$ rpki-client -vvf rpki.apnic.net/member_repository/A9163BFD/858F9AAC72F511EE801CC83CC4F9AE02/EAiP7ctRWnPwDu3X7GDodfnfCvY.mft File: EAiP7ctRWnPwDu3X7GDodfnfCvY.mft (raw, json) Hash identifier: LX4kRkh4jZZK6ktHuHDjJIgNT4/APNPlDv2Zlp/valg= Subject key identifier: FF:BE:36:2A:D9:F9:17:BE:3D:BF:97:8A:10:B3:76:26:57:DD:48:84 Authority key identifier: 10:08:8F:ED:CB:51:5A:73:F0:0E:ED:D7:EC:60:E8:75:F9:DF:0A:F6 Certificate issuer: /CN=A9163BFD/serialNumber=10088FEDCB515A73F00EEDD7EC60E875F9DF0AF6 Certificate serial: 0135 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EAiP7ctRWnPwDu3X7GDodfnfCvY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163BFD/858F9AAC72F511EE801CC83CC4F9AE02/EAiP7ctRWnPwDu3X7GDodfnfCvY.mft Manifest number: 0133 Signing time: Tue 17 Jun 2025 03:32:45 +0000 Manifest this update: Tue 17 Jun 2025 03:32:44 +0000 Manifest next update: Tue 24 Jun 2025 03:32:44 +0000 Files and hashes: 1: EAiP7ctRWnPwDu3X7GDodfnfCvY.crl (hash: Okjr+EJVnUMwDHhTHUydUtedgH03b0E1jGb3KPx2Ngc=) 2: 29D7838672F611EEB309873EC4F9AE02.roa (hash: zu5oTBlWmiRJc0JKeXclVvx/PdtKlnfyN23W6szZl1s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163BFD/858F9AAC72F511EE801CC83CC4F9AE02/EAiP7ctRWnPwDu3X7GDodfnfCvY.crl rsync://rpki.apnic.net/member_repository/A9163BFD/858F9AAC72F511EE801CC83CC4F9AE02/EAiP7ctRWnPwDu3X7GDodfnfCvY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EAiP7ctRWnPwDu3X7GDodfnfCvY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 03:32:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 309 (0x135) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163BFD, serialNumber=10088FEDCB515A73F00EEDD7EC60E875F9DF0AF6 Validity Not Before: Jun 17 03:32:44 2025 GMT Not After : Jun 24 03:32:44 2025 GMT Subject: CN=6850e1dc-eb76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:a3:30:f9:e7:23:20:bf:63:d8:5b:d8:51:05: 06:e6:ff:34:45:da:13:76:1e:a2:51:b4:43:72:cf: 11:24:a9:5a:bf:25:1b:89:64:3a:54:57:88:47:2e: 7b:a8:92:81:bd:f5:5d:15:e0:9f:f2:5b:f7:8a:7e: 7c:f9:1a:13:0c:c0:15:a3:de:d3:45:01:7f:45:12: 9a:38:5f:bb:a0:a7:ab:56:e6:5b:64:b9:c9:5d:60: 25:6e:8c:a9:fd:a5:ed:3f:0e:1d:d7:e9:4c:89:18: e9:55:44:41:6f:a4:cf:cf:4e:26:f4:12:1a:ee:33: 34:65:0a:56:70:6e:97:28:7f:9d:69:e4:b8:6f:dd: a4:30:7e:54:bd:25:73:0e:47:50:59:fc:fb:c9:ae: c2:57:3b:c3:51:35:78:2c:a2:ee:42:e8:ef:dd:42: ba:34:23:18:9e:e7:02:1f:f3:71:09:a6:b0:4c:85: 2d:45:c7:bf:31:7b:9c:f9:ff:37:33:e1:1c:51:04: 33:cc:28:6a:83:d7:c1:7d:02:59:b3:ac:0c:b5:55: 5c:fa:72:8a:30:08:f3:e7:7f:02:fa:f5:88:b1:87: b3:39:19:db:a3:3e:b1:c6:89:e9:90:d6:48:8a:0c: 94:fc:1a:5e:c8:c1:d5:45:54:76:1f:47:d7:92:7b: 1d:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:BE:36:2A:D9:F9:17:BE:3D:BF:97:8A:10:B3:76:26:57:DD:48:84 X509v3 Authority Key Identifier: keyid:10:08:8F:ED:CB:51:5A:73:F0:0E:ED:D7:EC:60:E8:75:F9:DF:0A:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163BFD/858F9AAC72F511EE801CC83CC4F9AE02/EAiP7ctRWnPwDu3X7GDodfnfCvY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EAiP7ctRWnPwDu3X7GDodfnfCvY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163BFD/858F9AAC72F511EE801CC83CC4F9AE02/EAiP7ctRWnPwDu3X7GDodfnfCvY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:1a:1f:4b:0c:a1:6a:34:24:cb:96:79:fc:a3:4e:8e:bd:73: 7c:4c:7e:b0:30:71:c7:62:d2:05:e6:49:a8:59:1a:cf:a4:e8: 2d:0f:86:d5:bf:96:14:cd:2a:5a:99:3a:09:85:af:d7:70:c8: e3:f5:10:22:90:a3:16:05:e9:4e:1f:75:64:cb:c0:51:d6:43: 82:84:09:e3:30:8a:dc:d4:50:6c:49:87:e2:b2:67:aa:69:3a: 8b:d3:3a:56:67:11:ef:8d:33:1e:c2:4c:86:80:e7:e1:45:d7: ba:ee:cc:1c:fe:e2:ba:27:63:97:ef:e9:8d:76:d0:b3:46:5d: 84:03:45:6f:28:4f:b3:d7:06:b9:89:79:c8:4a:f2:13:1f:52: f4:bb:0f:1f:21:47:27:d4:5d:c6:47:cc:59:3d:0c:e0:ab:c6: 5e:47:cd:ee:92:fa:ad:23:8d:e9:33:c5:28:cd:76:6b:d6:62: c0:a8:a4:e0:71:40:5b:c2:16:0c:68:4b:b4:e8:81:df:5c:e8: b7:bb:e6:fc:14:1d:fc:b3:0f:35:51:31:eb:77:0b:1f:f7:75: a5:19:32:35:19:1f:7f:a4:a7:d1:99:3f:2f:38:87:d7:23:8a: a0:1b:0a:81:a8:60:97:1c:7e:1f:66:8b:9a:31:51:91:02:fc: 97:b4:7c:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjNCRkQxMTAvBgNVBAUTKDEwMDg4RkVEQ0I1MTVBNzNGMDBFRUREN0VDNjBFODc1 RjlERjBBRjYwHhcNMjUwNjE3MDMzMjQ0WhcNMjUwNjI0MDMzMjQ0WjAYMRYwFAYD VQQDEw02ODUwZTFkYy1lYjc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqaMw+ecjIL9j2FvYUQUG5v80RdoTdh6iUbRDcs8RJKlavyUbiWQ6VFeIRy57 qJKBvfVdFeCf8lv3in58+RoTDMAVo97TRQF/RRKaOF+7oKerVuZbZLnJXWAlboyp /aXtPw4d1+lMiRjpVURBb6TPz04m9BIa7jM0ZQpWcG6XKH+daeS4b92kMH5UvSVz DkdQWfz7ya7CVzvDUTV4LKLuQujv3UK6NCMYnucCH/NxCaawTIUtRce/MXuc+f83 M+EcUQQzzChqg9fBfQJZs6wMtVVc+nKKMAjz538C+vWIsYezORnboz6xxonpkNZI igyU/BpeyMHVRVR2H0fXknsdDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP++NirZ +Re+Pb+XihCzdiZX3UiEMB8GA1UdIwQYMBaAFBAIj+3LUVpz8A7t1+xg6HX53wr2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2M0JGRC84NThGOUFBQzcy RjUxMUVFODAxQ0M4M0NDNEY5QUUwMi9FQWlQN2N0UlduUHdEdTNYN0dEb2RmbmZD dlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VBaVA3Y3RSV25Qd0R1M1g3R0RvZGZuZkN2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 M0JGRC84NThGOUFBQzcyRjUxMUVFODAxQ0M4M0NDNEY5QUUwMi9FQWlQN2N0Uldu UHdEdTNYN0dEb2RmbmZDdlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiGh9LDKFqNCTLlnn8o06OvXN8TH6wMHHHYtIF5kmoWRrPpOgtD4bV v5YUzSpamToJha/XcMjj9RAikKMWBelOH3Vky8BR1kOChAnjMIrc1FBsSYfismeq aTqL0zpWZxHvjTMewkyGgOfhRde67swc/uK6J2OX7+mNdtCzRl2EA0VvKE+z1wa5 iXnISvITH1L0uw8fIUcn1F3GR8xZPQzgq8ZeR83ukvqtI43pM8UozXZr1mLAqKTg cUBbwhYMaEu06IHfXOi3u+b8FB38sw81UTHrdwsf93WlGTI1GR9/pKfRmT8vOIfX I4qgGwqBqGCXHH4fZouaMVGRAvyXtHxF -----END CERTIFICATE-----Generated at Wed Jun 18 16:26:10 2025 by rpki-client