$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD844/78769474165211EE914B7B56C4F9AE02/EWTaYENN7l6xS7U9S1lOZl3yb_Y.mft File: EWTaYENN7l6xS7U9S1lOZl3yb_Y.mft (raw, json) Hash identifier: IlTKAil82QXqrrMTgiAz+BxvtsLqImD7wZls88N2c68= Subject key identifier: 4A:C8:D6:D5:A5:AB:27:72:96:98:B7:48:87:89:BA:9A:B6:87:A2:84 Authority key identifier: 11:64:DA:60:43:4D:EE:5E:B1:4B:B5:3D:4B:59:4E:66:5D:F2:6F:F6 Certificate issuer: /CN=A91BD844/serialNumber=1164DA60434DEE5EB14BB53D4B594E665DF26FF6 Certificate serial: 0177 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EWTaYENN7l6xS7U9S1lOZl3yb_Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD844/78769474165211EE914B7B56C4F9AE02/EWTaYENN7l6xS7U9S1lOZl3yb_Y.mft Manifest number: 016F Signing time: Sat 31 May 2025 03:34:44 +0000 Manifest this update: Sat 31 May 2025 03:34:43 +0000 Manifest next update: Sat 07 Jun 2025 03:34:43 +0000 Files and hashes: 1: EWTaYENN7l6xS7U9S1lOZl3yb_Y.crl (hash: Z0ttjYPkJi5+1MFi3lQjSIpcQjBnIGHz3EFJ4bgOPxQ=) 2: 32D39C06224511EE81776175C4F9AE02.roa (hash: IpE3dRMtn4VIH+WF4zXN3kMbPGJfB4KqDmJ+7Dw6ktA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD844/78769474165211EE914B7B56C4F9AE02/EWTaYENN7l6xS7U9S1lOZl3yb_Y.crl rsync://rpki.apnic.net/member_repository/A91BD844/78769474165211EE914B7B56C4F9AE02/EWTaYENN7l6xS7U9S1lOZl3yb_Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EWTaYENN7l6xS7U9S1lOZl3yb_Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:34:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 375 (0x177) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD844, serialNumber=1164DA60434DEE5EB14BB53D4B594E665DF26FF6 Validity Not Before: May 31 03:34:43 2025 GMT Not After : Jun 7 03:34:43 2025 GMT Subject: CN=683a78d3-f377 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:27:11:0d:4c:2f:c1:b7:c0:57:30:b4:c8:72: aa:67:b2:28:00:82:26:29:c7:69:b4:86:90:37:5f: 3f:e3:a8:fd:c3:f6:f3:56:09:cc:32:d8:2d:c2:66: 58:fe:1e:83:9e:d0:da:2f:2e:13:db:a5:0c:29:35: 88:0f:ba:db:3d:16:60:4c:4b:a5:6a:ab:f0:b0:11: 13:bf:57:3a:2f:f0:ae:ce:2d:ba:3e:c3:0b:7c:4c: da:b5:d1:90:8d:54:aa:b2:20:d8:1f:54:af:57:82: a7:4b:f2:09:c0:bf:19:eb:02:8c:b8:58:a0:0c:41: 89:62:e7:a3:ab:4e:3e:12:12:3f:e9:2c:2c:06:7f: 4a:ab:c6:ee:16:b9:0f:32:82:92:24:5a:d4:e1:fa: 85:7a:73:14:4d:01:89:61:a5:95:94:16:41:9a:5c: b0:49:3c:f6:77:c0:68:d6:20:12:d2:5a:ad:2e:61: 5c:52:cf:7f:f5:80:05:d2:b2:6c:d1:27:97:28:a6: 51:cd:b9:ad:ff:ec:70:8a:a4:dd:2c:ea:cc:ae:42: 5f:30:e8:c4:59:96:68:91:b8:56:e7:56:a8:d7:31: 4e:4f:e8:21:0d:06:7f:e0:d3:ab:66:05:60:f7:c6: 33:5a:f4:3d:02:10:3b:53:11:ee:fb:2b:80:d8:79: 86:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:C8:D6:D5:A5:AB:27:72:96:98:B7:48:87:89:BA:9A:B6:87:A2:84 X509v3 Authority Key Identifier: keyid:11:64:DA:60:43:4D:EE:5E:B1:4B:B5:3D:4B:59:4E:66:5D:F2:6F:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD844/78769474165211EE914B7B56C4F9AE02/EWTaYENN7l6xS7U9S1lOZl3yb_Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EWTaYENN7l6xS7U9S1lOZl3yb_Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD844/78769474165211EE914B7B56C4F9AE02/EWTaYENN7l6xS7U9S1lOZl3yb_Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:52:cd:68:b0:c0:b5:9c:42:b4:8f:3b:5b:a1:bd:d4:11:56: d6:7a:61:51:75:af:9d:75:9d:2f:3f:d4:37:98:e5:09:4a:4c: fd:69:fc:46:b7:6f:0a:18:b1:52:30:97:68:3d:f9:5a:cf:8d: d3:5a:38:68:51:f2:dc:36:e8:8f:90:b5:e6:64:77:40:95:da: b9:9b:05:04:07:c4:c2:cf:36:33:1e:40:42:ab:a0:34:e2:73: ea:79:a6:a8:0f:cd:d2:54:c4:e0:c3:f4:4e:de:bf:db:1e:76: 7c:fc:d4:3a:b7:fe:2d:5c:0c:79:35:aa:bd:32:d4:da:72:54: 3d:56:9f:a2:33:7f:7c:b3:a8:be:c3:a5:23:cd:0d:e7:5f:bd: 85:b7:0d:02:fa:0b:8b:23:a1:37:80:41:7a:2e:4c:7a:8f:c5: e5:94:eb:65:4f:7a:87:aa:8b:da:59:85:f7:2e:0d:4a:c9:fd: c6:ee:e4:05:fa:96:20:6d:68:a4:31:fd:9e:fb:30:11:e9:59: 5a:ac:d7:2b:62:28:63:e8:f0:ef:d2:42:3d:f7:ad:d2:b6:87: 90:4b:c3:4f:bd:8b:8c:d0:05:68:6a:56:f9:95:39:bd:f0:da: d0:87:71:2f:de:ce:08:a2:cf:b7:1c:b1:f7:46:47:68:eb:f7: 4a:5a:c1:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkQ4NDQxMTAvBgNVBAUTKDExNjREQTYwNDM0REVFNUVCMTRCQjUzRDRCNTk0RTY2 NURGMjZGRjYwHhcNMjUwNTMxMDMzNDQzWhcNMjUwNjA3MDMzNDQzWjAYMRYwFAYD VQQDEw02ODNhNzhkMy1mMzc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyCcRDUwvwbfAVzC0yHKqZ7IoAIImKcdptIaQN18/46j9w/bzVgnMMtgtwmZY /h6DntDaLy4T26UMKTWID7rbPRZgTEulaqvwsBETv1c6L/Cuzi26PsMLfEzatdGQ jVSqsiDYH1SvV4KnS/IJwL8Z6wKMuFigDEGJYuejq04+EhI/6SwsBn9Kq8buFrkP MoKSJFrU4fqFenMUTQGJYaWVlBZBmlywSTz2d8Bo1iAS0lqtLmFcUs9/9YAF0rJs 0SeXKKZRzbmt/+xwiqTdLOrMrkJfMOjEWZZokbhW51ao1zFOT+ghDQZ/4NOrZgVg 98YzWvQ9AhA7UxHu+yuA2HmG5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFErI1tWl qydylpi3SIeJupq2h6KEMB8GA1UdIwQYMBaAFBFk2mBDTe5esUu1PUtZTmZd8m/2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRDg0NC83ODc2OTQ3NDE2 NTIxMUVFOTE0QjdCNTZDNEY5QUUwMi9FV1RhWUVOTjdsNnhTN1U5UzFsT1psM3li X1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VXVGFZRU5ON2w2eFM3VTlTMWxPWmwzeWJfWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RDg0NC83ODc2OTQ3NDE2NTIxMUVFOTE0QjdCNTZDNEY5QUUwMi9FV1RhWUVOTjds NnhTN1U5UzFsT1psM3liX1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+Us1osMC1nEK0jztbob3UEVbWemFRda+ddZ0vP9Q3mOUJSkz9afxG t28KGLFSMJdoPflaz43TWjhoUfLcNuiPkLXmZHdAldq5mwUEB8TCzzYzHkBCq6A0 4nPqeaaoD83SVMTgw/RO3r/bHnZ8/NQ6t/4tXAx5Naq9MtTaclQ9Vp+iM398s6i+ w6UjzQ3nX72Ftw0C+guLI6E3gEF6Lkx6j8XllOtlT3qHqovaWYX3Lg1Kyf3G7uQF +pYgbWikMf2e+zAR6VlarNcrYihj6PDv0kI9963StoeQS8NPvYuM0AVoalb5lTm9 8NrQh3Ev3s4Ios+3HLH3Rkdo6/dKWsGe -----END CERTIFICATE-----Generated at Sat May 31 17:01:18 2025 by rpki-client