$ rpki-client -vvf rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft File: ehMEShEYWGwP2hOLs-vdSEiRTjc.mft (raw, json) Hash identifier: cJ2upPg6RJMWpAlswYIiMCuqlKpBrSc7FsFdwuzzspE= Subject key identifier: 1D:2A:97:E3:94:E3:95:52:9A:08:1C:BE:62:AD:30:D5:99:6A:28:D2 Authority key identifier: 7A:13:04:4A:11:18:58:6C:0F:DA:13:8B:B3:EB:DD:48:48:91:4E:37 Certificate issuer: /CN=A9154EAF/serialNumber=7A13044A1118586C0FDA138BB3EBDD4848914E37 Certificate serial: 0261 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ehMEShEYWGwP2hOLs-vdSEiRTjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft Manifest number: 025E Signing time: Sat 31 May 2025 01:58:36 +0000 Manifest this update: Sat 31 May 2025 01:58:35 +0000 Manifest next update: Sat 07 Jun 2025 01:58:35 +0000 Files and hashes: 1: ehMEShEYWGwP2hOLs-vdSEiRTjc.crl (hash: CTBRTS1wyiuFC6Srq8cfNlntlQhj2/9z3OShociO0vg=) 2: 62A0C17A16C511ED91E80F56C4F9AE02.roa (hash: kng6fCGLTbPsbCoI7dxHc95AMq1MgoPXW3QCzJfYN0g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.crl rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ehMEShEYWGwP2hOLs-vdSEiRTjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:58:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 609 (0x261) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154EAF, serialNumber=7A13044A1118586C0FDA138BB3EBDD4848914E37 Validity Not Before: May 31 01:58:35 2025 GMT Not After : Jun 7 01:58:35 2025 GMT Subject: CN=683a624c-8b61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:99:f5:92:4e:e6:8c:8f:60:8c:d2:57:80:79: 58:10:aa:5c:d4:b9:42:55:7d:0d:ed:66:b2:cc:80: 8e:b9:46:1c:a4:0e:d4:9a:9f:77:e1:a0:cb:dd:dc: ba:5f:c2:ce:c7:09:06:58:73:ee:e7:f1:02:2f:79: 33:15:43:ab:b8:e2:34:90:f1:7b:ce:fb:17:df:aa: a5:87:fa:82:e9:bb:d8:12:04:ca:7d:dd:a6:2b:e1: c8:0b:ac:0d:f8:e0:35:11:b5:00:85:f5:ae:79:4d: 45:80:17:ec:22:f7:d1:96:df:08:3a:99:9d:91:fe: ed:fd:5d:89:ae:06:bf:f1:d9:15:90:f8:5d:9f:26: c6:d1:88:c1:69:48:be:48:dd:95:67:46:ee:8d:f0: 93:1e:57:c8:8f:f5:89:ae:55:b4:13:8e:f5:bc:c0: 96:90:a9:5b:dc:9b:05:38:7f:09:f4:a5:1f:c3:b2: e9:5b:ac:fe:1e:75:46:e9:71:0f:22:98:53:8e:e4: 24:f9:68:7d:ed:44:14:89:8b:cc:6a:54:8b:28:3a: cb:f6:cb:36:5c:82:f7:7b:50:51:dd:76:ba:a6:ef: de:2e:87:d0:53:7b:a1:99:e9:7e:7d:3e:e6:60:ce: f3:37:2c:de:fa:e5:42:82:c8:6e:12:59:5e:40:2a: 99:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:2A:97:E3:94:E3:95:52:9A:08:1C:BE:62:AD:30:D5:99:6A:28:D2 X509v3 Authority Key Identifier: keyid:7A:13:04:4A:11:18:58:6C:0F:DA:13:8B:B3:EB:DD:48:48:91:4E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ehMEShEYWGwP2hOLs-vdSEiRTjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:8c:1e:f9:51:1b:70:ab:95:0c:77:41:3f:49:45:4e:16:05: d3:da:4e:ad:f2:ea:dd:db:ab:49:76:df:80:9b:89:68:61:81: cd:b1:e0:ed:83:24:e0:4a:e6:e6:c6:27:b4:b0:2b:30:92:fd: 40:83:68:33:cb:64:9e:1a:19:dc:b3:07:55:92:34:d0:f5:8d: 1c:34:97:c6:54:e4:61:0f:58:c3:f3:9f:b3:5e:ff:d3:13:f3: 16:41:51:91:c3:ca:35:7d:15:d9:30:f2:fa:c9:56:58:37:f9: 2c:55:0b:3f:5a:b4:b9:60:76:35:68:6a:d7:0d:14:2d:11:38: 3c:65:b7:a3:da:2a:86:4c:e0:b4:9b:da:e6:0b:a2:af:59:b6: e9:14:cc:58:cf:e3:23:52:85:33:b9:c3:0c:62:6e:df:f7:ea: 03:b2:5e:c1:01:e5:1a:e3:78:9e:19:26:4c:c6:6b:f4:db:a5: 30:23:11:25:db:2a:f1:09:e0:b7:fd:30:16:01:a6:1d:9d:fc: a0:1f:e2:f3:68:11:d9:f6:01:56:cc:e8:50:2b:bc:9a:72:a4: 74:64:c8:9c:81:b2:ac:5f:b8:5d:e3:49:88:f6:be:97:b7:63: 94:84:ee:4e:dc:4c:d8:81:65:e9:a2:ed:fb:30:11:76:29:87: b0:64:c8:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRFQUYxMTAvBgNVBAUTKDdBMTMwNDRBMTExODU4NkMwRkRBMTM4QkIzRUJERDQ4 NDg5MTRFMzcwHhcNMjUwNTMxMDE1ODM1WhcNMjUwNjA3MDE1ODM1WjAYMRYwFAYD VQQDEw02ODNhNjI0Yy04YjYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA95n1kk7mjI9gjNJXgHlYEKpc1LlCVX0N7WayzICOuUYcpA7Ump934aDL3dy6 X8LOxwkGWHPu5/ECL3kzFUOruOI0kPF7zvsX36qlh/qC6bvYEgTKfd2mK+HIC6wN +OA1EbUAhfWueU1FgBfsIvfRlt8IOpmdkf7t/V2Jrga/8dkVkPhdnybG0YjBaUi+ SN2VZ0bujfCTHlfIj/WJrlW0E471vMCWkKlb3JsFOH8J9KUfw7LpW6z+HnVG6XEP IphTjuQk+Wh97UQUiYvMalSLKDrL9ss2XIL3e1BR3Xa6pu/eLofQU3uhmel+fT7m YM7zNyze+uVCgshuElleQCqZnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB0ql+OU 45VSmggcvmKtMNWZaijSMB8GA1UdIwQYMBaAFHoTBEoRGFhsD9oTi7Pr3UhIkU43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEVBRi80N0Q1QTdFMDE2 QzMxMUVEQUU3RUI5NTVDNEY5QUUwMi9laE1FU2hFWVdHd1AyaE9Mcy12ZFNFaVJU amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VoTUVTaEVZV0d3UDJoT0xzLXZkU0VpUlRqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEVBRi80N0Q1QTdFMDE2QzMxMUVEQUU3RUI5NTVDNEY5QUUwMi9laE1FU2hFWVdH d1AyaE9Mcy12ZFNFaVJUamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSjB75URtwq5UMd0E/SUVOFgXT2k6t8urd26tJdt+Am4loYYHNseDt gyTgSubmxie0sCswkv1Ag2gzy2SeGhncswdVkjTQ9Y0cNJfGVORhD1jD85+zXv/T E/MWQVGRw8o1fRXZMPL6yVZYN/ksVQs/WrS5YHY1aGrXDRQtETg8Zbej2iqGTOC0 m9rmC6KvWbbpFMxYz+MjUoUzucMMYm7f9+oDsl7BAeUa43ieGSZMxmv026UwIxEl 2yrxCeC3/TAWAaYdnfygH+LzaBHZ9gFWzOhQK7yacqR0ZMicgbKsX7hd40mI9r6X t2OUhO5O3EzYgWXpou37MBF2KYewZMj0 -----END CERTIFICATE-----Generated at Sat May 31 16:35:58 2025 by rpki-client