$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE637/9BAEA13A974311E9BFD8E519C4F9AE02/EJhSul3Eo2jPdhIFFeysYu_aPkA.mft File: EJhSul3Eo2jPdhIFFeysYu_aPkA.mft (raw, json) Hash identifier: bP/iCtOksDobfy4vnV6qj1fu9YBpy57QnSbth4FTgDw= Subject key identifier: 11:E2:1E:51:77:5A:70:A5:53:D0:7B:AB:B1:EE:83:C3:96:EE:51:05 Authority key identifier: 10:98:52:BA:5D:C4:A3:68:CF:76:12:05:15:EC:AC:62:EF:DA:3E:40 Certificate issuer: /CN=A91FE637/serialNumber=109852BA5DC4A368CF76120515ECAC62EFDA3E40 Certificate serial: 0E5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EJhSul3Eo2jPdhIFFeysYu_aPkA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE637/9BAEA13A974311E9BFD8E519C4F9AE02/EJhSul3Eo2jPdhIFFeysYu_aPkA.mft Manifest number: 0E58 Signing time: Thu 24 Apr 2025 17:42:17 +0000 Manifest this update: Thu 24 Apr 2025 17:42:16 +0000 Manifest next update: Thu 01 May 2025 17:42:16 +0000 Files and hashes: 1: EJhSul3Eo2jPdhIFFeysYu_aPkA.crl (hash: vqPa429XK5y8bAaZm5Lh6RPjQ1wZ7wdipdLDhS0lyXQ=) 2: 3D88426C974511E982D6FD1BC4F9AE02.roa (hash: H8knPIbuLtwUcaByLoJZ9f2Kl4YvVFA0lwHyLpg+7j8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE637/9BAEA13A974311E9BFD8E519C4F9AE02/EJhSul3Eo2jPdhIFFeysYu_aPkA.crl rsync://rpki.apnic.net/member_repository/A91FE637/9BAEA13A974311E9BFD8E519C4F9AE02/EJhSul3Eo2jPdhIFFeysYu_aPkA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EJhSul3Eo2jPdhIFFeysYu_aPkA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:42:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3677 (0xe5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE637, serialNumber=109852BA5DC4A368CF76120515ECAC62EFDA3E40 Validity Not Before: Apr 24 17:42:16 2025 GMT Not After : May 1 17:42:16 2025 GMT Subject: CN=680a77f9-0a14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:20:73:a4:61:87:3c:ba:80:9d:47:00:a4:1a: 76:45:e7:80:3b:54:d1:fc:b9:69:2c:30:6e:79:c9: bd:a5:96:b3:8f:2c:d3:f8:10:5a:70:01:de:39:59: fc:99:88:87:83:c8:49:7e:e0:6f:e9:09:aa:82:ff: be:58:e1:33:38:6c:73:26:04:29:08:2d:a2:78:15: dc:ec:ee:26:44:7e:8c:23:b2:cd:c3:c2:1b:f1:89: ad:f1:74:11:15:19:e0:4a:75:64:1e:50:9f:d4:0b: 56:b9:ae:f7:94:31:38:95:a4:30:09:0b:23:af:20: fd:7f:b1:ed:ee:3e:e4:a5:f0:e4:c7:81:62:72:a7: bd:d8:02:7f:87:45:48:e2:04:5f:3c:77:04:71:df: 44:6d:28:24:11:c2:28:77:f2:32:ad:a3:63:ae:6e: e9:50:3e:da:ca:2a:9a:a1:68:b5:eb:51:cc:11:14: b7:d1:c1:77:40:4c:1a:f8:c6:d0:ae:32:7d:9d:3b: d6:68:13:34:10:58:91:5a:0d:c3:7c:36:a7:ab:fd: ee:ae:0b:a6:d7:07:78:b0:98:79:f8:63:1f:91:29: 41:bb:bf:17:80:1e:7a:07:6c:97:63:87:c1:37:1c: 9a:51:b2:62:7b:f6:66:e4:95:b1:b3:9b:79:1b:70: 4a:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:E2:1E:51:77:5A:70:A5:53:D0:7B:AB:B1:EE:83:C3:96:EE:51:05 X509v3 Authority Key Identifier: keyid:10:98:52:BA:5D:C4:A3:68:CF:76:12:05:15:EC:AC:62:EF:DA:3E:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE637/9BAEA13A974311E9BFD8E519C4F9AE02/EJhSul3Eo2jPdhIFFeysYu_aPkA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EJhSul3Eo2jPdhIFFeysYu_aPkA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE637/9BAEA13A974311E9BFD8E519C4F9AE02/EJhSul3Eo2jPdhIFFeysYu_aPkA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:a7:8e:69:90:23:fa:8a:97:91:d9:ce:d6:05:72:c9:9b:72: 1f:7a:0f:79:cb:7b:62:e1:a4:db:05:d7:44:d2:ed:5e:72:07: 43:58:18:34:7f:7b:a9:3c:33:e6:88:3a:e7:b4:1a:98:e9:66: 32:35:bc:b8:96:58:11:96:01:e7:69:27:15:ec:10:a1:63:d5: 90:2f:d4:28:68:27:b3:a9:00:2d:52:cc:5f:65:6d:90:9f:79: b1:a1:84:a9:f6:25:e4:7a:86:ee:34:fd:54:a9:d9:be:1b:82: 5e:7a:bc:36:44:f4:cc:af:cd:1e:2d:49:e7:7c:bd:28:ec:30: 5b:72:6d:a0:cb:8c:eb:4d:91:ff:0c:6e:4b:a0:a8:19:84:50: e1:e2:0c:24:0f:cf:8b:4d:73:e0:29:d0:03:c6:f7:36:f6:d8: d3:24:b1:e6:2f:f6:f9:0a:b2:bc:7a:4d:4c:c8:dc:52:07:06: 27:ab:64:b7:f6:8d:fb:e8:b5:c7:4d:9b:01:f7:b3:c1:29:69: 15:2e:ee:46:b7:a1:c7:7f:29:6e:ca:d5:47:61:df:69:1f:86: a5:22:e2:83:f4:07:75:80:58:b8:f5:fc:c4:e0:0e:be:de:88: 24:6f:ad:8c:91:da:06:37:b0:a4:d7:8f:aa:19:4b:58:7c:4d: 3b:8a:6d:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDl0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkU2MzcxMTAvBgNVBAUTKDEwOTg1MkJBNURDNEEzNjhDRjc2MTIwNTE1RUNBQzYy RUZEQTNFNDAwHhcNMjUwNDI0MTc0MjE2WhcNMjUwNTAxMTc0MjE2WjAYMRYwFAYD VQQDEw02ODBhNzdmOS0wYTE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4CBzpGGHPLqAnUcApBp2ReeAO1TR/LlpLDBuecm9pZazjyzT+BBacAHeOVn8 mYiHg8hJfuBv6Qmqgv++WOEzOGxzJgQpCC2ieBXc7O4mRH6MI7LNw8Ib8Ymt8XQR FRngSnVkHlCf1AtWua73lDE4laQwCQsjryD9f7Ht7j7kpfDkx4Ficqe92AJ/h0VI 4gRfPHcEcd9EbSgkEcIod/IyraNjrm7pUD7ayiqaoWi161HMERS30cF3QEwa+MbQ rjJ9nTvWaBM0EFiRWg3DfDanq/3urgum1wd4sJh5+GMfkSlBu78XgB56B2yXY4fB NxyaUbJie/Zm5JWxs5t5G3BKhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBHiHlF3 WnClU9B7q7Hug8OW7lEFMB8GA1UdIwQYMBaAFBCYUrpdxKNoz3YSBRXsrGLv2j5A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTYzNy85QkFFQTEzQTk3 NDMxMUU5QkZEOEU1MTlDNEY5QUUwMi9FSmhTdWwzRW8yalBkaElGRmV5c1l1X2FQ a0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VKaFN1bDNFbzJqUGRoSUZGZXlzWXVfYVBrQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTYzNy85QkFFQTEzQTk3NDMxMUU5QkZEOEU1MTlDNEY5QUUwMi9FSmhTdWwzRW8y alBkaElGRmV5c1l1X2FQa0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEp45pkCP6ipeR2c7WBXLJm3Ifeg95y3ti4aTbBddE0u1ecgdDWBg0 f3upPDPmiDrntBqY6WYyNby4llgRlgHnaScV7BChY9WQL9QoaCezqQAtUsxfZW2Q n3mxoYSp9iXkeobuNP1Uqdm+G4Jeerw2RPTMr80eLUnnfL0o7DBbcm2gy4zrTZH/ DG5LoKgZhFDh4gwkD8+LTXPgKdADxvc29tjTJLHmL/b5CrK8ek1MyNxSBwYnq2S3 9o376LXHTZsB97PBKWkVLu5Gt6HHfyluytVHYd9pH4alIuKD9Ad1gFi49fzE4A6+ 3ogkb62MkdoGN7Ck14+qGUtYfE07im2K -----END CERTIFICATE-----Generated at Sat Apr 26 13:00:33 2025 by rpki-client