$ rpki-client -vvf rpki.apnic.net/member_repository/A9145258/AC09C6EEE30611EFA807B053C4F9AE02/eERZpLZsg1_PXW5aVoctkkfUZYo.mft File: eERZpLZsg1_PXW5aVoctkkfUZYo.mft (raw, json) Hash identifier: RLY599c0yGxwH45E9X6EJOXEvcUX1wTEyTVwTpmDe58= Subject key identifier: E0:A0:C2:F5:DB:E1:5C:3A:72:A7:81:65:0A:11:F4:93:3C:D2:98:04 Authority key identifier: 78:44:59:A4:B6:6C:83:5F:CF:5D:6E:5A:56:87:2D:92:47:D4:65:8A Certificate issuer: /CN=A9145258/serialNumber=784459A4B66C835FCF5D6E5A56872D9247D4658A Certificate serial: 41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eERZpLZsg1_PXW5aVoctkkfUZYo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145258/AC09C6EEE30611EFA807B053C4F9AE02/eERZpLZsg1_PXW5aVoctkkfUZYo.mft Manifest number: 3A Signing time: Sun 11 May 2025 06:21:14 +0000 Manifest this update: Sun 11 May 2025 06:21:13 +0000 Manifest next update: Sun 18 May 2025 06:21:13 +0000 Files and hashes: 1: eERZpLZsg1_PXW5aVoctkkfUZYo.crl (hash: PIie4/baGxCJmEob9H02BnTti9/Mhif7ru+/uxaraYg=) 2: 2C7AE786042711F0BCEB4A75C4F9AE02.roa (hash: TfwuteF4CSmQI9K6dXSTpQXiyzOgk2P0dxR5uxSFtEs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145258/AC09C6EEE30611EFA807B053C4F9AE02/eERZpLZsg1_PXW5aVoctkkfUZYo.crl rsync://rpki.apnic.net/member_repository/A9145258/AC09C6EEE30611EFA807B053C4F9AE02/eERZpLZsg1_PXW5aVoctkkfUZYo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eERZpLZsg1_PXW5aVoctkkfUZYo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65 (0x41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145258, serialNumber=784459A4B66C835FCF5D6E5A56872D9247D4658A Validity Not Before: May 11 06:21:13 2025 GMT Not After : May 18 06:21:13 2025 GMT Subject: CN=682041da-2366 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:e5:33:5a:d1:60:9a:f6:0a:fe:72:9f:98:15: 89:5d:47:12:e0:1c:88:9d:a4:ce:60:6b:11:df:0f: 57:49:78:9d:09:ad:82:b1:34:19:e4:66:d7:86:45: a6:a7:75:0c:47:c0:a2:c4:74:b4:f0:41:50:cd:93: d4:fa:a4:09:2d:3d:76:d1:5d:84:d3:bd:73:12:12: c5:11:5d:d9:68:59:84:04:78:0f:1c:a1:cd:7b:76: 9c:1f:ee:bc:8f:2a:59:fc:d2:9b:df:36:5d:4e:13: 84:56:30:d7:ee:5d:56:a8:10:5a:f4:ea:b6:a0:f5: 3b:40:72:2e:4a:4b:5d:92:4e:c0:86:46:36:3f:7a: 94:3b:09:a9:84:c3:fb:1b:fc:ad:38:9c:d4:d8:58: fe:fd:e2:a3:b0:21:69:9b:5b:72:ee:2a:52:e1:10: 37:e0:5d:81:bb:20:bb:29:61:5a:8e:0f:56:a5:8f: cd:71:ef:03:ec:5e:3f:b5:fe:ac:dd:eb:5c:97:20: e4:48:cb:48:85:f8:cc:28:fc:5a:ba:e2:20:74:88: 05:c2:64:9f:13:a6:56:de:45:86:5a:bc:0e:1a:cd: 26:bf:09:37:5f:35:6f:bb:b6:23:b1:98:fb:55:a7: 61:81:30:14:cc:6e:a5:7d:0a:62:ff:8e:33:7e:a8: ce:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:A0:C2:F5:DB:E1:5C:3A:72:A7:81:65:0A:11:F4:93:3C:D2:98:04 X509v3 Authority Key Identifier: keyid:78:44:59:A4:B6:6C:83:5F:CF:5D:6E:5A:56:87:2D:92:47:D4:65:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145258/AC09C6EEE30611EFA807B053C4F9AE02/eERZpLZsg1_PXW5aVoctkkfUZYo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eERZpLZsg1_PXW5aVoctkkfUZYo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145258/AC09C6EEE30611EFA807B053C4F9AE02/eERZpLZsg1_PXW5aVoctkkfUZYo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:01:b1:92:72:f0:10:7a:f9:1e:09:da:8d:20:9c:40:c0:f8: cf:23:bf:4f:57:ac:9a:34:24:50:c8:e3:1c:3c:f0:fe:cc:1f: 69:4f:89:f6:38:7c:8b:b0:9f:37:71:3a:48:c9:05:86:a8:b8: fe:05:a7:5d:d7:18:1a:0e:73:4a:f9:95:e0:d6:53:b5:4d:ea: bb:23:03:0f:7e:8d:61:f6:75:e1:35:f6:57:2f:f4:dc:68:9d: fe:23:82:08:45:1a:b8:b2:68:f9:8f:32:78:cf:14:a7:ab:b5: 62:49:c3:4f:43:e6:66:79:55:e7:92:5b:5e:f7:94:33:b4:e2: 3e:be:62:3e:eb:05:2a:4a:c1:14:f9:d8:a5:71:89:86:a7:91: 1b:57:8d:cc:c9:58:fc:70:d3:39:11:e9:83:7e:19:de:5c:03: 8c:e2:f6:9c:f1:95:88:c0:52:2d:3e:53:31:9f:77:84:ea:50: ab:73:5d:9e:d4:49:8f:9f:7e:e6:3d:40:b4:01:93:ed:ca:14: 16:6d:8c:2e:88:81:9a:cd:f1:14:22:85:53:fc:f0:b1:94:69: 3a:00:e3:15:ed:c1:fb:3c:ed:7e:34:eb:ec:99:ba:d7:10:c1: 5d:ff:56:bd:a7:e0:21:14:49:09:95:b4:df:8f:65:e6:a6:fd: 0e:7d:04:da -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NTI1ODExMC8GA1UEBRMoNzg0NDU5QTRCNjZDODM1RkNGNUQ2RTVBNTY4NzJEOTI0 N0Q0NjU4QTAeFw0yNTA1MTEwNjIxMTNaFw0yNTA1MTgwNjIxMTNaMBgxFjAUBgNV BAMTDTY4MjA0MWRhLTIzNjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCz5TNa0WCa9gr+cp+YFYldRxLgHIidpM5gaxHfD1dJeJ0JrYKxNBnkZteGRaan dQxHwKLEdLTwQVDNk9T6pAktPXbRXYTTvXMSEsURXdloWYQEeA8coc17dpwf7ryP Kln80pvfNl1OE4RWMNfuXVaoEFr06rag9TtAci5KS12STsCGRjY/epQ7CamEw/sb /K04nNTYWP794qOwIWmbW3LuKlLhEDfgXYG7ILspYVqOD1alj81x7wPsXj+1/qzd 61yXIORIy0iF+Mwo/Fq64iB0iAXCZJ8TplbeRYZavA4azSa/CTdfNW+7tiOxmPtV p2GBMBTMbqV9CmL/jjN+qM6XAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU4KDC9dvh XDpyp4FlChH0kzzSmAQwHwYDVR0jBBgwFoAUeERZpLZsg1/PXW5aVoctkkfUZYow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1MjU4L0FDMDlDNkVFRTMw NjExRUZBODA3QjA1M0M0RjlBRTAyL2VFUlpwTFpzZzFfUFhXNWFWb2N0a2tmVVpZ by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZUVSWnBMWnNnMV9QWFc1YVZvY3Rra2ZVWllvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1 MjU4L0FDMDlDNkVFRTMwNjExRUZBODA3QjA1M0M0RjlBRTAyL2VFUlpwTFpzZzFf UFhXNWFWb2N0a2tmVVpZby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIkBsZJy8BB6+R4J2o0gnEDA+M8jv09XrJo0JFDI4xw88P7MH2lPifY4 fIuwnzdxOkjJBYaouP4Fp13XGBoOc0r5leDWU7VN6rsjAw9+jWH2deE19lcv9Nxo nf4jgghFGriyaPmPMnjPFKertWJJw09D5mZ5VeeSW173lDO04j6+Yj7rBSpKwRT5 2KVxiYankRtXjczJWPxw0zkR6YN+Gd5cA4zi9pzxlYjAUi0+UzGfd4TqUKtzXZ7U SY+ffuY9QLQBk+3KFBZtjC6IgZrN8RQihVP88LGUaToA4xXtwfs87X406+yZutcQ wV3/Vr2n4CEUSQmVtN+PZeam/Q59BNo= -----END CERTIFICATE-----Generated at Sun May 11 15:23:27 2025 by rpki-client