$ rpki-client -vvf rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft File: EhrxRNkD4_iJffD-0gcaFkd17U8.mft (raw, json) Hash identifier: evNrAjnx8GtIutAMn9mn9XqPh44wS59oGAWrdVgwpLs= Subject key identifier: 07:9F:FF:D4:AC:EC:8F:EE:63:00:DD:4B:20:38:AF:3A:F1:C5:F2:1F Authority key identifier: 12:1A:F1:44:D9:03:E3:F8:89:7D:F0:FE:D2:07:1A:16:47:75:ED:4F Certificate issuer: /CN=A91E554A/serialNumber=121AF144D903E3F8897DF0FED2071A164775ED4F Certificate serial: 84 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft Manifest number: 7F Signing time: Sun 15 Jun 2025 05:51:59 +0000 Manifest this update: Sun 15 Jun 2025 05:51:59 +0000 Manifest next update: Sun 22 Jun 2025 05:51:59 +0000 Files and hashes: 1: EhrxRNkD4_iJffD-0gcaFkd17U8.crl (hash: 5r/bJ//zDc+coEsHTRi2QgCDasbr8HhsgXF6Iqo8wXA=) 2: 7C304160FECB11EFB755BB45C4F9AE02.roa (hash: 96JJ4xS4XL/KIJ4tbueQ63oeM+4CMNy+gkgjGzK0Myk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.crl rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 05:51:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 132 (0x84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E554A, serialNumber=121AF144D903E3F8897DF0FED2071A164775ED4F Validity Not Before: Jun 15 05:51:59 2025 GMT Not After : Jun 22 05:51:59 2025 GMT Subject: CN=684e5f7f-27ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:37:f6:1a:76:40:e1:ef:74:a2:3d:d5:80:a2: 89:2e:d2:db:11:53:c8:94:77:c6:76:25:60:e8:3e: f5:35:a5:ec:29:3a:23:ab:44:29:f1:41:10:60:2f: 48:73:3b:79:cf:e0:cc:32:a3:8b:55:a6:74:0a:be: cf:6c:d9:0f:bd:7b:fa:61:93:a9:72:77:28:38:9b: d1:2d:a3:e8:41:6b:6b:bd:6c:15:d4:42:02:11:9d: 1c:f5:67:58:b0:16:e2:82:4d:7b:20:bc:c6:e9:b3: 70:15:d7:73:76:30:77:a8:d4:80:ad:3e:01:85:16: 73:13:fa:fe:1c:b7:96:d4:0b:20:cb:25:a8:90:49: c9:fc:77:80:59:d0:28:5c:ee:8b:f0:3d:21:9d:b7: 84:e0:79:6c:02:6d:25:ec:3f:71:f8:c8:ab:c6:31: bc:f8:a7:6a:14:cb:15:92:01:02:7b:14:10:7e:00: 9e:c4:27:ea:72:00:4a:5e:93:6c:81:12:77:17:35: 69:bf:e1:21:f2:f7:da:40:24:f3:2d:68:5a:1a:30: ca:4a:47:b0:c5:47:ad:e5:86:42:ce:0b:6e:4d:a9: db:36:d8:01:a9:9a:06:52:73:36:c8:33:dc:e3:be: b9:f1:dc:98:c3:72:75:70:44:e4:2c:f5:11:7c:c9: f6:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:9F:FF:D4:AC:EC:8F:EE:63:00:DD:4B:20:38:AF:3A:F1:C5:F2:1F X509v3 Authority Key Identifier: keyid:12:1A:F1:44:D9:03:E3:F8:89:7D:F0:FE:D2:07:1A:16:47:75:ED:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:79:dd:85:bb:c1:1b:90:bf:44:ab:a3:6b:6e:ea:06:ba:05: c2:0f:c9:05:50:cf:3e:de:e3:95:7f:82:94:40:05:99:99:c0: c2:72:1e:da:4f:f9:55:f6:df:84:48:a1:7f:49:41:2b:07:e5: 67:71:ad:f1:c8:8c:4b:4e:07:73:54:03:d0:ce:60:9c:70:c6: b6:1a:dc:56:e2:5a:b3:59:2a:fb:cd:35:b3:63:7b:58:96:70: 73:52:3d:f0:dc:41:3f:9f:cf:82:d9:4a:16:9e:2d:8b:9a:3d: af:a2:c7:10:03:38:58:4f:13:e5:31:d0:47:6e:58:c4:70:f7: 69:9d:fd:b5:77:35:60:ee:0d:5c:f8:9b:43:84:7c:40:6f:68: c4:d2:c2:b8:7c:8a:70:d9:df:42:4f:f6:a3:95:01:ef:da:1e: da:54:dd:4e:99:42:ff:03:96:e7:5d:7e:19:15:aa:fd:16:17: c4:ff:bb:9a:d7:01:25:89:f0:d9:b2:74:a7:2a:6d:29:cd:8d: 16:9c:6a:de:dd:75:91:8f:74:1b:e9:d8:c4:49:88:c3:dc:9b: 81:9c:5f:22:dd:5e:f7:99:97:5d:2a:86:0e:5d:4f:c7:a9:94: 25:0e:8e:2c:86:c5:b8:9a:fb:06:39:9d:67:3a:01:3a:92:94: 74:59:00:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU1NEExMTAvBgNVBAUTKDEyMUFGMTQ0RDkwM0UzRjg4OTdERjBGRUQyMDcxQTE2 NDc3NUVENEYwHhcNMjUwNjE1MDU1MTU5WhcNMjUwNjIyMDU1MTU5WjAYMRYwFAYD VQQDEw02ODRlNWY3Zi0yN2FiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7Df2GnZA4e90oj3VgKKJLtLbEVPIlHfGdiVg6D71NaXsKTojq0Qp8UEQYC9I czt5z+DMMqOLVaZ0Cr7PbNkPvXv6YZOpcncoOJvRLaPoQWtrvWwV1EICEZ0c9WdY sBbigk17ILzG6bNwFddzdjB3qNSArT4BhRZzE/r+HLeW1AsgyyWokEnJ/HeAWdAo XO6L8D0hnbeE4HlsAm0l7D9x+MirxjG8+KdqFMsVkgECexQQfgCexCfqcgBKXpNs gRJ3FzVpv+Eh8vfaQCTzLWhaGjDKSkewxUet5YZCzgtuTanbNtgBqZoGUnM2yDPc 47658dyYw3J1cETkLPURfMn2IwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAef/9Ss 7I/uYwDdSyA4rzrxxfIfMB8GA1UdIwQYMBaAFBIa8UTZA+P4iX3w/tIHGhZHde1P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTU0QS83OTVFNzNEMDkx RjcxMUVGQURFMTEyNjZDNEY5QUUwMi9FaHJ4Uk5rRDRfaUpmZkQtMGdjYUZrZDE3 VTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0VocnhSTmtENF9pSmZmRC0wZ2NhRmtkMTdVOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTU0QS83OTVFNzNEMDkxRjcxMUVGQURFMTEyNjZDNEY5QUUwMi9FaHJ4Uk5rRDRf aUpmZkQtMGdjYUZrZDE3VTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/ed2Fu8EbkL9Eq6NrbuoGugXCD8kFUM8+3uOVf4KUQAWZmcDCch7a T/lV9t+ESKF/SUErB+Vnca3xyIxLTgdzVAPQzmCccMa2GtxW4lqzWSr7zTWzY3tY lnBzUj3w3EE/n8+C2UoWni2Lmj2voscQAzhYTxPlMdBHbljEcPdpnf21dzVg7g1c +JtDhHxAb2jE0sK4fIpw2d9CT/ajlQHv2h7aVN1OmUL/A5bnXX4ZFar9FhfE/7ua 1wElifDZsnSnKm0pzY0WnGre3XWRj3Qb6djESYjD3JuBnF8i3V73mZddKoYOXU/H qZQlDo4shsW4mvsGOZ1nOgE6kpR0WQAh -----END CERTIFICATE-----Generated at Mon Jun 16 11:56:30 2025 by rpki-client