$ rpki-client -vvf rpki.apnic.net/member_repository/A91B38F5/E802819E025B11F09ACFD910C4F9AE02/eVaKOOzbYX5njAimzEPE1lAs7GI.mft File: eVaKOOzbYX5njAimzEPE1lAs7GI.mft (raw, json) Hash identifier: 0ZeZmBtX0ZighrW5g68cRneUTMHQrQLdSJsbNzSdKcE= Subject key identifier: 8D:89:BA:B6:37:A8:B1:47:76:E6:33:4A:27:DD:01:0C:71:1E:3C:2E Authority key identifier: 79:56:8A:38:EC:DB:61:7E:67:8C:08:A6:CC:43:C4:D6:50:2C:EC:62 Certificate issuer: /CN=A91B38F5/serialNumber=79568A38ECDB617E678C08A6CC43C4D6502CEC62 Certificate serial: 2A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/eVaKOOzbYX5njAimzEPE1lAs7GI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B38F5/E802819E025B11F09ACFD910C4F9AE02/eVaKOOzbYX5njAimzEPE1lAs7GI.mft Manifest number: 29 Signing time: Sun 01 Jun 2025 07:29:23 +0000 Manifest this update: Sun 01 Jun 2025 07:29:22 +0000 Manifest next update: Sun 08 Jun 2025 07:29:22 +0000 Files and hashes: 1: eVaKOOzbYX5njAimzEPE1lAs7GI.crl (hash: 4qb/jgMXsaNK4G6RAbr6QBYI0LYiGEDPhFKAkr+bL/c=) 2: B5E94296025C11F0BDF41912C4F9AE02.roa (hash: vF2hPrjWnGE1wVLs/Ml1OeBVYR8W6IECJw4qVwfrJO0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B38F5/E802819E025B11F09ACFD910C4F9AE02/eVaKOOzbYX5njAimzEPE1lAs7GI.crl rsync://rpki.apnic.net/member_repository/A91B38F5/E802819E025B11F09ACFD910C4F9AE02/eVaKOOzbYX5njAimzEPE1lAs7GI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/eVaKOOzbYX5njAimzEPE1lAs7GI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 07:29:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B38F5, serialNumber=79568A38ECDB617E678C08A6CC43C4D6502CEC62 Validity Not Before: Jun 1 07:29:22 2025 GMT Not After : Jun 8 07:29:22 2025 GMT Subject: CN=683c0153-c19b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:86:f9:fa:4b:87:a5:2d:be:7c:b4:1f:bf:75: b5:3e:c2:0a:f0:b7:65:e8:46:ff:a5:e2:56:e0:06: 8b:50:ef:88:a1:8c:24:6a:e2:ce:88:2e:a8:06:4c: 88:3c:4e:98:f7:f7:a1:05:26:92:89:31:e2:da:cb: c8:42:43:89:9a:8f:44:8d:8a:35:86:ae:cf:0f:c9: 1f:11:35:e8:7c:07:f8:77:94:15:79:90:83:8c:a2: 53:c3:78:0d:7e:61:59:37:c4:5c:35:ff:13:8a:55: 4b:9f:70:fd:39:76:5d:96:91:aa:fd:4d:97:1c:ba: e8:96:ad:2e:44:d6:6c:02:3d:e8:19:aa:1e:40:f5: 45:1e:98:fb:e4:6c:73:5e:09:8a:0a:b4:14:b2:f4: a7:fe:00:03:98:1f:a5:01:a2:73:d8:d0:3f:ac:4f: 06:e8:22:23:20:8e:c9:7c:2a:26:30:07:7e:58:1c: ac:19:ba:e2:cb:f3:35:b4:44:3a:90:ff:32:0d:9c: da:2f:bc:7e:53:43:5b:de:70:d7:c7:31:f8:a0:4e: 05:f4:99:f9:8e:a3:bb:8c:ed:f3:50:98:07:ff:b2: ca:c2:f8:c3:c6:3d:6b:52:b3:8c:ab:8c:a2:7a:a5: c1:0b:51:7e:52:36:e3:0d:ad:48:a1:3e:91:55:81: 1c:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:89:BA:B6:37:A8:B1:47:76:E6:33:4A:27:DD:01:0C:71:1E:3C:2E X509v3 Authority Key Identifier: keyid:79:56:8A:38:EC:DB:61:7E:67:8C:08:A6:CC:43:C4:D6:50:2C:EC:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B38F5/E802819E025B11F09ACFD910C4F9AE02/eVaKOOzbYX5njAimzEPE1lAs7GI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/eVaKOOzbYX5njAimzEPE1lAs7GI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B38F5/E802819E025B11F09ACFD910C4F9AE02/eVaKOOzbYX5njAimzEPE1lAs7GI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:44:97:c8:d6:62:5f:10:65:e0:ea:7e:e0:0f:79:68:3b:1c: c8:0e:a3:d7:6d:50:87:33:02:40:c3:88:71:f9:44:6d:c1:15: 7a:63:16:0d:cf:00:d0:2e:a8:80:4d:db:af:48:16:b2:39:77: 25:a9:2c:3b:6e:b8:fd:75:0a:da:5b:78:9e:1d:46:c7:ab:32: 9b:d2:f9:e9:5c:0c:53:d1:68:7a:a5:73:66:26:06:48:a9:f8: 78:52:01:11:45:bb:a8:e3:50:02:21:ab:60:1c:bc:50:5a:b1: 33:88:a6:c2:72:73:63:b1:f4:63:a4:25:1b:6f:1d:58:50:83: a2:66:fc:13:88:cc:13:ae:ff:56:b7:a4:11:58:cb:54:29:a7: 22:26:6a:c8:0f:33:29:85:fa:73:dd:46:39:b9:0a:fc:1e:d0: 16:b9:09:fd:d5:a3:df:52:a4:30:0d:bf:14:b7:13:b5:ff:81: 75:bc:75:ee:eb:c4:53:59:5f:d1:6d:9a:2f:b6:6d:d6:75:9a: a8:a3:e4:8d:7f:dd:9d:35:b8:54:1a:fe:80:68:92:1b:43:5b: bb:55:b7:51:96:b1:a8:ba:f6:36:50:db:6f:7b:a6:ac:18:14: 64:71:e3:80:b7:73:20:ee:56:6a:1d:bf:61:7b:94:db:85:9a: e9:55:78:83 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MzhGNTExMC8GA1UEBRMoNzk1NjhBMzhFQ0RCNjE3RTY3OEMwOEE2Q0M0M0M0RDY1 MDJDRUM2MjAeFw0yNTA2MDEwNzI5MjJaFw0yNTA2MDgwNzI5MjJaMBgxFjAUBgNV BAMTDTY4M2MwMTUzLWMxOWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDZhvn6S4elLb58tB+/dbU+wgrwt2XoRv+l4lbgBotQ74ihjCRq4s6ILqgGTIg8 Tpj396EFJpKJMeLay8hCQ4maj0SNijWGrs8PyR8RNeh8B/h3lBV5kIOMolPDeA1+ YVk3xFw1/xOKVUufcP05dl2Wkar9TZccuuiWrS5E1mwCPegZqh5A9UUemPvkbHNe CYoKtBSy9Kf+AAOYH6UBonPY0D+sTwboIiMgjsl8KiYwB35YHKwZuuLL8zW0RDqQ /zINnNovvH5TQ1vecNfHMfigTgX0mfmOo7uM7fNQmAf/ssrC+MPGPWtSs4yrjKJ6 pcELUX5SNuMNrUihPpFVgRwbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUjYm6tjeo sUd25jNKJ90BDHEePC4wHwYDVR0jBBgwFoAUeVaKOOzbYX5njAimzEPE1lAs7GIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIzOEY1L0U4MDI4MTlFMDI1 QjExRjA5QUNGRDkxMEM0RjlBRTAyL2VWYUtPT3piWVg1bmpBaW16RVBFMWxBczdH SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZVZhS09PemJZWDVuakFpbXpFUEUxbEFzN0dJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIz OEY1L0U4MDI4MTlFMDI1QjExRjA5QUNGRDkxMEM0RjlBRTAyL2VWYUtPT3piWVg1 bmpBaW16RVBFMWxBczdHSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAhEl8jWYl8QZeDqfuAPeWg7HMgOo9dtUIczAkDDiHH5RG3BFXpjFg3P ANAuqIBN269IFrI5dyWpLDtuuP11CtpbeJ4dRserMpvS+elcDFPRaHqlc2YmBkip +HhSARFFu6jjUAIhq2AcvFBasTOIpsJyc2Ox9GOkJRtvHVhQg6Jm/BOIzBOu/1a3 pBFYy1QppyImasgPMymF+nPdRjm5Cvwe0Ba5Cf3Vo99SpDANvxS3E7X/gXW8de7r xFNZX9Ftmi+2bdZ1mqij5I1/3Z01uFQa/oBokhtDW7tVt1GWsai69jZQ2297pqwY FGRx44C3cyDuVmodv2F7lNuFmulVeIM= -----END CERTIFICATE-----Generated at Mon Jun 2 20:34:42 2025 by rpki-client