$ rpki-client -vvf rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft File: ehMEShEYWGwP2hOLs-vdSEiRTjc.mft (raw, json) Hash identifier: IYU7v2e3sWzSsNZJHW5y/6tDcgSOqExMlWJmhcUZZDI= Subject key identifier: 6E:3A:CD:FC:DB:20:1A:9F:8C:B4:85:0A:E9:82:14:45:15:07:3E:02 Authority key identifier: 7A:13:04:4A:11:18:58:6C:0F:DA:13:8B:B3:EB:DD:48:48:91:4E:37 Certificate issuer: /CN=A9154EAF/serialNumber=7A13044A1118586C0FDA138BB3EBDD4848914E37 Certificate serial: 027D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ehMEShEYWGwP2hOLs-vdSEiRTjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft Manifest number: 0279 Signing time: Sat 19 Jul 2025 02:08:45 +0000 Manifest this update: Sat 19 Jul 2025 02:08:44 +0000 Manifest next update: Sat 26 Jul 2025 02:08:44 +0000 Files and hashes: 1: ehMEShEYWGwP2hOLs-vdSEiRTjc.crl (hash: hk8hiB6oZPyzShkgpS4hg95UnnqsKtS2pGnj09+562o=) 2: 62A0C17A16C511ED91E80F56C4F9AE02.roa (hash: JJX6OI5aam7BC0uvlTdjVV9SQAAwhFakRzY5oiIX9Uk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.crl rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ehMEShEYWGwP2hOLs-vdSEiRTjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 02:08:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 637 (0x27d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154EAF, serialNumber=7A13044A1118586C0FDA138BB3EBDD4848914E37 Validity Not Before: Jul 19 02:08:44 2025 GMT Not After : Jul 26 02:08:44 2025 GMT Subject: CN=687afe2d-1b60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ee:3c:5a:e2:04:d5:b6:51:be:5c:68:3d:ff: f0:dd:ba:70:9c:52:3c:e5:95:a6:f0:31:09:ab:11: f9:e3:11:d9:96:11:75:fc:85:4b:27:1a:a0:af:8a: c0:ea:37:ea:57:7f:6f:35:e4:67:a8:04:97:2e:84: 53:b2:99:de:b0:5d:fe:56:c1:14:f6:87:a2:88:03: 1f:e7:03:22:fc:c5:3f:d6:de:49:34:3d:13:da:aa: 29:17:66:66:93:b2:c0:26:00:62:44:b5:d4:eb:bb: 0c:e2:be:08:f1:54:c8:9e:96:3f:a8:13:e3:63:be: cb:7f:4d:0a:66:cd:af:80:fb:cc:14:0d:a3:0e:cd: 5a:bc:31:db:39:3f:c1:3f:a9:68:99:7f:70:4c:c4: 25:9c:a1:32:8f:e0:4a:30:7d:f7:46:2c:d5:09:96: de:10:1b:2f:94:bf:97:97:5a:66:b2:d3:64:2e:b5: 40:82:e1:40:17:f3:4b:e6:10:1a:4b:0b:27:81:5d: 2d:2e:33:d5:cb:9b:e7:5c:cc:6b:13:44:bf:88:60: b1:89:59:ff:99:a8:7e:6c:d9:f7:46:46:f0:3e:fe: de:5e:5d:53:c0:d6:7e:8c:20:8c:f0:4c:43:93:87: 9c:e5:e2:b4:02:3b:15:f3:92:cf:d2:e7:df:17:13: 8b:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:3A:CD:FC:DB:20:1A:9F:8C:B4:85:0A:E9:82:14:45:15:07:3E:02 X509v3 Authority Key Identifier: keyid:7A:13:04:4A:11:18:58:6C:0F:DA:13:8B:B3:EB:DD:48:48:91:4E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ehMEShEYWGwP2hOLs-vdSEiRTjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:c2:89:1a:cf:f4:f3:b5:7b:de:5b:2b:6f:cd:d5:2e:fa:26: 55:92:80:57:5c:c8:df:12:ca:32:d2:1b:7e:ce:e9:1a:56:4c: df:22:28:d6:f4:46:bb:f4:88:d4:eb:10:52:da:28:53:ec:87: f4:e7:ce:de:cd:f1:07:95:f3:fa:c0:78:ca:88:aa:ed:6a:d1: 64:21:dc:a1:db:de:b3:0e:c6:db:9b:98:d8:7c:81:42:7f:ef: b7:27:ab:cb:d7:59:6d:e8:65:52:88:e5:c0:f0:4b:43:80:4b: 87:ec:0d:db:e0:b1:73:39:8d:5b:5e:cb:91:24:c5:64:53:7f: 5a:a0:f4:2c:34:ea:c5:1e:b4:20:15:fe:0b:85:35:6b:3f:5a: 01:2d:9d:c4:20:80:0f:79:78:c7:c1:6b:af:f7:61:e0:ce:7b: 22:8e:f7:ef:9f:49:b0:88:ca:f5:2b:8a:0a:93:8e:25:d2:47: 2e:64:06:41:cb:0f:08:2b:b4:4f:f6:aa:4a:33:61:ff:6e:16: 3d:f3:25:c3:c8:c4:45:96:79:7c:12:a8:48:19:18:bc:b5:9f: 66:49:e6:34:77:1f:72:41:82:5c:5a:99:01:f9:4e:af:4c:19: 8d:6c:24:c2:c5:74:3c:2a:99:b9:85:c2:e9:07:4c:d9:22:46: a9:b8:dd:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAn0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRFQUYxMTAvBgNVBAUTKDdBMTMwNDRBMTExODU4NkMwRkRBMTM4QkIzRUJERDQ4 NDg5MTRFMzcwHhcNMjUwNzE5MDIwODQ0WhcNMjUwNzI2MDIwODQ0WjAYMRYwFAYD VQQDEw02ODdhZmUyZC0xYjYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsO48WuIE1bZRvlxoPf/w3bpwnFI85ZWm8DEJqxH54xHZlhF1/IVLJxqgr4rA 6jfqV39vNeRnqASXLoRTspnesF3+VsEU9oeiiAMf5wMi/MU/1t5JND0T2qopF2Zm k7LAJgBiRLXU67sM4r4I8VTInpY/qBPjY77Lf00KZs2vgPvMFA2jDs1avDHbOT/B P6lomX9wTMQlnKEyj+BKMH33RizVCZbeEBsvlL+Xl1pmstNkLrVAguFAF/NL5hAa SwsngV0tLjPVy5vnXMxrE0S/iGCxiVn/mah+bNn3RkbwPv7eXl1TwNZ+jCCM8ExD k4ec5eK0AjsV85LP0uffFxOLdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG46zfzb IBqfjLSFCumCFEUVBz4CMB8GA1UdIwQYMBaAFHoTBEoRGFhsD9oTi7Pr3UhIkU43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEVBRi80N0Q1QTdFMDE2 QzMxMUVEQUU3RUI5NTVDNEY5QUUwMi9laE1FU2hFWVdHd1AyaE9Mcy12ZFNFaVJU amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VoTUVTaEVZV0d3UDJoT0xzLXZkU0VpUlRqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEVBRi80N0Q1QTdFMDE2QzMxMUVEQUU3RUI5NTVDNEY5QUUwMi9laE1FU2hFWVdH d1AyaE9Mcy12ZFNFaVJUamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfwokaz/TztXveWytvzdUu+iZVkoBXXMjfEsoy0ht+zukaVkzfIijW 9Ea79IjU6xBS2ihT7If0587ezfEHlfP6wHjKiKrtatFkIdyh296zDsbbm5jYfIFC f++3J6vL11lt6GVSiOXA8EtDgEuH7A3b4LFzOY1bXsuRJMVkU39aoPQsNOrFHrQg Ff4LhTVrP1oBLZ3EIIAPeXjHwWuv92Hgznsijvfvn0mwiMr1K4oKk44l0kcuZAZB yw8IK7RP9qpKM2H/bhY98yXDyMRFlnl8EqhIGRi8tZ9mSeY0dx9yQYJcWpkB+U6v TBmNbCTCxXQ8Kpm5hcLpB0zZIkapuN2r -----END CERTIFICATE-----Generated at Sun Jul 20 22:26:43 2025 by rpki-client