$ rpki-client -vvf rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.mft File: EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.mft (raw, json) Hash identifier: 8097SwKF4Vl0j46vPpFT9jvx6/00kVheTMHWBwqHCh4= Subject key identifier: C6:BF:3A:A4:82:55:49:3C:CA:6E:66:41:F0:A9:B7:6F:26:8B:BC:10 Authority key identifier: 13:24:04:30:21:BB:45:D7:FF:66:F2:0A:FC:68:39:34:31:30:C3:F2 Certificate issuer: /CN=A917FFB0/serialNumber=1324043021BB45D7FF66F20AFC6839343130C3F2 Certificate serial: 34F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.mft Manifest number: 34B7 Signing time: Thu 24 Apr 2025 14:44:15 +0000 Manifest this update: Thu 24 Apr 2025 14:44:15 +0000 Manifest next update: Thu 01 May 2025 14:44:15 +0000 Files and hashes: 1: EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.crl (hash: nrexDYah3TzAiHdx5+5givYPdi8QFIzNgMEwfpRVkHE=) 2: 80B30FA48F5611EA9C04912BC4F9AE02.roa (hash: pAR1FgGTlUIXKdXPzl2g83tghG6tiadwAtJ5qGgzg7c=) 3: 19CCFBDE6F0911ED8A7BD268C4F9AE02.roa (hash: JTK51f8dfP+bxciKZy6FgqfkHpvTyTd0gqBndr+pK/M=) 4: A88A36D0003A11EEB8430127C4F9AE02.roa (hash: S9c42K/e6Cb4RZkOmU2A+Wc3g/Elgh6iQKBCJml/etM=) 5: 187F92966F0911ED8A7BD268C4F9AE02.roa (hash: WY+AEtZNGfOw12yKOfvg/F8cjo6zbb8RMRrGslASsW0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.crl rsync://rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:44:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13553 (0x34f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917FFB0, serialNumber=1324043021BB45D7FF66F20AFC6839343130C3F2 Validity Not Before: Apr 24 14:44:15 2025 GMT Not After : May 1 14:44:15 2025 GMT Subject: CN=680a4e3f-563f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:f4:f9:ef:ae:4a:a0:af:a1:c4:77:b8:29:4b: c6:c7:56:ec:eb:f2:73:bb:e4:74:75:5b:8f:f1:99: 12:52:43:fc:7c:85:1f:fd:9f:08:58:8e:d1:a5:ce: 8d:8f:2f:e2:9a:60:7c:25:06:38:2d:6f:1f:dd:61: 54:46:69:68:4e:33:53:e6:55:6a:f7:3d:00:a9:57: 8e:32:50:01:67:dd:65:81:0f:da:e6:3d:03:43:31: c6:87:72:62:d4:ad:9b:6f:7a:52:27:13:f4:3f:dd: 3d:9a:00:06:3d:60:07:89:20:24:6c:06:76:6c:04: f3:30:b9:21:78:27:28:d1:46:35:5c:81:0f:f5:da: 88:94:fc:b7:11:f9:b8:cb:d9:2e:24:01:ff:bb:f1: b7:18:ca:36:fa:8e:f4:84:00:5c:db:c2:69:05:0a: c8:72:93:24:03:29:53:d3:fe:c1:5f:61:38:71:1e: a8:4e:be:50:19:a7:a8:c2:e8:2d:a4:43:43:b7:a4: f0:a5:a0:87:80:21:a7:46:df:c5:f9:31:1f:e5:c8: 2b:f5:65:4f:56:d7:0c:4b:dc:db:2b:a9:8f:bc:c7: e8:0e:98:76:ec:fa:09:f2:3b:12:b0:5c:b4:71:cf: 72:99:ae:09:76:1c:4e:61:27:2a:0a:e7:4a:e7:4a: 67:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:BF:3A:A4:82:55:49:3C:CA:6E:66:41:F0:A9:B7:6F:26:8B:BC:10 X509v3 Authority Key Identifier: keyid:13:24:04:30:21:BB:45:D7:FF:66:F2:0A:FC:68:39:34:31:30:C3:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:ce:ba:36:e1:4a:26:aa:df:df:6e:e1:49:ef:89:54:3a:67: 9d:92:77:83:7e:15:6d:2f:6d:4d:3c:39:fa:70:33:d6:04:e3: 39:40:39:34:dd:15:6c:83:1c:72:ad:e9:2a:20:ce:49:60:87: 53:d3:b6:8b:85:eb:b2:7d:ca:db:42:da:6c:a0:9d:51:9a:dc: 4c:a4:9d:40:f0:25:69:e8:79:47:07:24:e3:46:4e:da:bb:4f: 48:de:e8:3f:32:79:bf:60:ee:34:fb:0f:6a:0d:f2:47:03:6b: e4:35:32:f2:49:b5:8d:ce:5a:74:0b:93:6c:34:92:76:36:1e: f1:cf:8b:50:61:55:39:c3:87:d3:f6:2d:19:6a:dd:36:78:77: 2a:02:db:db:d1:f9:21:3a:bb:c1:bb:26:4b:d8:0c:e1:07:fa: 4e:68:b7:82:f5:b7:ef:d7:12:47:59:62:8b:af:55:65:63:21: 25:c3:cd:81:6c:5a:18:d4:73:44:72:b9:50:2f:29:be:fe:e4: 92:b3:22:33:45:86:60:ba:8f:c8:df:2a:f5:40:99:08:32:a3: e3:0b:79:78:66:36:31:36:37:e1:dc:2d:ce:f9:c6:8a:77:e3: a7:25:de:9e:a1:37:36:8f:87:07:27:16:90:42:03:c4:7b:83: 36:33:26:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0ZGQjAxMTAvBgNVBAUTKDEzMjQwNDMwMjFCQjQ1RDdGRjY2RjIwQUZDNjgzOTM0 MzEzMEMzRjIwHhcNMjUwNDI0MTQ0NDE1WhcNMjUwNTAxMTQ0NDE1WjAYMRYwFAYD VQQDEw02ODBhNGUzZi01NjNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArfT5765KoK+hxHe4KUvGx1bs6/Jzu+R0dVuP8ZkSUkP8fIUf/Z8IWI7Rpc6N jy/immB8JQY4LW8f3WFURmloTjNT5lVq9z0AqVeOMlABZ91lgQ/a5j0DQzHGh3Ji 1K2bb3pSJxP0P909mgAGPWAHiSAkbAZ2bATzMLkheCco0UY1XIEP9dqIlPy3Efm4 y9kuJAH/u/G3GMo2+o70hABc28JpBQrIcpMkAylT0/7BX2E4cR6oTr5QGaeowugt pENDt6TwpaCHgCGnRt/F+TEf5cgr9WVPVtcMS9zbK6mPvMfoDph27PoJ8jsSsFy0 cc9yma4JdhxOYScqCudK50pnHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMa/OqSC VUk8ym5mQfCpt28mi7wQMB8GA1UdIwQYMBaAFBMkBDAhu0XX/2byCvxoOTQxMMPy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RkZCMC9FNTU3QzAwMDFE OTIxMUUyOTMzQTIxRjYwOEIwMkNEMi9FeVFFTUNHN1JkZl9adklLX0dnNU5ERXd3 X0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0V5UUVNQ0c3UmRmX1p2SUtfR2c1TkRFd3dfSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RkZCMC9FNTU3QzAwMDFEOTIxMUUyOTMzQTIxRjYwOEIwMkNEMi9FeVFFTUNHN1Jk Zl9adklLX0dnNU5ERXd3X0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADzro24Uomqt/fbuFJ74lUOmedkneDfhVtL21NPDn6cDPWBOM5QDk0 3RVsgxxyrekqIM5JYIdT07aLheuyfcrbQtpsoJ1RmtxMpJ1A8CVp6HlHByTjRk7a u09I3ug/Mnm/YO40+w9qDfJHA2vkNTLySbWNzlp0C5NsNJJ2Nh7xz4tQYVU5w4fT 9i0Zat02eHcqAtvb0fkhOrvBuyZL2AzhB/pOaLeC9bfv1xJHWWKLr1VlYyElw82B bFoY1HNEcrlQLym+/uSSsyIzRYZguo/I3yr1QJkIMqPjC3l4ZjYxNjfh3C3O+caK d+OnJd6eoTc2j4cHJxaQQgPEe4M2MyYK -----END CERTIFICATE-----Generated at Sat Apr 26 05:02:09 2025 by rpki-client