$ rpki-client -vvf rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft File: eHDyQLxFFuOanCWVjPl7GUvnZWc.mft (raw, json) Hash identifier: z+y0AaOQKLUhe3t7UoGBE36D4W6Pl5UyYn4wiVaH/Xw= Subject key identifier: 15:BE:48:3D:7E:4D:96:99:6C:3D:08:D2:73:18:26:38:F3:FB:5D:45 Authority key identifier: 78:70:F2:40:BC:45:16:E3:9A:9C:25:95:8C:F9:7B:19:4B:E7:65:67 Certificate issuer: /CN=A91A09BF/serialNumber=7870F240BC4516E39A9C25958CF97B194BE76567 Certificate serial: 0B8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHDyQLxFFuOanCWVjPl7GUvnZWc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft Manifest number: 0B70 Signing time: Mon 14 Apr 2025 18:58:56 +0000 Manifest this update: Mon 14 Apr 2025 18:58:56 +0000 Manifest next update: Mon 21 Apr 2025 18:58:56 +0000 Files and hashes: 1: eHDyQLxFFuOanCWVjPl7GUvnZWc.crl (hash: RhAnay+2GpJ/kFgnZ5WeoNurX0khM/43Uyyb7h3sgGk=) 2: 7510C8E4A58111EFB180AE4CC4F9AE02.roa (hash: EYUdErvrNyXXGWy2iexeF4zrxrreLq1Yski9zt4iFNY=) 3: EC4AB04AAA5511EABCEBDE19C4F9AE02.roa (hash: xCXQqgm7s0yqcl5rlXb69u+J291yS3/BUfkPMKe4WIs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.crl rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHDyQLxFFuOanCWVjPl7GUvnZWc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 21 Apr 2025 18:58:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2956 (0xb8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A09BF, serialNumber=7870F240BC4516E39A9C25958CF97B194BE76567 Validity Not Before: Apr 14 18:58:56 2025 GMT Not After : Apr 21 18:58:56 2025 GMT Subject: CN=67fd5af0-f7b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:50:d1:ff:35:d6:a7:6c:83:62:ad:b9:f2:30: 8e:6d:14:4f:e8:cd:f4:14:06:aa:6f:7e:2c:09:88: a8:d2:b9:39:c6:3d:36:0f:14:04:6b:18:d8:9b:43: 55:c0:f1:0d:00:23:59:75:6c:71:c7:e0:99:80:9b: 44:54:e7:aa:42:d8:d0:1f:7e:51:1b:52:ac:64:6d: cf:0d:99:dc:af:5c:5a:f3:30:7d:26:9b:1a:61:1d: fd:f7:63:ac:17:72:0b:d6:e9:bd:bf:08:53:50:eb: e8:af:63:b2:39:aa:76:c8:c3:ef:09:b4:59:cf:2f: f5:d9:4d:75:44:b7:16:03:f2:b9:36:de:73:05:5f: 99:9d:3c:71:e6:ab:92:15:98:44:01:00:41:39:0e: 44:c4:55:c4:0f:2b:47:c2:f4:3a:14:00:34:42:00: af:ba:13:5e:a2:cc:58:9a:37:a4:e9:05:b7:69:23: 29:15:c4:3d:79:99:56:ea:19:b0:d2:0c:a0:73:07: 6a:a8:ca:c3:0e:73:06:9f:14:68:d9:f5:53:2d:aa: 76:0d:a7:8b:27:54:4c:d2:4b:62:14:50:a5:e8:b5: a4:3e:d2:6d:41:94:d3:8c:56:7e:4b:d0:65:87:22: cf:0e:c9:97:56:0b:ef:24:6b:a8:ff:66:ef:62:9c: 90:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:BE:48:3D:7E:4D:96:99:6C:3D:08:D2:73:18:26:38:F3:FB:5D:45 X509v3 Authority Key Identifier: keyid:78:70:F2:40:BC:45:16:E3:9A:9C:25:95:8C:F9:7B:19:4B:E7:65:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHDyQLxFFuOanCWVjPl7GUvnZWc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:48:d6:66:87:01:f4:75:2d:97:c7:98:54:54:b0:06:e2:9b: db:96:6c:98:77:df:86:d5:9c:34:3b:f2:77:02:7e:21:92:10: bc:76:77:ed:89:62:0b:f0:4b:3d:e9:f4:49:4a:aa:96:bc:c2: f8:70:d4:80:c0:43:74:0b:88:e0:d7:e9:0c:15:4b:47:70:61: 0f:83:53:99:a5:59:d7:c7:22:f0:f7:1b:e3:d9:4d:ef:a5:2b: 37:b5:71:cf:a3:7f:47:a7:d7:4a:5a:9f:9f:0d:7c:2e:f5:d6: 8f:37:82:81:12:b2:01:e8:05:cc:d2:62:5e:24:13:4d:cd:a5: 57:0d:8e:04:24:12:c1:ef:f5:1c:f3:d4:19:11:14:b3:5c:8d: 47:6e:51:59:7e:f4:85:c9:df:7b:b9:1e:03:fe:18:13:bb:2d: 42:19:01:0d:da:a1:f4:c2:15:bf:7c:ac:0f:a1:7e:7e:ed:f2: d3:0a:c5:40:39:17:2a:1a:95:38:b6:de:ea:fa:95:7c:d4:a7: 93:b3:2a:0f:2a:2d:00:e8:50:53:b1:5d:37:cf:8b:12:1e:ff: 5f:9d:a0:8e:5c:b5:6b:ba:a6:a7:32:df:4f:d4:a5:30:21:4a: 5f:77:28:a3:7f:bf:dc:dc:76:6e:11:28:26:4d:e3:3c:3f:9e: 01:70:3b:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC4wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA5QkYxMTAvBgNVBAUTKDc4NzBGMjQwQkM0NTE2RTM5QTlDMjU5NThDRjk3QjE5 NEJFNzY1NjcwHhcNMjUwNDE0MTg1ODU2WhcNMjUwNDIxMTg1ODU2WjAYMRYwFAYD VQQDEw02N2ZkNWFmMC1mN2I1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyFDR/zXWp2yDYq258jCObRRP6M30FAaqb34sCYio0rk5xj02DxQEaxjYm0NV wPENACNZdWxxx+CZgJtEVOeqQtjQH35RG1KsZG3PDZncr1xa8zB9JpsaYR3992Os F3IL1um9vwhTUOvor2OyOap2yMPvCbRZzy/12U11RLcWA/K5Nt5zBV+ZnTxx5quS FZhEAQBBOQ5ExFXEDytHwvQ6FAA0QgCvuhNeosxYmjek6QW3aSMpFcQ9eZlW6hmw 0gygcwdqqMrDDnMGnxRo2fVTLap2DaeLJ1RM0ktiFFCl6LWkPtJtQZTTjFZ+S9Bl hyLPDsmXVgvvJGuo/2bvYpyQAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBW+SD1+ TZaZbD0I0nMYJjjz+11FMB8GA1UdIwQYMBaAFHhw8kC8RRbjmpwllYz5exlL52Vn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDlCRi9EMTNEQTFENDJE RkMxMUVBQkMxQjZCODJDNEY5QUUwMi9lSER5UUx4RkZ1T2FuQ1dWalBsN0dVdm5a V2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VIRHlRTHhGRnVPYW5DV1ZqUGw3R1V2blpXYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDlCRi9EMTNEQTFENDJERkMxMUVBQkMxQjZCODJDNEY5QUUwMi9lSER5UUx4RkZ1 T2FuQ1dWalBsN0dVdm5aV2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqSNZmhwH0dS2Xx5hUVLAG4pvblmyYd9+G1Zw0O/J3An4hkhC8dnft iWIL8Es96fRJSqqWvML4cNSAwEN0C4jg1+kMFUtHcGEPg1OZpVnXxyLw9xvj2U3v pSs3tXHPo39Hp9dKWp+fDXwu9daPN4KBErIB6AXM0mJeJBNNzaVXDY4EJBLB7/Uc 89QZERSzXI1HblFZfvSFyd97uR4D/hgTuy1CGQEN2qH0whW/fKwPoX5+7fLTCsVA ORcqGpU4tt7q+pV81KeTsyoPKi0A6FBTsV03z4sSHv9fnaCOXLVruqanMt9P1KUw IUpfdyijf7/c3HZuESgmTeM8P54BcDvA -----END CERTIFICATE-----Generated at Wed Apr 16 17:14:18 2025 by rpki-client