$ rpki-client -vvf rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft File: epYXaVSeCq0Km_mSVoO673M6Lxo.mft (raw, json) Hash identifier: 1mDFYfDjrbZK92jrYU2N+0XxpSsKDHN97kFEAJmRsxk= Subject key identifier: B1:92:07:69:40:39:09:F9:0F:1F:D8:8C:E6:8A:CB:E3:4B:00:3D:61 Authority key identifier: 7A:96:17:69:54:9E:0A:AD:0A:9B:F9:92:56:83:BA:EF:73:3A:2F:1A Certificate issuer: /CN=A911C5B0/serialNumber=7A961769549E0AAD0A9BF9925683BAEF733A2F1A Certificate serial: 34DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft Manifest number: 34AB Signing time: Thu 08 May 2025 14:23:34 +0000 Manifest this update: Thu 08 May 2025 14:23:34 +0000 Manifest next update: Thu 15 May 2025 14:23:34 +0000 Files and hashes: 1: epYXaVSeCq0Km_mSVoO673M6Lxo.crl (hash: eLwVx90vGls381l3QGXGOhyRPTBriFsgtk+aJpJyKlE=) 2: A9B6556E064311F0BA61C549C4F9AE02.roa (hash: mrU8KGa9vRKneCJ+qshobXiYhxcrHfbX93WdWbCVAW8=) 3: 1F5CD892C35111EE9D744F36C4F9AE02.roa (hash: jIXmhGTsHnOLM/8Oki3QEi8c2FlMLFZ5ltRb0SYd+ig=) 4: 1A83389CC35211EE8CE04C38C4F9AE02.roa (hash: qt+b79qUZeUfV9aMLkK2Vf0knDB1FC/92rGPVNLCE5Y=) 5: DA202262C34F11EE93BC8317C4F9AE02.roa (hash: MRIxoftDwmp6WRJIoO9F8Xfh6zfeqVoYT85Plhiizjg=) 6: 61A65BF2C35011EE95366E18C4F9AE02.roa (hash: lJX0Rj0D2pXCWqSqPGBLqRXobNJsOmj1xve2tbokkqo=) 7: 1EEE3E0AC35111EE9D744F36C4F9AE02.roa (hash: ucV0kVixfHpuy12BVYVN62sGm8utgsjQ/0NVbfikRis=) 8: A50EE218C34D11EEBC95A913C4F9AE02.roa (hash: 1HeD3vEPTet+037gaAO1k2WACoSTrjT1BrLUthDQvck=) 9: 8C9959CE060A11F08CBBE511C4F9AE02.roa (hash: Y12eqR4kENble50Bxruc9jwO/MdOCmjFkivTDaJk12E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.crl rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 May 2025 14:23:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13530 (0x34da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C5B0, serialNumber=7A961769549E0AAD0A9BF9925683BAEF733A2F1A Validity Not Before: May 8 14:23:34 2025 GMT Not After : May 15 14:23:34 2025 GMT Subject: CN=681cbe66-1a7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:ba:a8:e5:85:8f:e0:2a:83:9b:aa:7f:2f:87: 9d:48:06:0f:f8:ad:2a:a2:c8:55:78:02:d8:88:95: b0:cc:8e:04:a4:b0:d8:69:73:42:5d:e4:05:c3:33: 8f:ac:ac:2d:78:79:72:2a:73:35:81:80:ee:ee:48: 2b:1f:db:7b:28:f5:de:b7:29:5e:07:9f:ae:ca:3d: c2:d9:a5:75:aa:56:74:b5:f0:87:ce:81:30:d6:82: 74:7f:02:bd:b5:db:ab:ec:3b:c2:97:05:97:99:db: 8f:30:2f:df:24:db:96:3c:ee:be:d8:12:be:97:8e: ff:d8:6c:55:98:e4:27:77:b3:1f:b9:93:7a:cf:56: a9:f4:1d:95:fc:91:99:98:8a:5e:f7:c7:a9:3b:f1: 31:a0:89:79:2d:ea:10:82:67:4c:f8:f5:2b:45:9f: a3:47:82:1d:da:ae:23:23:ea:2d:4e:e3:fa:d8:b5: ef:ef:8f:63:3c:e1:47:79:dc:a6:a4:95:ef:58:43: 5a:04:a5:43:e7:11:ee:53:58:93:cb:b8:9f:ed:1e: fb:75:69:3f:62:46:b5:8f:11:d3:01:6f:a4:07:c5: c8:b7:c7:af:00:6a:50:e5:3a:22:eb:dc:0c:3b:98: 9a:c2:60:5e:38:c7:8d:22:62:6a:67:63:b4:87:81: d0:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:92:07:69:40:39:09:F9:0F:1F:D8:8C:E6:8A:CB:E3:4B:00:3D:61 X509v3 Authority Key Identifier: keyid:7A:96:17:69:54:9E:0A:AD:0A:9B:F9:92:56:83:BA:EF:73:3A:2F:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:e4:b5:f2:5a:c9:ca:48:6a:74:01:ff:9e:af:cc:d3:50:2a: 8c:e3:0f:2e:81:d1:cb:27:e4:be:fe:e7:a7:35:1a:61:22:7c: 61:4a:1a:79:87:47:0c:0e:04:03:97:0a:c7:c7:58:c5:db:85: c0:eb:3d:7d:43:d5:79:58:9f:9a:1e:a7:34:8d:93:21:f8:ba: 22:e6:96:41:2b:e1:d8:24:54:0e:e2:31:e1:78:d4:f3:c5:ca: ff:b7:b0:90:b0:68:88:10:72:5f:b3:7d:14:4d:d3:06:d6:0c: 8b:f4:6c:f0:27:7f:22:47:da:3c:4b:1d:8f:5c:92:55:81:fb: 4c:89:e0:62:89:60:fa:5c:71:ad:a9:70:b3:7d:72:07:ea:90: 1d:11:7e:09:52:c4:24:70:6b:02:e1:78:f9:75:26:36:ea:32: e6:bf:ab:7c:57:40:86:27:b9:c9:7d:88:8e:63:24:fe:4f:94: e1:61:b5:8f:1f:4c:94:a5:f6:f4:f6:fa:c7:8d:12:4a:ad:d5: dd:89:1d:e8:19:85:b5:8c:8b:58:8f:15:2b:3d:51:67:a2:3a: be:c1:a3:9a:04:0a:86:76:96:30:8e:5b:ca:03:ba:ef:4d:7e: 5d:08:06:da:91:b7:64:ed:d1:75:68:b5:77:18:b4:b2:5a:e7: ea:3f:1b:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM1QjAxMTAvBgNVBAUTKDdBOTYxNzY5NTQ5RTBBQUQwQTlCRjk5MjU2ODNCQUVG NzMzQTJGMUEwHhcNMjUwNTA4MTQyMzM0WhcNMjUwNTE1MTQyMzM0WjAYMRYwFAYD VQQDEw02ODFjYmU2Ni0xYTdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Lqo5YWP4CqDm6p/L4edSAYP+K0qoshVeALYiJWwzI4EpLDYaXNCXeQFwzOP rKwteHlyKnM1gYDu7kgrH9t7KPXetyleB5+uyj3C2aV1qlZ0tfCHzoEw1oJ0fwK9 tdur7DvClwWXmduPMC/fJNuWPO6+2BK+l47/2GxVmOQnd7MfuZN6z1ap9B2V/JGZ mIpe98epO/ExoIl5LeoQgmdM+PUrRZ+jR4Id2q4jI+otTuP62LXv749jPOFHedym pJXvWENaBKVD5xHuU1iTy7if7R77dWk/Yka1jxHTAW+kB8XIt8evAGpQ5Toi69wM O5iawmBeOMeNImJqZ2O0h4HQAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLGSB2lA OQn5Dx/YjOaKy+NLAD1hMB8GA1UdIwQYMBaAFHqWF2lUngqtCpv5klaDuu9zOi8a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzVCMC80MEM4RDVBNjFE ODMxMUUyODIzQTVGRDgwOEIwMkNEMi9lcFlYYVZTZUNxMEttX21TVm9PNjczTTZM eG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VwWVhhVlNlQ3EwS21fbVNWb082NzNNNkx4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzVCMC80MEM4RDVBNjFEODMxMUUyODIzQTVGRDgwOEIwMkNEMi9lcFlYYVZTZUNx MEttX21TVm9PNjczTTZMeG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAn5LXyWsnKSGp0Af+er8zTUCqM4w8ugdHLJ+S+/uenNRphInxhShp5 h0cMDgQDlwrHx1jF24XA6z19Q9V5WJ+aHqc0jZMh+Loi5pZBK+HYJFQO4jHheNTz xcr/t7CQsGiIEHJfs30UTdMG1gyL9GzwJ38iR9o8Sx2PXJJVgftMieBiiWD6XHGt qXCzfXIH6pAdEX4JUsQkcGsC4Xj5dSY26jLmv6t8V0CGJ7nJfYiOYyT+T5ThYbWP H0yUpfb09vrHjRJKrdXdiR3oGYW1jItYjxUrPVFnojq+waOaBAqGdpYwjlvKA7rv TX5dCAbakbdk7dF1aLV3GLSyWufqPxvL -----END CERTIFICATE-----Generated at Sat May 10 13:57:14 2025 by rpki-client