$ rpki-client -vvf rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft File: ehMEShEYWGwP2hOLs-vdSEiRTjc.mft (raw, json) Hash identifier: bEX4c6yfbp2SxOSk7NqkSJe7/RbLEtHTcwPv7IK9Sew= Subject key identifier: E8:28:3F:5B:20:EA:28:46:C8:E5:94:70:78:33:1B:02:84:07:3B:2B Authority key identifier: 7A:13:04:4A:11:18:58:6C:0F:DA:13:8B:B3:EB:DD:48:48:91:4E:37 Certificate issuer: /CN=A9154EAF/serialNumber=7A13044A1118586C0FDA138BB3EBDD4848914E37 Certificate serial: 026D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ehMEShEYWGwP2hOLs-vdSEiRTjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft Manifest number: 0269 Signing time: Tue 17 Jun 2025 01:19:31 +0000 Manifest this update: Tue 17 Jun 2025 01:19:31 +0000 Manifest next update: Tue 24 Jun 2025 01:19:31 +0000 Files and hashes: 1: ehMEShEYWGwP2hOLs-vdSEiRTjc.crl (hash: WbtxNY+V+DtTRcFC4w3DL7B9h7TX7TgPd2Ti8ZqgBoY=) 2: 62A0C17A16C511ED91E80F56C4F9AE02.roa (hash: JJX6OI5aam7BC0uvlTdjVV9SQAAwhFakRzY5oiIX9Uk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.crl rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ehMEShEYWGwP2hOLs-vdSEiRTjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 01:19:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 621 (0x26d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154EAF, serialNumber=7A13044A1118586C0FDA138BB3EBDD4848914E37 Validity Not Before: Jun 17 01:19:31 2025 GMT Not After : Jun 24 01:19:31 2025 GMT Subject: CN=6850c2a3-a13a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:a5:e2:56:07:20:42:7d:a5:9e:6a:22:16:0e: dd:61:3d:97:e2:dd:96:2c:fa:1e:97:b2:1e:9c:91: 97:17:98:d7:da:07:85:58:cc:92:f5:f8:fe:09:c2: ba:44:0a:07:2c:87:10:74:65:fa:d5:72:9a:de:2e: d6:18:dc:2a:49:0e:b1:57:1d:0f:ce:e7:b9:3d:47: 4e:7e:c3:49:84:ae:96:31:6c:c1:79:ae:0e:34:65: 68:82:f1:ab:1e:71:4d:68:58:6c:67:1d:41:51:b3: ad:52:1d:fb:c0:e4:a0:22:e0:5a:e0:9f:37:41:94: f4:75:7f:8d:84:aa:32:ec:8e:0f:33:a4:19:49:4f: eb:5f:77:ba:20:b6:cb:dd:1d:4f:b9:66:68:41:41: 44:b2:79:45:25:8a:4a:42:5c:ef:9a:33:a3:48:60: a8:5d:d0:44:b6:79:02:58:2a:38:04:c4:a8:55:4e: 4a:b2:69:18:3a:7d:84:e4:d5:e9:88:64:8f:3a:87: 7a:25:92:fb:93:c4:cb:0f:72:ab:ce:ce:32:5e:b7: 17:af:38:2d:ee:0a:af:c9:91:c0:bf:73:c0:09:96: 74:8c:22:0d:0e:62:41:da:48:12:87:4d:eb:28:d7: fc:c8:12:ef:41:69:62:3f:2b:4d:fe:67:4e:f4:41: 0b:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:28:3F:5B:20:EA:28:46:C8:E5:94:70:78:33:1B:02:84:07:3B:2B X509v3 Authority Key Identifier: keyid:7A:13:04:4A:11:18:58:6C:0F:DA:13:8B:B3:EB:DD:48:48:91:4E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ehMEShEYWGwP2hOLs-vdSEiRTjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:87:1e:c6:aa:8a:9f:ae:58:75:58:96:70:f6:fc:dc:0b:db: a7:86:86:c6:d7:75:8d:8e:29:bd:e6:91:f0:e5:43:fd:5b:06: 3e:14:ab:3b:94:49:db:0a:31:22:8a:74:e7:94:72:18:c4:75: 02:4d:91:cb:95:26:7a:99:c9:98:aa:c0:22:ea:74:81:74:6d: ef:f7:be:df:62:c8:26:ee:3a:e4:49:dc:c4:d8:7d:4d:d7:95: e7:0a:d1:e0:a4:24:d7:3b:23:e2:0b:ad:c5:73:78:79:13:d5: a5:78:78:c9:ca:af:43:0e:3b:81:aa:be:ba:78:1e:c6:8f:ec: 05:46:05:f6:de:5e:3a:57:9e:9b:c4:cb:4f:ee:84:f3:7f:73: 1b:c1:77:29:3d:bf:b6:11:19:d4:0e:76:03:01:08:6a:e8:57: 1c:c4:9e:23:ef:b5:e2:8d:63:7f:22:71:77:93:b7:56:5d:97: 3c:c7:2b:c4:26:7c:b1:8d:95:b8:e1:66:0b:ec:a8:f7:66:39: 4a:c5:d1:38:1b:3b:b5:ca:ed:04:25:6b:56:46:a2:fb:3c:3b: 68:1b:1d:b8:0a:14:4e:89:df:f7:76:2d:a9:08:0b:db:2c:34: dd:61:ea:46:49:de:23:3c:1f:a9:75:03:47:27:ea:cd:ac:09: 58:cb:4d:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAm0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRFQUYxMTAvBgNVBAUTKDdBMTMwNDRBMTExODU4NkMwRkRBMTM4QkIzRUJERDQ4 NDg5MTRFMzcwHhcNMjUwNjE3MDExOTMxWhcNMjUwNjI0MDExOTMxWjAYMRYwFAYD VQQDEw02ODUwYzJhMy1hMTNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3aXiVgcgQn2lnmoiFg7dYT2X4t2WLPoel7IenJGXF5jX2geFWMyS9fj+CcK6 RAoHLIcQdGX61XKa3i7WGNwqSQ6xVx0Pzue5PUdOfsNJhK6WMWzBea4ONGVogvGr HnFNaFhsZx1BUbOtUh37wOSgIuBa4J83QZT0dX+NhKoy7I4PM6QZSU/rX3e6ILbL 3R1PuWZoQUFEsnlFJYpKQlzvmjOjSGCoXdBEtnkCWCo4BMSoVU5KsmkYOn2E5NXp iGSPOod6JZL7k8TLD3Krzs4yXrcXrzgt7gqvyZHAv3PACZZ0jCINDmJB2kgSh03r KNf8yBLvQWliPytN/mdO9EELtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOgoP1sg 6ihGyOWUcHgzGwKEBzsrMB8GA1UdIwQYMBaAFHoTBEoRGFhsD9oTi7Pr3UhIkU43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEVBRi80N0Q1QTdFMDE2 QzMxMUVEQUU3RUI5NTVDNEY5QUUwMi9laE1FU2hFWVdHd1AyaE9Mcy12ZFNFaVJU amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VoTUVTaEVZV0d3UDJoT0xzLXZkU0VpUlRqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEVBRi80N0Q1QTdFMDE2QzMxMUVEQUU3RUI5NTVDNEY5QUUwMi9laE1FU2hFWVdH d1AyaE9Mcy12ZFNFaVJUamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBthx7Gqoqfrlh1WJZw9vzcC9unhobG13WNjim95pHw5UP9WwY+FKs7 lEnbCjEiinTnlHIYxHUCTZHLlSZ6mcmYqsAi6nSBdG3v977fYsgm7jrkSdzE2H1N 15XnCtHgpCTXOyPiC63Fc3h5E9WleHjJyq9DDjuBqr66eB7Gj+wFRgX23l46V56b xMtP7oTzf3MbwXcpPb+2ERnUDnYDAQhq6FccxJ4j77XijWN/InF3k7dWXZc8xyvE JnyxjZW44WYL7Kj3ZjlKxdE4Gzu1yu0EJWtWRqL7PDtoGx24ChROid/3di2pCAvb LDTdYepGSd4jPB+pdQNHJ+rNrAlYy02I -----END CERTIFICATE-----Generated at Wed Jun 18 23:04:13 2025 by rpki-client