$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE637/9BAEA13A974311E9BFD8E519C4F9AE02/EJhSul3Eo2jPdhIFFeysYu_aPkA.mft File: EJhSul3Eo2jPdhIFFeysYu_aPkA.mft (raw, json) Hash identifier: QZp0OjHny+6dY8HRi6iH+YsIWHREWS5lR8ecX4bHnws= Subject key identifier: 5D:7E:15:9B:C1:0E:66:CF:66:2D:0F:10:13:C3:BF:38:65:53:3B:D8 Authority key identifier: 10:98:52:BA:5D:C4:A3:68:CF:76:12:05:15:EC:AC:62:EF:DA:3E:40 Certificate issuer: /CN=A91FE637/serialNumber=109852BA5DC4A368CF76120515ECAC62EFDA3E40 Certificate serial: 0E77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EJhSul3Eo2jPdhIFFeysYu_aPkA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE637/9BAEA13A974311E9BFD8E519C4F9AE02/EJhSul3Eo2jPdhIFFeysYu_aPkA.mft Manifest number: 0E72 Signing time: Mon 16 Jun 2025 17:41:58 +0000 Manifest this update: Mon 16 Jun 2025 17:41:58 +0000 Manifest next update: Mon 23 Jun 2025 17:41:58 +0000 Files and hashes: 1: EJhSul3Eo2jPdhIFFeysYu_aPkA.crl (hash: TsybTZh+P+2ohxJbcJy1Rzuy5WB1yvM78DEd1NTghlo=) 2: 3D88426C974511E982D6FD1BC4F9AE02.roa (hash: H8knPIbuLtwUcaByLoJZ9f2Kl4YvVFA0lwHyLpg+7j8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE637/9BAEA13A974311E9BFD8E519C4F9AE02/EJhSul3Eo2jPdhIFFeysYu_aPkA.crl rsync://rpki.apnic.net/member_repository/A91FE637/9BAEA13A974311E9BFD8E519C4F9AE02/EJhSul3Eo2jPdhIFFeysYu_aPkA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EJhSul3Eo2jPdhIFFeysYu_aPkA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 17:41:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3703 (0xe77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE637, serialNumber=109852BA5DC4A368CF76120515ECAC62EFDA3E40 Validity Not Before: Jun 16 17:41:58 2025 GMT Not After : Jun 23 17:41:58 2025 GMT Subject: CN=68505766-a001 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:5f:17:8e:d4:b2:de:ca:08:f3:75:85:8b:de: af:01:b0:bb:98:88:25:d2:18:0d:6d:ec:83:43:25: 1f:e2:3e:99:0b:45:d4:5d:66:2a:5c:f8:b1:ef:ab: bd:dc:51:9c:36:0f:e1:a7:b9:13:a4:d5:30:12:98: 0e:10:69:fa:b1:cc:c9:e9:91:fb:84:b1:35:16:46: 60:73:c4:8b:42:05:29:87:d7:3e:59:30:4c:38:86: 86:83:3e:ae:15:cd:4b:c3:32:1e:06:8a:77:88:ae: e0:5d:a0:92:e3:3d:d8:75:1f:fc:10:d5:3d:3c:77: fd:69:1a:d7:3f:ce:84:5f:44:85:fd:27:32:93:4f: b2:d7:1b:d1:fc:1d:fd:be:73:5b:66:66:5d:d1:b4: ee:4c:8a:fa:00:6a:db:8b:fb:c6:de:22:ba:4d:b0: 22:39:4b:b9:16:02:27:a6:e3:ec:97:7e:84:80:e4: aa:9b:6e:26:8c:e3:4e:6a:21:f9:33:1e:a8:22:f1: 78:41:1e:48:11:bf:51:88:dd:0f:6b:f4:eb:75:fb: 10:f2:e0:32:ab:39:7f:50:66:37:20:30:6b:b4:4e: 3e:85:78:76:c2:18:e3:1d:2d:53:35:40:38:6b:69: 68:6d:0f:50:87:1e:21:a1:28:68:78:7f:af:a7:d0: 1e:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:7E:15:9B:C1:0E:66:CF:66:2D:0F:10:13:C3:BF:38:65:53:3B:D8 X509v3 Authority Key Identifier: keyid:10:98:52:BA:5D:C4:A3:68:CF:76:12:05:15:EC:AC:62:EF:DA:3E:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE637/9BAEA13A974311E9BFD8E519C4F9AE02/EJhSul3Eo2jPdhIFFeysYu_aPkA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EJhSul3Eo2jPdhIFFeysYu_aPkA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE637/9BAEA13A974311E9BFD8E519C4F9AE02/EJhSul3Eo2jPdhIFFeysYu_aPkA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:c9:bc:b0:64:b6:72:b6:f2:4f:6c:a2:53:73:e9:95:52:00: a1:90:95:90:3a:60:1f:16:1f:d5:35:67:92:31:93:a3:ab:6e: d7:ba:fa:71:27:9b:c9:d2:93:6a:ce:e2:95:ee:ef:8d:14:cd: 66:62:44:ab:0c:42:78:99:22:ce:48:4e:81:d5:df:fb:ce:14: 48:e7:ae:55:ef:af:64:ae:8c:71:32:8b:7f:be:96:79:34:0a: 40:52:3a:e6:20:d0:27:7c:c4:a1:0d:2a:d8:f8:bf:91:88:dc: 26:1e:7a:d3:24:e0:83:26:45:31:00:de:77:5f:f4:49:74:44: c4:6d:8f:4d:e2:2b:84:b9:6f:6d:45:e0:44:95:7b:be:07:18: 54:f3:a8:42:81:43:ab:66:ef:3c:ff:71:62:cc:cc:a1:e3:da: 24:b6:24:5d:ed:b5:27:fa:af:d9:dd:0f:2d:5c:db:4f:25:85: 06:5e:40:d3:82:19:a2:af:0f:53:06:99:92:27:76:c0:0c:35: 4a:65:35:d8:bc:5a:09:40:1e:ba:ef:b0:87:a5:e2:56:3a:8a: 1e:c4:ac:e7:c4:8c:61:0c:04:a0:5a:67:f6:50:94:57:dc:49: 59:5e:5e:28:a8:5e:98:7b:01:93:06:94:06:7c:5a:26:6d:ca: 20:5a:ed:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDncwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkU2MzcxMTAvBgNVBAUTKDEwOTg1MkJBNURDNEEzNjhDRjc2MTIwNTE1RUNBQzYy RUZEQTNFNDAwHhcNMjUwNjE2MTc0MTU4WhcNMjUwNjIzMTc0MTU4WjAYMRYwFAYD VQQDEw02ODUwNTc2Ni1hMDAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzF8XjtSy3soI83WFi96vAbC7mIgl0hgNbeyDQyUf4j6ZC0XUXWYqXPix76u9 3FGcNg/hp7kTpNUwEpgOEGn6sczJ6ZH7hLE1FkZgc8SLQgUph9c+WTBMOIaGgz6u Fc1LwzIeBop3iK7gXaCS4z3YdR/8ENU9PHf9aRrXP86EX0SF/Scyk0+y1xvR/B39 vnNbZmZd0bTuTIr6AGrbi/vG3iK6TbAiOUu5FgInpuPsl36EgOSqm24mjONOaiH5 Mx6oIvF4QR5IEb9RiN0Pa/TrdfsQ8uAyqzl/UGY3IDBrtE4+hXh2whjjHS1TNUA4 a2lobQ9Qhx4hoShoeH+vp9AesQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF1+FZvB DmbPZi0PEBPDvzhlUzvYMB8GA1UdIwQYMBaAFBCYUrpdxKNoz3YSBRXsrGLv2j5A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTYzNy85QkFFQTEzQTk3 NDMxMUU5QkZEOEU1MTlDNEY5QUUwMi9FSmhTdWwzRW8yalBkaElGRmV5c1l1X2FQ a0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VKaFN1bDNFbzJqUGRoSUZGZXlzWXVfYVBrQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTYzNy85QkFFQTEzQTk3NDMxMUU5QkZEOEU1MTlDNEY5QUUwMi9FSmhTdWwzRW8y alBkaElGRmV5c1l1X2FQa0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXybywZLZytvJPbKJTc+mVUgChkJWQOmAfFh/VNWeSMZOjq27Xuvpx J5vJ0pNqzuKV7u+NFM1mYkSrDEJ4mSLOSE6B1d/7zhRI565V769kroxxMot/vpZ5 NApAUjrmINAnfMShDSrY+L+RiNwmHnrTJOCDJkUxAN53X/RJdETEbY9N4iuEuW9t ReBElXu+BxhU86hCgUOrZu88/3FizMyh49oktiRd7bUn+q/Z3Q8tXNtPJYUGXkDT ghmirw9TBpmSJ3bADDVKZTXYvFoJQB6677CHpeJWOooexKznxIxhDASgWmf2UJRX 3ElZXl4oqF6YewGTBpQGfFombcogWu0C -----END CERTIFICATE-----Generated at Tue Jun 17 07:57:34 2025 by rpki-client