$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB72F/2FB49B3E43D111EF8BE8D87BC4F9AE02/EkR4XUDF7FjfxKMoVA8bOT3qI3U.mft File: EkR4XUDF7FjfxKMoVA8bOT3qI3U.mft (raw, json) Hash identifier: yKKxoDEGiVZ3kufb8c5hlgwtii6STnCaxPXMJRsooPE= Subject key identifier: 6C:57:0C:C7:78:AE:FE:FC:0C:82:F6:E4:3C:9E:A0:58:26:FB:91:D4 Authority key identifier: 12:44:78:5D:40:C5:EC:58:DF:C4:A3:28:54:0F:1B:39:3D:EA:23:75 Certificate issuer: /CN=A91AB72F/serialNumber=1244785D40C5EC58DFC4A328540F1B393DEA2375 Certificate serial: AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EkR4XUDF7FjfxKMoVA8bOT3qI3U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB72F/2FB49B3E43D111EF8BE8D87BC4F9AE02/EkR4XUDF7FjfxKMoVA8bOT3qI3U.mft Manifest number: AD Signing time: Fri 13 Jun 2025 05:02:00 +0000 Manifest this update: Fri 13 Jun 2025 05:02:00 +0000 Manifest next update: Fri 20 Jun 2025 05:02:00 +0000 Files and hashes: 1: EkR4XUDF7FjfxKMoVA8bOT3qI3U.crl (hash: ACHwO98izgMXtJbuIa2zxj5tZ/nz3d7BTYQZW60+VnA=) 2: 79F48DAAED0711EFA7332931C4F9AE02.roa (hash: GLbMFy1JbyAVM7u4jQAEv8xQTj/rbFbdkkf2ZQWfsOQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB72F/2FB49B3E43D111EF8BE8D87BC4F9AE02/EkR4XUDF7FjfxKMoVA8bOT3qI3U.crl rsync://rpki.apnic.net/member_repository/A91AB72F/2FB49B3E43D111EF8BE8D87BC4F9AE02/EkR4XUDF7FjfxKMoVA8bOT3qI3U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EkR4XUDF7FjfxKMoVA8bOT3qI3U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 05:01:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 174 (0xae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB72F, serialNumber=1244785D40C5EC58DFC4A328540F1B393DEA2375 Validity Not Before: Jun 13 05:02:00 2025 GMT Not After : Jun 20 05:02:00 2025 GMT Subject: CN=684bb0c8-a7ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:bc:01:29:8a:92:68:b3:5b:c0:cc:20:91:5a: 31:6d:d8:f4:d2:37:66:d3:7d:e1:ad:e8:72:b1:5a: c4:da:62:0a:a7:1a:5c:bd:a9:db:70:6c:c3:e3:3c: da:21:db:41:f9:d7:f1:67:f0:1d:7c:2d:58:ef:7f: 2c:a4:7f:13:1a:9a:47:bf:09:ba:84:a7:ba:ad:19: aa:c5:ea:25:43:ab:08:99:ca:f1:5f:db:64:f8:64: 93:35:46:f9:89:61:0c:df:fb:32:5c:77:20:88:1b: 10:ee:99:1b:e7:2a:3b:de:16:e9:93:ca:d1:18:fd: ff:7f:97:99:33:6c:0e:2a:aa:14:39:4f:bd:6b:b2: 1d:2a:79:8a:3c:b6:e3:0d:90:c7:27:25:b7:b5:fb: ee:a2:38:60:e8:21:03:1f:98:5b:f8:88:8b:8a:e3: 50:cd:f7:b5:c1:d7:bd:f5:a5:5a:d5:a1:66:98:3a: d8:cd:8b:5e:5a:c0:f1:9e:c5:67:5c:3f:60:fb:d3: ca:b7:f8:13:2c:9a:76:0d:6e:dc:bc:aa:be:b2:23: 5a:bd:b3:19:68:9e:8b:c1:b3:72:78:94:c1:af:79: 9b:01:1a:c4:84:be:38:cb:a3:7f:a0:34:f3:22:d8: 88:63:1a:cf:5c:69:08:36:2f:5e:41:b6:7f:b0:8f: 25:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:57:0C:C7:78:AE:FE:FC:0C:82:F6:E4:3C:9E:A0:58:26:FB:91:D4 X509v3 Authority Key Identifier: keyid:12:44:78:5D:40:C5:EC:58:DF:C4:A3:28:54:0F:1B:39:3D:EA:23:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB72F/2FB49B3E43D111EF8BE8D87BC4F9AE02/EkR4XUDF7FjfxKMoVA8bOT3qI3U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EkR4XUDF7FjfxKMoVA8bOT3qI3U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB72F/2FB49B3E43D111EF8BE8D87BC4F9AE02/EkR4XUDF7FjfxKMoVA8bOT3qI3U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:32:3f:50:a0:e8:f9:8c:02:b8:ab:11:26:48:19:cf:c7:19: a1:c3:50:32:67:85:93:bc:e0:11:62:bb:a0:94:f1:41:a5:a7: 25:f9:86:d5:7f:9c:15:61:35:c1:d8:60:47:44:fd:b5:7e:e3: e8:d7:fb:32:a3:d0:aa:69:dc:6e:0e:74:77:ee:56:3a:16:de: 06:90:57:0c:bf:64:04:bf:20:ff:41:7b:f7:a7:19:79:a9:88: 59:86:0a:23:d1:97:e0:e6:07:35:12:54:9e:e2:8f:7f:39:1d: f8:a3:36:2b:f2:a7:62:c5:47:8e:e2:68:86:52:1b:1f:74:7a: da:92:ae:9e:94:38:8e:1e:d4:5a:2c:fa:69:f5:b4:49:2d:d2: fc:b4:b6:e1:b4:7f:b1:56:72:17:39:ea:68:7c:0a:bd:72:1d: f1:57:f6:d1:6e:b5:c6:f1:39:99:92:30:c3:32:80:fb:e4:36: fb:4f:8c:0a:a3:02:d8:b7:0b:3e:a9:66:73:1c:ce:11:a5:3d: d1:0c:6a:f4:c6:11:4e:9f:28:10:2b:eb:3e:77:eb:03:cf:6d: c0:21:e3:80:e3:fb:11:1d:8d:5a:be:99:5b:3b:18:91:a2:c8: 15:a6:9d:c2:da:bb:61:4a:d4:77:13:d9:44:94:19:2d:e2:1d: e5:5c:f7:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI3MkYxMTAvBgNVBAUTKDEyNDQ3ODVENDBDNUVDNThERkM0QTMyODU0MEYxQjM5 M0RFQTIzNzUwHhcNMjUwNjEzMDUwMjAwWhcNMjUwNjIwMDUwMjAwWjAYMRYwFAYD VQQDEw02ODRiYjBjOC1hN2FiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1bwBKYqSaLNbwMwgkVoxbdj00jdm033hrehysVrE2mIKpxpcvanbcGzD4zza IdtB+dfxZ/AdfC1Y738spH8TGppHvwm6hKe6rRmqxeolQ6sImcrxX9tk+GSTNUb5 iWEM3/syXHcgiBsQ7pkb5yo73hbpk8rRGP3/f5eZM2wOKqoUOU+9a7IdKnmKPLbj DZDHJyW3tfvuojhg6CEDH5hb+IiLiuNQzfe1wde99aVa1aFmmDrYzYteWsDxnsVn XD9g+9PKt/gTLJp2DW7cvKq+siNavbMZaJ6LwbNyeJTBr3mbARrEhL44y6N/oDTz ItiIYxrPXGkINi9eQbZ/sI8lHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGxXDMd4 rv78DIL25DyeoFgm+5HUMB8GA1UdIwQYMBaAFBJEeF1AxexY38SjKFQPGzk96iN1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjcyRi8yRkI0OUIzRTQz RDExMUVGOEJFOEQ4N0JDNEY5QUUwMi9Fa1I0WFVERjdGamZ4S01vVkE4Yk9UM3FJ M1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VrUjRYVURGN0ZqZnhLTW9WQThiT1QzcUkzVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjcyRi8yRkI0OUIzRTQzRDExMUVGOEJFOEQ4N0JDNEY5QUUwMi9Fa1I0WFVERjdG amZ4S01vVkE4Yk9UM3FJM1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSMj9QoOj5jAK4qxEmSBnPxxmhw1AyZ4WTvOARYruglPFBpacl+YbV f5wVYTXB2GBHRP21fuPo1/syo9CqadxuDnR37lY6Ft4GkFcMv2QEvyD/QXv3pxl5 qYhZhgoj0Zfg5gc1ElSe4o9/OR34ozYr8qdixUeO4miGUhsfdHrakq6elDiOHtRa LPpp9bRJLdL8tLbhtH+xVnIXOepofAq9ch3xV/bRbrXG8TmZkjDDMoD75Db7T4wK owLYtws+qWZzHM4RpT3RDGr0xhFOnygQK+s+d+sDz23AIeOA4/sRHY1avplbOxiR osgVpp3C2rthStR3E9lElBkt4h3lXPct -----END CERTIFICATE-----Generated at Sat Jun 14 18:41:17 2025 by rpki-client