$ rpki-client -vvf rpki.apnic.net/member_repository/A91833FF/14EFE7E4E07D11E8A5F0FB35C4F9AE02/EjJ9_J6Ig827bG7us5JfLIwPfl4.mft File: EjJ9_J6Ig827bG7us5JfLIwPfl4.mft (raw, json) Hash identifier: OyhBioTKFRaQswgS9IIhdchHR5izF803yGyxotjKVvc= Subject key identifier: D9:AC:81:AC:03:02:2D:D7:59:70:8A:C2:2A:23:2F:38:B1:8E:53:93 Authority key identifier: 12:32:7D:FC:9E:88:83:CD:BB:6C:6E:EE:B3:92:5F:2C:8C:0F:7E:5E Certificate issuer: /CN=A91833FF/serialNumber=12327DFC9E8883CDBB6C6EEEB3925F2C8C0F7E5E Certificate serial: 120F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EjJ9_J6Ig827bG7us5JfLIwPfl4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91833FF/14EFE7E4E07D11E8A5F0FB35C4F9AE02/EjJ9_J6Ig827bG7us5JfLIwPfl4.mft Manifest number: 1203 Signing time: Thu 24 Apr 2025 17:10:08 +0000 Manifest this update: Thu 24 Apr 2025 17:10:08 +0000 Manifest next update: Thu 01 May 2025 17:10:08 +0000 Files and hashes: 1: EjJ9_J6Ig827bG7us5JfLIwPfl4.crl (hash: eRggVS8nQRuH7pF1AxCABI88BJYtEfzY6++DVGhXb2o=) 2: 659F6E188F2211E98AC7590DC4F9AE02.roa (hash: NX0Uu06g9kaFwSmmKkUW0sgMJpCNI4RFhei0HlK1wt8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91833FF/14EFE7E4E07D11E8A5F0FB35C4F9AE02/EjJ9_J6Ig827bG7us5JfLIwPfl4.crl rsync://rpki.apnic.net/member_repository/A91833FF/14EFE7E4E07D11E8A5F0FB35C4F9AE02/EjJ9_J6Ig827bG7us5JfLIwPfl4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EjJ9_J6Ig827bG7us5JfLIwPfl4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:10:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4623 (0x120f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91833FF, serialNumber=12327DFC9E8883CDBB6C6EEEB3925F2C8C0F7E5E Validity Not Before: Apr 24 17:10:08 2025 GMT Not After : May 1 17:10:08 2025 GMT Subject: CN=680a7070-6a1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:89:f3:e9:b3:13:d3:4c:3a:34:94:32:06:d9: 39:fa:9f:b8:12:62:63:73:68:67:26:7b:a5:f4:e1: b8:54:ff:9e:3e:66:42:03:e0:df:e7:47:51:a1:d7: 3a:c0:9d:fa:7b:c1:30:99:d3:b1:b3:18:db:6c:b0: 1d:d4:0a:47:f0:a7:fc:bc:d7:99:5c:13:77:6e:91: 4d:1c:e7:02:33:c9:f0:5a:0e:19:19:cf:9a:1c:cb: 23:68:7e:10:0c:4d:1b:c4:2d:f8:c1:2b:a5:c3:f0: 0a:73:46:77:e0:96:80:37:1e:67:63:62:7c:53:a7: db:bd:0f:9c:38:6e:c6:5f:89:28:ac:94:10:cb:da: f8:fd:96:ed:20:5f:96:ce:47:5b:ed:fe:91:c7:05: 65:fc:f8:af:e2:ce:69:b2:3f:7d:fe:f5:9f:24:d7: 74:83:d8:30:e7:e6:d2:48:76:e6:df:30:cb:f3:78: bf:d8:7d:26:94:8b:1a:e1:4c:a9:a9:55:0b:fa:bf: ba:6d:ea:e2:94:90:26:ce:a4:7e:b8:07:dd:21:20: 26:69:66:56:a8:53:50:32:60:24:45:5e:ba:e1:39: 94:32:55:08:0c:3a:8a:e6:61:09:4b:35:88:89:72: 3b:4a:2f:91:3f:a0:bf:0b:2e:71:a3:7d:89:65:c9: c9:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:AC:81:AC:03:02:2D:D7:59:70:8A:C2:2A:23:2F:38:B1:8E:53:93 X509v3 Authority Key Identifier: keyid:12:32:7D:FC:9E:88:83:CD:BB:6C:6E:EE:B3:92:5F:2C:8C:0F:7E:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91833FF/14EFE7E4E07D11E8A5F0FB35C4F9AE02/EjJ9_J6Ig827bG7us5JfLIwPfl4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EjJ9_J6Ig827bG7us5JfLIwPfl4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91833FF/14EFE7E4E07D11E8A5F0FB35C4F9AE02/EjJ9_J6Ig827bG7us5JfLIwPfl4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:62:64:39:4d:98:f3:e0:b8:35:9d:8d:e3:21:39:7e:18:8e: fa:90:df:00:41:ef:39:fe:3e:f5:cf:26:0c:95:73:9b:b5:af: b0:7f:ac:72:2f:72:0e:de:20:e6:f4:81:1d:1b:39:14:c2:a3: 8b:d7:bf:5b:2d:52:9e:a3:42:74:67:41:a9:1e:13:ac:19:a9: fe:6e:6f:ce:a9:dd:35:71:13:91:95:5f:25:b6:72:b8:d0:2e: cc:61:6d:1d:2e:bc:66:a7:cc:ad:5b:b9:39:d5:48:66:1c:ad: 19:4a:52:85:7b:f8:20:98:1f:d4:12:75:bc:f0:0a:df:60:fd: f5:0a:a6:6c:ea:02:6d:66:70:8f:dc:64:1c:55:6a:3a:9e:a8: 6d:60:5e:0e:38:e1:5c:a5:9a:92:bc:41:80:a9:53:f8:02:6d: 1e:02:e5:49:c8:c8:45:54:59:4a:e0:49:72:e0:6b:c3:34:73: 31:c9:1d:d9:33:a0:48:25:be:36:2f:55:b9:ca:27:38:82:98: 1d:70:80:cf:a9:6b:85:94:a7:15:ab:1c:11:1e:23:82:59:41: 1b:66:e2:a0:e5:c8:62:f3:fc:ec:93:05:00:46:c3:69:70:d8: 49:e7:5c:8b:66:52:d7:f6:d5:8e:64:cf:42:07:d3:c3:66:01: 3f:d0:da:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEg8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODMzRkYxMTAvBgNVBAUTKDEyMzI3REZDOUU4ODgzQ0RCQjZDNkVFRUIzOTI1RjJD OEMwRjdFNUUwHhcNMjUwNDI0MTcxMDA4WhcNMjUwNTAxMTcxMDA4WjAYMRYwFAYD VQQDEw02ODBhNzA3MC02YTFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Ynz6bMT00w6NJQyBtk5+p+4EmJjc2hnJnul9OG4VP+ePmZCA+Df50dRodc6 wJ36e8EwmdOxsxjbbLAd1ApH8Kf8vNeZXBN3bpFNHOcCM8nwWg4ZGc+aHMsjaH4Q DE0bxC34wSulw/AKc0Z34JaANx5nY2J8U6fbvQ+cOG7GX4korJQQy9r4/ZbtIF+W zkdb7f6RxwVl/Piv4s5psj99/vWfJNd0g9gw5+bSSHbm3zDL83i/2H0mlIsa4Uyp qVUL+r+6berilJAmzqR+uAfdISAmaWZWqFNQMmAkRV664TmUMlUIDDqK5mEJSzWI iXI7Si+RP6C/Cy5xo32JZcnJ1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNmsgawD Ai3XWXCKwiojLzixjlOTMB8GA1UdIwQYMBaAFBIyffyeiIPNu2xu7rOSXyyMD35e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MzNGRi8xNEVGRTdFNEUw N0QxMUU4QTVGMEZCMzVDNEY5QUUwMi9Fako5X0o2SWc4MjdiRzd1czVKZkxJd1Bm bDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VqSjlfSjZJZzgyN2JHN3VzNUpmTEl3UGZsNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MzNGRi8xNEVGRTdFNEUwN0QxMUU4QTVGMEZCMzVDNEY5QUUwMi9Fako5X0o2SWc4 MjdiRzd1czVKZkxJd1BmbDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1YmQ5TZjz4Lg1nY3jITl+GI76kN8AQe85/j71zyYMlXObta+wf6xy L3IO3iDm9IEdGzkUwqOL179bLVKeo0J0Z0GpHhOsGan+bm/Oqd01cRORlV8ltnK4 0C7MYW0dLrxmp8ytW7k51UhmHK0ZSlKFe/ggmB/UEnW88ArfYP31CqZs6gJtZnCP 3GQcVWo6nqhtYF4OOOFcpZqSvEGAqVP4Am0eAuVJyMhFVFlK4Ely4GvDNHMxyR3Z M6BIJb42L1W5yic4gpgdcIDPqWuFlKcVqxwRHiOCWUEbZuKg5chi8/zskwUARsNp cNhJ51yLZlLX9tWOZM9CB9PDZgE/0Nr1 -----END CERTIFICATE-----Generated at Sat Apr 26 04:35:58 2025 by rpki-client