$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5FA2/032544405C3211EB97BF7C45C4F9AE02/ealNKOVCRzgJE4PV9Jdb_bzqrnk.mft File: ealNKOVCRzgJE4PV9Jdb_bzqrnk.mft (raw, json) Hash identifier: uF8ec2OLgsNso15cCCA4pmAcJZmwrTbnyaHoDb3TBHg= Subject key identifier: F3:7B:0A:13:53:13:46:A2:C1:AF:3B:B6:0A:9F:83:13:CC:36:F5:94 Authority key identifier: 79:A9:4D:28:E5:42:47:38:09:13:83:D5:F4:97:5B:FD:BC:EA:AE:79 Certificate issuer: /CN=A91F5FA2/serialNumber=79A94D28E5424738091383D5F4975BFDBCEAAE79 Certificate serial: 06D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ealNKOVCRzgJE4PV9Jdb_bzqrnk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5FA2/032544405C3211EB97BF7C45C4F9AE02/ealNKOVCRzgJE4PV9Jdb_bzqrnk.mft Manifest number: 06CD Signing time: Sat 14 Jun 2025 21:49:22 +0000 Manifest this update: Sat 14 Jun 2025 21:49:22 +0000 Manifest next update: Sat 21 Jun 2025 21:49:22 +0000 Files and hashes: 1: ealNKOVCRzgJE4PV9Jdb_bzqrnk.crl (hash: zDYe7MgG91FXrKgnn2Pm6b5DnK/ZSH4SNSBZC0Z/Z50=) 2: FE4992F25C3411EBA2B9004DC4F9AE02.roa (hash: WLTZjRNFNOpt4obFHZLuXm6PcfO8k1Rl/GXdIhTWuLo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5FA2/032544405C3211EB97BF7C45C4F9AE02/ealNKOVCRzgJE4PV9Jdb_bzqrnk.crl rsync://rpki.apnic.net/member_repository/A91F5FA2/032544405C3211EB97BF7C45C4F9AE02/ealNKOVCRzgJE4PV9Jdb_bzqrnk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ealNKOVCRzgJE4PV9Jdb_bzqrnk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 21:49:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1749 (0x6d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5FA2, serialNumber=79A94D28E5424738091383D5F4975BFDBCEAAE79 Validity Not Before: Jun 14 21:49:22 2025 GMT Not After : Jun 21 21:49:22 2025 GMT Subject: CN=684dee62-98c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:32:09:8f:81:55:ee:f5:55:a2:5f:1a:80:2f: 49:16:16:cd:71:f3:55:d5:d6:0d:7d:7a:ac:fb:6d: e2:28:b0:dd:eb:2a:4f:af:bf:cf:bc:b7:75:7b:7f: ac:b5:9a:db:50:0c:14:6b:92:b7:d9:da:09:e9:f4: 4e:76:47:c4:a2:2d:12:0f:08:87:4f:52:22:b0:df: 4f:03:07:71:c8:1f:03:47:57:1d:06:c7:c5:01:77: 3b:81:44:09:14:ae:40:a9:88:b4:6b:09:58:75:7e: 37:a5:b5:50:01:5f:52:78:4c:8f:77:f8:5a:0a:2b: 74:b5:5d:72:0e:b8:a6:ea:2b:c9:af:fd:19:11:25: c6:c7:2a:9c:30:d9:ef:5c:75:da:10:e4:c5:32:22: b8:cb:46:ca:61:a7:b4:c3:c7:c5:9e:45:bd:31:b2: f3:e1:09:12:47:90:e8:63:10:ab:96:76:e6:06:c7: 8f:fc:5e:dd:71:b3:86:c1:13:aa:89:46:bb:61:22: 05:35:b4:7c:2f:77:02:e8:b2:74:78:4a:45:76:69: b4:b5:ff:56:ed:04:41:b8:85:9a:12:b3:7a:00:42: 6c:25:4b:f9:65:df:6d:d1:22:5a:c1:b9:f3:b3:8a: 32:42:ec:dc:67:7a:53:d3:89:14:70:68:1e:11:88: 27:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:7B:0A:13:53:13:46:A2:C1:AF:3B:B6:0A:9F:83:13:CC:36:F5:94 X509v3 Authority Key Identifier: keyid:79:A9:4D:28:E5:42:47:38:09:13:83:D5:F4:97:5B:FD:BC:EA:AE:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5FA2/032544405C3211EB97BF7C45C4F9AE02/ealNKOVCRzgJE4PV9Jdb_bzqrnk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ealNKOVCRzgJE4PV9Jdb_bzqrnk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5FA2/032544405C3211EB97BF7C45C4F9AE02/ealNKOVCRzgJE4PV9Jdb_bzqrnk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:cd:75:9c:41:b4:88:be:d5:cf:52:3f:ee:b3:0c:56:a9:59: 21:be:2f:e0:97:d4:7c:85:48:92:14:34:43:e3:0d:64:24:2e: bb:70:50:10:c2:8d:68:01:fd:de:ed:1d:7e:e5:40:8a:c5:d0: 54:86:2a:f7:35:7a:28:34:a6:d1:38:e1:88:00:00:b8:5c:8a: d7:bd:95:69:89:a4:31:96:43:22:2c:d5:a2:77:64:b7:1c:9e: 12:2c:8c:3c:c6:26:03:c1:f5:1d:53:ca:47:a4:9b:a3:0c:4d: 44:1f:85:e1:f3:9a:57:ed:f3:64:83:81:26:2a:e6:a8:bb:8e: 95:a4:9f:47:5f:7f:3c:82:48:6e:8b:c7:a6:c6:a7:2f:94:53: 19:1a:0a:da:30:6e:16:55:94:3c:ed:d8:1a:63:a7:df:c2:1b: 6c:4a:b3:de:08:72:95:26:39:25:e6:8a:1f:0c:80:cc:ab:cd: 83:e1:35:54:8b:04:a4:28:d5:7d:9b:bb:34:35:a2:1b:d4:7f: bd:2d:66:e2:d9:10:4c:89:15:58:ef:20:8b:37:e7:33:15:1b: ba:73:58:f0:50:bd:d9:32:62:b4:fb:49:10:8d:06:6d:70:80: be:57:31:8f:4d:50:16:c0:81:58:8b:76:54:0a:7e:fb:47:d6: 56:6b:fb:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjVGQTIxMTAvBgNVBAUTKDc5QTk0RDI4RTU0MjQ3MzgwOTEzODNENUY0OTc1QkZE QkNFQUFFNzkwHhcNMjUwNjE0MjE0OTIyWhcNMjUwNjIxMjE0OTIyWjAYMRYwFAYD VQQDEw02ODRkZWU2Mi05OGMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5TIJj4FV7vVVol8agC9JFhbNcfNV1dYNfXqs+23iKLDd6ypPr7/PvLd1e3+s tZrbUAwUa5K32doJ6fROdkfEoi0SDwiHT1IisN9PAwdxyB8DR1cdBsfFAXc7gUQJ FK5AqYi0awlYdX43pbVQAV9SeEyPd/haCit0tV1yDrim6ivJr/0ZESXGxyqcMNnv XHXaEOTFMiK4y0bKYae0w8fFnkW9MbLz4QkSR5DoYxCrlnbmBseP/F7dcbOGwROq iUa7YSIFNbR8L3cC6LJ0eEpFdmm0tf9W7QRBuIWaErN6AEJsJUv5Zd9t0SJawbnz s4oyQuzcZ3pT04kUcGgeEYgn6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPN7ChNT E0aiwa87tgqfgxPMNvWUMB8GA1UdIwQYMBaAFHmpTSjlQkc4CROD1fSXW/286q55 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNUZBMi8wMzI1NDQ0MDVD MzIxMUVCOTdCRjdDNDVDNEY5QUUwMi9lYWxOS09WQ1J6Z0pFNFBWOUpkYl9ienFy bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VhbE5LT1ZDUnpnSkU0UFY5SmRiX2J6cXJuay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NUZBMi8wMzI1NDQ0MDVDMzIxMUVCOTdCRjdDNDVDNEY5QUUwMi9lYWxOS09WQ1J6 Z0pFNFBWOUpkYl9ienFybmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApzXWcQbSIvtXPUj/uswxWqVkhvi/gl9R8hUiSFDRD4w1kJC67cFAQ wo1oAf3e7R1+5UCKxdBUhir3NXooNKbROOGIAAC4XIrXvZVpiaQxlkMiLNWid2S3 HJ4SLIw8xiYDwfUdU8pHpJujDE1EH4Xh85pX7fNkg4EmKuaou46VpJ9HX388gkhu i8emxqcvlFMZGgraMG4WVZQ87dgaY6ffwhtsSrPeCHKVJjkl5oofDIDMq82D4TVU iwSkKNV9m7s0NaIb1H+9LWbi2RBMiRVY7yCLN+czFRu6c1jwUL3ZMmK0+0kQjQZt cIC+VzGPTVAWwIFYi3ZUCn77R9ZWa/u3 -----END CERTIFICATE-----Generated at Sun Jun 15 08:45:40 2025 by rpki-client