$ rpki-client -vvf rpki.apnic.net/member_repository/A9174A5B/11E96B34701211EB8BEE0A1FC4F9AE02/tN_eECSMkMVYSwFupua0nnge2CA.mft File: tN_eECSMkMVYSwFupua0nnge2CA.mft (raw, json) Hash identifier: 24HSRVOBdNO57FgcVXVXgcYSZn8NEk68WdZ/3iev10Y= Subject key identifier: D8:04:3E:0C:5D:FA:71:6F:0B:68:CC:39:44:49:95:9B:49:09:70:27 Authority key identifier: B4:DF:DE:10:24:8C:90:C5:58:4B:01:6E:A6:E6:B4:9E:78:1E:D8:20 Certificate issuer: /CN=A9174A5B/serialNumber=B4DFDE10248C90C5584B016EA6E6B49E781ED820 Certificate serial: 069C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tN_eECSMkMVYSwFupua0nnge2CA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174A5B/11E96B34701211EB8BEE0A1FC4F9AE02/tN_eECSMkMVYSwFupua0nnge2CA.mft Manifest number: 0696 Signing time: Thu 12 Jun 2025 21:52:16 +0000 Manifest this update: Thu 12 Jun 2025 21:52:16 +0000 Manifest next update: Thu 19 Jun 2025 21:52:16 +0000 Files and hashes: 1: tN_eECSMkMVYSwFupua0nnge2CA.crl (hash: kAzdIZV4zBT6hoGbMGj26GBodxxNVOTykX4mueNYJkY=) 2: 9E9FA4C40AB011EC8906F464C4F9AE02.roa (hash: y+B4buIfbruqaejaK6x75+RSn7pa5KBjABUZlRGt/q8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174A5B/11E96B34701211EB8BEE0A1FC4F9AE02/tN_eECSMkMVYSwFupua0nnge2CA.crl rsync://rpki.apnic.net/member_repository/A9174A5B/11E96B34701211EB8BEE0A1FC4F9AE02/tN_eECSMkMVYSwFupua0nnge2CA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tN_eECSMkMVYSwFupua0nnge2CA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 21:52:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1692 (0x69c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174A5B, serialNumber=B4DFDE10248C90C5584B016EA6E6B49E781ED820 Validity Not Before: Jun 12 21:52:16 2025 GMT Not After : Jun 19 21:52:16 2025 GMT Subject: CN=684b4c10-66d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:3a:96:13:63:60:57:a1:6a:47:d5:27:90:5d: 05:07:74:bc:63:ec:6d:17:bf:6a:d8:d3:0b:70:5c: 85:ea:2b:ee:e0:82:6f:b4:f6:4b:bd:d6:11:3d:38: 1e:af:c6:39:88:a6:73:bc:7f:5d:67:15:d2:81:f4: 6b:b1:94:36:3f:ea:1d:35:6d:f9:42:a1:69:a1:b5: 28:e8:cc:f6:70:1d:dc:71:c1:54:87:9a:7e:c5:dc: 7b:eb:4e:d8:8b:ce:27:65:59:c5:72:f7:3c:e3:e6: c5:f0:a8:28:55:4d:64:9e:f2:a7:3f:86:58:93:b7: 51:61:6e:52:1c:e9:5d:16:c6:ec:5d:69:13:8a:71: 6e:a1:1a:4e:8d:ba:ec:c4:af:b2:e5:87:39:e6:f8: 58:9f:cb:4e:80:83:57:d4:ee:11:95:0f:46:3c:86: fe:86:87:b8:cb:24:e6:00:1d:b9:fa:40:68:85:8d: fc:b3:39:54:e1:bc:c7:d4:62:c6:a1:f6:7e:d0:72: d4:d4:f9:a9:87:71:53:6c:34:ba:5a:4f:22:8f:01: 33:86:53:fb:0f:73:d9:27:fc:a9:d2:60:3b:01:4e: 44:9f:d1:c0:9e:3e:b0:8f:f5:cd:18:a1:45:52:26: 3b:cb:50:ae:c8:73:a4:e2:b6:bb:73:7e:12:e5:b6: 76:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:04:3E:0C:5D:FA:71:6F:0B:68:CC:39:44:49:95:9B:49:09:70:27 X509v3 Authority Key Identifier: keyid:B4:DF:DE:10:24:8C:90:C5:58:4B:01:6E:A6:E6:B4:9E:78:1E:D8:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174A5B/11E96B34701211EB8BEE0A1FC4F9AE02/tN_eECSMkMVYSwFupua0nnge2CA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tN_eECSMkMVYSwFupua0nnge2CA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174A5B/11E96B34701211EB8BEE0A1FC4F9AE02/tN_eECSMkMVYSwFupua0nnge2CA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:8c:6f:55:85:cf:fe:f3:69:c0:0c:d8:7a:e8:2b:a3:f3:08: 42:7e:38:c6:88:89:87:4c:52:ea:7a:a8:e3:05:90:0e:e8:81: b0:4c:ae:30:ea:15:0f:63:12:e3:b0:60:16:91:ab:1e:17:db: 8e:77:0e:b4:3d:bb:08:f5:6b:2b:38:70:95:b5:b1:9a:01:b9: d3:a4:66:e8:db:67:c6:89:e1:09:d5:53:a7:f8:54:78:38:6c: b9:dd:d5:99:b6:79:9a:07:9b:52:2a:e8:a9:16:a8:92:8c:14: 21:d6:a4:bb:ae:8c:6e:fe:dc:26:d2:54:95:a3:d8:f1:76:a2: 31:90:ad:7c:bb:0e:2e:74:07:7b:8e:4f:5c:fe:ce:56:24:22: a7:6b:04:18:22:ea:dc:d7:c3:f7:18:1f:3a:e7:d6:62:8a:c1: db:16:62:34:c7:d0:d3:5c:48:ef:e0:cc:46:6f:e9:fd:e7:2e: 0b:27:1d:9e:48:fd:f1:9e:d7:cb:73:11:8b:cf:b4:77:ec:bc: ac:58:f5:72:dd:04:8c:0b:0d:18:1a:f7:68:17:4e:55:89:c5: b5:aa:7c:32:2d:1b:3b:c9:d5:57:30:c2:05:25:4a:fc:f8:5b: 4c:05:b7:e3:5e:f0:35:57:37:35:2c:2a:96:46:56:28:4e:8b: 28:2c:ad:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRBNUIxMTAvBgNVBAUTKEI0REZERTEwMjQ4QzkwQzU1ODRCMDE2RUE2RTZCNDlF NzgxRUQ4MjAwHhcNMjUwNjEyMjE1MjE2WhcNMjUwNjE5MjE1MjE2WjAYMRYwFAYD VQQDEw02ODRiNGMxMC02NmQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9DqWE2NgV6FqR9UnkF0FB3S8Y+xtF79q2NMLcFyF6ivu4IJvtPZLvdYRPTge r8Y5iKZzvH9dZxXSgfRrsZQ2P+odNW35QqFpobUo6Mz2cB3cccFUh5p+xdx7607Y i84nZVnFcvc84+bF8KgoVU1knvKnP4ZYk7dRYW5SHOldFsbsXWkTinFuoRpOjbrs xK+y5Yc55vhYn8tOgINX1O4RlQ9GPIb+hoe4yyTmAB25+kBohY38szlU4bzH1GLG ofZ+0HLU1Pmph3FTbDS6Wk8ijwEzhlP7D3PZJ/yp0mA7AU5En9HAnj6wj/XNGKFF UiY7y1CuyHOk4ra7c34S5bZ2JwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNgEPgxd +nFvC2jMOURJlZtJCXAnMB8GA1UdIwQYMBaAFLTf3hAkjJDFWEsBbqbmtJ54Htgg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEE1Qi8xMUU5NkIzNDcw MTIxMUVCOEJFRTBBMUZDNEY5QUUwMi90Tl9lRUNTTWtNVllTd0Z1cHVhMG5uZ2Uy Q0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ROX2VFQ1NNa01WWVN3RnVwdWEwbm5nZTJDQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NEE1Qi8xMUU5NkIzNDcwMTIxMUVCOEJFRTBBMUZDNEY5QUUwMi90Tl9lRUNTTWtN VllTd0Z1cHVhMG5uZ2UyQ0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwjG9Vhc/+82nADNh66Cuj8whCfjjGiImHTFLqeqjjBZAO6IGwTK4w 6hUPYxLjsGAWkaseF9uOdw60PbsI9WsrOHCVtbGaAbnTpGbo22fGieEJ1VOn+FR4 OGy53dWZtnmaB5tSKuipFqiSjBQh1qS7roxu/twm0lSVo9jxdqIxkK18uw4udAd7 jk9c/s5WJCKnawQYIurc18P3GB8659ZiisHbFmI0x9DTXEjv4MxGb+n95y4LJx2e SP3xntfLcxGLz7R37LysWPVy3QSMCw0YGvdoF05VicW1qnwyLRs7ydVXMMIFJUr8 +FtMBbfjXvA1Vzc1LCqWRlYoTosoLK25 -----END CERTIFICATE-----Generated at Sat Jun 14 19:29:27 2025 by rpki-client