$ rpki-client -vvf rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.mft File: EW-SD4cwZnR6jO3a_-hLz72wNRo.mft (raw, json) Hash identifier: o2t1INLQ3/ofwqKxvHYIkHV623ekN/w/grKHChFYMcs= Subject key identifier: 0C:9C:DE:1D:99:11:B8:AA:EE:90:58:AE:E2:78:44:C5:E0:EC:39:8C Authority key identifier: 11:6F:92:0F:87:30:66:74:7A:8C:ED:DA:FF:E8:4B:CF:BD:B0:35:1A Certificate issuer: /CN=A9120CDE/serialNumber=116F920F873066747A8CEDDAFFE84BCFBDB0351A Certificate serial: 119F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EW-SD4cwZnR6jO3a_-hLz72wNRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.mft Manifest number: 1193 Signing time: Sat 14 Jun 2025 17:08:59 +0000 Manifest this update: Sat 14 Jun 2025 17:08:59 +0000 Manifest next update: Sat 21 Jun 2025 17:08:59 +0000 Files and hashes: 1: EW-SD4cwZnR6jO3a_-hLz72wNRo.crl (hash: qR0xYdD26VjiR/n+zOnvhZ9cS45BHh9MKjx0iN8t4CU=) 2: D8D63660B9A811ECB7EE5A71C4F9AE02.roa (hash: DIX09IMqDwhYz9qe1Nv5iQBk3kT+S7TLOQSBMI/PtT0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.crl rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EW-SD4cwZnR6jO3a_-hLz72wNRo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:08:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4511 (0x119f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120CDE, serialNumber=116F920F873066747A8CEDDAFFE84BCFBDB0351A Validity Not Before: Jun 14 17:08:59 2025 GMT Not After : Jun 21 17:08:59 2025 GMT Subject: CN=684dacab-2a71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:70:b3:0e:b8:a6:c8:05:31:91:7c:f2:11:c2: ce:e5:f3:53:f8:da:43:66:3b:7c:09:4f:b5:17:9d: e6:a1:39:31:dc:67:bd:72:41:71:58:04:88:92:c4: 13:7f:08:07:54:1f:45:ea:41:c6:17:38:7c:21:3b: 9d:ad:5b:df:46:3f:4c:69:0a:bc:e9:09:76:44:73: 21:d8:b9:e5:b8:24:05:14:e8:c3:d6:1a:55:92:af: 6a:3e:6e:c6:80:4f:ef:dd:4d:63:d9:68:ed:6a:00: 66:ea:1c:ae:75:6b:c8:93:92:53:c1:32:03:10:d9: e0:94:4b:2b:c2:47:9e:62:25:2a:37:bb:12:db:f6: 32:6b:23:25:96:63:96:4a:82:a7:48:02:1f:7a:52: 57:9d:de:70:42:87:d7:35:67:f9:18:37:83:72:b1: 5c:2b:92:57:1f:32:98:38:d9:99:f1:c7:cb:f0:6c: 48:bf:6e:19:ad:5b:93:90:23:f7:06:bb:d6:d7:58: 8e:12:1e:a6:29:9f:ba:91:a6:55:0d:a7:6e:36:85: 1e:7b:87:19:17:37:18:ae:04:c7:44:49:bb:9e:37: 6c:33:85:a5:71:61:89:44:a6:0d:08:2a:8b:48:d4: d0:dc:e0:57:3f:9a:98:2a:de:9e:d3:50:8f:13:af: 09:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:9C:DE:1D:99:11:B8:AA:EE:90:58:AE:E2:78:44:C5:E0:EC:39:8C X509v3 Authority Key Identifier: keyid:11:6F:92:0F:87:30:66:74:7A:8C:ED:DA:FF:E8:4B:CF:BD:B0:35:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EW-SD4cwZnR6jO3a_-hLz72wNRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:22:fb:a4:19:0c:cb:6a:f7:00:19:cc:5f:6a:54:13:75:2e: 6a:65:7d:99:54:75:ff:04:97:f3:dc:23:9a:16:b0:43:5a:1c: 9e:83:5c:85:5c:67:29:21:f7:cc:4b:d5:b1:a4:80:ff:9e:33: 84:43:74:c7:8c:98:16:79:9a:25:46:d0:d2:d8:d0:e6:92:2b: 5b:fd:dc:b9:a6:9b:56:39:a1:49:b3:04:32:87:61:73:94:9b: ec:07:ae:08:2f:00:e1:2d:a5:b3:32:4f:c7:3d:e8:44:02:4d: 38:ed:ae:b5:7c:af:2b:9e:0a:a8:b2:f1:e9:42:ce:7f:5f:ee: 57:c8:c8:80:d5:cf:36:c7:64:05:f8:2f:5f:4b:46:59:4d:9e: 2a:66:ef:4f:9a:4e:36:45:18:cf:08:97:89:2f:e0:a8:b6:27: 99:53:43:9e:66:ba:8b:ee:b3:c1:76:82:e4:a1:90:4a:f0:94: b7:68:86:08:28:c6:ff:21:3e:53:e0:4a:ed:71:ea:36:ec:e3: c1:95:e9:aa:78:55:88:d1:30:58:91:2c:8d:c2:a4:e9:8e:55: e3:cb:fb:f2:8b:86:76:5f:39:13:e8:10:d1:9b:74:d4:71:d9: 4a:f7:51:5e:e7:5a:2d:b5:b9:40:5e:13:7e:c1:42:04:13:b0: c1:fa:5e:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEZ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBDREUxMTAvBgNVBAUTKDExNkY5MjBGODczMDY2NzQ3QThDRUREQUZGRTg0QkNG QkRCMDM1MUEwHhcNMjUwNjE0MTcwODU5WhcNMjUwNjIxMTcwODU5WjAYMRYwFAYD VQQDEw02ODRkYWNhYi0yYTcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzHCzDrimyAUxkXzyEcLO5fNT+NpDZjt8CU+1F53moTkx3Ge9ckFxWASIksQT fwgHVB9F6kHGFzh8ITudrVvfRj9MaQq86Ql2RHMh2LnluCQFFOjD1hpVkq9qPm7G gE/v3U1j2WjtagBm6hyudWvIk5JTwTIDENnglEsrwkeeYiUqN7sS2/YyayMllmOW SoKnSAIfelJXnd5wQofXNWf5GDeDcrFcK5JXHzKYONmZ8cfL8GxIv24ZrVuTkCP3 BrvW11iOEh6mKZ+6kaZVDaduNoUee4cZFzcYrgTHREm7njdsM4WlcWGJRKYNCCqL SNTQ3OBXP5qYKt6e01CPE68JZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAyc3h2Z Ebiq7pBYruJ4RMXg7DmMMB8GA1UdIwQYMBaAFBFvkg+HMGZ0eozt2v/oS8+9sDUa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMENERS8yM0Q4NTY2RUZC REIxMUU4OTIwQ0IwNDRDNEY5QUUwMi9FVy1TRDRjd1puUjZqTzNhXy1oTHo3MndO Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VXLVNENGN3Wm5SNmpPM2FfLWhMejcyd05Sby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MENERS8yM0Q4NTY2RUZCREIxMUU4OTIwQ0IwNDRDNEY5QUUwMi9FVy1TRDRjd1pu UjZqTzNhXy1oTHo3MndOUm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8IvukGQzLavcAGcxfalQTdS5qZX2ZVHX/BJfz3COaFrBDWhyeg1yF XGcpIffMS9WxpID/njOEQ3THjJgWeZolRtDS2NDmkitb/dy5pptWOaFJswQyh2Fz lJvsB64ILwDhLaWzMk/HPehEAk047a61fK8rngqosvHpQs5/X+5XyMiA1c82x2QF +C9fS0ZZTZ4qZu9Pmk42RRjPCJeJL+CotieZU0OeZrqL7rPBdoLkoZBK8JS3aIYI KMb/IT5T4Ertceo27OPBlemqeFWI0TBYkSyNwqTpjlXjy/vyi4Z2XzkT6BDRm3TU cdlK91Fe51ottblAXhN+wUIEE7DB+l7w -----END CERTIFICATE-----Generated at Sat Jun 14 19:22:03 2025 by rpki-client