$ rpki-client -vvf rpki.apnic.net/member_repository/A9156AFF/3B7B31B614D811F0A37EC04EC4F9AE02/EiOAOGQwr9Y_NklEdk4bNBhj0No.mft File: EiOAOGQwr9Y_NklEdk4bNBhj0No.mft (raw, json) Hash identifier: /xnlgtd9Ht09p12Am93T4u5oBjd73fopYa4339lF6WQ= Subject key identifier: 68:0C:0B:EF:6B:78:8C:23:55:32:54:D5:62:E3:C6:32:01:4A:53:63 Authority key identifier: 12:23:80:38:64:30:AF:D6:3F:36:49:44:76:4E:1B:34:18:63:D0:DA Certificate issuer: /CN=A9156AFF/serialNumber=122380386430AFD63F364944764E1B341863D0DA Certificate serial: 12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EiOAOGQwr9Y_NklEdk4bNBhj0No.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156AFF/3B7B31B614D811F0A37EC04EC4F9AE02/EiOAOGQwr9Y_NklEdk4bNBhj0No.mft Manifest number: 12 Signing time: Sun 11 May 2025 06:46:16 +0000 Manifest this update: Sun 11 May 2025 06:46:15 +0000 Manifest next update: Sun 18 May 2025 06:46:15 +0000 Files and hashes: 1: EiOAOGQwr9Y_NklEdk4bNBhj0No.crl (hash: rF4XY0KYqM7U+hJ//s3NjWXoLhWetyrcV0xsAqdT7k4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156AFF/3B7B31B614D811F0A37EC04EC4F9AE02/EiOAOGQwr9Y_NklEdk4bNBhj0No.crl rsync://rpki.apnic.net/member_repository/A9156AFF/3B7B31B614D811F0A37EC04EC4F9AE02/EiOAOGQwr9Y_NklEdk4bNBhj0No.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EiOAOGQwr9Y_NklEdk4bNBhj0No.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 06:46:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18 (0x12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156AFF, serialNumber=122380386430AFD63F364944764E1B341863D0DA Validity Not Before: May 11 06:46:15 2025 GMT Not After : May 18 06:46:15 2025 GMT Subject: CN=682047b8-93d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:99:74:eb:4e:67:a1:e8:8f:e5:84:db:c0:e1: c2:47:9b:2d:d0:6e:d4:06:97:c4:7c:91:f3:bf:4c: e8:92:0a:31:b8:9d:38:ac:76:90:1c:18:20:4d:19: 83:41:85:8a:0a:d0:94:71:5c:33:d8:6e:9d:b6:7f: 01:80:7c:a9:c2:9c:36:4b:1a:8e:a6:f8:9d:bf:89: e7:7e:5b:e8:5f:f2:c6:9e:f6:e3:63:ad:c7:46:09: b1:9e:e3:f0:23:2f:01:60:49:41:16:7d:19:d6:82: 17:3f:db:d1:75:a6:79:c6:ea:5c:fa:4b:0a:52:3e: 71:a5:6b:b2:62:23:b8:e5:44:41:ca:7a:e0:a0:de: ce:3a:4b:6e:4b:16:de:b2:24:d9:88:54:04:0c:cc: aa:2a:ff:7c:fb:e6:97:b6:63:e7:d3:b6:80:2a:d0: a7:78:92:c7:17:f2:f1:ec:99:ed:fa:8c:3d:aa:d2: fc:a0:57:04:4f:f0:71:ff:0c:f3:5e:5a:4c:f6:69: 9a:af:30:d6:07:3a:e5:ed:8a:5a:63:1d:d6:e7:e5: 5b:f5:4a:a9:2c:f9:2a:48:1a:a9:92:44:83:b2:67: d2:6b:81:0f:3b:b7:6e:6b:7d:b5:e4:15:d2:b0:35: 8b:02:bc:fb:ff:15:ce:5e:35:07:30:ef:52:f8:f4: 1e:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:0C:0B:EF:6B:78:8C:23:55:32:54:D5:62:E3:C6:32:01:4A:53:63 X509v3 Authority Key Identifier: keyid:12:23:80:38:64:30:AF:D6:3F:36:49:44:76:4E:1B:34:18:63:D0:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156AFF/3B7B31B614D811F0A37EC04EC4F9AE02/EiOAOGQwr9Y_NklEdk4bNBhj0No.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EiOAOGQwr9Y_NklEdk4bNBhj0No.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156AFF/3B7B31B614D811F0A37EC04EC4F9AE02/EiOAOGQwr9Y_NklEdk4bNBhj0No.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:15:d7:64:00:5e:cf:f0:64:fd:2f:97:c8:69:13:26:9e:f1: 2c:22:38:f9:05:7d:bb:44:f9:ff:e4:3e:9b:f4:65:01:38:31: 3d:0d:b9:98:ed:66:7b:fa:76:60:4e:51:4b:28:fb:3b:78:3f: 6c:c7:7d:c9:8a:21:09:ec:fe:1f:b5:55:14:5c:46:27:1d:b3: 0d:66:bf:72:d7:cb:6f:5d:c0:70:62:21:02:c8:70:89:47:eb: be:2c:aa:21:16:06:d1:b0:88:a3:b6:a8:c8:fb:0c:f8:fd:88: c4:14:5f:c3:c4:ff:9b:34:fe:2e:56:91:5c:cc:a8:02:c9:a2: de:2d:50:db:90:a0:24:55:87:bc:dd:e9:06:b6:83:4e:48:28: c7:be:3b:f8:1b:78:4e:e5:fa:ae:32:d8:ea:9c:6c:81:8c:3d: 30:e7:be:62:a8:d6:ed:70:38:07:18:09:5d:10:ea:d7:2d:7d: 62:40:df:07:23:d2:58:8f:88:8c:a3:b7:35:be:62:2e:fa:44: 16:94:ba:a9:0f:e4:d5:c1:48:bb:f0:4a:1d:23:db:9e:77:81: d9:98:dd:33:e8:26:9f:ee:de:d0:e6:41:af:c2:8b:19:cb:47: e4:fd:86:2c:15:be:ee:24:c2:e4:8f:ea:86:71:76:7a:f4:9c: 19:0c:f7:1c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NkFGRjExMC8GA1UEBRMoMTIyMzgwMzg2NDMwQUZENjNGMzY0OTQ0NzY0RTFCMzQx ODYzRDBEQTAeFw0yNTA1MTEwNjQ2MTVaFw0yNTA1MTgwNjQ2MTVaMBgxFjAUBgNV BAMTDTY4MjA0N2I4LTkzZDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDOmXTrTmeh6I/lhNvA4cJHmy3QbtQGl8R8kfO/TOiSCjG4nTisdpAcGCBNGYNB hYoK0JRxXDPYbp22fwGAfKnCnDZLGo6m+J2/ied+W+hf8sae9uNjrcdGCbGe4/Aj LwFgSUEWfRnWghc/29F1pnnG6lz6SwpSPnGla7JiI7jlREHKeuCg3s46S25LFt6y JNmIVAQMzKoq/3z75pe2Y+fTtoAq0Kd4kscX8vHsme36jD2q0vygVwRP8HH/DPNe Wkz2aZqvMNYHOuXtilpjHdbn5Vv1Sqks+SpIGqmSRIOyZ9JrgQ87t25rfbXkFdKw NYsCvPv/Fc5eNQcw71L49B4FAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUaAwL72t4 jCNVMlTVYuPGMgFKU2MwHwYDVR0jBBgwFoAUEiOAOGQwr9Y/NklEdk4bNBhj0Now DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU2QUZGLzNCN0IzMUI2MTRE ODExRjBBMzdFQzA0RUM0RjlBRTAyL0VpT0FPR1F3cjlZX05rbEVkazRiTkJoajBO by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRWlPQU9HUXdyOVlfTmtsRWRrNGJOQmhqME5vLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU2 QUZGLzNCN0IzMUI2MTREODExRjBBMzdFQzA0RUM0RjlBRTAyL0VpT0FPR1F3cjlZ X05rbEVkazRiTkJoajBOby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJ4V12QAXs/wZP0vl8hpEyae8SwiOPkFfbtE+f/kPpv0ZQE4MT0NuZjt Znv6dmBOUUso+zt4P2zHfcmKIQns/h+1VRRcRicdsw1mv3LXy29dwHBiIQLIcIlH 674sqiEWBtGwiKO2qMj7DPj9iMQUX8PE/5s0/i5WkVzMqALJot4tUNuQoCRVh7zd 6Qa2g05IKMe+O/gbeE7l+q4y2OqcbIGMPTDnvmKo1u1wOAcYCV0Q6tctfWJA3wcj 0liPiIyjtzW+Yi76RBaUuqkP5NXBSLvwSh0j2553gdmY3TPoJp/u3tDmQa/CixnL R+T9hiwVvu4kwuSP6oZxdnr0nBkM9xw= -----END CERTIFICATE-----Generated at Mon May 12 19:31:40 2025 by rpki-client