$ rpki-client -vvf rpki.apnic.net/member_repository/A912A70D/1114C9BA595011ECAE093282C4F9AE02/eHZtYCpA71cBQmhKcj6KNAxv84I.mft File: eHZtYCpA71cBQmhKcj6KNAxv84I.mft (raw, json) Hash identifier: pHI/4PLU0rmGrKtAxgfTaongbDE7KXWgiPBH9ooPj84= Subject key identifier: 2E:FD:2F:2E:FC:F0:CF:AC:03:8F:82:76:75:7E:6B:B6:8E:82:91:2E Authority key identifier: 78:76:6D:60:2A:40:EF:57:01:42:68:4A:72:3E:8A:34:0C:6F:F3:82 Certificate issuer: /CN=A912A70D/serialNumber=78766D602A40EF570142684A723E8A340C6FF382 Certificate serial: 0447 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHZtYCpA71cBQmhKcj6KNAxv84I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A70D/1114C9BA595011ECAE093282C4F9AE02/eHZtYCpA71cBQmhKcj6KNAxv84I.mft Manifest number: 0443 Signing time: Sat 31 May 2025 00:28:18 +0000 Manifest this update: Sat 31 May 2025 00:28:18 +0000 Manifest next update: Sat 07 Jun 2025 00:28:17 +0000 Files and hashes: 1: eHZtYCpA71cBQmhKcj6KNAxv84I.crl (hash: TN70JuctpO4QgHqU4olXO+pwKQtk8L1G1uRSCEmkBaw=) 2: 90AE61AC595711EC8761C361C4F9AE02.roa (hash: xHB6klxUWxKIW0ZETWDrSBAoOokIy/M1aOS9u4crx4w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A70D/1114C9BA595011ECAE093282C4F9AE02/eHZtYCpA71cBQmhKcj6KNAxv84I.crl rsync://rpki.apnic.net/member_repository/A912A70D/1114C9BA595011ECAE093282C4F9AE02/eHZtYCpA71cBQmhKcj6KNAxv84I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHZtYCpA71cBQmhKcj6KNAxv84I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:28:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1095 (0x447) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A70D, serialNumber=78766D602A40EF570142684A723E8A340C6FF382 Validity Not Before: May 31 00:28:18 2025 GMT Not After : Jun 7 00:28:17 2025 GMT Subject: CN=683a4d22-43ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:42:c4:86:0f:03:51:56:e2:57:c5:4b:3a:75: 21:89:24:22:1e:78:c7:f5:64:0b:e6:43:4f:c6:ef: 21:bf:53:00:fa:a5:d4:c7:cd:ec:60:6b:89:b6:29: 99:39:79:06:b4:66:c4:34:58:7f:e7:3e:3e:03:02: 8a:1a:88:c4:cb:2e:20:a9:e9:24:cb:8a:b3:1f:83: c0:34:06:d4:cf:8b:6d:70:08:2f:01:29:86:91:1d: ca:be:43:32:b0:be:80:5a:29:c6:cf:ad:1d:fa:b7: 72:6e:7a:36:d0:55:ff:26:be:52:bf:3c:82:92:71: 2f:f2:14:0e:c7:80:7c:9a:83:d7:f4:ee:59:02:e8: 0a:4d:7b:6f:c3:5b:53:05:f1:81:50:39:99:b0:75: 97:bc:66:7d:a7:24:08:5e:60:30:d2:fc:5a:a2:4b: 2d:f7:4d:1d:0b:a4:2a:c5:f1:9a:56:84:23:2d:09: f5:41:38:af:c2:a8:e1:71:17:1e:f5:5a:df:8d:53: ab:f1:91:32:c3:f2:6d:fb:9f:57:a7:c3:22:e7:b4: 74:22:30:7e:f6:24:5b:da:f7:27:de:1b:63:bd:86: a1:6a:71:f0:b8:ba:b6:bc:33:b3:af:f1:5f:8c:e0: d5:76:9d:0e:38:31:73:52:79:8b:65:85:86:26:93: ca:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:FD:2F:2E:FC:F0:CF:AC:03:8F:82:76:75:7E:6B:B6:8E:82:91:2E X509v3 Authority Key Identifier: keyid:78:76:6D:60:2A:40:EF:57:01:42:68:4A:72:3E:8A:34:0C:6F:F3:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A70D/1114C9BA595011ECAE093282C4F9AE02/eHZtYCpA71cBQmhKcj6KNAxv84I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHZtYCpA71cBQmhKcj6KNAxv84I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A70D/1114C9BA595011ECAE093282C4F9AE02/eHZtYCpA71cBQmhKcj6KNAxv84I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:aa:3b:40:71:a1:fa:e0:5e:3a:13:4a:20:ba:f2:b9:7c:88: 39:29:08:1b:44:0c:2c:4b:fa:79:c7:64:e0:48:93:04:6d:fa: 8a:f7:ae:25:0a:38:c1:c6:cc:2e:93:d2:44:93:68:f4:c2:5e: fe:30:82:a3:55:20:99:e0:44:39:30:a3:62:bf:51:19:14:9a: 81:5b:ab:d8:e3:c7:e5:49:38:04:9b:7d:cc:4a:04:86:ac:f0: f4:50:03:e9:68:3d:b2:1d:f1:b0:e5:c0:94:3c:db:b9:15:ff: 51:2f:f4:f8:3f:11:96:08:fa:d4:64:b4:cc:61:68:3a:45:ae: 08:e0:90:b8:f1:8f:b6:97:96:47:36:5a:3d:6c:97:a5:f3:72: 15:89:f1:ec:ec:6b:9d:bd:cf:8c:64:0f:3e:aa:b4:b9:52:37: 7b:5f:45:3d:57:c8:d6:84:46:f8:10:25:04:bb:18:23:b1:48: 73:11:46:be:ba:c0:0c:e3:f6:e6:e5:ef:48:a5:84:e5:79:7c: 3f:b7:71:a6:e8:34:ec:ba:b3:e4:2a:c2:74:ad:92:4d:d8:e4: f8:0b:2e:74:6b:8f:c6:e5:6c:36:e6:4a:25:6f:6c:33:c7:4e: 50:0b:45:0c:e2:83:47:63:46:75:8c:d8:f4:4e:87:23:71:b4: e3:5b:b2:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkE3MEQxMTAvBgNVBAUTKDc4NzY2RDYwMkE0MEVGNTcwMTQyNjg0QTcyM0U4QTM0 MEM2RkYzODIwHhcNMjUwNTMxMDAyODE4WhcNMjUwNjA3MDAyODE3WjAYMRYwFAYD VQQDEw02ODNhNGQyMi00M2VlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmELEhg8DUVbiV8VLOnUhiSQiHnjH9WQL5kNPxu8hv1MA+qXUx83sYGuJtimZ OXkGtGbENFh/5z4+AwKKGojEyy4gqekky4qzH4PANAbUz4ttcAgvASmGkR3KvkMy sL6AWinGz60d+rdybno20FX/Jr5SvzyCknEv8hQOx4B8moPX9O5ZAugKTXtvw1tT BfGBUDmZsHWXvGZ9pyQIXmAw0vxaokst900dC6QqxfGaVoQjLQn1QTivwqjhcRce 9VrfjVOr8ZEyw/Jt+59Xp8Mi57R0IjB+9iRb2vcn3htjvYahanHwuLq2vDOzr/Ff jODVdp0OODFzUnmLZYWGJpPK1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC79Ly78 8M+sA4+CdnV+a7aOgpEuMB8GA1UdIwQYMBaAFHh2bWAqQO9XAUJoSnI+ijQMb/OC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTcwRC8xMTE0QzlCQTU5 NTAxMUVDQUUwOTMyODJDNEY5QUUwMi9lSFp0WUNwQTcxY0JRbWhLY2o2S05BeHY4 NEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VIWnRZQ3BBNzFjQlFtaEtjajZLTkF4djg0SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QTcwRC8xMTE0QzlCQTU5NTAxMUVDQUUwOTMyODJDNEY5QUUwMi9lSFp0WUNwQTcx Y0JRbWhLY2o2S05BeHY4NEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAqjtAcaH64F46E0oguvK5fIg5KQgbRAwsS/p5x2TgSJMEbfqK964l CjjBxswuk9JEk2j0wl7+MIKjVSCZ4EQ5MKNiv1EZFJqBW6vY48flSTgEm33MSgSG rPD0UAPpaD2yHfGw5cCUPNu5Ff9RL/T4PxGWCPrUZLTMYWg6Ra4I4JC48Y+2l5ZH Nlo9bJel83IVifHs7Gudvc+MZA8+qrS5Ujd7X0U9V8jWhEb4ECUEuxgjsUhzEUa+ usAM4/bm5e9IpYTleXw/t3Gm6DTsurPkKsJ0rZJN2OT4Cy50a4/G5Ww25kolb2wz x05QC0UM4oNHY0Z1jNj0TocjcbTjW7Ld -----END CERTIFICATE-----Generated at Sat May 31 17:39:14 2025 by rpki-client