$ rpki-client -vvf rpki.apnic.net/member_repository/A9189311/13AFF6F6B24D11E4B67F185FC4F9AE02/e3dUqC3QY6R-jsNdFj72skSNEts.mft File: e3dUqC3QY6R-jsNdFj72skSNEts.mft (raw, json) Hash identifier: SOT2lPMloq4qfzGlrPhhoqKMSxVKK4lJ0+iUouYgwss= Subject key identifier: 28:C0:AA:3F:D6:E6:2A:15:06:E9:FF:BA:E1:31:8F:EB:F6:E5:A2:2D Authority key identifier: 7B:77:54:A8:2D:D0:63:A4:7E:8E:C3:5D:16:3E:F6:B2:44:8D:12:DB Certificate issuer: /CN=A9189311/serialNumber=7B7754A82DD063A47E8EC35D163EF6B2448D12DB Certificate serial: 2782 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e3dUqC3QY6R-jsNdFj72skSNEts.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189311/13AFF6F6B24D11E4B67F185FC4F9AE02/e3dUqC3QY6R-jsNdFj72skSNEts.mft Manifest number: 276F Signing time: Sat 10 May 2025 15:35:19 +0000 Manifest this update: Sat 10 May 2025 15:35:18 +0000 Manifest next update: Sat 17 May 2025 15:35:18 +0000 Files and hashes: 1: e3dUqC3QY6R-jsNdFj72skSNEts.crl (hash: wmDKzX9e8yOJgSixiVgMiF8dTStfuWZ065ELbhKglJc=) 2: F5BBEA5AF6A611E7B40C7427C4F9AE02.roa (hash: EeUXim59YsvGI7qIffiR5WtPWhD5kVEeYtKpW1EoALs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189311/13AFF6F6B24D11E4B67F185FC4F9AE02/e3dUqC3QY6R-jsNdFj72skSNEts.crl rsync://rpki.apnic.net/member_repository/A9189311/13AFF6F6B24D11E4B67F185FC4F9AE02/e3dUqC3QY6R-jsNdFj72skSNEts.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e3dUqC3QY6R-jsNdFj72skSNEts.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 15:35:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10114 (0x2782) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189311, serialNumber=7B7754A82DD063A47E8EC35D163EF6B2448D12DB Validity Not Before: May 10 15:35:18 2025 GMT Not After : May 17 15:35:18 2025 GMT Subject: CN=681f7236-8848 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:da:94:0d:11:58:52:d1:1c:67:66:22:0e:ef: 9b:df:b2:b5:cd:14:e3:40:ea:30:3a:e2:16:10:29: e4:16:35:cc:f9:64:a9:a9:6c:79:9f:ea:3c:a5:17: c4:02:16:8d:35:f8:64:33:2b:93:5a:5f:94:b4:c0: 4d:7a:b8:81:b2:03:0c:a9:66:ff:49:ae:f1:84:dc: eb:69:2e:cc:d6:1d:16:f5:65:fc:4b:0f:d2:1e:5d: 6b:8a:6a:13:4f:cc:cd:77:87:ea:61:96:21:29:66: b3:ae:c2:7e:9e:49:85:50:c2:34:6f:b4:55:c4:11: c8:82:5b:dc:19:1f:be:fb:d9:a6:eb:20:17:53:8c: b6:d0:4d:c1:8f:dc:fd:d1:9a:b8:18:9b:ba:85:a9: 94:6e:d1:93:3c:95:d4:9d:e1:e4:95:f7:94:cd:0b: bb:7c:1e:43:e1:61:13:93:4f:70:09:c2:a4:8e:a3: dc:f5:1f:bb:95:06:59:f1:8f:2a:44:c5:ee:7c:df: 38:e2:f5:35:b0:da:4c:48:f0:58:d9:3d:ea:bf:74: 7a:49:61:69:94:75:6d:32:88:ea:44:35:0a:b6:22: 3a:92:6b:09:b9:a0:0f:e1:84:48:29:5d:ea:26:74: ed:6c:0b:c6:3f:09:04:fe:9e:28:1e:71:87:df:14: c5:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:C0:AA:3F:D6:E6:2A:15:06:E9:FF:BA:E1:31:8F:EB:F6:E5:A2:2D X509v3 Authority Key Identifier: keyid:7B:77:54:A8:2D:D0:63:A4:7E:8E:C3:5D:16:3E:F6:B2:44:8D:12:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189311/13AFF6F6B24D11E4B67F185FC4F9AE02/e3dUqC3QY6R-jsNdFj72skSNEts.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e3dUqC3QY6R-jsNdFj72skSNEts.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189311/13AFF6F6B24D11E4B67F185FC4F9AE02/e3dUqC3QY6R-jsNdFj72skSNEts.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:72:22:53:4e:5e:83:c9:43:ff:af:5e:89:e7:a7:ed:ac:16: a6:0e:b4:b5:0b:90:4a:d6:ea:36:53:41:b0:f3:e7:9c:b2:cc: a1:ae:63:a4:41:58:5e:9d:43:c8:37:f7:bd:51:0f:7e:81:d3: ff:78:9b:21:0a:86:d6:32:2d:ab:4a:c1:4a:11:14:87:4c:a9: c0:92:23:c2:4d:86:4f:e2:35:f1:7b:e7:e8:2c:5d:08:a7:e5: 5e:9b:ae:e1:f8:c4:51:46:53:5b:aa:11:87:ca:b7:0d:43:3e: a0:8b:e5:64:97:ad:1a:ef:72:fa:ba:9f:52:c8:82:9c:79:ba: 0f:ea:f0:83:cb:47:25:bf:5a:a2:ab:48:40:8e:78:54:d2:8b: f5:eb:3d:3b:3b:6a:3d:3d:78:63:2a:c2:a7:4f:83:6d:a5:a5: df:ed:49:b9:8e:1e:e0:54:70:7c:d4:35:f1:a5:e1:43:12:14: a7:b3:b0:b7:a0:ef:ad:41:f5:3b:98:aa:6e:cf:2a:37:44:d3: cc:39:6f:cb:76:91:fb:cb:e9:bc:5c:9a:2c:58:d2:5a:99:eb: c7:65:b1:eb:b1:b1:96:ba:0c:a8:c0:94:af:f8:5f:29:d0:00: 77:79:77:57:2e:e1:fb:5b:c5:2a:9f:4a:56:29:f6:2b:3c:d6: 19:18:27:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJ4IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkzMTExMTAvBgNVBAUTKDdCNzc1NEE4MkREMDYzQTQ3RThFQzM1RDE2M0VGNkIy NDQ4RDEyREIwHhcNMjUwNTEwMTUzNTE4WhcNMjUwNTE3MTUzNTE4WjAYMRYwFAYD VQQDEw02ODFmNzIzNi04ODQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6tqUDRFYUtEcZ2YiDu+b37K1zRTjQOowOuIWECnkFjXM+WSpqWx5n+o8pRfE AhaNNfhkMyuTWl+UtMBNeriBsgMMqWb/Sa7xhNzraS7M1h0W9WX8Sw/SHl1rimoT T8zNd4fqYZYhKWazrsJ+nkmFUMI0b7RVxBHIglvcGR+++9mm6yAXU4y20E3Bj9z9 0Zq4GJu6hamUbtGTPJXUneHklfeUzQu7fB5D4WETk09wCcKkjqPc9R+7lQZZ8Y8q RMXufN844vU1sNpMSPBY2T3qv3R6SWFplHVtMojqRDUKtiI6kmsJuaAP4YRIKV3q JnTtbAvGPwkE/p4oHnGH3xTFvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCjAqj/W 5ioVBun/uuExj+v25aItMB8GA1UdIwQYMBaAFHt3VKgt0GOkfo7DXRY+9rJEjRLb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTMxMS8xM0FGRjZGNkIy NEQxMUU0QjY3RjE4NUZDNEY5QUUwMi9lM2RVcUMzUVk2Ui1qc05kRmo3MnNrU05F dHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2UzZFVxQzNRWTZSLWpzTmRGajcyc2tTTkV0cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTMxMS8xM0FGRjZGNkIyNEQxMUU0QjY3RjE4NUZDNEY5QUUwMi9lM2RVcUMzUVk2 Ui1qc05kRmo3MnNrU05FdHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsciJTTl6DyUP/r16J56ftrBamDrS1C5BK1uo2U0Gw8+ecssyhrmOk QVhenUPIN/e9UQ9+gdP/eJshCobWMi2rSsFKERSHTKnAkiPCTYZP4jXxe+foLF0I p+Vem67h+MRRRlNbqhGHyrcNQz6gi+Vkl60a73L6up9SyIKceboP6vCDy0clv1qi q0hAjnhU0ov16z07O2o9PXhjKsKnT4NtpaXf7Um5jh7gVHB81DXxpeFDEhSns7C3 oO+tQfU7mKpuzyo3RNPMOW/LdpH7y+m8XJosWNJamevHZbHrsbGWugyowJSv+F8p 0AB3eXdXLuH7W8Uqn0pWKfYrPNYZGCe3 -----END CERTIFICATE-----Generated at Mon May 12 07:06:28 2025 by rpki-client