$ rpki-client -vvf rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.mft File: EpTEi8aWr-ggvRWC80NnutqwJDI.mft (raw, json) Hash identifier: /vFzEZvGK5TSpZflINl8AUUG15ByD6GQwsAvKd0gllg= Subject key identifier: D7:10:62:0E:C9:46:1D:80:0D:FB:57:3B:0E:9A:97:13:DF:72:A0:2B Authority key identifier: 12:94:C4:8B:C6:96:AF:E8:20:BD:15:82:F3:43:67:BA:DA:B0:24:32 Certificate issuer: /CN=A9117817/serialNumber=1294C48BC696AFE820BD1582F34367BADAB02432 Certificate serial: 0465 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EpTEi8aWr-ggvRWC80NnutqwJDI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.mft Manifest number: 045D Signing time: Sat 10 May 2025 23:45:36 +0000 Manifest this update: Sat 10 May 2025 23:45:36 +0000 Manifest next update: Sat 17 May 2025 23:45:36 +0000 Files and hashes: 1: EpTEi8aWr-ggvRWC80NnutqwJDI.crl (hash: 3kVWpemojBe+ZkND0ZCa9CImDpOkNWiJREiQqMQ63J0=) 2: 2A84118CE0A311EC9CF2B738C4F9AE02.roa (hash: d5/NJRnIjibSymNbNk/lOaJ1Q3nAQoqs/MS6HVTtaFE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.crl rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EpTEi8aWr-ggvRWC80NnutqwJDI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 23:45:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1125 (0x465) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117817, serialNumber=1294C48BC696AFE820BD1582F34367BADAB02432 Validity Not Before: May 10 23:45:36 2025 GMT Not After : May 17 23:45:36 2025 GMT Subject: CN=681fe520-98bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:e2:96:db:a2:26:ef:0d:c7:36:ef:26:74:fe: 6d:b3:8e:6d:b4:7c:0b:d1:b4:38:0d:54:50:44:3d: 4c:06:f9:c2:d5:b1:0f:42:c9:db:15:b8:58:7d:ae: 44:ba:8f:2c:66:87:ed:b8:34:4d:26:91:c1:e4:d6: eb:ee:89:dd:5d:5a:4a:dd:01:0c:a1:f8:0d:3c:62: 5a:5a:99:c0:11:aa:23:5c:dd:f1:59:09:92:19:c2: 97:3b:cd:40:6c:98:77:4c:a4:5c:1f:27:d6:54:14: a8:0b:b1:47:77:78:75:b4:91:38:46:da:b5:0a:e7: 14:ce:b7:2a:90:11:5a:ac:63:50:b5:f9:fc:0f:0a: 0b:59:36:d0:66:bc:77:67:aa:3f:19:11:bc:50:39: eb:96:e7:65:cd:74:47:4c:36:80:8a:56:ae:fd:ea: 7e:97:b2:e3:1c:0c:8e:29:b7:5e:d9:51:27:d6:15: bd:69:6c:05:42:73:e6:fc:8a:96:ed:90:58:bd:58: 5e:da:85:8f:dd:9a:72:22:61:71:62:1b:76:39:b5: 63:1f:70:7f:6a:41:3d:0b:54:d2:e8:1d:7a:b4:90: be:1b:a7:b0:b2:cb:71:16:07:43:49:e8:ea:9b:e6: 6f:2e:fc:1e:4f:d6:92:a6:cc:15:a2:6c:2c:67:0b: ca:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:10:62:0E:C9:46:1D:80:0D:FB:57:3B:0E:9A:97:13:DF:72:A0:2B X509v3 Authority Key Identifier: keyid:12:94:C4:8B:C6:96:AF:E8:20:BD:15:82:F3:43:67:BA:DA:B0:24:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EpTEi8aWr-ggvRWC80NnutqwJDI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:04:7c:b9:45:d6:77:be:3d:f8:11:b3:77:01:88:80:d3:e1: f9:c8:15:fb:c6:54:f0:cc:1e:e3:3d:06:49:f3:49:7d:c5:07: d8:a3:8b:e6:67:6a:14:ba:de:e1:8e:ee:c7:b6:ad:23:9b:84: 93:06:0e:46:8e:6c:50:2a:14:7c:68:89:7e:78:37:ba:14:c7: 0e:41:01:26:c3:41:ed:5b:3b:f3:8a:19:69:cd:0d:9e:3c:87: c5:88:7b:45:37:59:ca:09:80:44:94:e7:e8:f1:06:55:77:49: d8:67:ac:c4:8f:98:92:bb:cf:37:32:22:85:4a:38:88:00:7c: d4:56:13:7d:2f:81:1b:3c:58:35:42:af:07:62:f7:86:8e:4c: 39:66:13:a5:5e:ef:45:6a:a5:7e:3d:01:65:0a:da:db:a9:a0: 00:9e:83:37:ba:59:53:28:29:75:4e:e4:ff:21:f7:2a:86:92: db:73:47:71:de:fb:5d:a5:5a:77:28:ef:18:b0:d7:5e:67:9e: 71:ee:ca:35:7a:a9:5b:e7:22:9b:cc:da:3b:31:ae:84:c7:03: d1:8d:d2:85:cf:60:16:d2:2a:d9:e5:61:37:39:96:ca:26:07: 95:dd:9d:52:2a:57:49:a0:1f:fd:47:dc:e9:61:20:0e:31:0f: 04:9b:65:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBGUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc4MTcxMTAvBgNVBAUTKDEyOTRDNDhCQzY5NkFGRTgyMEJEMTU4MkYzNDM2N0JB REFCMDI0MzIwHhcNMjUwNTEwMjM0NTM2WhcNMjUwNTE3MjM0NTM2WjAYMRYwFAYD VQQDEw02ODFmZTUyMC05OGJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1+KW26Im7w3HNu8mdP5ts45ttHwL0bQ4DVRQRD1MBvnC1bEPQsnbFbhYfa5E uo8sZoftuDRNJpHB5Nbr7ondXVpK3QEMofgNPGJaWpnAEaojXN3xWQmSGcKXO81A bJh3TKRcHyfWVBSoC7FHd3h1tJE4Rtq1CucUzrcqkBFarGNQtfn8DwoLWTbQZrx3 Z6o/GRG8UDnrludlzXRHTDaAilau/ep+l7LjHAyOKbde2VEn1hW9aWwFQnPm/IqW 7ZBYvVhe2oWP3ZpyImFxYht2ObVjH3B/akE9C1TS6B16tJC+G6ewsstxFgdDSejq m+ZvLvweT9aSpswVomwsZwvK8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNcQYg7J Rh2ADftXOw6alxPfcqArMB8GA1UdIwQYMBaAFBKUxIvGlq/oIL0VgvNDZ7rasCQy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzgxNy8wNjgzRUI3MDRE QUMxMUVDODU3MTYwMjNDNEY5QUUwMi9FcFRFaThhV3ItZ2d2UldDODBObnV0cXdK REkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VwVEVpOGFXci1nZ3ZSV0M4ME5udXRxd0pESS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzgxNy8wNjgzRUI3MDREQUMxMUVDODU3MTYwMjNDNEY5QUUwMi9FcFRFaThhV3It Z2d2UldDODBObnV0cXdKREkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDDBHy5RdZ3vj34EbN3AYiA0+H5yBX7xlTwzB7jPQZJ80l9xQfYo4vm Z2oUut7hju7Htq0jm4STBg5GjmxQKhR8aIl+eDe6FMcOQQEmw0HtWzvzihlpzQ2e PIfFiHtFN1nKCYBElOfo8QZVd0nYZ6zEj5iSu883MiKFSjiIAHzUVhN9L4EbPFg1 Qq8HYveGjkw5ZhOlXu9FaqV+PQFlCtrbqaAAnoM3ullTKCl1TuT/IfcqhpLbc0dx 3vtdpVp3KO8YsNdeZ55x7so1eqlb5yKbzNo7Ma6ExwPRjdKFz2AW0irZ5WE3OZbK JgeV3Z1SKldJoB/9R9zpYSAOMQ8Em2XU -----END CERTIFICATE-----Generated at Sun May 11 14:05:48 2025 by rpki-client