$ rpki-client -vvf rpki.apnic.net/member_repository/A9154AA5/830E2694A0A911EAAF2EF211C4F9AE02/evqYcujQ_5IpleWJO1nDIUdnsfw.mft File: evqYcujQ_5IpleWJO1nDIUdnsfw.mft (raw, json) Hash identifier: oORcJ0podTYYH2tAzAwORqM3ZeSkY8uZTpwCvBOItd0= Subject key identifier: F2:02:D1:D4:BA:FC:60:5D:48:98:A9:4C:2D:63:81:F8:1C:85:22:F0 Authority key identifier: 7A:FA:98:72:E8:D0:FF:92:29:95:E5:89:3B:59:C3:21:47:67:B1:FC Certificate issuer: /CN=A9154AA5/serialNumber=7AFA9872E8D0FF922995E5893B59C3214767B1FC Certificate serial: 092D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/evqYcujQ_5IpleWJO1nDIUdnsfw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154AA5/830E2694A0A911EAAF2EF211C4F9AE02/evqYcujQ_5IpleWJO1nDIUdnsfw.mft Manifest number: 0926 Signing time: Fri 30 May 2025 20:58:56 +0000 Manifest this update: Fri 30 May 2025 20:58:55 +0000 Manifest next update: Fri 06 Jun 2025 20:58:55 +0000 Files and hashes: 1: evqYcujQ_5IpleWJO1nDIUdnsfw.crl (hash: KNmA1QYyM9HsDZHg/x8l6ksoSsUM97y6SQPsMbhin9c=) 2: 8F1FBA54B0AA11EA9603E729C4F9AE02.roa (hash: HE0g4qbaerNpZYgQWXYLHZHHXWJ2DGWdgE2xVoh1wXg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154AA5/830E2694A0A911EAAF2EF211C4F9AE02/evqYcujQ_5IpleWJO1nDIUdnsfw.crl rsync://rpki.apnic.net/member_repository/A9154AA5/830E2694A0A911EAAF2EF211C4F9AE02/evqYcujQ_5IpleWJO1nDIUdnsfw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/evqYcujQ_5IpleWJO1nDIUdnsfw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:58:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2349 (0x92d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154AA5, serialNumber=7AFA9872E8D0FF922995E5893B59C3214767B1FC Validity Not Before: May 30 20:58:55 2025 GMT Not After : Jun 6 20:58:55 2025 GMT Subject: CN=683a1c0f-06ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:1f:fa:e8:1b:28:a5:a7:10:2a:cc:91:e6:f3: c1:92:0e:7a:57:51:8a:11:63:12:d3:49:3f:56:79: ed:21:8c:1b:94:6b:50:11:23:61:d5:e6:06:af:cd: e3:48:df:45:d2:74:3f:b7:1a:c1:ba:77:bd:94:80: 10:9d:c0:28:49:d4:27:12:db:08:f7:f1:ec:83:f1: a1:0e:f9:11:ae:96:b0:06:39:4d:9d:9d:55:c1:64: 7e:5a:10:d6:29:e9:31:f7:09:bf:44:ad:42:a8:2f: c0:94:be:d0:45:57:f8:b2:dc:b0:37:8d:18:e7:f9: 39:4b:43:5d:d3:2b:88:31:66:20:3d:4d:5d:79:05: eb:6f:66:95:e0:ce:71:45:80:a5:ee:07:0f:a8:e2: c6:07:d5:55:d6:ae:33:ea:fa:7f:81:c0:3c:06:03: c3:94:c0:04:24:73:62:61:6f:e7:6f:6f:af:6e:3a: 20:4c:1c:10:11:4a:bd:4b:bf:41:e9:42:cc:cc:e8: 2b:2f:9c:8f:33:8f:cd:e8:70:fe:db:a3:36:fe:84: ce:8a:52:cc:f9:4c:3a:6a:66:f4:4d:71:04:fc:8d: db:af:a6:11:5e:6f:e5:c4:8c:50:da:16:36:34:06: 31:2c:7b:12:ff:aa:a8:4f:8d:4b:e9:cd:4e:f1:aa: e2:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:02:D1:D4:BA:FC:60:5D:48:98:A9:4C:2D:63:81:F8:1C:85:22:F0 X509v3 Authority Key Identifier: keyid:7A:FA:98:72:E8:D0:FF:92:29:95:E5:89:3B:59:C3:21:47:67:B1:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154AA5/830E2694A0A911EAAF2EF211C4F9AE02/evqYcujQ_5IpleWJO1nDIUdnsfw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/evqYcujQ_5IpleWJO1nDIUdnsfw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154AA5/830E2694A0A911EAAF2EF211C4F9AE02/evqYcujQ_5IpleWJO1nDIUdnsfw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:d0:cc:c5:8a:4f:72:cc:39:2d:8b:23:1d:47:bb:f2:87:09: 4c:41:6c:be:7b:31:44:30:c9:76:18:61:df:3d:3b:70:b5:06: fe:9c:b1:d3:6e:a4:ca:c3:9e:3a:a4:e2:d7:77:f7:d3:bb:34: fc:4a:63:3e:39:c1:cb:df:06:6a:52:d1:ec:b7:03:e2:bf:31: a1:6f:d7:3e:33:c0:f0:11:9d:df:c3:2b:33:5e:2f:07:b7:3b: e1:2a:7d:f0:fe:96:97:1c:81:14:f1:52:f6:9e:98:b0:46:a4: 26:1f:9d:49:1c:7a:bd:dd:8c:60:c6:bc:21:af:71:01:f7:6a: 9d:27:97:10:28:e5:ae:fe:ba:75:61:85:c6:ca:d5:d3:2e:b5: b7:11:36:ed:93:48:ed:99:e6:ad:88:05:10:29:31:84:20:a1: 77:ff:e6:b0:c1:a9:8d:34:32:f5:c2:1c:76:93:50:33:36:32: 8d:c1:c4:79:44:dc:0f:6e:39:89:bd:4e:8b:70:36:85:7b:fe: 38:d8:64:fe:41:e9:e0:6f:05:35:6f:02:9a:17:ef:e9:bd:7d: ca:16:4e:ab:99:c7:0e:84:2b:30:bf:fc:40:25:2e:d8:78:5b: 0a:88:a6:72:14:fd:9a:ed:3b:c1:a3:50:a6:4a:dc:27:65:b7: 91:8c:31:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRBQTUxMTAvBgNVBAUTKDdBRkE5ODcyRThEMEZGOTIyOTk1RTU4OTNCNTlDMzIx NDc2N0IxRkMwHhcNMjUwNTMwMjA1ODU1WhcNMjUwNjA2MjA1ODU1WjAYMRYwFAYD VQQDEw02ODNhMWMwZi0wNmVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuR/66BsopacQKsyR5vPBkg56V1GKEWMS00k/VnntIYwblGtQESNh1eYGr83j SN9F0nQ/txrBune9lIAQncAoSdQnEtsI9/Hsg/GhDvkRrpawBjlNnZ1VwWR+WhDW Kekx9wm/RK1CqC/AlL7QRVf4stywN40Y5/k5S0Nd0yuIMWYgPU1deQXrb2aV4M5x RYCl7gcPqOLGB9VV1q4z6vp/gcA8BgPDlMAEJHNiYW/nb2+vbjogTBwQEUq9S79B 6ULMzOgrL5yPM4/N6HD+26M2/oTOilLM+Uw6amb0TXEE/I3br6YRXm/lxIxQ2hY2 NAYxLHsS/6qoT41L6c1O8ariXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPIC0dS6 /GBdSJipTC1jgfgchSLwMB8GA1UdIwQYMBaAFHr6mHLo0P+SKZXliTtZwyFHZ7H8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEFBNS84MzBFMjY5NEEw QTkxMUVBQUYyRUYyMTFDNEY5QUUwMi9ldnFZY3VqUV81SXBsZVdKTzFuRElVZG5z ZncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V2cVljdWpRXzVJcGxlV0pPMW5ESVVkbnNmdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEFBNS84MzBFMjY5NEEwQTkxMUVBQUYyRUYyMTFDNEY5QUUwMi9ldnFZY3VqUV81 SXBsZVdKTzFuRElVZG5zZncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCW0MzFik9yzDktiyMdR7vyhwlMQWy+ezFEMMl2GGHfPTtwtQb+nLHT bqTKw546pOLXd/fTuzT8SmM+OcHL3wZqUtHstwPivzGhb9c+M8DwEZ3fwyszXi8H tzvhKn3w/paXHIEU8VL2npiwRqQmH51JHHq93Yxgxrwhr3EB92qdJ5cQKOWu/rp1 YYXGytXTLrW3ETbtk0jtmeatiAUQKTGEIKF3/+awwamNNDL1whx2k1AzNjKNwcR5 RNwPbjmJvU6LcDaFe/442GT+QengbwU1bwKaF+/pvX3KFk6rmccOhCswv/xAJS7Y eFsKiKZyFP2a7TvBo1CmStwnZbeRjDEK -----END CERTIFICATE-----Generated at Sat May 31 17:54:58 2025 by rpki-client