$ rpki-client -vvf rpki.apnic.net/member_repository/A91833FF/14EFE7E4E07D11E8A5F0FB35C4F9AE02/EjJ9_J6Ig827bG7us5JfLIwPfl4.mft File: EjJ9_J6Ig827bG7us5JfLIwPfl4.mft (raw, json) Hash identifier: w5aebeaYsr+1EPZhs1W5IBHt6Jorapy0atRup30qbHQ= Subject key identifier: 57:D5:86:A5:D1:C2:48:3D:3A:FD:B9:14:AA:8A:3F:AB:52:51:0D:65 Authority key identifier: 12:32:7D:FC:9E:88:83:CD:BB:6C:6E:EE:B3:92:5F:2C:8C:0F:7E:5E Certificate issuer: /CN=A91833FF/serialNumber=12327DFC9E8883CDBB6C6EEEB3925F2C8C0F7E5E Certificate serial: 1228 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EjJ9_J6Ig827bG7us5JfLIwPfl4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91833FF/14EFE7E4E07D11E8A5F0FB35C4F9AE02/EjJ9_J6Ig827bG7us5JfLIwPfl4.mft Manifest number: 121C Signing time: Sat 14 Jun 2025 17:05:14 +0000 Manifest this update: Sat 14 Jun 2025 17:05:13 +0000 Manifest next update: Sat 21 Jun 2025 17:05:13 +0000 Files and hashes: 1: EjJ9_J6Ig827bG7us5JfLIwPfl4.crl (hash: PbLAzJ85AkTcsgYV37XjkN6fyeUKkxuYT3tU0vnbSiw=) 2: 659F6E188F2211E98AC7590DC4F9AE02.roa (hash: NX0Uu06g9kaFwSmmKkUW0sgMJpCNI4RFhei0HlK1wt8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91833FF/14EFE7E4E07D11E8A5F0FB35C4F9AE02/EjJ9_J6Ig827bG7us5JfLIwPfl4.crl rsync://rpki.apnic.net/member_repository/A91833FF/14EFE7E4E07D11E8A5F0FB35C4F9AE02/EjJ9_J6Ig827bG7us5JfLIwPfl4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EjJ9_J6Ig827bG7us5JfLIwPfl4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:05:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4648 (0x1228) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91833FF, serialNumber=12327DFC9E8883CDBB6C6EEEB3925F2C8C0F7E5E Validity Not Before: Jun 14 17:05:13 2025 GMT Not After : Jun 21 17:05:13 2025 GMT Subject: CN=684dabc9-4698 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:c3:93:f3:a6:26:ed:51:e3:36:2b:c2:15:b3: c3:3a:4c:80:40:49:ee:df:15:96:c6:f3:6c:33:1e: 38:f2:21:c2:a9:91:91:37:af:77:a7:9e:60:1b:21: 8f:31:19:4e:f6:50:a5:1b:30:39:71:9e:a9:d5:a8: 77:ab:b3:f2:9f:cf:61:cf:8e:f7:f0:80:32:48:33: 99:b5:b8:2e:85:82:21:5b:31:cd:85:13:23:23:58: d6:44:a2:58:07:cb:c7:5b:a2:15:e9:59:f0:d5:cd: d0:55:ad:39:f8:f3:4d:a9:d5:b8:50:51:e7:f6:53: b5:69:e8:ae:e5:a1:72:73:71:67:73:da:59:1d:48: cd:b4:46:1e:26:ec:da:05:0d:37:fe:b3:19:ca:5a: a2:a5:45:92:0c:dc:3e:0c:f6:c1:82:9c:f6:ff:31: e0:1e:91:23:e1:f8:a2:50:75:62:b3:bc:49:7a:a3: a1:4d:d8:8b:90:e5:c1:0e:4e:90:6e:f4:59:7b:d6: fa:f4:59:67:1c:80:1d:61:0d:17:db:8f:04:a6:39: 2e:f2:60:66:f8:f1:60:3c:f1:69:c0:18:53:60:a5: 7a:ab:a4:b8:ef:d9:85:41:e7:87:f1:24:be:2a:0a: 98:f1:ed:08:c5:4c:4f:d1:73:44:9c:25:60:01:5d: 5b:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:D5:86:A5:D1:C2:48:3D:3A:FD:B9:14:AA:8A:3F:AB:52:51:0D:65 X509v3 Authority Key Identifier: keyid:12:32:7D:FC:9E:88:83:CD:BB:6C:6E:EE:B3:92:5F:2C:8C:0F:7E:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91833FF/14EFE7E4E07D11E8A5F0FB35C4F9AE02/EjJ9_J6Ig827bG7us5JfLIwPfl4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EjJ9_J6Ig827bG7us5JfLIwPfl4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91833FF/14EFE7E4E07D11E8A5F0FB35C4F9AE02/EjJ9_J6Ig827bG7us5JfLIwPfl4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:a8:43:b3:0e:b0:0e:2b:f9:63:58:7e:93:92:0d:3c:5d:06: 63:86:0e:24:c1:a1:f3:ef:e7:da:ca:60:28:8e:47:cc:cd:f7: 0e:49:25:d5:db:e4:4e:8a:95:b8:ea:b8:52:9c:19:4d:63:3d: 8e:fe:b9:c0:03:bc:ff:94:91:95:cc:7f:cd:e2:d4:40:a6:40: f4:9f:f6:82:c2:d3:9b:e0:01:ab:24:3c:18:f4:90:6b:f2:c4: 54:a0:5c:73:c5:ab:43:78:13:b6:47:2b:ef:c2:1b:ae:56:97: 5c:07:ec:8f:fc:cc:15:e3:fd:3b:43:da:3b:2a:46:b0:2d:1e: 49:c6:0f:0c:f7:73:ed:d9:6a:5f:c1:e8:18:9b:f7:d3:62:43: 38:cc:91:68:85:49:65:32:bf:31:2b:e2:f3:b0:03:ac:6b:d7: cd:73:b3:ae:35:3e:a3:fe:23:64:45:df:75:22:dc:0d:0b:45: 01:fb:34:e4:15:b8:4a:47:a9:1b:37:5e:1d:e9:e8:17:4e:5b: 8f:96:d1:c6:d3:c1:1b:95:01:b4:78:90:13:8b:f3:5c:66:b5: d7:8f:f2:6b:f2:6f:06:b9:83:94:49:e5:a2:de:04:f5:f1:ca: ef:cc:7f:ee:d5:e5:b3:ad:68:81:be:65:d9:6d:20:1e:17:b8: 7f:79:b6:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEigwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODMzRkYxMTAvBgNVBAUTKDEyMzI3REZDOUU4ODgzQ0RCQjZDNkVFRUIzOTI1RjJD OEMwRjdFNUUwHhcNMjUwNjE0MTcwNTEzWhcNMjUwNjIxMTcwNTEzWjAYMRYwFAYD VQQDEw02ODRkYWJjOS00Njk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxMOT86Ym7VHjNivCFbPDOkyAQEnu3xWWxvNsMx448iHCqZGRN693p55gGyGP MRlO9lClGzA5cZ6p1ah3q7Pyn89hz4738IAySDOZtbguhYIhWzHNhRMjI1jWRKJY B8vHW6IV6Vnw1c3QVa05+PNNqdW4UFHn9lO1aeiu5aFyc3Fnc9pZHUjNtEYeJuza BQ03/rMZylqipUWSDNw+DPbBgpz2/zHgHpEj4fiiUHVis7xJeqOhTdiLkOXBDk6Q bvRZe9b69FlnHIAdYQ0X248Epjku8mBm+PFgPPFpwBhTYKV6q6S479mFQeeH8SS+ KgqY8e0IxUxP0XNEnCVgAV1bTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFfVhqXR wkg9Ov25FKqKP6tSUQ1lMB8GA1UdIwQYMBaAFBIyffyeiIPNu2xu7rOSXyyMD35e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MzNGRi8xNEVGRTdFNEUw N0QxMUU4QTVGMEZCMzVDNEY5QUUwMi9Fako5X0o2SWc4MjdiRzd1czVKZkxJd1Bm bDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VqSjlfSjZJZzgyN2JHN3VzNUpmTEl3UGZsNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MzNGRi8xNEVGRTdFNEUwN0QxMUU4QTVGMEZCMzVDNEY5QUUwMi9Fako5X0o2SWc4 MjdiRzd1czVKZkxJd1BmbDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvqEOzDrAOK/ljWH6Tkg08XQZjhg4kwaHz7+faymAojkfMzfcOSSXV 2+ROipW46rhSnBlNYz2O/rnAA7z/lJGVzH/N4tRApkD0n/aCwtOb4AGrJDwY9JBr 8sRUoFxzxatDeBO2RyvvwhuuVpdcB+yP/MwV4/07Q9o7KkawLR5Jxg8M93Pt2Wpf wegYm/fTYkM4zJFohUllMr8xK+LzsAOsa9fNc7OuNT6j/iNkRd91ItwNC0UB+zTk FbhKR6kbN14d6egXTluPltHG08EblQG0eJATi/NcZrXXj/Jr8m8GuYOUSeWi3gT1 8crvzH/u1eWzrWiBvmXZbSAeF7h/ebYW -----END CERTIFICATE-----Generated at Sat Jun 14 19:32:30 2025 by rpki-client