$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/ER6YG60wGDD3weWQzBqotIImDtg.mft File: ER6YG60wGDD3weWQzBqotIImDtg.mft (raw, json) Hash identifier: SEz9Ifx0Kgu/DcuuPGJQEHcoeelhoknp/RVI8CUymxM= Subject key identifier: 72:E4:CC:4C:28:01:F2:8E:55:FC:69:88:BA:41:05:45:10:A0:50:8D Authority key identifier: 11:1E:98:1B:AD:30:18:30:F7:C1:E5:90:CC:1A:A8:B4:82:26:0E:D8 Certificate issuer: /CN=A91F0FE2/serialNumber=111E981BAD301830F7C1E590CC1AA8B482260ED8 Certificate serial: 1C25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ER6YG60wGDD3weWQzBqotIImDtg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/ER6YG60wGDD3weWQzBqotIImDtg.mft Manifest number: 1C0E Signing time: Thu 24 Apr 2025 16:13:25 +0000 Manifest this update: Thu 24 Apr 2025 16:13:24 +0000 Manifest next update: Thu 01 May 2025 16:13:24 +0000 Files and hashes: 1: ER6YG60wGDD3weWQzBqotIImDtg.crl (hash: tWgkxC3BzeNShxoe3kNx4f0vlAySp6YO6GNSw+1jxww=) 2: 14564AB0E83311E6A72DC543C4F9AE02.roa (hash: NUz4kB3CyIG2IBuDbo+UA9LBpVU0SpPOT0o+emRtCgw=) 3: 20C4803669A011EA9055BD0EC4F9AE02.roa (hash: FnUaKoThOa5+XgHVHWe2uhUGOR/oiQOVc+Zdq2BOUUM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/ER6YG60wGDD3weWQzBqotIImDtg.crl rsync://rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/ER6YG60wGDD3weWQzBqotIImDtg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ER6YG60wGDD3weWQzBqotIImDtg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:13:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7205 (0x1c25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0FE2, serialNumber=111E981BAD301830F7C1E590CC1AA8B482260ED8 Validity Not Before: Apr 24 16:13:24 2025 GMT Not After : May 1 16:13:24 2025 GMT Subject: CN=680a6325-791f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b3:a4:a8:6a:84:72:b6:fb:e7:31:eb:cc:e6: 3d:57:aa:82:bd:6f:de:b0:cd:2a:5e:4d:b5:0e:6b: 46:2c:12:85:78:1a:82:b4:4b:69:0e:68:bf:3b:48: a8:ba:e5:00:aa:38:2d:67:a0:f9:43:72:22:ad:ff: 56:db:ea:e7:0f:01:00:72:f7:e0:3f:16:1a:ec:5d: 2c:e1:2d:c0:5f:9b:cf:4c:4b:53:d4:d3:d3:3d:98: a1:67:c9:cd:6d:b2:22:5a:82:7c:24:7f:de:ec:28: bc:cb:dd:ad:6f:aa:6a:7c:38:97:b7:52:b4:33:0d: a7:a9:76:16:e1:c4:a2:9d:0c:ce:a0:3d:fc:76:f6: b9:28:d3:ca:c0:cb:87:29:0d:3c:7a:98:bd:10:f3: c3:0d:e4:bf:3a:c5:0e:27:5e:f3:a8:18:43:41:77: 0c:56:5c:9e:05:34:48:28:ae:cc:7a:b0:fe:5f:43: 66:fb:51:87:e0:6b:f7:8e:97:6b:2a:61:03:27:1e: 16:6c:3c:20:f3:1d:c7:dc:56:ae:fb:d4:1f:02:a5: 88:6a:0b:70:fd:57:7c:89:5a:42:91:f3:5c:36:36: fa:60:e1:5b:cf:fb:49:b6:52:88:0e:d2:3b:ec:3b: ab:65:79:7d:e6:a0:f5:66:ee:a1:73:0f:55:d7:b1: 1a:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:E4:CC:4C:28:01:F2:8E:55:FC:69:88:BA:41:05:45:10:A0:50:8D X509v3 Authority Key Identifier: keyid:11:1E:98:1B:AD:30:18:30:F7:C1:E5:90:CC:1A:A8:B4:82:26:0E:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/ER6YG60wGDD3weWQzBqotIImDtg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ER6YG60wGDD3weWQzBqotIImDtg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/ER6YG60wGDD3weWQzBqotIImDtg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:ae:a8:bf:82:5d:d8:82:db:07:c5:e9:43:11:81:30:5c:0f: 8e:f5:06:a0:23:54:cc:ac:cf:6d:78:49:19:6b:33:cc:1b:57: 4d:60:fb:43:69:07:2d:05:a7:ee:c0:cd:f2:65:05:8f:6a:ef: df:44:b6:ae:2c:a0:29:03:a0:d8:ec:6a:6f:48:ee:8e:30:e3: b4:a6:8c:b8:be:1f:23:be:78:7e:19:de:4d:76:62:45:5b:56: e3:96:d0:26:6f:88:04:20:89:97:44:e4:2e:ef:0d:7b:e7:97: 4c:9e:4e:7b:4c:86:cf:6b:20:b6:6a:06:47:f5:11:95:73:f6: 6d:87:39:00:f4:e1:bc:be:8a:e1:13:dc:ff:d4:06:49:a4:4c: 80:16:e9:69:d6:3e:51:08:f8:50:cc:5e:9d:2c:ca:55:7c:c5: 5d:7c:e9:8c:14:12:a0:f0:67:bf:e0:c5:0f:e9:e1:50:30:b1: ff:32:e6:df:fe:61:b1:e4:c4:20:d3:33:21:4d:5f:d5:ff:81: a3:be:50:55:95:c7:67:25:0e:25:d1:c6:16:6b:38:20:3c:02: 63:5a:18:19:c1:d0:4f:35:04:22:aa:d5:85:1a:c4:d3:99:0f: 66:56:49:cf:39:74:f5:da:4b:94:60:32:01:95:a9:9a:ed:51: 2c:2b:8a:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHCUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBGRTIxMTAvBgNVBAUTKDExMUU5ODFCQUQzMDE4MzBGN0MxRTU5MENDMUFBOEI0 ODIyNjBFRDgwHhcNMjUwNDI0MTYxMzI0WhcNMjUwNTAxMTYxMzI0WjAYMRYwFAYD VQQDEw02ODBhNjMyNS03OTFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwbOkqGqEcrb75zHrzOY9V6qCvW/esM0qXk21DmtGLBKFeBqCtEtpDmi/O0io uuUAqjgtZ6D5Q3Iirf9W2+rnDwEAcvfgPxYa7F0s4S3AX5vPTEtT1NPTPZihZ8nN bbIiWoJ8JH/e7Ci8y92tb6pqfDiXt1K0Mw2nqXYW4cSinQzOoD38dva5KNPKwMuH KQ08epi9EPPDDeS/OsUOJ17zqBhDQXcMVlyeBTRIKK7MerD+X0Nm+1GH4Gv3jpdr KmEDJx4WbDwg8x3H3Fau+9QfAqWIagtw/Vd8iVpCkfNcNjb6YOFbz/tJtlKIDtI7 7DurZXl95qD1Zu6hcw9V17EaKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHLkzEwo AfKOVfxpiLpBBUUQoFCNMB8GA1UdIwQYMBaAFBEemButMBgw98HlkMwaqLSCJg7Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEZFMi8yRkY5QkIyMkU4 MzIxMUU2QkY1MTI4NDJDNEY5QUUwMi9FUjZZRzYwd0dERDN3ZVdRekJxb3RJSW1E dGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VSNllHNjB3R0REM3dlV1F6QnFvdElJbUR0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEZFMi8yRkY5QkIyMkU4MzIxMUU2QkY1MTI4NDJDNEY5QUUwMi9FUjZZRzYwd0dE RDN3ZVdRekJxb3RJSW1EdGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZrqi/gl3YgtsHxelDEYEwXA+O9QagI1TMrM9teEkZazPMG1dNYPtD aQctBafuwM3yZQWPau/fRLauLKApA6DY7GpvSO6OMOO0poy4vh8jvnh+Gd5NdmJF W1bjltAmb4gEIImXROQu7w1755dMnk57TIbPayC2agZH9RGVc/ZthzkA9OG8vorh E9z/1AZJpEyAFulp1j5RCPhQzF6dLMpVfMVdfOmMFBKg8Ge/4MUP6eFQMLH/Mubf /mGx5MQg0zMhTV/V/4GjvlBVlcdnJQ4l0cYWazggPAJjWhgZwdBPNQQiqtWFGsTT mQ9mVknPOXT12kuUYDIBlama7VEsK4o7 -----END CERTIFICATE-----Generated at Sat Apr 26 04:22:59 2025 by rpki-client