$ rpki-client -vvf rpki.apnic.net/member_repository/A91BDD82/197F9D9291E211E99768890EC4F9AE02/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.mft File: 9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.mft (raw, json) Hash identifier: 5EKk5gy46NBnzTIZu0cok8YAIfatqnErqgTdGqQEsrI= Subject key identifier: 0E:35:49:09:46:B1:C7:4C:03:A1:12:5A:B7:2C:BE:CB:F5:E9:D2:92 Authority key identifier: F4:40:18:18:1E:E5:C6:24:0E:13:94:39:5A:5C:CC:4D:2F:62:31:A4 Certificate issuer: /CN=A91BDD82/serialNumber=F44018181EE5C6240E1394395A5CCC4D2F6231A4 Certificate serial: 014C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BDD82/197F9D9291E211E99768890EC4F9AE02/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.mft Manifest number: 0FE3 Signing time: Sat 14 Jun 2025 17:37:01 +0000 Manifest this update: Sat 14 Jun 2025 17:37:00 +0000 Manifest next update: Sat 21 Jun 2025 17:37:00 +0000 Files and hashes: 1: 9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.crl (hash: JaFcDsMUXlAk2evqOKRvb6aIAxkTy9gQboAcb/wYLx0=) 2: 324967826D8D11EE9883B985C4F9AE02.roa (hash: fxHGOyOyuB7YI5nNfKWHUK5b4ic8LKYtMZ7wxSPfXXw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BDD82/197F9D9291E211E99768890EC4F9AE02/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.crl rsync://rpki.apnic.net/member_repository/A91BDD82/197F9D9291E211E99768890EC4F9AE02/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:13:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 332 (0x14c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDD82, serialNumber=F44018181EE5C6240E1394395A5CCC4D2F6231A4 Validity Not Before: Jun 14 17:37:00 2025 GMT Not After : Jun 21 17:37:00 2025 GMT Subject: CN=684db33c-eedf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:c6:a6:ca:de:e4:24:13:c8:39:bd:9e:13:49: 29:2d:4f:7b:5b:7e:f9:b5:00:1c:62:09:b4:28:ac: 2b:01:6c:ff:d5:a2:bc:0e:30:7f:aa:ec:4b:f2:95: a0:56:0d:48:9c:55:dd:ab:ea:3a:6c:16:36:49:7b: 41:f5:f0:f4:ee:25:43:86:ed:82:3d:7d:df:39:df: e8:9c:68:3f:c9:81:86:21:eb:13:f9:02:38:5d:7c: 4e:45:36:00:e7:14:a1:ed:22:c7:38:d6:be:35:8f: 2d:ab:4a:f8:97:e9:2b:e9:e8:e9:cd:e8:98:78:2b: f3:99:d9:e8:b4:c6:d5:ad:22:8b:70:b9:12:0d:d2: 9b:95:82:2c:84:8c:ab:d9:c6:b0:0e:84:d5:02:07: e3:87:35:e1:f6:3b:ff:6a:38:95:e5:87:5b:39:24: d4:93:96:cb:36:a3:5c:24:f7:8b:51:67:59:9c:2b: 49:3c:1d:58:2a:4b:57:c2:32:9f:a7:4e:f2:17:a2: f2:6d:95:44:7d:b8:54:15:4e:c1:cf:82:45:89:5a: 20:08:ce:ed:dd:52:36:68:ca:2d:a8:7a:72:9f:cc: d7:dd:72:18:37:87:5e:e4:77:cb:65:df:55:92:25: 7a:ac:df:41:94:ca:21:60:fd:65:74:6c:d9:14:4e: 19:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:35:49:09:46:B1:C7:4C:03:A1:12:5A:B7:2C:BE:CB:F5:E9:D2:92 X509v3 Authority Key Identifier: keyid:F4:40:18:18:1E:E5:C6:24:0E:13:94:39:5A:5C:CC:4D:2F:62:31:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BDD82/197F9D9291E211E99768890EC4F9AE02/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BDD82/197F9D9291E211E99768890EC4F9AE02/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:93:72:51:6a:a2:13:a5:76:a3:c1:ee:d5:61:35:4e:64:70: ed:52:99:8f:a0:ea:c0:11:24:c8:b4:a9:de:b4:4b:9a:0e:9c: 64:36:05:e2:0c:91:9b:e9:18:b2:2d:41:30:1a:9f:ac:88:54: 00:33:bb:51:a2:c0:1b:91:33:64:af:ad:99:5c:09:c4:b9:47: 18:0d:3d:2a:2a:77:7f:ec:72:d8:5f:98:5d:d3:d6:3f:31:9f: 3b:4e:0f:1f:92:cd:06:14:3d:2a:be:73:0b:39:80:78:fc:33: 45:17:be:ef:55:f0:d8:77:fa:49:20:88:25:e1:a6:65:9e:15: 1b:a7:c2:5e:67:b2:77:db:df:55:e2:af:62:8f:ea:49:3f:b4: d8:25:44:2b:5f:d4:6c:77:6a:69:da:1e:26:a6:c8:3b:7d:27: b8:89:96:6d:e7:dc:6f:a2:4e:04:06:da:fc:e9:4e:cc:6a:cb: e7:73:d4:75:28:1f:6e:17:66:60:4c:ff:89:f7:11:bb:9c:41: 7b:7f:90:d2:23:b4:04:e1:32:8f:ac:0f:e3:78:63:9d:b3:42: ec:34:c6:33:7a:0a:9b:c6:d0:ae:e4:a2:bc:30:d4:21:05:14: d0:71:75:e1:84:8e:eb:41:9c:4d:61:05:d7:c1:03:26:68:90: f5:fd:55:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkREODIxMTAvBgNVBAUTKEY0NDAxODE4MUVFNUM2MjQwRTEzOTQzOTVBNUNDQzRE MkY2MjMxQTQwHhcNMjUwNjE0MTczNzAwWhcNMjUwNjIxMTczNzAwWjAYMRYwFAYD VQQDEw02ODRkYjMzYy1lZWRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqMamyt7kJBPIOb2eE0kpLU97W375tQAcYgm0KKwrAWz/1aK8DjB/quxL8pWg Vg1InFXdq+o6bBY2SXtB9fD07iVDhu2CPX3fOd/onGg/yYGGIesT+QI4XXxORTYA 5xSh7SLHONa+NY8tq0r4l+kr6ejpzeiYeCvzmdnotMbVrSKLcLkSDdKblYIshIyr 2cawDoTVAgfjhzXh9jv/ajiV5YdbOSTUk5bLNqNcJPeLUWdZnCtJPB1YKktXwjKf p07yF6LybZVEfbhUFU7Bz4JFiVogCM7t3VI2aMotqHpyn8zX3XIYN4de5HfLZd9V kiV6rN9BlMohYP1ldGzZFE4ZFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA41SQlG scdMA6ESWrcsvsv16dKSMB8GA1UdIwQYMBaAFPRAGBge5cYkDhOUOVpczE0vYjGk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCREQ4Mi8xOTdGOUQ5Mjkx RTIxMUU5OTc2ODg5MEVDNEY5QUUwMi85RUFZR0I3bHhpUU9FNVE1V2x6TVRTOWlN YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlFQVlHQjdseGlRT0U1UTVXbHpNVFM5aU1hUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC REQ4Mi8xOTdGOUQ5MjkxRTIxMUU5OTc2ODg5MEVDNEY5QUUwMi85RUFZR0I3bHhp UU9FNVE1V2x6TVRTOWlNYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABk3JRaqITpXajwe7VYTVOZHDtUpmPoOrAESTItKnetEuaDpxkNgXi DJGb6RiyLUEwGp+siFQAM7tRosAbkTNkr62ZXAnEuUcYDT0qKnd/7HLYX5hd09Y/ MZ87Tg8fks0GFD0qvnMLOYB4/DNFF77vVfDYd/pJIIgl4aZlnhUbp8JeZ7J3299V 4q9ij+pJP7TYJUQrX9Rsd2pp2h4mpsg7fSe4iZZt59xvok4EBtr86U7Masvnc9R1 KB9uF2ZgTP+J9xG7nEF7f5DSI7QE4TKPrA/jeGOds0LsNMYzegqbxtCu5KK8MNQh BRTQcXXhhI7rQZxNYQXXwQMmaJD1/VWo -----END CERTIFICATE-----Generated at Sat Jun 14 19:30:09 2025 by rpki-client