$ rpki-client -vvf rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft File: eHDyQLxFFuOanCWVjPl7GUvnZWc.mft (raw, json) Hash identifier: 8FVdZ15jrHy2sd5Vrpw8Vylv/u0GrcHIdQXzpGBxtuw= Subject key identifier: 13:95:4C:AC:A9:64:64:09:F3:4B:70:C7:0B:CE:51:3A:FF:4E:73:8E Authority key identifier: 78:70:F2:40:BC:45:16:E3:9A:9C:25:95:8C:F9:7B:19:4B:E7:65:67 Certificate issuer: /CN=A91A09BF/serialNumber=7870F240BC4516E39A9C25958CF97B194BE76567 Certificate serial: 0BAB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHDyQLxFFuOanCWVjPl7GUvnZWc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft Manifest number: 0B8F Signing time: Mon 16 Jun 2025 18:55:56 +0000 Manifest this update: Mon 16 Jun 2025 18:55:56 +0000 Manifest next update: Mon 23 Jun 2025 18:55:56 +0000 Files and hashes: 1: eHDyQLxFFuOanCWVjPl7GUvnZWc.crl (hash: dRINmH+LpYaCkdAHO8nbyatFSB0AeCicCV0HDFRmr08=) 2: 7510C8E4A58111EFB180AE4CC4F9AE02.roa (hash: EYUdErvrNyXXGWy2iexeF4zrxrreLq1Yski9zt4iFNY=) 3: EC4AB04AAA5511EABCEBDE19C4F9AE02.roa (hash: xCXQqgm7s0yqcl5rlXb69u+J291yS3/BUfkPMKe4WIs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.crl rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHDyQLxFFuOanCWVjPl7GUvnZWc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 18:55:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2987 (0xbab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A09BF, serialNumber=7870F240BC4516E39A9C25958CF97B194BE76567 Validity Not Before: Jun 16 18:55:56 2025 GMT Not After : Jun 23 18:55:56 2025 GMT Subject: CN=685068bc-b627 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:0b:f6:98:10:11:e3:62:d7:cb:64:a7:7e:11: 18:df:49:60:66:56:30:e6:a1:77:37:a3:92:3d:f5: 78:a4:7f:1b:be:3d:88:71:e4:fd:2d:d2:07:46:1e: bf:5f:ef:ae:76:8f:b9:fc:24:a5:83:89:e8:ec:9f: 1c:f5:65:d6:c7:2b:a2:af:34:1e:ac:ef:71:c7:85: 60:96:65:a0:d6:de:60:16:8e:ac:c5:09:fe:4d:d3: b0:52:75:31:0a:a0:3d:4e:1b:fb:77:19:c9:a5:c9: 62:5a:f4:53:7a:c9:a7:eb:09:4a:61:96:f5:21:64: 0e:72:1c:e2:3a:95:32:79:72:28:72:f5:30:04:3a: 2e:71:34:40:83:75:84:ea:75:ed:04:17:94:61:c1: 10:9f:c6:dc:bb:be:c9:fc:e5:f8:9e:c2:60:bf:98: 66:3d:4a:6e:b8:b3:0a:87:43:31:c6:26:4b:0e:4d: 07:3c:f5:53:a8:87:6c:e5:63:57:bd:28:ad:1f:05: 40:36:7e:ea:39:19:21:3c:0f:81:f2:cd:30:06:e8: 59:5b:eb:ce:38:30:78:1f:93:c7:6a:b6:65:05:e5: 35:44:8c:d2:31:49:ae:ae:96:e3:cc:f8:07:27:f6: d9:f2:c4:92:20:42:b5:18:dc:3a:9a:cc:9d:e3:30: cc:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:95:4C:AC:A9:64:64:09:F3:4B:70:C7:0B:CE:51:3A:FF:4E:73:8E X509v3 Authority Key Identifier: keyid:78:70:F2:40:BC:45:16:E3:9A:9C:25:95:8C:F9:7B:19:4B:E7:65:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHDyQLxFFuOanCWVjPl7GUvnZWc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:cc:18:10:dc:4c:8c:72:cc:3b:24:9e:a6:2d:41:82:42:75: e5:4f:ec:5c:e4:0a:d1:06:72:21:33:e2:af:6e:39:6a:b1:b5: 55:8c:a6:cd:70:35:3e:39:87:17:8c:da:cd:ed:a2:03:61:66: 14:f0:0a:9c:77:6b:18:78:f7:0f:0b:5c:15:74:0d:1b:18:2e: 97:f8:ec:a1:fe:43:c8:aa:ee:2c:1b:b6:2a:3a:eb:45:b0:33: a6:6e:aa:d6:1e:26:5c:13:18:42:16:83:c9:8e:bf:4d:82:e9: 38:38:af:8c:21:7f:7b:a8:9b:96:57:51:6d:65:d7:cc:52:9a: 48:de:cb:bc:5d:c9:d4:c5:09:2a:37:d4:d2:36:97:12:1f:81: c2:e5:ac:19:ab:d8:a6:95:ff:77:4e:2f:7d:41:96:8c:66:d0: 12:ee:14:b5:6f:f9:79:e7:6e:32:b1:aa:e5:88:85:57:e8:cf: d2:8f:d0:66:0c:7a:47:b9:55:55:d7:7a:84:1b:0d:72:37:c5: 60:cb:6a:72:9f:b5:a9:be:b6:83:bb:d8:95:5b:e1:28:c7:ae: 56:58:c9:db:55:37:0c:9e:4c:07:79:be:3c:39:49:e5:15:c6: 24:6f:e3:79:31:16:46:fe:e1:98:6c:d8:f4:7b:84:28:0b:8a: c0:f3:1f:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC6swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA5QkYxMTAvBgNVBAUTKDc4NzBGMjQwQkM0NTE2RTM5QTlDMjU5NThDRjk3QjE5 NEJFNzY1NjcwHhcNMjUwNjE2MTg1NTU2WhcNMjUwNjIzMTg1NTU2WjAYMRYwFAYD VQQDEw02ODUwNjhiYy1iNjI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxgv2mBAR42LXy2SnfhEY30lgZlYw5qF3N6OSPfV4pH8bvj2IceT9LdIHRh6/ X++udo+5/CSlg4no7J8c9WXWxyuirzQerO9xx4VglmWg1t5gFo6sxQn+TdOwUnUx CqA9Thv7dxnJpcliWvRTesmn6wlKYZb1IWQOchziOpUyeXIocvUwBDoucTRAg3WE 6nXtBBeUYcEQn8bcu77J/OX4nsJgv5hmPUpuuLMKh0MxxiZLDk0HPPVTqIds5WNX vSitHwVANn7qORkhPA+B8s0wBuhZW+vOODB4H5PHarZlBeU1RIzSMUmurpbjzPgH J/bZ8sSSIEK1GNw6msyd4zDMcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBOVTKyp ZGQJ80twxwvOUTr/TnOOMB8GA1UdIwQYMBaAFHhw8kC8RRbjmpwllYz5exlL52Vn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDlCRi9EMTNEQTFENDJE RkMxMUVBQkMxQjZCODJDNEY5QUUwMi9lSER5UUx4RkZ1T2FuQ1dWalBsN0dVdm5a V2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VIRHlRTHhGRnVPYW5DV1ZqUGw3R1V2blpXYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDlCRi9EMTNEQTFENDJERkMxMUVBQkMxQjZCODJDNEY5QUUwMi9lSER5UUx4RkZ1 T2FuQ1dWalBsN0dVdm5aV2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUzBgQ3EyMcsw7JJ6mLUGCQnXlT+xc5ArRBnIhM+KvbjlqsbVVjKbN cDU+OYcXjNrN7aIDYWYU8Aqcd2sYePcPC1wVdA0bGC6X+Oyh/kPIqu4sG7YqOutF sDOmbqrWHiZcExhCFoPJjr9Nguk4OK+MIX97qJuWV1FtZdfMUppI3su8XcnUxQkq N9TSNpcSH4HC5awZq9imlf93Ti99QZaMZtAS7hS1b/l5524ysarliIVX6M/Sj9Bm DHpHuVVV13qEGw1yN8Vgy2pyn7WpvraDu9iVW+Eox65WWMnbVTcMnkwHeb48OUnl FcYkb+N5MRZG/uGYbNj0e4QoC4rA8x9W -----END CERTIFICATE-----Generated at Wed Jun 18 01:22:01 2025 by rpki-client