$ rpki-client -vvf rpki.apnic.net/member_repository/A919E9A5/A32EFEB81D8911E292E4FDE208B02CD2/eqxn28Hrko4pUTYuC8asdnfi3Hs.mft File: eqxn28Hrko4pUTYuC8asdnfi3Hs.mft (raw, json) Hash identifier: FOh0c/9Rv1/LGKqPsJc6IHZGGRc74u/GdFcGe//UCvk= Subject key identifier: 6C:F5:A9:7D:1D:8C:D1:2E:12:48:48:00:BF:DE:BF:A2:95:AD:A5:2E Authority key identifier: 7A:AC:67:DB:C1:EB:92:8E:29:51:36:2E:0B:C6:AC:76:77:E2:DC:7B Certificate issuer: /CN=A919E9A5/serialNumber=7AAC67DBC1EB928E2951362E0BC6AC7677E2DC7B Certificate serial: 34CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eqxn28Hrko4pUTYuC8asdnfi3Hs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E9A5/A32EFEB81D8911E292E4FDE208B02CD2/eqxn28Hrko4pUTYuC8asdnfi3Hs.mft Manifest number: 34A3 Signing time: Thu 24 Apr 2025 14:31:23 +0000 Manifest this update: Thu 24 Apr 2025 14:31:23 +0000 Manifest next update: Thu 01 May 2025 14:31:23 +0000 Files and hashes: 1: eqxn28Hrko4pUTYuC8asdnfi3Hs.crl (hash: D3Nxa0cn+vySrkMxwnHA2c1H5CFZvS1g2VbhUU0y+lA=) 2: 3BC5B9F8B53311EE9D8D774EC4F9AE02.roa (hash: LI2pTAtj2FrGkxTBu/kHsrcO7e2WbrdhGE8h6n7f+mA=) 3: 9E129FFC5F2611EF8DAAA57FC4F9AE02.roa (hash: EtN9WHkYOoh1Toml+yZQvfO83/c6JcmYJR90QSo2UxE=) 4: D230A150840E11EFB3D1036BC4F9AE02.roa (hash: JS1dP/Z3wRNVnOwepT6cYwjkzee8Wo5X7MrAc7I3mlg=) 5: 7D62DD7E840D11EFB275D662C4F9AE02.roa (hash: oxQvbEvt1VKVOZrQR/1bF13JTfe0jqTt+sjD6nr8S1U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E9A5/A32EFEB81D8911E292E4FDE208B02CD2/eqxn28Hrko4pUTYuC8asdnfi3Hs.crl rsync://rpki.apnic.net/member_repository/A919E9A5/A32EFEB81D8911E292E4FDE208B02CD2/eqxn28Hrko4pUTYuC8asdnfi3Hs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eqxn28Hrko4pUTYuC8asdnfi3Hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:31:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13518 (0x34ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E9A5, serialNumber=7AAC67DBC1EB928E2951362E0BC6AC7677E2DC7B Validity Not Before: Apr 24 14:31:23 2025 GMT Not After : May 1 14:31:23 2025 GMT Subject: CN=680a4b3b-e550 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:06:7a:df:c7:f3:44:f1:ef:b9:db:e1:4e:da: e5:2e:0c:29:2f:36:6b:08:9d:2c:f6:b7:f9:f8:6f: bb:4e:fd:66:04:e5:dd:4d:8d:33:b4:aa:f7:b5:1a: 2e:12:6e:ac:0f:9c:9c:6a:44:8f:a4:14:0e:a4:9a: b6:46:80:6c:d0:39:03:f7:ee:51:d0:62:b6:3d:30: 78:76:c0:a8:96:b1:f7:73:78:78:a1:74:47:59:89: d4:03:99:7d:1a:3f:b8:4d:d2:35:de:f3:8d:63:76: 71:8a:01:52:39:31:97:de:35:30:15:cb:59:b6:92: 69:a8:20:98:28:ce:f2:8a:ec:61:ae:4b:5d:a0:bd: cb:aa:83:95:96:ef:b4:2b:d5:75:b8:3c:93:fa:a5: 67:2a:35:40:99:1c:0b:7b:66:a2:d7:aa:a0:3b:ef: 0d:b2:68:f1:91:41:5e:6d:b4:09:fd:2c:a9:2e:da: a1:67:77:7c:b3:36:41:6d:a3:92:fe:d4:eb:cf:62: 62:9f:77:36:a5:87:72:a6:a8:c7:e3:96:bd:d4:59: 81:cb:64:72:27:72:f2:76:51:f9:d9:b0:64:f4:58: 18:66:5c:7a:69:6a:6b:66:f1:8f:c7:bc:b9:9c:55: 2f:e7:1f:11:47:58:30:a9:6c:70:87:8f:82:83:e5: 13:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:F5:A9:7D:1D:8C:D1:2E:12:48:48:00:BF:DE:BF:A2:95:AD:A5:2E X509v3 Authority Key Identifier: keyid:7A:AC:67:DB:C1:EB:92:8E:29:51:36:2E:0B:C6:AC:76:77:E2:DC:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E9A5/A32EFEB81D8911E292E4FDE208B02CD2/eqxn28Hrko4pUTYuC8asdnfi3Hs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eqxn28Hrko4pUTYuC8asdnfi3Hs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E9A5/A32EFEB81D8911E292E4FDE208B02CD2/eqxn28Hrko4pUTYuC8asdnfi3Hs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:89:56:ab:24:ee:3d:10:91:15:ee:5a:ee:46:a3:8f:0e:d0: dc:49:02:6d:a9:04:a4:cd:52:f6:d8:fd:ca:ed:7d:37:e5:d9: 65:45:77:f0:de:a5:b5:98:4d:cc:e4:7f:1d:e7:97:2c:93:36: cb:ad:da:ee:e2:60:2e:a0:8e:b7:ba:83:99:ad:bf:95:d7:a3: 60:19:93:22:0c:b6:38:04:81:a5:58:43:a1:d4:13:6e:26:e9: aa:77:bc:65:ea:04:f4:10:41:e0:bb:90:2f:6b:f2:41:2f:0e: 7f:6f:5d:b1:e6:3b:56:44:62:0a:1b:21:5c:ef:ec:ac:ae:da: 18:0f:99:1f:00:76:bc:15:bc:f8:8a:01:7c:e4:eb:34:8d:39: 69:e9:e1:a1:c7:ce:7d:dc:98:58:79:bc:48:ae:c4:7b:a9:42: 8f:4c:ac:f8:dc:23:0d:0b:3a:09:f6:09:3c:de:fa:aa:d6:bb: 66:eb:c3:45:0d:cf:a2:02:a5:72:95:a4:a5:49:34:1e:d6:72: 4a:8f:01:2f:59:34:a0:67:44:b7:46:83:0f:ac:ae:22:27:77: 81:0e:2f:e8:02:ab:fb:f8:04:84:46:f1:e9:8f:19:4f:9f:10: ac:5c:fb:34:a3:c7:54:c4:3c:f1:cc:b0:7b:f6:f2:39:f5:48: 9b:74:de:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUU5QTUxMTAvBgNVBAUTKDdBQUM2N0RCQzFFQjkyOEUyOTUxMzYyRTBCQzZBQzc2 NzdFMkRDN0IwHhcNMjUwNDI0MTQzMTIzWhcNMjUwNTAxMTQzMTIzWjAYMRYwFAYD VQQDEw02ODBhNGIzYi1lNTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqgZ638fzRPHvudvhTtrlLgwpLzZrCJ0s9rf5+G+7Tv1mBOXdTY0ztKr3tRou Em6sD5ycakSPpBQOpJq2RoBs0DkD9+5R0GK2PTB4dsColrH3c3h4oXRHWYnUA5l9 Gj+4TdI13vONY3ZxigFSOTGX3jUwFctZtpJpqCCYKM7yiuxhrktdoL3LqoOVlu+0 K9V1uDyT+qVnKjVAmRwLe2ai16qgO+8NsmjxkUFebbQJ/SypLtqhZ3d8szZBbaOS /tTrz2Jin3c2pYdypqjH45a91FmBy2RyJ3LydlH52bBk9FgYZlx6aWprZvGPx7y5 nFUv5x8RR1gwqWxwh4+Cg+UTIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGz1qX0d jNEuEkhIAL/ev6KVraUuMB8GA1UdIwQYMBaAFHqsZ9vB65KOKVE2LgvGrHZ34tx7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RTlBNS9BMzJFRkVCODFE ODkxMUUyOTJFNEZERTIwOEIwMkNEMi9lcXhuMjhIcmtvNHBVVFl1Qzhhc2RuZmkz SHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VxeG4yOEhya280cFVUWXVDOGFzZG5maTNIcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RTlBNS9BMzJFRkVCODFEODkxMUUyOTJFNEZERTIwOEIwMkNEMi9lcXhuMjhIcmtv NHBVVFl1Qzhhc2RuZmkzSHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmiVarJO49EJEV7lruRqOPDtDcSQJtqQSkzVL22P3K7X035dllRXfw 3qW1mE3M5H8d55cskzbLrdru4mAuoI63uoOZrb+V16NgGZMiDLY4BIGlWEOh1BNu Jumqd7xl6gT0EEHgu5Ava/JBLw5/b12x5jtWRGIKGyFc7+ysrtoYD5kfAHa8Fbz4 igF85Os0jTlp6eGhx8593JhYebxIrsR7qUKPTKz43CMNCzoJ9gk83vqq1rtm68NF Dc+iAqVylaSlSTQe1nJKjwEvWTSgZ0S3RoMPrK4iJ3eBDi/oAqv7+ASERvHpjxlP nxCsXPs0o8dUxDzxzLB79vI59UibdN63 -----END CERTIFICATE-----Generated at Sat Apr 26 05:05:58 2025 by rpki-client