$ rpki-client -vvf rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.mft File: EW-SD4cwZnR6jO3a_-hLz72wNRo.mft (raw, json) Hash identifier: K5L9+wMemeL+iskvVGAsGrrdep6nW6ecBX9QRQJ7y+s= Subject key identifier: DD:CE:BF:CB:E3:77:AF:C0:84:53:92:C5:7B:CE:15:40:4D:37:F4:AC Authority key identifier: 11:6F:92:0F:87:30:66:74:7A:8C:ED:DA:FF:E8:4B:CF:BD:B0:35:1A Certificate issuer: /CN=A9120CDE/serialNumber=116F920F873066747A8CEDDAFFE84BCFBDB0351A Certificate serial: 118F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EW-SD4cwZnR6jO3a_-hLz72wNRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.mft Manifest number: 1183 Signing time: Mon 12 May 2025 17:09:14 +0000 Manifest this update: Mon 12 May 2025 17:09:13 +0000 Manifest next update: Mon 19 May 2025 17:09:13 +0000 Files and hashes: 1: EW-SD4cwZnR6jO3a_-hLz72wNRo.crl (hash: NCe9BewpBtYYrMWLGOpENod7nkMuKPzF4xGEjIPqmEE=) 2: D8D63660B9A811ECB7EE5A71C4F9AE02.roa (hash: DIX09IMqDwhYz9qe1Nv5iQBk3kT+S7TLOQSBMI/PtT0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.crl rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EW-SD4cwZnR6jO3a_-hLz72wNRo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 17:09:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4495 (0x118f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120CDE, serialNumber=116F920F873066747A8CEDDAFFE84BCFBDB0351A Validity Not Before: May 12 17:09:13 2025 GMT Not After : May 19 17:09:13 2025 GMT Subject: CN=68222b3a-eefd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:e4:88:fe:84:f1:86:65:5a:51:fa:e4:5f:4a: 7a:a7:2d:6f:74:c9:47:9b:1a:e1:2f:3d:86:7f:d5: d8:e3:2d:1e:2d:80:db:4a:72:82:ff:20:98:96:a9: 2a:f9:72:24:80:ad:5a:b6:54:b0:4e:da:7f:a7:ac: d9:73:1a:9b:5f:53:c6:b4:21:34:d9:d9:12:62:36: 7b:49:58:5f:a9:71:88:73:22:54:6e:ee:25:a0:2e: 7f:b2:69:1e:b0:35:7e:8c:da:f1:70:df:d6:d6:04: 54:33:9c:b8:c9:dd:62:29:b0:cd:e1:bc:cb:33:74: 36:44:ba:39:ca:a0:20:06:99:e6:ed:1d:bd:81:50: 4d:1f:07:77:c1:85:1f:52:fa:b9:c3:1d:3d:d6:6e: 43:d0:7f:f6:ea:85:73:41:44:ea:33:f7:71:a0:9e: ac:81:46:7d:d4:ab:a9:49:09:43:c3:23:e9:72:bf: ba:6b:c2:c0:7f:d2:9e:1a:59:fd:00:99:d0:43:4c: bc:a4:9f:6a:62:24:37:4b:50:83:cf:69:10:91:11: a5:7a:92:22:db:bf:bb:0b:8e:6d:5c:c4:87:c1:81: 4b:3c:b3:28:be:63:db:67:8e:44:aa:30:35:28:79: 62:b6:c2:29:c3:f0:e8:91:89:15:be:be:2d:8f:e4: 55:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:CE:BF:CB:E3:77:AF:C0:84:53:92:C5:7B:CE:15:40:4D:37:F4:AC X509v3 Authority Key Identifier: keyid:11:6F:92:0F:87:30:66:74:7A:8C:ED:DA:FF:E8:4B:CF:BD:B0:35:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EW-SD4cwZnR6jO3a_-hLz72wNRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:e9:2a:9f:73:4a:76:4f:77:17:0b:97:e3:17:c6:b7:16:cf: ed:dd:57:ae:7b:7d:2d:f5:a2:ba:55:4e:23:c7:cb:a6:9b:2b: 49:26:65:c7:60:f7:e0:19:72:fc:05:41:7e:9b:93:32:a2:6c: e8:a4:55:80:11:67:6a:bb:99:87:95:9a:e7:4a:1d:84:f7:86: b7:8a:b8:06:ea:f3:41:63:d1:ba:9f:dd:f7:5e:ea:80:19:7a: 62:b7:34:46:94:a4:d3:43:90:63:ae:10:77:78:63:03:13:e0: 63:a0:41:2a:cc:a6:85:87:38:88:0e:82:fd:c3:a8:c2:a4:e5: 41:1d:46:f4:c3:a7:cd:6d:44:69:4d:d2:93:43:ca:7a:0f:0e: d9:63:30:35:2b:6e:3a:2b:54:bc:dc:6c:0e:85:2a:0f:c7:56: 1d:14:d3:74:43:d9:bc:ab:0d:75:11:35:a8:ba:5e:d0:65:c7: e0:66:e2:3b:29:b9:00:da:45:7f:e6:db:5b:e1:da:69:b7:2c: 0a:82:5c:33:e5:8c:5b:d7:dc:56:c8:fa:ff:cb:55:3a:46:7f: 06:43:2f:1e:72:8d:04:bf:0a:e9:1a:4d:1d:8c:29:dc:8b:5f: 4c:78:a8:b2:e6:04:54:4d:11:01:06:c2:bf:13:56:99:9d:27: 6c:a8:87:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEY8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBDREUxMTAvBgNVBAUTKDExNkY5MjBGODczMDY2NzQ3QThDRUREQUZGRTg0QkNG QkRCMDM1MUEwHhcNMjUwNTEyMTcwOTEzWhcNMjUwNTE5MTcwOTEzWjAYMRYwFAYD VQQDEw02ODIyMmIzYS1lZWZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAruSI/oTxhmVaUfrkX0p6py1vdMlHmxrhLz2Gf9XY4y0eLYDbSnKC/yCYlqkq +XIkgK1atlSwTtp/p6zZcxqbX1PGtCE02dkSYjZ7SVhfqXGIcyJUbu4loC5/smke sDV+jNrxcN/W1gRUM5y4yd1iKbDN4bzLM3Q2RLo5yqAgBpnm7R29gVBNHwd3wYUf Uvq5wx091m5D0H/26oVzQUTqM/dxoJ6sgUZ91KupSQlDwyPpcr+6a8LAf9KeGln9 AJnQQ0y8pJ9qYiQ3S1CDz2kQkRGlepIi27+7C45tXMSHwYFLPLMovmPbZ45EqjA1 KHlitsIpw/DokYkVvr4tj+RVgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN3Ov8vj d6/AhFOSxXvOFUBNN/SsMB8GA1UdIwQYMBaAFBFvkg+HMGZ0eozt2v/oS8+9sDUa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMENERS8yM0Q4NTY2RUZC REIxMUU4OTIwQ0IwNDRDNEY5QUUwMi9FVy1TRDRjd1puUjZqTzNhXy1oTHo3MndO Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VXLVNENGN3Wm5SNmpPM2FfLWhMejcyd05Sby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MENERS8yM0Q4NTY2RUZCREIxMUU4OTIwQ0IwNDRDNEY5QUUwMi9FVy1TRDRjd1pu UjZqTzNhXy1oTHo3MndOUm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBf6Sqfc0p2T3cXC5fjF8a3Fs/t3Veue30t9aK6VU4jx8ummytJJmXH YPfgGXL8BUF+m5MyomzopFWAEWdqu5mHlZrnSh2E94a3irgG6vNBY9G6n933XuqA GXpitzRGlKTTQ5BjrhB3eGMDE+BjoEEqzKaFhziIDoL9w6jCpOVBHUb0w6fNbURp TdKTQ8p6Dw7ZYzA1K246K1S83GwOhSoPx1YdFNN0Q9m8qw11ETWoul7QZcfgZuI7 KbkA2kV/5ttb4dpptywKglwz5Yxb19xWyPr/y1U6Rn8GQy8eco0EvwrpGk0djCnc i19MeKiy5gRUTREBBsK/E1aZnSdsqIeT -----END CERTIFICATE-----Generated at Wed May 14 17:06:52 2025 by rpki-client