$ rpki-client -vvf rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.mft File: ejHVc5eYsGSmAHEzqj5bnNDu1F8.mft (raw, json) Hash identifier: Osaw6CKMrIFH1U3kZNPeqiWvFScI5abm1GBWSdjku44= Subject key identifier: DE:F2:17:3B:54:F2:E3:3D:95:E7:60:57:93:84:BD:DF:61:AC:26:A6 Authority key identifier: 7A:31:D5:73:97:98:B0:64:A6:00:71:33:AA:3E:5B:9C:D0:EE:D4:5F Certificate issuer: /CN=A919A285/serialNumber=7A31D5739798B064A6007133AA3E5B9CD0EED45F Certificate serial: 086D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ejHVc5eYsGSmAHEzqj5bnNDu1F8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.mft Manifest number: 0866 Signing time: Fri 30 May 2025 20:54:42 +0000 Manifest this update: Fri 30 May 2025 20:54:41 +0000 Manifest next update: Fri 06 Jun 2025 20:54:41 +0000 Files and hashes: 1: ejHVc5eYsGSmAHEzqj5bnNDu1F8.crl (hash: q/WJVmNa7nlLps9VfXSnXMeLiNPqYWhbKG8eNnYMKIk=) 2: 1DCABC72C57811EA950A8643C4F9AE02.roa (hash: 3y+P8Wjw2NbNvaqBtjPXBVu0eGWr6eeBTOCTDHgw4uI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.crl rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ejHVc5eYsGSmAHEzqj5bnNDu1F8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:54:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2157 (0x86d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A285, serialNumber=7A31D5739798B064A6007133AA3E5B9CD0EED45F Validity Not Before: May 30 20:54:41 2025 GMT Not After : Jun 6 20:54:41 2025 GMT Subject: CN=683a1b12-41d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ab:26:06:85:1a:c9:55:84:0d:07:6d:1d:7d: e8:94:65:1a:63:70:e0:b2:b2:35:51:71:e2:5a:ef: 68:fb:bf:b6:7f:94:33:16:52:87:f6:e7:32:e3:a5: 27:dc:0c:ae:ce:11:9c:c5:fb:8c:7a:b2:38:7f:0e: 8a:3a:38:92:c0:30:fb:5a:ae:38:91:de:15:8e:3b: 55:48:c5:15:bf:d6:7d:a6:1d:bc:3a:a8:74:1f:46: 93:48:7b:cb:eb:07:0a:2a:96:04:a5:fe:68:c8:24: f8:0a:4e:f3:50:ec:e8:75:c2:f7:31:79:5b:af:6b: 13:09:0a:2c:02:c6:b0:3c:bb:ad:a2:21:68:c6:30: a4:79:aa:03:12:b7:89:69:d9:09:2c:b2:ba:0a:92: f3:74:3a:07:fb:a6:95:fe:95:0e:51:37:6b:6a:b2: 85:fc:df:8c:40:f7:d5:d9:60:6b:e2:3f:7a:cb:90: a8:4e:a9:70:42:0a:28:d0:fa:a1:6c:ea:1d:87:55: 32:3f:d1:3a:34:ba:83:bd:af:78:da:21:53:77:08: ff:d6:29:05:97:c7:98:e5:73:5d:f1:d4:21:27:65: 30:c6:6b:02:e5:67:fe:91:b9:4e:8c:1b:67:cc:38: c5:4c:b8:c8:75:35:19:05:a1:e9:d4:14:a6:a9:b1: 45:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:F2:17:3B:54:F2:E3:3D:95:E7:60:57:93:84:BD:DF:61:AC:26:A6 X509v3 Authority Key Identifier: keyid:7A:31:D5:73:97:98:B0:64:A6:00:71:33:AA:3E:5B:9C:D0:EE:D4:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ejHVc5eYsGSmAHEzqj5bnNDu1F8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:d0:22:d0:09:f9:30:4e:22:6b:05:af:20:c1:78:df:4e:19: 65:11:6e:f2:d3:ca:07:7e:5a:21:4d:b4:11:95:f9:27:3d:63: 52:42:84:df:69:cc:b7:ac:2b:3b:a6:e1:b1:27:b0:d4:f5:5e: fb:a9:2e:56:45:0a:3f:fc:e7:3a:56:d4:cc:f6:79:03:dc:d0: c7:8e:04:c1:c7:8d:d8:81:2b:36:91:c8:28:14:df:aa:1f:50: 69:63:44:ed:63:1b:2a:78:10:51:9a:37:b5:7c:f9:7c:ac:78: a3:b4:1f:b1:d4:d3:aa:3f:1d:a6:64:3e:66:ae:ca:50:e7:73: 19:fe:91:30:c5:4e:4b:e6:3b:c4:6d:7c:98:d8:bb:84:11:d2: 3e:4e:7f:b8:25:b1:d0:f5:8d:a0:77:e4:4c:ba:b5:44:3a:f2: 10:fe:1c:39:36:69:25:1f:ba:5f:cc:3f:d5:20:4c:9b:b2:f3: 1f:bc:8e:40:b0:83:08:55:c9:b7:67:15:ac:a8:1a:b7:55:93: fb:b4:5d:1f:c7:5c:79:b0:ab:ed:b1:1a:f9:24:1b:eb:3e:9f: 9b:cc:08:3b:af:0c:79:9b:19:2e:d4:c1:2c:ea:07:b8:e6:85: e5:cc:a1:4e:50:92:09:2e:28:ba:1d:eb:b2:62:79:c0:45:87: 65:8b:cd:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCG0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUEyODUxMTAvBgNVBAUTKDdBMzFENTczOTc5OEIwNjRBNjAwNzEzM0FBM0U1QjlD RDBFRUQ0NUYwHhcNMjUwNTMwMjA1NDQxWhcNMjUwNjA2MjA1NDQxWjAYMRYwFAYD VQQDEw02ODNhMWIxMi00MWQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxasmBoUayVWEDQdtHX3olGUaY3DgsrI1UXHiWu9o+7+2f5QzFlKH9ucy46Un 3AyuzhGcxfuMerI4fw6KOjiSwDD7Wq44kd4VjjtVSMUVv9Z9ph28Oqh0H0aTSHvL 6wcKKpYEpf5oyCT4Ck7zUOzodcL3MXlbr2sTCQosAsawPLutoiFoxjCkeaoDEreJ adkJLLK6CpLzdDoH+6aV/pUOUTdrarKF/N+MQPfV2WBr4j96y5CoTqlwQgoo0Pqh bOodh1UyP9E6NLqDva942iFTdwj/1ikFl8eY5XNd8dQhJ2UwxmsC5Wf+kblOjBtn zDjFTLjIdTUZBaHp1BSmqbFF5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN7yFztU 8uM9ledgV5OEvd9hrCamMB8GA1UdIwQYMBaAFHox1XOXmLBkpgBxM6o+W5zQ7tRf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTI4NS9ERDYyODlBQUM1 NzUxMUVBQTU1ODFDNDBDNEY5QUUwMi9lakhWYzVlWXNHU21BSEV6cWo1Ym5ORHUx RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VqSFZjNWVZc0dTbUFIRXpxajVibk5EdTFGOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTI4NS9ERDYyODlBQUM1NzUxMUVBQTU1ODFDNDBDNEY5QUUwMi9lakhWYzVlWXNH U21BSEV6cWo1Ym5ORHUxRjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB00CLQCfkwTiJrBa8gwXjfThllEW7y08oHflohTbQRlfknPWNSQoTf acy3rCs7puGxJ7DU9V77qS5WRQo//Oc6VtTM9nkD3NDHjgTBx43YgSs2kcgoFN+q H1BpY0TtYxsqeBBRmje1fPl8rHijtB+x1NOqPx2mZD5mrspQ53MZ/pEwxU5L5jvE bXyY2LuEEdI+Tn+4JbHQ9Y2gd+RMurVEOvIQ/hw5NmklH7pfzD/VIEybsvMfvI5A sIMIVcm3ZxWsqBq3VZP7tF0fx1x5sKvtsRr5JBvrPp+bzAg7rwx5mxku1MEs6ge4 5oXlzKFOUJIJLii6HeuyYnnARYdli801 -----END CERTIFICATE-----Generated at Sat May 31 17:45:04 2025 by rpki-client