$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB72F/2FB49B3E43D111EF8BE8D87BC4F9AE02/EkR4XUDF7FjfxKMoVA8bOT3qI3U.mft File: EkR4XUDF7FjfxKMoVA8bOT3qI3U.mft (raw, json) Hash identifier: zjrdPZvu2m1YcFgvIphQBo5bEWPgm6ZybKaCVJRJmsY= Subject key identifier: 03:56:14:10:C4:0F:6D:F7:31:15:84:48:35:9A:32:56:7C:8E:4D:18 Authority key identifier: 12:44:78:5D:40:C5:EC:58:DF:C4:A3:28:54:0F:1B:39:3D:EA:23:75 Certificate issuer: /CN=A91AB72F/serialNumber=1244785D40C5EC58DFC4A328540F1B393DEA2375 Certificate serial: 96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EkR4XUDF7FjfxKMoVA8bOT3qI3U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB72F/2FB49B3E43D111EF8BE8D87BC4F9AE02/EkR4XUDF7FjfxKMoVA8bOT3qI3U.mft Manifest number: 95 Signing time: Fri 25 Apr 2025 05:23:54 +0000 Manifest this update: Fri 25 Apr 2025 05:23:53 +0000 Manifest next update: Fri 02 May 2025 05:23:53 +0000 Files and hashes: 1: EkR4XUDF7FjfxKMoVA8bOT3qI3U.crl (hash: PQ2fRj/JVi4aKKjJ7qtmIJSymqgTseB1R8tO3T0QTss=) 2: 79F48DAAED0711EFA7332931C4F9AE02.roa (hash: GLbMFy1JbyAVM7u4jQAEv8xQTj/rbFbdkkf2ZQWfsOQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB72F/2FB49B3E43D111EF8BE8D87BC4F9AE02/EkR4XUDF7FjfxKMoVA8bOT3qI3U.crl rsync://rpki.apnic.net/member_repository/A91AB72F/2FB49B3E43D111EF8BE8D87BC4F9AE02/EkR4XUDF7FjfxKMoVA8bOT3qI3U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EkR4XUDF7FjfxKMoVA8bOT3qI3U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:23:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 150 (0x96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB72F, serialNumber=1244785D40C5EC58DFC4A328540F1B393DEA2375 Validity Not Before: Apr 25 05:23:53 2025 GMT Not After : May 2 05:23:53 2025 GMT Subject: CN=680b1c6a-d639 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:24:d5:1b:6f:c1:98:f4:d0:04:18:68:15:50: 06:ff:0a:4a:0f:ba:80:bf:3e:7d:cf:b9:7b:d5:69: 36:89:2e:b5:35:de:72:fe:fe:af:e5:1f:ef:90:8b: c6:b3:de:ad:91:49:36:96:db:28:ab:e3:af:1f:e9: 05:7f:9d:62:2a:49:8e:a0:e5:ca:85:9f:cb:04:f5: 96:52:5c:7c:e0:da:5f:ac:13:58:16:a0:6b:c1:33: bb:57:22:a4:43:29:54:cf:f4:f4:df:d9:a6:ef:1d: c1:93:de:18:78:38:39:aa:0e:ee:3f:09:db:10:08: e7:c3:c3:53:f7:8e:78:c0:03:30:c5:fb:13:2d:36: ac:07:2c:af:be:24:ec:d2:22:6b:4b:75:53:2e:6f: 55:cc:7a:47:df:6b:32:a4:19:ad:cd:23:ed:2d:bc: 79:5b:30:bf:ab:d8:6e:cc:e6:fd:93:4e:68:8d:48: f7:43:2c:50:a8:ae:5c:29:04:52:74:f4:fe:47:4d: fb:67:78:07:eb:1d:d6:a8:ac:e6:d4:d4:a6:a5:9c: a3:5e:d2:a5:98:50:da:7a:33:54:f9:b6:62:8e:6b: 72:a4:d3:d7:c4:98:04:a0:0a:17:88:10:a0:24:39: a6:79:4f:21:b3:d3:23:0c:2c:95:65:40:e8:87:16: 4a:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:56:14:10:C4:0F:6D:F7:31:15:84:48:35:9A:32:56:7C:8E:4D:18 X509v3 Authority Key Identifier: keyid:12:44:78:5D:40:C5:EC:58:DF:C4:A3:28:54:0F:1B:39:3D:EA:23:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB72F/2FB49B3E43D111EF8BE8D87BC4F9AE02/EkR4XUDF7FjfxKMoVA8bOT3qI3U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EkR4XUDF7FjfxKMoVA8bOT3qI3U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB72F/2FB49B3E43D111EF8BE8D87BC4F9AE02/EkR4XUDF7FjfxKMoVA8bOT3qI3U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:fc:0f:9c:f1:c7:c8:67:ed:ba:0e:18:2e:8e:ca:e9:af:09: 31:b2:be:e4:02:c5:fa:5d:c6:89:dd:86:29:00:2e:df:98:bf: 17:e0:e6:1c:ca:4d:27:d4:85:97:1b:85:75:dc:5b:86:f5:45: 75:d9:be:e3:7a:89:54:1d:3b:c5:6b:07:32:bf:b0:2d:38:b8: 3e:a8:2d:65:0b:10:a3:1f:9c:7c:5a:f2:79:3d:64:96:02:e7: 84:49:13:8d:de:ee:65:2d:69:dd:d6:47:9f:77:b9:e8:cd:7b: 94:af:53:f7:e0:d2:59:0f:a3:37:63:03:97:94:e8:dc:66:4c: 0e:0a:9f:d6:77:4f:10:c9:70:9e:76:e7:cb:dd:f1:54:d4:56: fc:0b:74:28:34:65:73:50:96:53:05:05:ab:bd:02:80:15:32: f5:ca:f5:83:d1:d9:ed:c5:e5:55:b5:9c:28:9c:ec:0b:5e:eb: e4:38:3b:11:84:a4:0c:92:4a:b2:38:02:29:44:a3:0b:6e:ea: 06:f6:bc:65:e0:87:ea:16:8b:0b:a0:9b:34:f4:6d:f1:49:0b: 47:00:82:3c:b8:85:d3:d7:b9:14:5f:75:11:3b:cc:50:78:1a: 97:57:83:cf:8c:58:12:a3:82:cb:99:63:3e:1e:9b:52:19:0c: 59:be:f7:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI3MkYxMTAvBgNVBAUTKDEyNDQ3ODVENDBDNUVDNThERkM0QTMyODU0MEYxQjM5 M0RFQTIzNzUwHhcNMjUwNDI1MDUyMzUzWhcNMjUwNTAyMDUyMzUzWjAYMRYwFAYD VQQDEw02ODBiMWM2YS1kNjM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwyTVG2/BmPTQBBhoFVAG/wpKD7qAvz59z7l71Wk2iS61Nd5y/v6v5R/vkIvG s96tkUk2ltsoq+OvH+kFf51iKkmOoOXKhZ/LBPWWUlx84NpfrBNYFqBrwTO7VyKk QylUz/T039mm7x3Bk94YeDg5qg7uPwnbEAjnw8NT9454wAMwxfsTLTasByyvviTs 0iJrS3VTLm9VzHpH32sypBmtzSPtLbx5WzC/q9huzOb9k05ojUj3QyxQqK5cKQRS dPT+R037Z3gH6x3WqKzm1NSmpZyjXtKlmFDaejNU+bZijmtypNPXxJgEoAoXiBCg JDmmeU8hs9MjDCyVZUDohxZKrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFANWFBDE D233MRWESDWaMlZ8jk0YMB8GA1UdIwQYMBaAFBJEeF1AxexY38SjKFQPGzk96iN1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjcyRi8yRkI0OUIzRTQz RDExMUVGOEJFOEQ4N0JDNEY5QUUwMi9Fa1I0WFVERjdGamZ4S01vVkE4Yk9UM3FJ M1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VrUjRYVURGN0ZqZnhLTW9WQThiT1QzcUkzVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjcyRi8yRkI0OUIzRTQzRDExMUVGOEJFOEQ4N0JDNEY5QUUwMi9Fa1I0WFVERjdG amZ4S01vVkE4Yk9UM3FJM1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBx/A+c8cfIZ+26Dhgujsrprwkxsr7kAsX6XcaJ3YYpAC7fmL8X4OYc yk0n1IWXG4V13FuG9UV12b7jeolUHTvFawcyv7AtOLg+qC1lCxCjH5x8WvJ5PWSW AueESRON3u5lLWnd1kefd7nozXuUr1P34NJZD6M3YwOXlOjcZkwOCp/Wd08QyXCe dufL3fFU1Fb8C3QoNGVzUJZTBQWrvQKAFTL1yvWD0dntxeVVtZwonOwLXuvkODsR hKQMkkqyOAIpRKMLbuoG9rxl4IfqFosLoJs09G3xSQtHAII8uIXT17kUX3URO8xQ eBqXV4PPjFgSo4LLmWM+HptSGQxZvvec -----END CERTIFICATE-----Generated at Sat Apr 26 04:18:21 2025 by rpki-client