$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.mft File: 8EZlk8K2zqnL8C4mqua_eQ9Sfqg.mft (raw, json) Hash identifier: gMw/TrAxuJzdcAUzqCLIn6UfWOqd8ChgXbsb30b1i8k= Subject key identifier: 25:23:FC:2C:87:32:44:84:F3:DF:9B:C9:57:CE:F6:6C:CC:55:57:C8 Authority key identifier: F0:46:65:93:C2:B6:CE:A9:CB:F0:2E:26:AA:E6:BF:79:0F:52:7E:A8 Certificate issuer: /CN=A91BF8D1/serialNumber=F0466593C2B6CEA9CBF02E26AAE6BF790F527EA8 Certificate serial: 0A5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.mft Manifest number: 0A56 Signing time: Thu 12 Jun 2025 19:29:30 +0000 Manifest this update: Thu 12 Jun 2025 19:29:29 +0000 Manifest next update: Thu 19 Jun 2025 19:29:29 +0000 Files and hashes: 1: 8EZlk8K2zqnL8C4mqua_eQ9Sfqg.crl (hash: DAcWAX4Yx0c6TK5T3uJcCGOcxtA79/lmlZffPnieZTo=) 2: 19250B84675711EAA928E22DC4F9AE02.roa (hash: bm4J9Gs8kg53MtutKeTvvvRSq0MtCTJcSE5YLit7Dts=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.crl rsync://rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 19:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2654 (0xa5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF8D1, serialNumber=F0466593C2B6CEA9CBF02E26AAE6BF790F527EA8 Validity Not Before: Jun 12 19:29:29 2025 GMT Not After : Jun 19 19:29:29 2025 GMT Subject: CN=684b2a9a-7884 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:66:0f:c7:0d:28:e7:3d:e3:ff:be:83:1f:a6: 53:5e:27:1d:ea:52:c4:89:9d:11:dc:e9:44:71:4b: d9:98:4b:51:52:b5:f1:f2:d9:44:31:98:64:e1:c0: 4b:e7:93:61:9d:6d:7d:1b:aa:bb:b0:6c:02:84:e1: 86:77:27:f9:28:3f:6e:ef:fa:d5:a6:88:0b:9f:07: 0a:33:7c:b6:c0:2b:d4:18:40:9e:01:a4:5e:e9:69: 38:04:bc:26:52:c5:55:9d:bd:84:f8:9f:c3:b5:3c: 2a:72:55:99:ec:fe:d2:66:d1:ec:ed:38:db:ca:55: 76:50:52:d4:c1:0e:93:3a:54:e2:15:2b:a7:63:99: 4c:85:c6:b7:5d:d7:7b:7e:5b:ae:eb:7a:f0:b3:ab: 69:38:9f:8e:93:4d:3d:98:4e:3f:84:19:aa:7d:a5: 71:46:a2:1e:ff:e5:63:87:6e:6f:d0:f5:ab:93:d3: 52:a7:24:f1:8c:72:79:47:7f:12:91:f5:a9:70:b5: d9:ff:a7:3b:6b:79:9b:90:ad:c3:3a:1e:64:cb:06: d2:54:71:87:99:55:cd:fb:b5:ab:f9:7f:52:d1:2e: 67:60:bb:a0:80:74:26:c2:22:18:e1:92:b3:61:e1: 75:c2:a1:cb:c2:4a:ee:a7:8b:06:8d:01:5c:2f:8f: 10:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:23:FC:2C:87:32:44:84:F3:DF:9B:C9:57:CE:F6:6C:CC:55:57:C8 X509v3 Authority Key Identifier: keyid:F0:46:65:93:C2:B6:CE:A9:CB:F0:2E:26:AA:E6:BF:79:0F:52:7E:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:94:17:81:60:63:17:7d:fa:bc:7d:5a:82:67:4f:7b:55:d2: 14:98:f6:ca:6c:12:34:d9:8a:40:a2:a3:04:71:2c:0e:f7:96: eb:7a:92:0d:db:7e:63:b2:32:61:1a:97:f1:f1:fd:45:cd:9b: 0d:61:c0:9f:7a:4c:43:24:d9:b4:b7:a1:af:c5:a2:f6:4b:3a: 73:27:a8:ab:ca:ac:70:0b:c5:4c:29:c9:b3:4b:cf:9a:81:28: 98:bd:da:11:c9:b6:fc:a5:57:fc:a2:11:9d:d1:ab:23:37:69: 88:bb:3b:ed:ac:30:5a:eb:59:9d:4c:7e:01:b4:6f:42:5b:c5: 14:81:2d:8a:30:25:26:0b:c8:43:7e:31:d1:be:b8:2b:ed:b2: e1:f4:57:ad:13:5f:d1:94:db:c9:46:7e:d1:f3:09:bf:3a:70: 17:20:6d:ec:cd:be:1a:1e:7d:64:fc:64:ed:f3:75:cf:2b:87: 32:2d:09:38:79:ed:9a:b1:a2:65:22:00:59:84:11:ba:b9:06: 6a:0e:75:34:46:03:b7:72:61:6f:42:91:8e:db:ea:2f:01:20: ad:3f:92:be:b9:9b:d5:6d:0f:a7:76:c8:07:d7:aa:ec:3d:d8: d9:08:28:51:4d:6e:cc:e3:01:a1:a9:70:6a:34:78:a9:d5:2a: 69:a7:46:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCl4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkY4RDExMTAvBgNVBAUTKEYwNDY2NTkzQzJCNkNFQTlDQkYwMkUyNkFBRTZCRjc5 MEY1MjdFQTgwHhcNMjUwNjEyMTkyOTI5WhcNMjUwNjE5MTkyOTI5WjAYMRYwFAYD VQQDEw02ODRiMmE5YS03ODg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4WYPxw0o5z3j/76DH6ZTXicd6lLEiZ0R3OlEcUvZmEtRUrXx8tlEMZhk4cBL 55NhnW19G6q7sGwChOGGdyf5KD9u7/rVpogLnwcKM3y2wCvUGECeAaRe6Wk4BLwm UsVVnb2E+J/DtTwqclWZ7P7SZtHs7TjbylV2UFLUwQ6TOlTiFSunY5lMhca3Xdd7 fluu63rws6tpOJ+Ok009mE4/hBmqfaVxRqIe/+Vjh25v0PWrk9NSpyTxjHJ5R38S kfWpcLXZ/6c7a3mbkK3DOh5kywbSVHGHmVXN+7Wr+X9S0S5nYLuggHQmwiIY4ZKz YeF1wqHLwkrup4sGjQFcL48QMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCUj/CyH MkSE89+byVfO9mzMVVfIMB8GA1UdIwQYMBaAFPBGZZPCts6py/AuJqrmv3kPUn6o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjhEMS83QzRFMzRCQzY3 NTUxMUVBQTA4NzMwMkJDNEY5QUUwMi84RVpsazhLMnpxbkw4QzRtcXVhX2VROVNm cWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhFWmxrOEsyenFuTDhDNG1xdWFfZVE5U2ZxZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjhEMS83QzRFMzRCQzY3NTUxMUVBQTA4NzMwMkJDNEY5QUUwMi84RVpsazhLMnpx bkw4QzRtcXVhX2VROVNmcWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/lBeBYGMXffq8fVqCZ097VdIUmPbKbBI02YpAoqMEcSwO95brepIN 235jsjJhGpfx8f1FzZsNYcCfekxDJNm0t6GvxaL2SzpzJ6iryqxwC8VMKcmzS8+a gSiYvdoRybb8pVf8ohGd0asjN2mIuzvtrDBa61mdTH4BtG9CW8UUgS2KMCUmC8hD fjHRvrgr7bLh9FetE1/RlNvJRn7R8wm/OnAXIG3szb4aHn1k/GTt83XPK4cyLQk4 ee2asaJlIgBZhBG6uQZqDnU0RgO3cmFvQpGO2+ovASCtP5K+uZvVbQ+ndsgH16rs PdjZCChRTW7M4wGhqXBqNHip1Sppp0aR -----END CERTIFICATE-----Generated at Sat Jun 14 19:42:31 2025 by rpki-client