$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFBDA/6AD374AAE65D11EEB6123E41C4F9AE02/EHo5wcwE8nzHJmPb97rm2SqVA4A.mft File: EHo5wcwE8nzHJmPb97rm2SqVA4A.mft (raw, json) Hash identifier: b0ltaLzNZ3vNBGp3Vyj77SDusg6A27aLPSaCj4svEGQ= Subject key identifier: 18:D1:B0:B8:A0:FB:56:92:72:59:94:D7:6F:2D:E1:DE:E8:3D:F1:78 Authority key identifier: 10:7A:39:C1:CC:04:F2:7C:C7:26:63:DB:F7:BA:E6:D9:2A:95:03:80 Certificate issuer: /CN=A91AFBDA/serialNumber=107A39C1CC04F27CC72663DBF7BAE6D92A950380 Certificate serial: E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EHo5wcwE8nzHJmPb97rm2SqVA4A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFBDA/6AD374AAE65D11EEB6123E41C4F9AE02/EHo5wcwE8nzHJmPb97rm2SqVA4A.mft Manifest number: E5 Signing time: Sat 07 Jun 2025 04:58:11 +0000 Manifest this update: Sat 07 Jun 2025 04:58:10 +0000 Manifest next update: Sat 14 Jun 2025 04:58:10 +0000 Files and hashes: 1: EHo5wcwE8nzHJmPb97rm2SqVA4A.crl (hash: luEFq8K7H3MoiteQLZwAg/DH3TWtYwluaaVg8SefmtM=) 2: 62246EC4E67E11EEAD030482C4F9AE02.roa (hash: 6duqYPlVAYgFYXyMYfQRt0UOQZ9fwNVTaTSO3qscAF8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFBDA/6AD374AAE65D11EEB6123E41C4F9AE02/EHo5wcwE8nzHJmPb97rm2SqVA4A.crl rsync://rpki.apnic.net/member_repository/A91AFBDA/6AD374AAE65D11EEB6123E41C4F9AE02/EHo5wcwE8nzHJmPb97rm2SqVA4A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EHo5wcwE8nzHJmPb97rm2SqVA4A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Jun 2025 04:58:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 232 (0xe8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFBDA, serialNumber=107A39C1CC04F27CC72663DBF7BAE6D92A950380 Validity Not Before: Jun 7 04:58:10 2025 GMT Not After : Jun 14 04:58:10 2025 GMT Subject: CN=6843c6e3-c3bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:7c:bd:02:c1:99:f2:fe:eb:50:ed:c1:63:7e: d1:6b:7a:65:b4:39:9e:4a:45:98:ea:4e:d6:40:bf: ab:c1:5f:e5:fe:7d:98:90:69:3a:95:79:2e:f4:da: e3:12:cd:93:3f:51:69:71:30:ff:26:d0:ef:be:f7: 52:f1:90:34:c0:5a:09:0e:b6:cf:77:b4:48:ea:58: aa:6b:c3:b4:0c:80:ac:c2:eb:31:b5:28:f7:01:fe: 16:bf:51:0c:4b:a9:ad:55:38:90:5e:87:53:98:8c: 33:76:ec:60:94:71:29:72:e8:0c:16:86:1b:b6:78: 81:49:fc:c4:4a:78:e9:57:97:16:c6:55:ee:fa:e7: a3:fb:f6:ed:88:19:d4:c0:70:ba:85:1a:83:58:78: e6:87:d0:2d:39:06:30:01:c4:aa:b1:c6:8b:91:2b: 76:f2:75:33:8a:ee:e2:21:02:39:e6:58:ee:78:3c: 89:b8:33:35:31:c9:9b:83:6a:3b:82:96:59:94:f3: 4a:94:da:a7:2f:6e:7a:bf:d1:a9:dc:0f:84:73:83: 18:be:27:08:ad:08:d5:5c:0e:b2:b0:04:7f:f7:78: 6d:22:c7:96:41:94:de:3b:fa:ff:1f:a3:f7:a7:33: 0a:6a:a5:59:00:b9:ec:f9:e1:0c:39:ca:ad:9d:18: 87:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:D1:B0:B8:A0:FB:56:92:72:59:94:D7:6F:2D:E1:DE:E8:3D:F1:78 X509v3 Authority Key Identifier: keyid:10:7A:39:C1:CC:04:F2:7C:C7:26:63:DB:F7:BA:E6:D9:2A:95:03:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFBDA/6AD374AAE65D11EEB6123E41C4F9AE02/EHo5wcwE8nzHJmPb97rm2SqVA4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EHo5wcwE8nzHJmPb97rm2SqVA4A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFBDA/6AD374AAE65D11EEB6123E41C4F9AE02/EHo5wcwE8nzHJmPb97rm2SqVA4A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:72:46:eb:66:e7:80:54:a0:23:75:27:62:c8:e5:2f:ff:c9: 9b:3d:d4:69:93:98:cb:c4:c7:22:c9:4a:3b:ce:c5:7a:2e:2c: 6f:3f:e7:5b:aa:fb:15:19:4a:14:62:32:ef:f4:9b:0c:98:3d: 21:a3:0d:70:c5:01:ec:2e:de:10:75:29:56:30:16:d0:1d:b1: 99:7f:e5:7b:9d:38:fa:63:4c:8e:d1:89:a5:c2:e5:18:fc:d1: da:b4:4e:57:19:7d:0e:a7:c3:d7:f7:63:91:5e:dc:69:d3:13: bb:d6:78:ad:8a:a3:d1:59:ea:b1:22:8d:a8:0f:e7:cc:50:3d: f6:5a:9c:f5:f6:24:7c:1e:8c:13:77:1b:14:05:da:7c:a8:5a: c7:99:09:8f:4f:8b:cc:48:ae:20:d1:2a:18:46:74:6b:89:a6: b4:30:62:ce:8e:03:aa:90:a5:79:46:93:0c:c3:34:37:8b:1c: 6f:24:26:44:8b:cd:f2:58:9f:23:e7:80:e9:0a:9a:d4:a4:4c: 55:9d:41:20:6f:cc:ed:d9:24:45:f4:a3:b9:54:fa:54:a8:62: 74:5a:0b:0b:cc:d9:c9:1d:8d:bb:59:e7:a2:a6:04:e4:b7:54: e5:e4:1a:c7:ef:b6:4e:60:70:ad:b1:8d:fc:2e:43:68:1d:01: e6:98:89:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUZCREExMTAvBgNVBAUTKDEwN0EzOUMxQ0MwNEYyN0NDNzI2NjNEQkY3QkFFNkQ5 MkE5NTAzODAwHhcNMjUwNjA3MDQ1ODEwWhcNMjUwNjE0MDQ1ODEwWjAYMRYwFAYD VQQDEw02ODQzYzZlMy1jM2JkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxny9AsGZ8v7rUO3BY37Ra3pltDmeSkWY6k7WQL+rwV/l/n2YkGk6lXku9Nrj Es2TP1FpcTD/JtDvvvdS8ZA0wFoJDrbPd7RI6liqa8O0DICswusxtSj3Af4Wv1EM S6mtVTiQXodTmIwzduxglHEpcugMFoYbtniBSfzESnjpV5cWxlXu+uej+/btiBnU wHC6hRqDWHjmh9AtOQYwAcSqscaLkSt28nUziu7iIQI55ljueDyJuDM1Mcmbg2o7 gpZZlPNKlNqnL256v9Gp3A+Ec4MYvicIrQjVXA6ysAR/93htIseWQZTeO/r/H6P3 pzMKaqVZALns+eEMOcqtnRiHawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBjRsLig +1aSclmU128t4d7oPfF4MB8GA1UdIwQYMBaAFBB6OcHMBPJ8xyZj2/e65tkqlQOA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRkJEQS82QUQzNzRBQUU2 NUQxMUVFQjYxMjNFNDFDNEY5QUUwMi9FSG81d2N3RThuekhKbVBiOTdybTJTcVZB NEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VIbzV3Y3dFOG56SEptUGI5N3JtMlNxVkE0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RkJEQS82QUQzNzRBQUU2NUQxMUVFQjYxMjNFNDFDNEY5QUUwMi9FSG81d2N3RThu ekhKbVBiOTdybTJTcVZBNEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApckbrZueAVKAjdSdiyOUv/8mbPdRpk5jLxMciyUo7zsV6LixvP+db qvsVGUoUYjLv9JsMmD0how1wxQHsLt4QdSlWMBbQHbGZf+V7nTj6Y0yO0YmlwuUY /NHatE5XGX0Op8PX92ORXtxp0xO71nitiqPRWeqxIo2oD+fMUD32Wpz19iR8HowT dxsUBdp8qFrHmQmPT4vMSK4g0SoYRnRriaa0MGLOjgOqkKV5RpMMwzQ3ixxvJCZE i83yWJ8j54DpCprUpExVnUEgb8zt2SRF9KO5VPpUqGJ0WgsLzNnJHY27WeeipgTk t1Tl5BrH77ZOYHCtsY38LkNoHQHmmImq -----END CERTIFICATE-----Generated at Sun Jun 8 11:06:37 2025 by rpki-client