$ rpki-client -vvf rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft File: eHDyQLxFFuOanCWVjPl7GUvnZWc.mft (raw, json) Hash identifier: x3YAE4orvH+l1fAat1Gd2xhFrGkEH0KLNgWn41asur8= Subject key identifier: D0:82:CE:C7:C1:D1:E1:83:D5:49:2D:5E:ED:00:CD:D2:B2:A8:E3:A5 Authority key identifier: 78:70:F2:40:BC:45:16:E3:9A:9C:25:95:8C:F9:7B:19:4B:E7:65:67 Certificate issuer: /CN=A91A09BF/serialNumber=7870F240BC4516E39A9C25958CF97B194BE76567 Certificate serial: 0B91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHDyQLxFFuOanCWVjPl7GUvnZWc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft Manifest number: 0B75 Signing time: Thu 24 Apr 2025 18:59:36 +0000 Manifest this update: Thu 24 Apr 2025 18:59:36 +0000 Manifest next update: Thu 01 May 2025 18:59:36 +0000 Files and hashes: 1: eHDyQLxFFuOanCWVjPl7GUvnZWc.crl (hash: DECzNtJWkNuPjs0/cwWTluUpntXW/Nkxpj1728ThTEA=) 2: 7510C8E4A58111EFB180AE4CC4F9AE02.roa (hash: EYUdErvrNyXXGWy2iexeF4zrxrreLq1Yski9zt4iFNY=) 3: EC4AB04AAA5511EABCEBDE19C4F9AE02.roa (hash: xCXQqgm7s0yqcl5rlXb69u+J291yS3/BUfkPMKe4WIs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.crl rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHDyQLxFFuOanCWVjPl7GUvnZWc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:59:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2961 (0xb91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A09BF, serialNumber=7870F240BC4516E39A9C25958CF97B194BE76567 Validity Not Before: Apr 24 18:59:36 2025 GMT Not After : May 1 18:59:36 2025 GMT Subject: CN=680a8a18-9dd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:fa:ab:7a:30:ef:d1:53:ae:6d:11:96:cf:02: 41:91:cf:2d:42:d6:cf:8d:ed:16:56:a3:fe:7f:d2: 4c:9c:e2:66:3f:1b:b9:af:c3:72:65:39:43:97:d2: ff:bd:66:63:ee:38:4c:3f:92:bf:92:a8:8c:bc:4c: b6:00:e1:cc:b6:81:b4:c7:21:05:1d:a5:af:20:af: 73:ee:f7:23:84:23:66:58:c4:6a:d7:b9:08:5a:8d: 33:bf:8b:58:22:5e:43:df:98:10:c3:b2:0a:66:1f: bf:30:f3:8b:f0:13:a9:49:2f:da:88:c0:c8:f4:d0: 6f:30:ca:14:f8:5a:1a:02:3b:da:e7:7b:30:17:77: db:f7:f5:9b:94:bd:74:a8:1f:c4:e3:29:b0:f1:bf: 48:71:ab:88:69:58:4d:4a:c6:25:71:9c:0d:39:12: d0:9d:5e:68:80:27:e1:fd:7f:ee:e7:32:ef:96:0f: 2b:c4:31:d2:b4:bf:67:84:c7:0a:3c:50:5b:68:74: 42:d3:29:66:e6:f1:5f:48:7c:75:50:e4:00:82:c1: 2f:e0:a8:d9:38:f1:b5:1e:8e:73:d7:bd:d3:f6:37: f4:11:78:97:bf:c8:42:f8:2d:25:e7:69:95:74:b6: f0:77:3b:2d:7e:91:ea:3d:af:c2:40:db:8f:b2:67: f8:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:82:CE:C7:C1:D1:E1:83:D5:49:2D:5E:ED:00:CD:D2:B2:A8:E3:A5 X509v3 Authority Key Identifier: keyid:78:70:F2:40:BC:45:16:E3:9A:9C:25:95:8C:F9:7B:19:4B:E7:65:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHDyQLxFFuOanCWVjPl7GUvnZWc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:b6:c6:e5:fc:74:85:82:37:70:3e:c4:05:1d:40:9c:f4:38: 0c:7c:f3:eb:e7:ee:25:6f:19:28:5d:a9:f5:cb:d7:65:e8:f6: 46:79:f7:93:f3:ca:8c:78:f5:2e:0e:f8:5a:8d:47:21:fe:15: e7:01:16:d5:0c:1f:fb:37:19:92:c8:50:f6:b0:11:73:d1:cd: 63:e2:d9:80:91:ad:02:1b:7e:29:1b:0d:39:3c:0c:93:be:d8: 56:14:9b:07:ca:ef:06:f1:b4:c3:41:4b:3b:6c:e4:f4:dc:5c: f9:ef:cc:03:a6:b4:36:8f:30:5e:8c:dc:17:47:f8:05:bf:4a: 77:dd:7d:d6:f6:3d:d2:b1:41:f4:8a:fd:be:36:a6:0a:b5:2e: 1b:01:0c:8d:87:7f:7e:10:f5:c4:de:a9:cc:9f:83:14:4d:dd: bb:c6:e1:f9:57:6e:e3:09:32:e6:ee:72:c3:70:32:5b:2f:2e: 27:fd:af:f3:94:b0:a6:04:a6:18:5a:a5:f2:0a:9d:a2:bb:bf: fb:da:16:6f:c6:2c:8e:28:ca:36:23:2b:f0:3d:43:d5:8c:55: 03:43:a0:6d:5d:36:86:25:91:f9:5c:34:04:f0:73:44:b2:2e: 39:84:bc:9d:71:0b:71:db:32:bf:ee:dc:ee:45:0e:f2:7d:09: 9a:ad:cc:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC5EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA5QkYxMTAvBgNVBAUTKDc4NzBGMjQwQkM0NTE2RTM5QTlDMjU5NThDRjk3QjE5 NEJFNzY1NjcwHhcNMjUwNDI0MTg1OTM2WhcNMjUwNTAxMTg1OTM2WjAYMRYwFAYD VQQDEw02ODBhOGExOC05ZGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsvqrejDv0VOubRGWzwJBkc8tQtbPje0WVqP+f9JMnOJmPxu5r8NyZTlDl9L/ vWZj7jhMP5K/kqiMvEy2AOHMtoG0xyEFHaWvIK9z7vcjhCNmWMRq17kIWo0zv4tY Il5D35gQw7IKZh+/MPOL8BOpSS/aiMDI9NBvMMoU+FoaAjva53swF3fb9/WblL10 qB/E4ymw8b9IcauIaVhNSsYlcZwNORLQnV5ogCfh/X/u5zLvlg8rxDHStL9nhMcK PFBbaHRC0ylm5vFfSHx1UOQAgsEv4KjZOPG1Ho5z173T9jf0EXiXv8hC+C0l52mV dLbwdzstfpHqPa/CQNuPsmf4VQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNCCzsfB 0eGD1UktXu0AzdKyqOOlMB8GA1UdIwQYMBaAFHhw8kC8RRbjmpwllYz5exlL52Vn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDlCRi9EMTNEQTFENDJE RkMxMUVBQkMxQjZCODJDNEY5QUUwMi9lSER5UUx4RkZ1T2FuQ1dWalBsN0dVdm5a V2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VIRHlRTHhGRnVPYW5DV1ZqUGw3R1V2blpXYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDlCRi9EMTNEQTFENDJERkMxMUVBQkMxQjZCODJDNEY5QUUwMi9lSER5UUx4RkZ1 T2FuQ1dWalBsN0dVdm5aV2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMtsbl/HSFgjdwPsQFHUCc9DgMfPPr5+4lbxkoXan1y9dl6PZGefeT 88qMePUuDvhajUch/hXnARbVDB/7NxmSyFD2sBFz0c1j4tmAka0CG34pGw05PAyT vthWFJsHyu8G8bTDQUs7bOT03Fz578wDprQ2jzBejNwXR/gFv0p33X3W9j3SsUH0 iv2+NqYKtS4bAQyNh39+EPXE3qnMn4MUTd27xuH5V27jCTLm7nLDcDJbLy4n/a/z lLCmBKYYWqXyCp2iu7/72hZvxiyOKMo2IyvwPUPVjFUDQ6BtXTaGJZH5XDQE8HNE si45hLydcQtx2zK/7tzuRQ7yfQmarcyu -----END CERTIFICATE-----Generated at Sat Apr 26 12:24:28 2025 by rpki-client