$ rpki-client -vvf rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.mft File: EK5_oM-c-qh-uthEzYxCasHDpec.mft (raw, json) Hash identifier: Y6T33jszonNcgiwt5hwtTf1A1XYXeFyuqEML6+x2vu4= Subject key identifier: CA:22:F7:58:AA:E1:29:7A:89:D1:C8:AB:AC:72:E4:59:BE:56:AF:3F Authority key identifier: 10:AE:7F:A0:CF:9C:FA:A8:7E:BA:D8:44:CD:8C:42:6A:C1:C3:A5:E7 Certificate issuer: /CN=A9123BFF/serialNumber=10AE7FA0CF9CFAA87EBAD844CD8C426AC1C3A5E7 Certificate serial: 2075 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EK5_oM-c-qh-uthEzYxCasHDpec.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.mft Manifest number: 206D Signing time: Fri 30 May 2025 16:09:10 +0000 Manifest this update: Fri 30 May 2025 16:09:09 +0000 Manifest next update: Fri 06 Jun 2025 16:09:09 +0000 Files and hashes: 1: EK5_oM-c-qh-uthEzYxCasHDpec.crl (hash: fdtVL6JwUygJnQEHD3VPbatM/xcGVTv3oqIoSgeYVNU=) 2: 449C08948D1211EBB9548186C4F9AE02.roa (hash: 4cmAc73Ya3K4uXCXYcHrxMilUHhYgfgcQY7RcTrdD4o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.crl rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EK5_oM-c-qh-uthEzYxCasHDpec.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 16:09:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8309 (0x2075) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123BFF, serialNumber=10AE7FA0CF9CFAA87EBAD844CD8C426AC1C3A5E7 Validity Not Before: May 30 16:09:09 2025 GMT Not After : Jun 6 16:09:09 2025 GMT Subject: CN=6839d825-8868 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:6f:27:f8:da:9e:05:02:ee:17:7b:57:fa:68: 3f:4c:b0:3a:76:de:d9:d0:4b:65:ea:bc:46:09:ac: 83:dc:c3:5a:00:6d:6b:f4:f3:9e:23:7d:42:7d:b6: 35:f4:fd:e3:93:82:be:24:e7:c0:4a:2f:8d:17:59: da:c1:51:e5:63:87:ff:98:7d:4e:35:52:e9:b4:c6: dc:62:94:03:9a:08:ef:b9:3b:1e:93:6a:d1:0f:1b: 48:78:66:6e:29:5c:5e:da:f5:21:2d:13:11:31:b8: 8e:75:77:06:7c:0b:3c:61:17:1c:f4:9c:dc:2f:07: b4:2b:43:f1:18:46:82:ae:38:cb:2a:83:4d:a3:82: d7:46:0a:b6:ab:43:a3:c9:44:bc:d6:7e:0c:5a:67: ec:6a:47:79:63:a1:16:25:89:8b:b4:7c:40:a6:3d: 35:10:91:a0:b8:08:f6:de:2a:68:88:56:82:c2:4c: d8:1c:4e:f9:35:c4:50:cc:96:c8:ab:e0:20:61:a9: 50:80:a1:9d:2e:90:45:f5:0e:9e:f0:85:55:40:55: 62:8f:e5:cd:f6:cf:a2:b5:ae:0e:4e:c2:c1:f1:bf: 6a:1b:99:db:f0:5d:61:95:8d:94:be:61:55:4c:02: 19:6e:33:ba:92:71:5a:8e:b6:93:7a:30:a4:93:d9: c7:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:22:F7:58:AA:E1:29:7A:89:D1:C8:AB:AC:72:E4:59:BE:56:AF:3F X509v3 Authority Key Identifier: keyid:10:AE:7F:A0:CF:9C:FA:A8:7E:BA:D8:44:CD:8C:42:6A:C1:C3:A5:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EK5_oM-c-qh-uthEzYxCasHDpec.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:ae:5b:ea:af:3a:60:0b:f1:82:3e:9b:16:fd:f6:fb:ac:7e: f2:cd:d1:21:19:12:f5:12:22:0b:5a:92:c1:7e:5e:2d:d3:b4: 70:d1:00:b9:94:f8:1e:10:fa:00:96:59:8d:e7:77:9c:cb:e5: 6b:e4:7d:a8:66:24:55:2d:c2:db:a1:0e:d5:20:42:b3:f9:14: 7c:ac:4d:a8:ec:43:a9:1d:66:f1:14:d0:af:f7:e8:7a:34:ba: 46:07:d7:1f:a4:9c:89:c0:9d:bd:a2:6d:47:10:b0:50:23:75: dc:2d:8e:13:9c:41:7d:05:a3:c3:9e:aa:78:9c:0f:34:6f:6b: 61:7e:ed:f9:14:ed:cd:68:67:e6:3e:98:c0:17:72:85:60:fa: 2c:56:ea:32:bd:a9:b8:7c:32:4a:da:6d:5a:11:bb:cb:7d:ea: 63:60:15:6f:40:9c:e2:45:60:a0:92:94:2f:57:dc:aa:02:04: 6b:2b:9c:8c:4d:fd:da:eb:23:10:d3:ce:7f:9b:35:14:60:db: 76:67:ae:53:82:d8:8f:f5:af:66:f3:2d:30:42:25:24:0c:e2: 10:10:82:bb:53:2c:76:ab:f6:18:8f:2e:c3:f0:bc:89:fd:08: d4:df:03:26:1c:7c:b5:2d:b2:06:91:35:be:ba:32:f7:ba:59: 51:99:19:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIHUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNCRkYxMTAvBgNVBAUTKDEwQUU3RkEwQ0Y5Q0ZBQTg3RUJBRDg0NENEOEM0MjZB QzFDM0E1RTcwHhcNMjUwNTMwMTYwOTA5WhcNMjUwNjA2MTYwOTA5WjAYMRYwFAYD VQQDEw02ODM5ZDgyNS04ODY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtm8n+NqeBQLuF3tX+mg/TLA6dt7Z0Etl6rxGCayD3MNaAG1r9POeI31CfbY1 9P3jk4K+JOfASi+NF1nawVHlY4f/mH1ONVLptMbcYpQDmgjvuTsek2rRDxtIeGZu KVxe2vUhLRMRMbiOdXcGfAs8YRcc9JzcLwe0K0PxGEaCrjjLKoNNo4LXRgq2q0Oj yUS81n4MWmfsakd5Y6EWJYmLtHxApj01EJGguAj23ipoiFaCwkzYHE75NcRQzJbI q+AgYalQgKGdLpBF9Q6e8IVVQFVij+XN9s+ita4OTsLB8b9qG5nb8F1hlY2UvmFV TAIZbjO6knFajraTejCkk9nHfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMoi91iq 4Sl6idHIq6xy5Fm+Vq8/MB8GA1UdIwQYMBaAFBCuf6DPnPqofrrYRM2MQmrBw6Xn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0JGRi9GMjkwODI5QTEw REExMUU2ODVDNEJCM0RDNEY5QUUwMi9FSzVfb00tYy1xaC11dGhFell4Q2FzSERw ZWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VLNV9vTS1jLXFoLXV0aEV6WXhDYXNIRHBlYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0JGRi9GMjkwODI5QTEwREExMUU2ODVDNEJCM0RDNEY5QUUwMi9FSzVfb00tYy1x aC11dGhFell4Q2FzSERwZWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvrlvqrzpgC/GCPpsW/fb7rH7yzdEhGRL1EiILWpLBfl4t07Rw0QC5 lPgeEPoAllmN53ecy+Vr5H2oZiRVLcLboQ7VIEKz+RR8rE2o7EOpHWbxFNCv9+h6 NLpGB9cfpJyJwJ29om1HELBQI3XcLY4TnEF9BaPDnqp4nA80b2thfu35FO3NaGfm PpjAF3KFYPosVuoyvam4fDJK2m1aEbvLfepjYBVvQJziRWCgkpQvV9yqAgRrK5yM Tf3a6yMQ085/mzUUYNt2Z65TgtiP9a9m8y0wQiUkDOIQEIK7Uyx2q/YYjy7D8LyJ /QjU3wMmHHy1LbIGkTW+ujL3ullRmRkg -----END CERTIFICATE-----Generated at Sat May 31 15:36:55 2025 by rpki-client