$ rpki-client -vvf rpki.apnic.net/member_repository/A9111FFD/42EB0534DD3811EF9C346745C4F9AE02/EEz4cGO16r803k4l_s6ata9zbBQ.mft File: EEz4cGO16r803k4l_s6ata9zbBQ.mft (raw, json) Hash identifier: 5H2H2Yl3viYftnlTjnjkRFIBuUkd35iaycU+AbQ+0/Q= Subject key identifier: E8:37:E2:FB:5E:36:85:0A:8F:D3:85:AF:3C:27:87:3A:FC:91:D3:A1 Authority key identifier: 10:4C:F8:70:63:B5:EA:BF:34:DE:4E:25:FE:CE:9A:B5:AF:73:6C:14 Certificate issuer: /CN=A9111FFD/serialNumber=104CF87063B5EABF34DE4E25FECE9AB5AF736C14 Certificate serial: 48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EEz4cGO16r803k4l_s6ata9zbBQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111FFD/42EB0534DD3811EF9C346745C4F9AE02/EEz4cGO16r803k4l_s6ata9zbBQ.mft Manifest number: 45 Signing time: Sat 31 May 2025 07:02:29 +0000 Manifest this update: Sat 31 May 2025 07:02:28 +0000 Manifest next update: Sat 07 Jun 2025 07:02:28 +0000 Files and hashes: 1: EEz4cGO16r803k4l_s6ata9zbBQ.crl (hash: vGqt4bHJ2wPAVRSVJwFXkV7rRbgNtSlxad4GGijxOnc=) 2: 7BF6BA42E91A11EF804C4B57C4F9AE02.roa (hash: HNlYiglg+bBDY8hf2XbMc61T9NCbbnRV5gfydPimiu8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111FFD/42EB0534DD3811EF9C346745C4F9AE02/EEz4cGO16r803k4l_s6ata9zbBQ.crl rsync://rpki.apnic.net/member_repository/A9111FFD/42EB0534DD3811EF9C346745C4F9AE02/EEz4cGO16r803k4l_s6ata9zbBQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EEz4cGO16r803k4l_s6ata9zbBQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:02:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72 (0x48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111FFD, serialNumber=104CF87063B5EABF34DE4E25FECE9AB5AF736C14 Validity Not Before: May 31 07:02:28 2025 GMT Not After : Jun 7 07:02:28 2025 GMT Subject: CN=683aa985-d1ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:ce:7a:32:1f:e2:8e:84:63:69:4f:c4:19:65: 1d:1f:60:7f:b2:30:09:64:a7:fe:4e:b6:d6:d2:46: 4c:3e:86:01:93:bf:b8:31:1f:62:f6:93:f1:eb:2b: 3c:17:4e:a4:16:83:8b:05:59:70:a2:77:2c:bf:e3: 68:19:26:3c:e9:5c:ca:67:22:a6:e8:07:fe:8b:dd: 4f:2c:a9:7c:21:53:bc:62:af:e8:90:1e:09:2e:46: 71:d6:f4:5f:95:4c:a3:91:09:b8:da:03:88:25:fc: 80:e3:0e:3f:1b:c8:95:34:35:f2:ec:04:be:8e:78: ab:56:bf:38:7f:79:b8:b1:f3:e1:ee:38:6e:e5:43: 9d:65:26:4f:e8:7a:3e:fe:8f:cd:f3:dd:e3:4a:46: 73:6d:97:07:f3:55:26:38:31:d7:b3:89:70:8a:c6: 23:59:31:f0:b5:2c:3c:d7:61:7f:6f:df:64:83:f5: 17:d5:71:74:8c:5d:ba:0a:af:82:40:31:e6:42:da: 3b:9f:1d:b6:d2:a9:79:2f:f8:3d:77:16:cf:85:d4: f7:c5:bf:ef:f5:d6:45:3c:f7:20:50:d2:c5:a8:40: d3:cf:28:50:46:48:f3:65:1e:0b:10:cd:18:96:ef: 55:c5:ac:61:f6:d8:1b:51:37:2c:b5:83:68:a1:03: c1:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:37:E2:FB:5E:36:85:0A:8F:D3:85:AF:3C:27:87:3A:FC:91:D3:A1 X509v3 Authority Key Identifier: keyid:10:4C:F8:70:63:B5:EA:BF:34:DE:4E:25:FE:CE:9A:B5:AF:73:6C:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111FFD/42EB0534DD3811EF9C346745C4F9AE02/EEz4cGO16r803k4l_s6ata9zbBQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EEz4cGO16r803k4l_s6ata9zbBQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111FFD/42EB0534DD3811EF9C346745C4F9AE02/EEz4cGO16r803k4l_s6ata9zbBQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:0f:0f:54:71:86:11:ea:67:51:2e:c5:ed:bb:34:4d:01:47: 60:40:50:cf:52:b2:c1:92:c8:51:be:2f:1e:eb:77:04:e9:8c: ed:6d:9f:5e:9d:8c:ed:81:88:dc:85:b7:ae:e5:4e:2d:d3:4e: 7c:73:7b:83:16:02:cb:57:1b:8c:e9:fb:6c:75:30:b7:30:2b: 86:29:99:81:6e:e9:6a:1e:50:9b:55:39:22:35:4b:2b:5d:eb: a3:8b:e0:a6:cd:bd:54:b5:b0:ab:15:2f:30:00:16:87:3f:df: 2e:13:db:b1:6b:e6:a9:5a:e6:7d:11:68:34:2e:21:59:82:c4: 50:e1:e0:cb:f9:1e:51:40:55:fb:5e:be:d2:9e:40:6a:25:be: fd:e5:9b:9e:48:c8:c0:35:9e:16:64:28:45:2b:04:69:95:2e: 36:ea:b4:4f:ce:08:2f:02:7a:31:92:a9:7c:6d:51:21:75:99: e8:0e:dc:da:91:f9:88:67:30:f1:bf:be:4f:66:f5:97:2d:8b: ed:28:b8:4e:51:36:51:92:01:a3:17:cb:d7:73:62:e4:1d:a3: 13:3e:b4:b8:60:21:41:19:d5:09:22:fc:ca:52:3a:50:6b:5e: c6:f3:41:43:61:ec:c7:df:d9:25:c8:18:f3:60:77:ad:df:c8: ce:77:c2:98 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx MUZGRDExMC8GA1UEBRMoMTA0Q0Y4NzA2M0I1RUFCRjM0REU0RTI1RkVDRTlBQjVB RjczNkMxNDAeFw0yNTA1MzEwNzAyMjhaFw0yNTA2MDcwNzAyMjhaMBgxFjAUBgNV BAMTDTY4M2FhOTg1LWQxYWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDNznoyH+KOhGNpT8QZZR0fYH+yMAlkp/5OttbSRkw+hgGTv7gxH2L2k/HrKzwX TqQWg4sFWXCidyy/42gZJjzpXMpnIqboB/6L3U8sqXwhU7xir+iQHgkuRnHW9F+V TKORCbjaA4gl/IDjDj8byJU0NfLsBL6OeKtWvzh/ebix8+HuOG7lQ51lJk/oej7+ j83z3eNKRnNtlwfzVSY4MdeziXCKxiNZMfC1LDzXYX9v32SD9RfVcXSMXboKr4JA MeZC2jufHbbSqXkv+D13Fs+F1PfFv+/11kU89yBQ0sWoQNPPKFBGSPNlHgsQzRiW 71XFrGH22BtRNyy1g2ihA8FJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU6Dfi+142 hQqP04WvPCeHOvyR06EwHwYDVR0jBBgwFoAUEEz4cGO16r803k4l/s6ata9zbBQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTExRkZELzQyRUIwNTM0REQz ODExRUY5QzM0Njc0NUM0RjlBRTAyL0VFejRjR08xNnI4MDNrNGxfczZhdGE5emJC US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRUV6NGNHTzE2cjgwM2s0bF9zNmF0YTl6YkJRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEx RkZELzQyRUIwNTM0REQzODExRUY5QzM0Njc0NUM0RjlBRTAyL0VFejRjR08xNnI4 MDNrNGxfczZhdGE5emJCUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAB8PD1RxhhHqZ1Euxe27NE0BR2BAUM9SssGSyFG+Lx7rdwTpjO1tn16d jO2BiNyFt67lTi3TTnxze4MWAstXG4zp+2x1MLcwK4YpmYFu6WoeUJtVOSI1Sytd 66OL4KbNvVS1sKsVLzAAFoc/3y4T27Fr5qla5n0RaDQuIVmCxFDh4Mv5HlFAVfte vtKeQGolvv3lm55IyMA1nhZkKEUrBGmVLjbqtE/OCC8CejGSqXxtUSF1megO3NqR +YhnMPG/vk9m9Zcti+0ouE5RNlGSAaMXy9dzYuQdoxM+tLhgIUEZ1Qki/MpSOlBr XsbzQUNh7Mff2SXIGPNgd63fyM53wpg= -----END CERTIFICATE-----Generated at Sat May 31 17:06:21 2025 by rpki-client