27iS2/mExS/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDrEqxZG 61+hrKzgbvdmkij1zCTnMB8GA1UdIwQYMBaAFLTf3hAkjJDFWEsBbqbmtJ54Htgg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEE1Qi8xMUU5NkIzNDcw MTIxMUVCOEJFRTBBMUZDNEY5QUUwMi90Tl9lRUNTTWtNVllTd0Z1cHVhMG5uZ2Uy Q0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ROX2VFQ1NNa01WWVN3RnVwdWEwbm5nZTJDQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NEE1Qi8xMUU5NkIzNDcwMTIxMUVCOEJFRTBBMUZDNEY5QUUwMi90Tl9lRUNTTWtN VllTd0Z1cHVhMG5uZ2UyQ0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBv80uauSSiBPR4dcgH8Q59tE+JMWj0UeBZF1lKgO+X5gBOPgm0FcA/ PEg3QeAcaFl4FSlTqZ64siX+29jrqMI6bAeUEvphYqIkIqTM7vqCJ8iD8MGTb2DY bxJ02/URhU0WN0DeS3bm6fuq+1WfA0Ulbv+pdcAiVFe3/NiG0msTHntmENPDoLwz Tup3puMJgDYnYtCpr9VfbGqdo85AZvtDnXVAzqd5t7dMesP3xqNOwUvIdUqwpplI 3f68JsXHbN8uBSgoFhQoxFi6xO1lEiJc4pi25RoirxRbP1Bm7SbDxhJeaFsrzQJF lPjkau82wTqKie2Hf1CLH7uIq9rbqkoX -----END CERTIFICATE-----Generated at Sat Apr 26 04:34:53 2025 by rpki-client