$ rpki-client -vvf rpki.apnic.net/member_repository/A91262F0/33AD0A62A30C11EDB3388C0CC4F9AE02/_Ern2eP0GafSBKVMedHz76mn1sg.mft File: _Ern2eP0GafSBKVMedHz76mn1sg.mft (raw, json) Hash identifier: XptztrUFM9QJXIWLcsjOUR3VQk2Dd0Zq0EKwrc1cthw= Subject key identifier: 57:52:9F:3B:03:A4:6F:4B:73:21:B3:5A:14:77:39:1C:17:39:D9:1C Authority key identifier: FC:4A:E7:D9:E3:F4:19:A7:D2:04:A5:4C:79:D1:F3:EF:A9:A7:D6:C8 Certificate issuer: /CN=A91262F0/serialNumber=FC4AE7D9E3F419A7D204A54C79D1F3EFA9A7D6C8 Certificate serial: 01AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Ern2eP0GafSBKVMedHz76mn1sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91262F0/33AD0A62A30C11EDB3388C0CC4F9AE02/_Ern2eP0GafSBKVMedHz76mn1sg.mft Manifest number: 01A8 Signing time: Fri 09 May 2025 02:25:50 +0000 Manifest this update: Fri 09 May 2025 02:25:50 +0000 Manifest next update: Fri 16 May 2025 02:25:50 +0000 Files and hashes: 1: _Ern2eP0GafSBKVMedHz76mn1sg.crl (hash: dt32uB9QVdzXEtmgUqZuoyqcLKWE2U1muQGsfJYmxPo=) 2: 8E412748A33311EDA2CB2420C4F9AE02.roa (hash: VYee2tDfZOJDgRSyvh9847Isyru0Slu6wYlhlW9JZCM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91262F0/33AD0A62A30C11EDB3388C0CC4F9AE02/_Ern2eP0GafSBKVMedHz76mn1sg.crl rsync://rpki.apnic.net/member_repository/A91262F0/33AD0A62A30C11EDB3388C0CC4F9AE02/_Ern2eP0GafSBKVMedHz76mn1sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Ern2eP0GafSBKVMedHz76mn1sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 02:25:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 429 (0x1ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91262F0, serialNumber=FC4AE7D9E3F419A7D204A54C79D1F3EFA9A7D6C8 Validity Not Before: May 9 02:25:50 2025 GMT Not After : May 16 02:25:50 2025 GMT Subject: CN=681d67ae-e433 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:b6:e2:b6:fc:84:8d:8d:5b:fa:b0:f7:fc:09: 48:5a:cf:20:2d:f0:86:97:31:d9:4a:1f:6d:6d:06: 36:24:cc:a8:0e:f0:1d:93:8c:49:8a:66:9a:a2:ce: 38:a2:3e:1f:77:09:d6:11:15:70:3b:52:a5:25:2f: cd:40:0f:4f:fa:2e:d8:5c:f5:7c:d9:c4:33:0c:d6: 6b:0b:77:82:34:b9:9c:d0:66:47:65:64:71:f2:b0: 35:e4:e8:27:4e:bf:0d:09:7e:2a:bf:25:0a:bd:47: af:79:94:2d:a1:b3:94:bf:a4:e6:a5:c3:ab:dc:cb: ba:a4:00:87:cb:30:a4:3b:52:83:81:72:2b:97:f8: 54:c4:0d:76:8f:a7:3e:7e:c1:fa:00:49:9f:3a:b0: 2d:ec:bf:0b:3c:ec:a1:3d:7f:67:93:b2:ae:fb:4b: fe:a4:31:98:1f:5e:73:66:e5:4a:00:55:55:da:c3: 6d:64:6c:68:c0:2b:c6:f5:fc:c9:a9:ee:46:0f:cc: ed:94:56:7e:ad:d7:2c:6f:10:0b:e4:21:50:5e:b9: f3:60:03:eb:07:66:f2:33:67:db:78:bc:d0:9f:7d: 4b:e9:e2:f1:4c:4a:55:fb:2a:de:1f:d0:78:2b:46: 49:fc:eb:c7:61:50:0f:ed:38:5a:f2:54:64:a8:36: fa:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:52:9F:3B:03:A4:6F:4B:73:21:B3:5A:14:77:39:1C:17:39:D9:1C X509v3 Authority Key Identifier: keyid:FC:4A:E7:D9:E3:F4:19:A7:D2:04:A5:4C:79:D1:F3:EF:A9:A7:D6:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91262F0/33AD0A62A30C11EDB3388C0CC4F9AE02/_Ern2eP0GafSBKVMedHz76mn1sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Ern2eP0GafSBKVMedHz76mn1sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91262F0/33AD0A62A30C11EDB3388C0CC4F9AE02/_Ern2eP0GafSBKVMedHz76mn1sg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:eb:08:ac:a8:3b:a0:0c:61:6a:67:63:76:d1:6a:d9:e4:5a: 3f:d3:e0:b8:e5:eb:fa:b4:59:87:70:d2:10:7e:b4:c6:a4:16: 68:b5:48:24:0c:62:ec:d0:9e:f9:fa:9c:22:57:6d:7a:c1:d0: c5:b2:41:d7:05:ca:fa:a3:3f:01:59:41:72:d7:ec:dc:2f:0d: 32:6f:31:1c:a5:6d:8c:28:b5:21:15:30:e6:2a:0c:67:bb:58: 2b:4e:b4:2e:6c:00:82:4c:df:bf:7e:e7:87:00:a4:35:76:b4: 49:04:ff:94:85:eb:8a:58:99:fa:65:2a:bd:9b:15:76:ab:2d: 38:a5:f3:03:d8:76:b9:94:e4:d3:aa:9f:b8:c7:34:db:3d:a0: 6e:7f:f6:9c:d5:d8:70:7e:6b:fa:26:db:00:78:4c:8a:67:b8: a5:da:78:bd:05:19:b4:73:49:0a:9f:35:18:d9:fc:1a:e6:ad: 96:8a:a8:8a:a2:97:7b:70:fb:9a:54:9b:1e:94:50:5f:ed:58: df:de:03:9e:97:27:59:1d:dd:13:b4:9a:8b:a4:f7:45:0e:61: bb:e4:91:e2:33:cd:ab:a2:a1:6a:b1:a5:0a:f6:e9:c0:ed:1b: 13:c7:d5:f2:45:1b:30:83:b1:fc:a4:0c:25:44:7d:2d:35:7f: cf:f0:14:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjYyRjAxMTAvBgNVBAUTKEZDNEFFN0Q5RTNGNDE5QTdEMjA0QTU0Qzc5RDFGM0VG QTlBN0Q2QzgwHhcNMjUwNTA5MDIyNTUwWhcNMjUwNTE2MDIyNTUwWjAYMRYwFAYD VQQDEw02ODFkNjdhZS1lNDMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0rbitvyEjY1b+rD3/AlIWs8gLfCGlzHZSh9tbQY2JMyoDvAdk4xJimaaos44 oj4fdwnWERVwO1KlJS/NQA9P+i7YXPV82cQzDNZrC3eCNLmc0GZHZWRx8rA15Ogn Tr8NCX4qvyUKvUeveZQtobOUv6TmpcOr3Mu6pACHyzCkO1KDgXIrl/hUxA12j6c+ fsH6AEmfOrAt7L8LPOyhPX9nk7Ku+0v+pDGYH15zZuVKAFVV2sNtZGxowCvG9fzJ qe5GD8ztlFZ+rdcsbxAL5CFQXrnzYAPrB2byM2fbeLzQn31L6eLxTEpV+yreH9B4 K0ZJ/OvHYVAP7Tha8lRkqDb6pwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFdSnzsD pG9LcyGzWhR3ORwXOdkcMB8GA1UdIwQYMBaAFPxK59nj9Bmn0gSlTHnR8++pp9bI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjJGMC8zM0FEMEE2MkEz MEMxMUVEQjMzODhDMENDNEY5QUUwMi9fRXJuMmVQMEdhZlNCS1ZNZWRIejc2bW4x c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19Fcm4yZVAwR2FmU0JLVk1lZEh6NzZtbjFzZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NjJGMC8zM0FEMEE2MkEzMEMxMUVEQjMzODhDMENDNEY5QUUwMi9fRXJuMmVQMEdh ZlNCS1ZNZWRIejc2bW4xc2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB76wisqDugDGFqZ2N20WrZ5Fo/0+C45ev6tFmHcNIQfrTGpBZotUgk DGLs0J75+pwiV216wdDFskHXBcr6oz8BWUFy1+zcLw0ybzEcpW2MKLUhFTDmKgxn u1grTrQubACCTN+/fueHAKQ1drRJBP+UheuKWJn6ZSq9mxV2qy04pfMD2Ha5lOTT qp+4xzTbPaBuf/ac1dhwfmv6JtsAeEyKZ7il2ni9BRm0c0kKnzUY2fwa5q2WiqiK opd7cPuaVJselFBf7Vjf3gOelydZHd0TtJqLpPdFDmG75JHiM82roqFqsaUK9unA 7RsTx9XyRRswg7H8pAwlRH0tNX/P8BTx -----END CERTIFICATE-----Generated at Sat May 10 20:50:37 2025 by rpki-client