$ rpki-client -vvf rpki.apnic.net/member_repository/A9175964/F531EDE45B1411EFAC974461C4F9AE02/EW8KKmpLkkLXeiULcXAIFdKY3bk.mft File: EW8KKmpLkkLXeiULcXAIFdKY3bk.mft (raw, json) Hash identifier: acD8PXdFzD32d6NTq/jRiLZvrK8Tw23icOuNsI+wGP8= Subject key identifier: 13:BC:8C:84:10:16:BD:60:34:DB:9B:4C:91:F2:68:CA:AC:5F:D3:7B Authority key identifier: 11:6F:0A:2A:6A:4B:92:42:D7:7A:25:0B:71:70:08:15:D2:98:DD:B9 Certificate issuer: /CN=A9175964/serialNumber=116F0A2A6A4B9242D77A250B71700815D298DDB9 Certificate serial: 96 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EW8KKmpLkkLXeiULcXAIFdKY3bk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175964/F531EDE45B1411EFAC974461C4F9AE02/EW8KKmpLkkLXeiULcXAIFdKY3bk.mft Manifest number: 95 Signing time: Sun 01 Jun 2025 06:04:01 +0000 Manifest this update: Sun 01 Jun 2025 06:04:00 +0000 Manifest next update: Sun 08 Jun 2025 06:04:00 +0000 Files and hashes: 1: EW8KKmpLkkLXeiULcXAIFdKY3bk.crl (hash: ZzjqLOMbIRWGc5ezD3EW08o1li2/ySnHQj/Ew16mNQM=) 2: 426E71C25B1511EF95122A62C4F9AE02.roa (hash: iVgLpNzw9WvLZDCrNCeZKcdKAVuHQLIqgkettJkRmpw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175964/F531EDE45B1411EFAC974461C4F9AE02/EW8KKmpLkkLXeiULcXAIFdKY3bk.crl rsync://rpki.apnic.net/member_repository/A9175964/F531EDE45B1411EFAC974461C4F9AE02/EW8KKmpLkkLXeiULcXAIFdKY3bk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EW8KKmpLkkLXeiULcXAIFdKY3bk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 06:04:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 150 (0x96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175964, serialNumber=116F0A2A6A4B9242D77A250B71700815D298DDB9 Validity Not Before: Jun 1 06:04:00 2025 GMT Not After : Jun 8 06:04:00 2025 GMT Subject: CN=683bed51-84d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:d0:38:29:17:f2:ab:e8:de:4b:58:69:e5:54: 26:04:4d:95:49:19:e8:22:56:a7:22:ae:b1:74:15: 63:8a:f5:79:8e:b7:b3:3b:77:ff:c7:7d:e9:b0:2d: 2c:2f:3b:64:52:e7:59:7d:cb:8f:69:1f:ce:28:99: 01:a2:c3:41:7d:57:33:2b:15:13:59:68:d9:b2:cd: 05:92:c6:e1:e9:57:ba:6a:da:4a:fa:4e:b0:ee:03: b4:c4:1f:cb:47:6d:54:fc:53:8a:6f:73:27:0d:f3: 2a:e0:e6:db:ae:74:33:a7:f5:db:1a:ae:ff:67:c6: db:e8:7c:0f:c1:90:31:14:72:f9:b0:f1:58:da:73: ac:ba:c5:30:0b:60:5a:7c:ac:df:52:fe:91:5b:5f: 36:07:8d:8c:91:a6:25:46:cd:31:26:57:5e:7d:35: a8:f5:c9:c1:41:4f:69:73:8e:b2:66:8c:08:86:d5: ff:ba:71:c4:10:36:1b:8e:46:23:66:18:63:97:ea: eb:32:c6:5d:0d:79:65:29:74:dd:af:35:50:f1:8e: f7:d0:c8:df:fb:e8:30:70:fb:34:ff:13:6a:e5:22: c6:0e:ff:e6:8f:8d:28:f6:99:70:5f:c4:38:2c:42: b4:df:fd:56:f8:89:ab:17:00:02:f9:15:85:ae:b6: d0:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:BC:8C:84:10:16:BD:60:34:DB:9B:4C:91:F2:68:CA:AC:5F:D3:7B X509v3 Authority Key Identifier: keyid:11:6F:0A:2A:6A:4B:92:42:D7:7A:25:0B:71:70:08:15:D2:98:DD:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175964/F531EDE45B1411EFAC974461C4F9AE02/EW8KKmpLkkLXeiULcXAIFdKY3bk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EW8KKmpLkkLXeiULcXAIFdKY3bk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175964/F531EDE45B1411EFAC974461C4F9AE02/EW8KKmpLkkLXeiULcXAIFdKY3bk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:88:23:40:7b:18:09:cb:aa:6a:07:60:ae:c2:c1:f1:ce:9d: 7d:d7:aa:87:3c:17:8a:b3:f4:94:9e:d9:48:91:19:63:ef:11: f2:58:e8:c0:4a:3c:31:8a:2f:0f:f0:39:b8:71:68:6f:5c:85: fc:ed:ca:d8:bb:ad:62:ec:de:29:4c:ff:ea:c4:cd:6a:25:0c: cf:91:52:42:8e:0c:cc:3d:0e:3c:74:ab:bc:5c:0c:bd:82:32: 46:1b:20:a7:6f:da:a3:b5:44:2e:2b:c8:ab:46:9b:2b:ac:ff: ee:68:c0:e6:35:88:41:05:6c:0a:b8:ad:70:3d:b3:25:79:27: 42:07:b3:40:73:24:40:e3:78:dc:bd:de:4b:e4:02:1f:89:55: 20:72:d8:95:c5:7e:dd:68:27:0f:c9:c6:2f:e2:c4:a2:51:74: 90:ea:a9:29:f4:73:be:f1:4d:4e:fd:f5:e2:8c:4e:45:22:9e: 35:b8:6b:a2:fb:c8:6d:9d:60:84:88:b3:48:2a:d8:89:18:57: bd:f4:a0:84:bc:35:7f:8b:7e:9e:33:ea:66:b1:fe:fa:21:e9: 83:bc:b6:58:0c:c0:91:65:2e:7a:80:9e:3a:d1:8e:38:af:74: e0:2c:42:99:bf:0a:d7:e3:56:8a:99:67:cf:1c:ab:1a:21:6e: e9:c5:cd:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU5NjQxMTAvBgNVBAUTKDExNkYwQTJBNkE0QjkyNDJENzdBMjUwQjcxNzAwODE1 RDI5OEREQjkwHhcNMjUwNjAxMDYwNDAwWhcNMjUwNjA4MDYwNDAwWjAYMRYwFAYD VQQDEw02ODNiZWQ1MS04NGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2dA4KRfyq+jeS1hp5VQmBE2VSRnoIlanIq6xdBVjivV5jrezO3f/x33psC0s LztkUudZfcuPaR/OKJkBosNBfVczKxUTWWjZss0Fksbh6Ve6atpK+k6w7gO0xB/L R21U/FOKb3MnDfMq4ObbrnQzp/XbGq7/Z8bb6HwPwZAxFHL5sPFY2nOsusUwC2Ba fKzfUv6RW182B42MkaYlRs0xJldefTWo9cnBQU9pc46yZowIhtX/unHEEDYbjkYj Zhhjl+rrMsZdDXllKXTdrzVQ8Y730Mjf++gwcPs0/xNq5SLGDv/mj40o9plwX8Q4 LEK03/1W+ImrFwAC+RWFrrbQPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBO8jIQQ Fr1gNNubTJHyaMqsX9N7MB8GA1UdIwQYMBaAFBFvCipqS5JC13olC3FwCBXSmN25 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTk2NC9GNTMxRURFNDVC MTQxMUVGQUM5NzQ0NjFDNEY5QUUwMi9FVzhLS21wTGtrTFhlaVVMY1hBSUZkS1kz YmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0VXOEtLbXBMa2tMWGVpVUxjWEFJRmRLWTNiay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTk2NC9GNTMxRURFNDVCMTQxMUVGQUM5NzQ0NjFDNEY5QUUwMi9FVzhLS21wTGtr TFhlaVVMY1hBSUZkS1kzYmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxiCNAexgJy6pqB2CuwsHxzp1916qHPBeKs/SUntlIkRlj7xHyWOjA Sjwxii8P8Dm4cWhvXIX87crYu61i7N4pTP/qxM1qJQzPkVJCjgzMPQ48dKu8XAy9 gjJGGyCnb9qjtUQuK8irRpsrrP/uaMDmNYhBBWwKuK1wPbMleSdCB7NAcyRA43jc vd5L5AIfiVUgctiVxX7daCcPycYv4sSiUXSQ6qkp9HO+8U1O/fXijE5FIp41uGui +8htnWCEiLNIKtiJGFe99KCEvDV/i36eM+pmsf76IemDvLZYDMCRZS56gJ460Y44 r3TgLEKZvwrX41aKmWfPHKsaIW7pxc1T -----END CERTIFICATE-----Generated at Mon Jun 2 20:18:05 2025 by rpki-client