$ rpki-client -vvf rpki.apnic.net/member_repository/A914DF56/BD7FA038152311ECB74F2080C4F9AE02/E5bqlAlF_CBf8uPRsr4bkNcsxek.mft File: E5bqlAlF_CBf8uPRsr4bkNcsxek.mft (raw, json) Hash identifier: 7f/eabsLzb3RRQvPOW2OQ4qXoergmHcqPuC8ZNJC/iY= Subject key identifier: 15:97:F3:B2:81:F9:85:B8:40:77:BB:7B:4C:D7:CE:85:5B:78:84:F0 Authority key identifier: 13:96:EA:94:09:45:FC:20:5F:F2:E3:D1:B2:BE:1B:90:D7:2C:C5:E9 Certificate issuer: /CN=A914DF56/serialNumber=1396EA940945FC205FF2E3D1B2BE1B90D72CC5E9 Certificate serial: 0509 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E5bqlAlF_CBf8uPRsr4bkNcsxek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DF56/BD7FA038152311ECB74F2080C4F9AE02/E5bqlAlF_CBf8uPRsr4bkNcsxek.mft Manifest number: 0501 Signing time: Thu 12 Jun 2025 23:17:29 +0000 Manifest this update: Thu 12 Jun 2025 23:17:28 +0000 Manifest next update: Thu 19 Jun 2025 23:17:28 +0000 Files and hashes: 1: E5bqlAlF_CBf8uPRsr4bkNcsxek.crl (hash: NB3vwi28pOWHLn0qjxLrHgzhv0GAwEEooo5v2TbvX0I=) 2: EB17A8C2152511ECAD055780C4F9AE02.roa (hash: 3Who1qUDm6eD8QDguJD4EaJb2KgGViSYhJ9baOpktjo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DF56/BD7FA038152311ECB74F2080C4F9AE02/E5bqlAlF_CBf8uPRsr4bkNcsxek.crl rsync://rpki.apnic.net/member_repository/A914DF56/BD7FA038152311ECB74F2080C4F9AE02/E5bqlAlF_CBf8uPRsr4bkNcsxek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E5bqlAlF_CBf8uPRsr4bkNcsxek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 23:17:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1289 (0x509) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DF56, serialNumber=1396EA940945FC205FF2E3D1B2BE1B90D72CC5E9 Validity Not Before: Jun 12 23:17:28 2025 GMT Not After : Jun 19 23:17:28 2025 GMT Subject: CN=684b6008-a3a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:c9:35:9c:81:ac:d1:b4:58:23:be:8b:00:db: 32:80:d0:8b:41:a7:d6:bf:41:16:ee:8a:da:6e:e2: aa:1e:04:8e:b7:e6:4a:99:f6:1a:c8:92:06:4e:1f: b1:d5:5e:49:81:c5:61:07:d7:57:f4:4c:89:63:0a: d1:88:e4:f1:de:39:fd:63:41:4a:50:e1:14:6c:d6: 50:4b:26:e3:f6:00:39:51:c7:a5:cf:92:1e:c3:6b: 9a:8f:f9:83:dd:9d:b6:39:d7:d4:4c:9a:51:a4:0f: 69:22:b1:fd:2e:1a:77:1b:d3:48:35:34:0a:d8:bb: 32:40:e0:8a:33:c1:68:3d:8b:b0:5a:94:7c:29:ff: 67:34:9e:67:2b:d6:e0:cd:0c:2a:bf:1e:96:92:c5: 00:0c:e8:1a:f5:f8:4a:80:a5:f9:4f:a1:9e:85:ca: 29:a6:e3:04:23:8f:a2:db:11:60:df:42:f7:f2:f1: 83:5c:2e:00:db:75:2e:4b:51:af:fb:b8:66:1c:6b: f1:14:29:5a:e4:26:a7:d2:20:bf:c6:32:7c:e5:a4: 5a:bf:8f:ea:0c:01:e1:a5:7e:48:df:81:e3:40:36: f1:90:ba:8f:01:6a:2a:56:23:4e:be:66:88:3d:35: 84:42:08:91:6e:44:a0:f4:09:aa:1e:3f:b7:79:04: db:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:97:F3:B2:81:F9:85:B8:40:77:BB:7B:4C:D7:CE:85:5B:78:84:F0 X509v3 Authority Key Identifier: keyid:13:96:EA:94:09:45:FC:20:5F:F2:E3:D1:B2:BE:1B:90:D7:2C:C5:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DF56/BD7FA038152311ECB74F2080C4F9AE02/E5bqlAlF_CBf8uPRsr4bkNcsxek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E5bqlAlF_CBf8uPRsr4bkNcsxek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DF56/BD7FA038152311ECB74F2080C4F9AE02/E5bqlAlF_CBf8uPRsr4bkNcsxek.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:67:99:47:6a:7b:5f:94:de:6d:ea:23:bd:d0:0e:7c:1b:99: 2e:91:83:d9:da:9d:be:2a:6c:35:96:9c:f2:f4:47:d2:a3:d7: 97:c8:c3:33:8f:ad:9b:8c:80:4b:54:f0:4d:e0:45:c9:ee:bf: cb:cb:40:32:4a:11:5e:8b:61:40:53:10:a2:f9:5b:41:ae:02: e7:88:53:33:1b:4d:90:4e:7a:f5:98:a3:2d:9f:cb:b8:51:3d: 96:6e:c1:37:80:7e:d7:2c:9d:3f:da:6f:f3:f8:70:5d:19:22: e7:a5:97:f1:55:4d:d2:af:74:57:97:d1:34:46:61:7d:7a:34: 09:2a:2e:9d:d5:a0:88:10:5e:50:a5:1f:e3:f3:43:0e:c7:ef: 6f:1a:a4:81:18:a9:15:ca:e7:e0:ba:6b:cf:01:a7:38:d3:b1: dd:f8:a9:61:d5:6c:79:63:4e:51:1a:5a:cf:3c:52:0a:8d:cf: 8c:8b:1f:dc:0d:c3:44:ee:a9:8c:56:f7:9c:a3:a2:63:a8:76: 5a:99:1c:66:b3:ea:5d:86:85:49:d5:08:63:d8:ce:f2:3d:72: 92:09:6e:ae:d4:b9:a9:e6:10:93:89:fe:04:79:ba:7e:3d:93: 44:10:7b:7f:46:c2:94:83:bf:62:f5:44:60:19:1a:71:e8:86: 51:90:ee:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERGNTYxMTAvBgNVBAUTKDEzOTZFQTk0MDk0NUZDMjA1RkYyRTNEMUIyQkUxQjkw RDcyQ0M1RTkwHhcNMjUwNjEyMjMxNzI4WhcNMjUwNjE5MjMxNzI4WjAYMRYwFAYD VQQDEw02ODRiNjAwOC1hM2E2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzck1nIGs0bRYI76LANsygNCLQafWv0EW7orabuKqHgSOt+ZKmfYayJIGTh+x 1V5JgcVhB9dX9EyJYwrRiOTx3jn9Y0FKUOEUbNZQSybj9gA5Ucelz5Iew2uaj/mD 3Z22OdfUTJpRpA9pIrH9Lhp3G9NINTQK2LsyQOCKM8FoPYuwWpR8Kf9nNJ5nK9bg zQwqvx6WksUADOga9fhKgKX5T6GehcoppuMEI4+i2xFg30L38vGDXC4A23UuS1Gv +7hmHGvxFCla5Can0iC/xjJ85aRav4/qDAHhpX5I34HjQDbxkLqPAWoqViNOvmaI PTWEQgiRbkSg9AmqHj+3eQTbAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBWX87KB +YW4QHe7e0zXzoVbeITwMB8GA1UdIwQYMBaAFBOW6pQJRfwgX/Lj0bK+G5DXLMXp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REY1Ni9CRDdGQTAzODE1 MjMxMUVDQjc0RjIwODBDNEY5QUUwMi9FNWJxbEFsRl9DQmY4dVBSc3I0YmtOY3N4 ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0U1YnFsQWxGX0NCZjh1UFJzcjRia05jc3hlay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 REY1Ni9CRDdGQTAzODE1MjMxMUVDQjc0RjIwODBDNEY5QUUwMi9FNWJxbEFsRl9D QmY4dVBSc3I0YmtOY3N4ZWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvZ5lHantflN5t6iO90A58G5kukYPZ2p2+Kmw1lpzy9EfSo9eXyMMz j62bjIBLVPBN4EXJ7r/Ly0AyShFei2FAUxCi+VtBrgLniFMzG02QTnr1mKMtn8u4 UT2WbsE3gH7XLJ0/2m/z+HBdGSLnpZfxVU3Sr3RXl9E0RmF9ejQJKi6d1aCIEF5Q pR/j80MOx+9vGqSBGKkVyufgumvPAac407Hd+Klh1Wx5Y05RGlrPPFIKjc+Mix/c DcNE7qmMVveco6JjqHZamRxms+pdhoVJ1Qhj2M7yPXKSCW6u1Lmp5hCTif4Eebp+ PZNEEHt/RsKUg79i9URgGRpx6IZRkO4R -----END CERTIFICATE-----Generated at Sat Jun 14 18:02:39 2025 by rpki-client