$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/ER6YG60wGDD3weWQzBqotIImDtg.mft File: ER6YG60wGDD3weWQzBqotIImDtg.mft (raw, json) Hash identifier: NIlVwSqUvaGocddxoCSQuSfvk/9PYl8QR5HG+DxyUuA= Subject key identifier: D8:1F:DD:0B:DC:98:C3:D4:12:6E:FB:E3:96:50:CB:B0:65:EE:AA:73 Authority key identifier: 11:1E:98:1B:AD:30:18:30:F7:C1:E5:90:CC:1A:A8:B4:82:26:0E:D8 Certificate issuer: /CN=A91F0FE2/serialNumber=111E981BAD301830F7C1E590CC1AA8B482260ED8 Certificate serial: 1C43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ER6YG60wGDD3weWQzBqotIImDtg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/ER6YG60wGDD3weWQzBqotIImDtg.mft Manifest number: 1C2A Signing time: Sat 14 Jun 2025 16:10:02 +0000 Manifest this update: Sat 14 Jun 2025 16:10:01 +0000 Manifest next update: Sat 21 Jun 2025 16:10:01 +0000 Files and hashes: 1: ER6YG60wGDD3weWQzBqotIImDtg.crl (hash: 9uJ6SFLQPO412TBS5txwLVvzjJD++cQXXHCbQD51aZk=) 2: 14564AB0E83311E6A72DC543C4F9AE02.roa (hash: 4+gvlbrCKPYHxXa5P1wV2CMHV3TVWTeug3ZLXYBNytU=) 3: 20C4803669A011EA9055BD0EC4F9AE02.roa (hash: nzh03mGpFuWBuJjX4zOpsk0cBliW2iPs211HjGanKnk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/ER6YG60wGDD3weWQzBqotIImDtg.crl rsync://rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/ER6YG60wGDD3weWQzBqotIImDtg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ER6YG60wGDD3weWQzBqotIImDtg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 16:10:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7235 (0x1c43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0FE2, serialNumber=111E981BAD301830F7C1E590CC1AA8B482260ED8 Validity Not Before: Jun 14 16:10:01 2025 GMT Not After : Jun 21 16:10:01 2025 GMT Subject: CN=684d9ed9-baf5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:16:41:56:25:eb:1f:43:08:c4:3c:48:2c:77: e9:71:65:f0:c6:a9:ab:6e:48:9e:e9:b4:cd:eb:4a: d3:8a:c8:11:d5:ab:47:30:5d:71:0b:2c:45:6c:e1: 2d:cf:22:6a:39:d6:de:74:35:38:35:65:0a:33:e3: f5:58:bf:b9:74:03:9f:1e:0b:67:64:99:78:ea:e6: 72:26:53:06:35:0a:7d:67:0b:b1:6d:d6:51:68:c8: 64:f1:e9:c6:3c:16:12:0c:07:2e:d9:66:df:1c:5e: fe:db:24:70:c0:ee:c7:22:36:0a:c5:7d:e6:ab:af: f2:6e:4b:d7:8c:81:21:8b:9a:48:6c:61:11:96:55: 45:3c:e2:1a:a5:a6:1f:3e:91:2e:bf:ac:39:be:56: 32:0e:64:6b:c6:7b:d3:8c:54:46:f4:b4:b0:ee:dc: a3:dc:c2:38:c4:5e:68:36:d7:88:f8:ea:1f:83:89: e8:3c:e8:42:6a:97:6e:3b:c8:d0:28:95:f1:2a:ae: fd:c4:18:e7:71:13:d4:f3:c9:b1:67:ec:b5:f6:9f: f1:70:90:c0:68:0a:d3:bc:36:1f:e7:42:75:0c:d7: da:dd:d0:22:1f:94:d4:f7:d6:e7:90:ba:0f:cb:07: 96:6c:0a:57:13:2b:26:de:bc:7b:c6:8a:44:1e:8c: 61:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:1F:DD:0B:DC:98:C3:D4:12:6E:FB:E3:96:50:CB:B0:65:EE:AA:73 X509v3 Authority Key Identifier: keyid:11:1E:98:1B:AD:30:18:30:F7:C1:E5:90:CC:1A:A8:B4:82:26:0E:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/ER6YG60wGDD3weWQzBqotIImDtg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ER6YG60wGDD3weWQzBqotIImDtg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/ER6YG60wGDD3weWQzBqotIImDtg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:92:4b:ff:4c:cf:db:dc:34:89:e2:b8:de:33:46:1c:ed:a3: b0:4d:0b:c3:fb:cc:1e:df:8e:26:40:bf:bc:55:59:2b:45:60: 82:55:7f:27:39:64:1e:73:39:b0:c4:4e:2c:6b:75:60:7f:bb: a8:6b:a5:90:23:b0:a6:de:22:53:9c:b5:da:d1:63:fd:db:ac: ef:95:c8:90:fd:b4:ed:71:88:de:77:10:e6:2f:09:d1:8c:dc: bc:1a:a5:42:46:5b:d9:93:3e:e1:db:9e:ee:a8:1c:5b:15:d1: 13:bb:14:83:2f:0d:f4:24:5c:f7:7d:f0:10:ac:e7:98:de:5d: 3e:d9:5c:eb:79:e8:d6:91:27:a1:ff:90:ce:ac:31:46:9b:51: ae:37:50:30:6f:08:a0:fb:27:cc:ef:7e:7e:e5:29:cd:3e:6f: 9b:ea:00:c4:47:c7:98:ed:e3:b9:f3:7f:e1:38:a8:ce:b6:06: 3c:5c:d4:fe:2d:ef:27:07:1a:ef:9a:82:ab:24:ff:e6:c2:2c: d9:88:58:b9:23:97:f0:a5:09:71:a4:44:51:7f:e9:72:26:5d: 34:cd:2c:fb:c5:44:81:95:19:a6:1b:ba:04:82:5b:00:06:12: bc:f4:f7:c5:f6:98:12:8a:52:e7:1e:0e:a6:64:96:e4:bd:4c: dd:1e:78:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHEMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBGRTIxMTAvBgNVBAUTKDExMUU5ODFCQUQzMDE4MzBGN0MxRTU5MENDMUFBOEI0 ODIyNjBFRDgwHhcNMjUwNjE0MTYxMDAxWhcNMjUwNjIxMTYxMDAxWjAYMRYwFAYD VQQDEw02ODRkOWVkOS1iYWY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvRZBViXrH0MIxDxILHfpcWXwxqmrbkie6bTN60rTisgR1atHMF1xCyxFbOEt zyJqOdbedDU4NWUKM+P1WL+5dAOfHgtnZJl46uZyJlMGNQp9ZwuxbdZRaMhk8enG PBYSDAcu2WbfHF7+2yRwwO7HIjYKxX3mq6/ybkvXjIEhi5pIbGERllVFPOIapaYf PpEuv6w5vlYyDmRrxnvTjFRG9LSw7tyj3MI4xF5oNteI+Oofg4noPOhCapduO8jQ KJXxKq79xBjncRPU88mxZ+y19p/xcJDAaArTvDYf50J1DNfa3dAiH5TU99bnkLoP yweWbApXEysm3rx7xopEHoxhrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNgf3Qvc mMPUEm7745ZQy7Bl7qpzMB8GA1UdIwQYMBaAFBEemButMBgw98HlkMwaqLSCJg7Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEZFMi8yRkY5QkIyMkU4 MzIxMUU2QkY1MTI4NDJDNEY5QUUwMi9FUjZZRzYwd0dERDN3ZVdRekJxb3RJSW1E dGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VSNllHNjB3R0REM3dlV1F6QnFvdElJbUR0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEZFMi8yRkY5QkIyMkU4MzIxMUU2QkY1MTI4NDJDNEY5QUUwMi9FUjZZRzYwd0dE RDN3ZVdRekJxb3RJSW1EdGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPkkv/TM/b3DSJ4rjeM0Yc7aOwTQvD+8we344mQL+8VVkrRWCCVX8n OWQeczmwxE4sa3Vgf7uoa6WQI7Cm3iJTnLXa0WP926zvlciQ/bTtcYjedxDmLwnR jNy8GqVCRlvZkz7h257uqBxbFdETuxSDLw30JFz3ffAQrOeY3l0+2VzreejWkSeh /5DOrDFGm1GuN1Awbwig+yfM735+5SnNPm+b6gDER8eY7eO583/hOKjOtgY8XNT+ Le8nBxrvmoKrJP/mwizZiFi5I5fwpQlxpERRf+lyJl00zSz7xUSBlRmmG7oEglsA BhK89PfF9pgSilLnHg6mZJbkvUzdHnhB -----END CERTIFICATE-----Generated at Sun Jun 15 06:09:28 2025 by rpki-client