$ rpki-client -vvf rpki.apnic.net/member_repository/A91306B2/321FDD3E4D8311ED87FB1E6FC4F9AE02/EMpiwqdJv5H1YirewPGWGEk8u6k.mft File: EMpiwqdJv5H1YirewPGWGEk8u6k.mft (raw, json) Hash identifier: avzRv/hfu0rpplZss634R7untVkNK0UW9A76lSPtBuc= Subject key identifier: 1A:83:C6:07:18:81:C3:90:49:61:D4:BA:94:0C:F5:DC:78:76:B4:EB Authority key identifier: 10:CA:62:C2:A7:49:BF:91:F5:62:2A:DE:C0:F1:96:18:49:3C:BB:A9 Certificate issuer: /CN=A91306B2/serialNumber=10CA62C2A749BF91F5622ADEC0F19618493CBBA9 Certificate serial: 01EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EMpiwqdJv5H1YirewPGWGEk8u6k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91306B2/321FDD3E4D8311ED87FB1E6FC4F9AE02/EMpiwqdJv5H1YirewPGWGEk8u6k.mft Manifest number: 01E9 Signing time: Sat 31 May 2025 02:18:12 +0000 Manifest this update: Sat 31 May 2025 02:18:11 +0000 Manifest next update: Sat 07 Jun 2025 02:18:11 +0000 Files and hashes: 1: EMpiwqdJv5H1YirewPGWGEk8u6k.crl (hash: eyy3WT7y4L3/AJtcoN0IIZTwyXdeN5OSCPCzqjV/yDc=) 2: 695CA6D414BF11EEB8B95B7FC4F9AE02.roa (hash: y8u3ZZNWwXMV6EsCoReGtHsNbMX1mb+g+HfYKyQ+Y/Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91306B2/321FDD3E4D8311ED87FB1E6FC4F9AE02/EMpiwqdJv5H1YirewPGWGEk8u6k.crl rsync://rpki.apnic.net/member_repository/A91306B2/321FDD3E4D8311ED87FB1E6FC4F9AE02/EMpiwqdJv5H1YirewPGWGEk8u6k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EMpiwqdJv5H1YirewPGWGEk8u6k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 494 (0x1ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91306B2, serialNumber=10CA62C2A749BF91F5622ADEC0F19618493CBBA9 Validity Not Before: May 31 02:18:11 2025 GMT Not After : Jun 7 02:18:11 2025 GMT Subject: CN=683a66e3-d4d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:69:a0:6f:f2:0b:7c:82:bc:87:b8:06:8d:78: 84:15:fa:26:6c:42:95:e8:a7:2c:7e:15:c9:81:e3: 4e:0c:49:9b:9a:00:6d:94:ac:ac:a9:2a:64:71:50: a3:d3:55:f3:22:e5:4a:ed:c8:4b:8c:db:20:47:f8: 2a:36:7c:be:24:49:4a:63:09:6a:22:79:0a:3b:d9: 87:70:de:45:d4:be:b0:2b:5c:8b:3c:60:39:68:47: c2:7e:09:a3:a7:ab:a4:a9:8b:68:b3:83:e4:e8:80: f7:57:32:43:06:d0:9c:d3:f4:3c:b0:56:b6:14:3a: 77:1c:ae:fa:50:53:82:6d:7c:00:8d:49:9a:f4:01: e6:dd:35:51:fd:8f:0e:bb:50:90:60:ec:91:f7:0e: ea:01:85:d6:91:e8:fd:f8:d5:5d:f8:1d:e3:92:d4: 8d:b5:ed:b4:01:70:86:68:18:cc:bb:ef:37:c9:d3: 62:52:0c:73:0c:cc:87:51:5a:54:da:a2:9a:b0:bc: 76:93:03:ed:73:70:11:8b:d2:c9:de:ad:d7:5e:44: 3d:e1:d2:eb:66:ac:3b:aa:5a:aa:fc:74:96:9a:75: 06:1c:d7:10:98:b2:ae:25:a9:d2:4d:21:08:56:8d: e8:b2:3b:0e:2a:58:92:44:f8:dc:aa:0b:59:5f:61: d1:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:83:C6:07:18:81:C3:90:49:61:D4:BA:94:0C:F5:DC:78:76:B4:EB X509v3 Authority Key Identifier: keyid:10:CA:62:C2:A7:49:BF:91:F5:62:2A:DE:C0:F1:96:18:49:3C:BB:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91306B2/321FDD3E4D8311ED87FB1E6FC4F9AE02/EMpiwqdJv5H1YirewPGWGEk8u6k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EMpiwqdJv5H1YirewPGWGEk8u6k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91306B2/321FDD3E4D8311ED87FB1E6FC4F9AE02/EMpiwqdJv5H1YirewPGWGEk8u6k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:3c:9a:ea:1e:85:20:3d:da:da:fc:71:bd:59:21:4c:20:ff: c3:81:2f:46:96:58:3d:ff:4a:2a:09:9a:34:7e:f6:70:55:80: 1b:77:b7:62:e8:80:6b:05:d8:50:50:e7:32:36:82:50:2a:fe: d4:3a:85:15:3b:1f:d6:e2:6c:ad:92:6e:d3:2e:fa:53:f7:2b: 0c:74:1f:d6:03:7c:82:af:22:00:07:9c:e4:33:29:ee:11:06: a1:38:46:63:59:dd:36:ff:9d:f9:01:61:50:65:82:d2:c0:ce: fa:1b:2b:25:91:3b:f7:7a:41:c5:af:ea:04:5a:56:28:9e:b8: 7c:11:71:e8:71:9e:a1:a1:89:d7:d0:14:2e:e0:03:a7:4e:c1: bc:cc:55:63:92:b9:1f:bd:ca:20:a0:a1:90:db:bf:38:8c:38: f8:d4:55:8a:97:52:98:d7:bb:59:52:28:95:ea:f0:45:d8:a2: a9:cc:55:26:04:e2:8a:bb:48:c9:85:83:d3:a5:39:60:d5:40: c4:37:cb:8a:89:11:c8:75:fd:c4:e8:a2:ed:e0:ca:d3:61:c0: ab:35:b6:02:94:0d:eb:d3:1b:d4:7d:28:ac:5b:41:35:16:5c: ae:87:20:20:2f:d9:d5:22:81:ae:b9:2c:43:a0:68:89:95:4d: 4d:31:fd:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAe4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzA2QjIxMTAvBgNVBAUTKDEwQ0E2MkMyQTc0OUJGOTFGNTYyMkFERUMwRjE5NjE4 NDkzQ0JCQTkwHhcNMjUwNTMxMDIxODExWhcNMjUwNjA3MDIxODExWjAYMRYwFAYD VQQDEw02ODNhNjZlMy1kNGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoWmgb/ILfIK8h7gGjXiEFfombEKV6KcsfhXJgeNODEmbmgBtlKysqSpkcVCj 01XzIuVK7chLjNsgR/gqNny+JElKYwlqInkKO9mHcN5F1L6wK1yLPGA5aEfCfgmj p6ukqYtos4Pk6ID3VzJDBtCc0/Q8sFa2FDp3HK76UFOCbXwAjUma9AHm3TVR/Y8O u1CQYOyR9w7qAYXWkej9+NVd+B3jktSNte20AXCGaBjMu+83ydNiUgxzDMyHUVpU 2qKasLx2kwPtc3ARi9LJ3q3XXkQ94dLrZqw7qlqq/HSWmnUGHNcQmLKuJanSTSEI Vo3osjsOKliSRPjcqgtZX2HRLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBqDxgcY gcOQSWHUupQM9dx4drTrMB8GA1UdIwQYMBaAFBDKYsKnSb+R9WIq3sDxlhhJPLup MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDZCMi8zMjFGREQzRTRE ODMxMUVEODdGQjFFNkZDNEY5QUUwMi9FTXBpd3FkSnY1SDFZaXJld1BHV0dFazh1 NmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VNcGl3cWRKdjVIMVlpcmV3UEdXR0VrOHU2ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDZCMi8zMjFGREQzRTREODMxMUVEODdGQjFFNkZDNEY5QUUwMi9FTXBpd3FkSnY1 SDFZaXJld1BHV0dFazh1NmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcPJrqHoUgPdra/HG9WSFMIP/DgS9Gllg9/0oqCZo0fvZwVYAbd7di 6IBrBdhQUOcyNoJQKv7UOoUVOx/W4mytkm7TLvpT9ysMdB/WA3yCryIAB5zkMynu EQahOEZjWd02/535AWFQZYLSwM76GyslkTv3ekHFr+oEWlYonrh8EXHocZ6hoYnX 0BQu4AOnTsG8zFVjkrkfvcogoKGQ2784jDj41FWKl1KY17tZUiiV6vBF2KKpzFUm BOKKu0jJhYPTpTlg1UDEN8uKiRHIdf3E6KLt4MrTYcCrNbYClA3r0xvUfSisW0E1 FlyuhyAgL9nVIoGuuSxDoGiJlU1NMf3K -----END CERTIFICATE-----Generated at Sat May 31 17:31:56 2025 by rpki-client