$ rpki-client -vvf rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/enhVXghERXV_vNAN3R10w2nLoLA.mft File: enhVXghERXV_vNAN3R10w2nLoLA.mft (raw, json) Hash identifier: 4o9250hKteNMiuA/EYFfaqgRI9OVl0y/YIRe1i4o0Ck= Subject key identifier: DD:66:D1:47:98:0D:30:25:46:FB:29:21:0C:EA:47:0C:44:43:E1:B6 Authority key identifier: 7A:78:55:5E:08:44:45:75:7F:BC:D0:0D:DD:1D:74:C3:69:CB:A0:B0 Certificate issuer: /CN=A914E6AA/serialNumber=7A78555E084445757FBCD00DDD1D74C369CBA0B0 Certificate serial: 014B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/enhVXghERXV_vNAN3R10w2nLoLA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/enhVXghERXV_vNAN3R10w2nLoLA.mft Manifest number: 08DB Signing time: Fri 30 May 2025 23:07:37 +0000 Manifest this update: Fri 30 May 2025 23:07:37 +0000 Manifest next update: Fri 06 Jun 2025 23:07:37 +0000 Files and hashes: 1: enhVXghERXV_vNAN3R10w2nLoLA.crl (hash: uIJQdLhhIWo3q1Rayum1X6Ad1ur0ZCdd3MQ+fXiN260=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/enhVXghERXV_vNAN3R10w2nLoLA.crl rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/enhVXghERXV_vNAN3R10w2nLoLA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/enhVXghERXV_vNAN3R10w2nLoLA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 23:07:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 331 (0x14b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E6AA, serialNumber=7A78555E084445757FBCD00DDD1D74C369CBA0B0 Validity Not Before: May 30 23:07:37 2025 GMT Not After : Jun 6 23:07:37 2025 GMT Subject: CN=683a3a39-8615 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:14:a9:d6:48:f6:f4:87:6d:42:cf:2d:e5:36: 64:ce:26:6d:1f:ef:c9:89:43:8c:05:58:e1:94:37: 90:70:61:d9:b9:d3:52:f8:d0:64:22:4a:17:b6:df: f6:d4:dd:a3:94:4f:44:56:26:c7:21:2a:4e:65:85: c1:62:f8:94:e4:35:17:86:1a:a0:70:72:96:67:5a: dd:f6:a9:78:5d:73:71:3d:0c:fc:dd:67:a2:57:20: d7:fa:bb:25:e3:cd:78:b1:e9:83:fe:76:69:80:2f: 44:31:04:3e:e2:1d:90:a9:64:4c:44:fa:94:55:1a: ec:0a:3c:72:bf:6b:ee:e3:ff:5a:13:54:eb:94:0d: 42:e9:38:cd:d2:2a:1b:b4:80:88:50:1e:48:69:35: 92:1b:87:d0:17:67:c0:c0:20:18:5f:9c:1d:75:3a: ac:4e:bf:a0:f6:9a:c2:9f:d2:dd:ea:37:1e:2c:33: a8:3e:23:31:aa:25:ae:00:d6:ae:ae:94:88:65:1a: c6:64:21:7a:59:2c:2e:5a:28:fe:fe:cd:4b:41:d0: de:b9:31:63:8b:46:e4:23:22:57:c6:ca:3c:22:08: 68:73:06:a3:8a:8f:db:ea:fa:dc:53:83:16:63:a4: 5d:1b:65:cc:10:ed:82:44:94:36:bb:a4:54:a8:84: 15:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:66:D1:47:98:0D:30:25:46:FB:29:21:0C:EA:47:0C:44:43:E1:B6 X509v3 Authority Key Identifier: keyid:7A:78:55:5E:08:44:45:75:7F:BC:D0:0D:DD:1D:74:C3:69:CB:A0:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/enhVXghERXV_vNAN3R10w2nLoLA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/enhVXghERXV_vNAN3R10w2nLoLA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/enhVXghERXV_vNAN3R10w2nLoLA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:cc:d6:fc:ea:7c:5f:4e:15:cd:a3:9c:7c:e6:73:d1:a2:8d: 3f:da:91:89:c1:6c:f3:c2:9c:5b:72:23:45:ec:77:09:d4:5a: 21:df:53:27:b9:5b:f0:52:22:4d:fe:8e:aa:a2:0c:d6:ec:40: 43:98:65:9b:16:0e:a8:ff:25:96:04:da:88:86:e6:c0:38:dc: 19:b7:26:43:31:fb:c7:29:8a:0c:a1:0f:a3:c3:10:66:c6:96: c0:56:1e:0c:46:d3:d9:d9:48:b5:e8:b0:df:26:4d:f0:9f:52: c0:0a:94:7f:41:00:58:f2:cc:5d:0f:c0:2e:25:12:03:60:56: 28:57:26:99:d3:ba:6d:d9:79:78:4f:90:e5:af:7b:5e:52:e0: 76:b4:56:4a:25:aa:3f:dc:1b:52:90:ec:c5:c3:28:e6:d5:5d: 6d:14:3b:56:bc:89:24:b6:02:3a:3a:cd:23:95:6b:03:3c:22: 9b:d7:22:59:8d:2a:7b:cc:48:11:97:1b:50:6a:41:f2:df:77: 13:f5:2b:89:ab:aa:c1:8b:bf:03:c9:d1:68:e6:e5:1f:5f:ae: 23:c8:77:d3:85:8b:8e:1a:b5:89:91:ad:90:aa:27:a8:20:e2: d2:c4:e0:cb:eb:bd:8a:64:83:cd:8f:ee:d4:00:da:09:a7:99: a3:e4:b4:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU2QUExMTAvBgNVBAUTKDdBNzg1NTVFMDg0NDQ1NzU3RkJDRDAwREREMUQ3NEMz NjlDQkEwQjAwHhcNMjUwNTMwMjMwNzM3WhcNMjUwNjA2MjMwNzM3WjAYMRYwFAYD VQQDEw02ODNhM2EzOS04NjE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnRSp1kj29IdtQs8t5TZkziZtH+/JiUOMBVjhlDeQcGHZudNS+NBkIkoXtt/2 1N2jlE9EVibHISpOZYXBYviU5DUXhhqgcHKWZ1rd9ql4XXNxPQz83WeiVyDX+rsl 4814semD/nZpgC9EMQQ+4h2QqWRMRPqUVRrsCjxyv2vu4/9aE1TrlA1C6TjN0iob tICIUB5IaTWSG4fQF2fAwCAYX5wddTqsTr+g9prCn9Ld6jceLDOoPiMxqiWuANau rpSIZRrGZCF6WSwuWij+/s1LQdDeuTFji0bkIyJXxso8Ighocwajio/b6vrcU4MW Y6RdG2XMEO2CRJQ2u6RUqIQVbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN1m0UeY DTAlRvspIQzqRwxEQ+G2MB8GA1UdIwQYMBaAFHp4VV4IREV1f7zQDd0ddMNpy6Cw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTZBQS84RURCMTA3RUFE QTgxMUVCQTdDOUY1NjdDNEY5QUUwMi9lbmhWWGdoRVJYVl92TkFOM1IxMHcybkxv TEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VuaFZYZ2hFUlhWX3ZOQU4zUjEwdzJuTG9MQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTZBQS84RURCMTA3RUFEQTgxMUVCQTdDOUY1NjdDNEY5QUUwMi9lbmhWWGdoRVJY Vl92TkFOM1IxMHcybkxvTEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJzNb86nxfThXNo5x85nPRoo0/2pGJwWzzwpxbciNF7HcJ1Foh31Mn uVvwUiJN/o6qogzW7EBDmGWbFg6o/yWWBNqIhubAONwZtyZDMfvHKYoMoQ+jwxBm xpbAVh4MRtPZ2Ui16LDfJk3wn1LACpR/QQBY8sxdD8AuJRIDYFYoVyaZ07pt2Xl4 T5Dlr3teUuB2tFZKJao/3BtSkOzFwyjm1V1tFDtWvIkktgI6Os0jlWsDPCKb1yJZ jSp7zEgRlxtQakHy33cT9SuJq6rBi78DydFo5uUfX64jyHfThYuOGrWJka2Qqieo IOLSxODL672KZIPNj+7UANoJp5mj5LTl -----END CERTIFICATE-----Generated at Sat May 31 16:49:14 2025 by rpki-client