$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.mft File: eKfTXvnEd150y6PRZrYbdZAkFSM.mft (raw, json) Hash identifier: JuGeF7NOeprI8FYYBkq1fzI7a26WYMUVCbnmOUocOqg= Subject key identifier: EA:F3:12:73:E6:2D:9C:14:BC:35:7A:3C:B4:FE:2C:A6:6E:4C:E1:55 Authority key identifier: 78:A7:D3:5E:F9:C4:77:5E:74:CB:A3:D1:66:B6:1B:75:90:24:15:23 Certificate issuer: /CN=A91D2C38/serialNumber=78A7D35EF9C4775E74CBA3D166B61B7590241523 Certificate serial: 62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eKfTXvnEd150y6PRZrYbdZAkFSM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.mft Manifest number: 61 Signing time: Sat 31 May 2025 06:37:45 +0000 Manifest this update: Sat 31 May 2025 06:37:44 +0000 Manifest next update: Sat 07 Jun 2025 06:37:44 +0000 Files and hashes: 1: eKfTXvnEd150y6PRZrYbdZAkFSM.crl (hash: 6JuFX2tPiZfXjEx4oShsdNF2Zp6ueJ3gbTbKN2ThBIo=) 2: 8DDD0D56A98C11EFAAC0F364C4F9AE02.roa (hash: yg1U4JyDYBAoLLqLQFnhNTd+uuZ0oKhea1PeFahobmY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.crl rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eKfTXvnEd150y6PRZrYbdZAkFSM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:37:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 98 (0x62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2C38, serialNumber=78A7D35EF9C4775E74CBA3D166B61B7590241523 Validity Not Before: May 31 06:37:44 2025 GMT Not After : Jun 7 06:37:44 2025 GMT Subject: CN=683aa3b9-3f5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:36:04:27:8d:06:39:27:aa:5d:23:ba:af:0c: 36:e2:4e:83:c8:15:00:7a:30:95:03:d7:ea:ee:27: 9a:e4:4a:ff:8e:ca:6b:bc:e7:89:7a:17:f9:d8:c0: 87:55:57:59:b9:a2:88:13:10:57:a0:67:8a:b2:24: db:23:3d:ac:89:f2:06:b3:84:ff:cb:81:2c:bc:60: ae:9b:a2:a7:f7:ae:83:02:e9:83:49:01:ab:e0:2a: 96:ec:a7:1c:b1:05:ac:2a:4a:c7:8f:bd:49:05:4b: e2:b4:c7:d0:64:a3:29:c7:f5:21:f1:10:6e:e3:1e: 38:71:28:e0:9d:73:0b:5f:af:c9:94:25:8e:0a:59: e4:e0:41:8b:98:a5:13:63:ae:fd:d4:4a:c0:c3:85: cc:9f:20:d8:79:99:2b:04:0a:85:e3:29:3d:a2:1e: da:07:5f:c8:e3:3c:09:86:c7:0b:b4:ac:73:f3:cb: c5:69:48:b2:8e:27:d9:a3:e4:df:de:84:fd:17:c9: df:ba:19:32:de:f4:10:53:cd:d6:81:c1:9e:9d:8d: b8:38:aa:60:4c:10:b3:6b:46:b0:04:1c:b9:bf:b5: 4a:bf:93:11:5b:7c:cb:22:54:f5:ac:68:1e:11:e8: 9c:96:07:ac:ba:cc:69:16:59:49:c6:1a:22:03:01: 49:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:F3:12:73:E6:2D:9C:14:BC:35:7A:3C:B4:FE:2C:A6:6E:4C:E1:55 X509v3 Authority Key Identifier: keyid:78:A7:D3:5E:F9:C4:77:5E:74:CB:A3:D1:66:B6:1B:75:90:24:15:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eKfTXvnEd150y6PRZrYbdZAkFSM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:e2:e1:d9:2a:84:f7:81:de:24:3b:11:a7:e7:3e:20:3d:bf: 3a:66:ef:2d:b7:4f:b0:9e:0c:41:d5:c1:1b:9d:47:3d:37:7b: 56:98:cb:a4:49:84:3c:85:d1:af:53:f2:bd:e2:01:63:cf:0a: 2b:2f:b3:3e:0f:49:02:7f:e4:c7:9d:13:31:51:ed:3c:30:5a: 9c:6e:af:a6:d9:f4:8c:d2:06:1a:8a:47:32:73:c6:1d:9a:a0: 51:c7:1e:97:55:fb:e5:db:dd:75:af:da:90:3f:d1:f8:8c:30: 43:a2:cc:23:df:fb:0e:06:c7:da:dd:27:cc:42:72:ca:b4:7b: 8b:c1:a0:cb:16:f8:d6:5f:69:8c:04:69:3e:89:e0:d7:5c:a5: 95:f5:a5:70:8a:63:9d:5e:2d:5d:eb:60:9d:90:49:b5:30:0c: 2f:aa:5c:e0:16:69:6c:67:64:43:b2:be:4f:70:78:56:a6:57: 96:a1:21:ab:69:83:bf:8b:07:5e:a3:0d:10:91:ec:07:f6:d6: de:b5:b6:3e:e4:c7:4d:92:f0:41:23:e7:50:83:f5:8c:db:0e: ee:ef:ce:d1:7c:86:c0:a8:b7:49:2c:dc:bf:d3:62:7f:43:10: 2c:c7:0a:2e:17:14:3e:61:85:5c:94:ac:20:f2:6d:24:ab:d6: 45:c0:1b:b4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MkMzODExMC8GA1UEBRMoNzhBN0QzNUVGOUM0Nzc1RTc0Q0JBM0QxNjZCNjFCNzU5 MDI0MTUyMzAeFw0yNTA1MzEwNjM3NDRaFw0yNTA2MDcwNjM3NDRaMBgxFjAUBgNV BAMTDTY4M2FhM2I5LTNmNWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDlNgQnjQY5J6pdI7qvDDbiToPIFQB6MJUD1+ruJ5rkSv+Oymu854l6F/nYwIdV V1m5oogTEFegZ4qyJNsjPayJ8gazhP/LgSy8YK6boqf3roMC6YNJAavgKpbspxyx BawqSsePvUkFS+K0x9BkoynH9SHxEG7jHjhxKOCdcwtfr8mUJY4KWeTgQYuYpRNj rv3USsDDhcyfINh5mSsECoXjKT2iHtoHX8jjPAmGxwu0rHPzy8VpSLKOJ9mj5N/e hP0Xyd+6GTLe9BBTzdaBwZ6djbg4qmBMELNrRrAEHLm/tUq/kxFbfMsiVPWsaB4R 6JyWB6y6zGkWWUnGGiIDAUltAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU6vMSc+Yt nBS8NXo8tP4spm5M4VUwHwYDVR0jBBgwFoAUeKfTXvnEd150y6PRZrYbdZAkFSMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQyQzM4LzBERTg5MzQwQTk4 QzExRUY5MzUwRkI2M0M0RjlBRTAyL2VLZlRYdm5FZDE1MHk2UFJaclliZFpBa0ZT TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZUtmVFh2bkVkMTUweTZQUlpyWWJkWkFrRlNNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQy QzM4LzBERTg5MzQwQTk4QzExRUY5MzUwRkI2M0M0RjlBRTAyL2VLZlRYdm5FZDE1 MHk2UFJaclliZFpBa0ZTTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIPi4dkqhPeB3iQ7EafnPiA9vzpm7y23T7CeDEHVwRudRz03e1aYy6RJ hDyF0a9T8r3iAWPPCisvsz4PSQJ/5MedEzFR7TwwWpxur6bZ9IzSBhqKRzJzxh2a oFHHHpdV++Xb3XWv2pA/0fiMMEOizCPf+w4Gx9rdJ8xCcsq0e4vBoMsW+NZfaYwE aT6J4NdcpZX1pXCKY51eLV3rYJ2QSbUwDC+qXOAWaWxnZEOyvk9weFamV5ahIatp g7+LB16jDRCR7Af21t61tj7kx02S8EEj51CD9YzbDu7vztF8hsCot0ks3L/TYn9D ECzHCi4XFD5hhVyUrCDybSSr1kXAG7Q= -----END CERTIFICATE-----Generated at Sat May 31 17:32:55 2025 by rpki-client