$ rpki-client -vvf rpki.apnic.net/member_repository/A91D513A/401BF81E1DAA11E2A572E2A508B02CD2/E2EsNInrrttWOQK8neWS_I2DxVs.mft File: E2EsNInrrttWOQK8neWS_I2DxVs.mft (raw, json) Hash identifier: Cp+DxVeNfna5Xo8XmYc9GdSkP8KwTBCd6UujFoyBvzI= Subject key identifier: 79:FA:DF:06:8C:C5:CC:E2:10:96:75:F1:9A:70:88:91:28:C6:50:36 Authority key identifier: 13:61:2C:34:89:EB:AE:DB:56:39:02:BC:9D:E5:92:FC:8D:83:C5:5B Certificate issuer: /CN=A91D513A/serialNumber=13612C3489EBAEDB563902BC9DE592FC8D83C55B Certificate serial: 348A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E2EsNInrrttWOQK8neWS_I2DxVs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D513A/401BF81E1DAA11E2A572E2A508B02CD2/E2EsNInrrttWOQK8neWS_I2DxVs.mft Manifest number: 3489 Signing time: Wed 04 Jun 2025 15:18:22 +0000 Manifest this update: Wed 04 Jun 2025 15:18:21 +0000 Manifest next update: Wed 11 Jun 2025 15:18:21 +0000 Files and hashes: 1: E2EsNInrrttWOQK8neWS_I2DxVs.crl (hash: KASUG7TQSXkPlVE5ugDFj6nPwfyUPVaQxfIcw+lTRy8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D513A/401BF81E1DAA11E2A572E2A508B02CD2/E2EsNInrrttWOQK8neWS_I2DxVs.crl rsync://rpki.apnic.net/member_repository/A91D513A/401BF81E1DAA11E2A572E2A508B02CD2/E2EsNInrrttWOQK8neWS_I2DxVs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E2EsNInrrttWOQK8neWS_I2DxVs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 15:18:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13450 (0x348a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D513A, serialNumber=13612C3489EBAEDB563902BC9DE592FC8D83C55B Validity Not Before: Jun 4 15:18:21 2025 GMT Not After : Jun 11 15:18:21 2025 GMT Subject: CN=684063be-aed6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:b7:0a:76:ee:5f:81:80:87:bc:26:47:55:f6: 1f:9f:70:69:7d:5a:08:55:8f:cd:71:09:96:16:68: 54:4f:32:25:04:5e:82:1d:81:48:95:1a:9b:fd:cf: 3f:b4:31:d6:d1:1a:27:d2:4d:f5:8f:dd:e9:8e:f8: 99:ec:0e:15:8d:1a:28:43:f9:d2:cd:bf:92:f0:53: 84:50:ca:0b:1e:cf:b1:05:d7:44:28:83:f5:77:03: f9:40:49:ed:22:39:55:48:25:00:c3:b5:35:c1:01: 5a:70:7a:2d:ee:38:c1:51:a5:d4:3c:90:5e:df:1f: e1:b8:e1:50:b4:31:fa:c3:ec:f8:a0:fb:77:4b:4a: 56:8b:51:47:f5:01:46:47:fc:ec:af:dd:d6:cb:9c: 49:72:9c:a5:02:3f:2b:37:d1:99:f4:db:2b:55:74: d4:18:54:88:b7:31:46:a4:04:5d:cb:4d:10:2f:7f: e3:3d:06:f6:9d:1b:35:e6:3f:43:5c:be:bf:ae:ab: 0e:c3:7d:51:d7:96:da:8f:69:a6:e6:63:97:b1:6d: a1:8e:e0:44:95:c6:31:00:38:93:97:dd:f4:67:73: 98:a3:0b:f4:3c:e2:0d:9f:5e:89:48:76:3b:fc:4e: 4d:48:e5:85:d8:7a:bc:1c:6b:ea:a4:48:08:03:10: 6a:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:FA:DF:06:8C:C5:CC:E2:10:96:75:F1:9A:70:88:91:28:C6:50:36 X509v3 Authority Key Identifier: keyid:13:61:2C:34:89:EB:AE:DB:56:39:02:BC:9D:E5:92:FC:8D:83:C5:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D513A/401BF81E1DAA11E2A572E2A508B02CD2/E2EsNInrrttWOQK8neWS_I2DxVs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E2EsNInrrttWOQK8neWS_I2DxVs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D513A/401BF81E1DAA11E2A572E2A508B02CD2/E2EsNInrrttWOQK8neWS_I2DxVs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:53:cc:c7:48:af:50:ab:88:af:10:bc:14:4e:b3:1a:20:95: eb:a3:fe:b0:7f:d5:e7:eb:3a:0c:46:ae:a0:99:07:a5:06:b2: ca:6b:12:90:32:da:e4:91:fa:9b:04:6b:13:87:b9:84:7c:d5: 31:6c:fb:ca:43:07:e5:39:af:97:67:9d:56:7a:ba:4b:d3:38: e8:8e:20:97:0e:58:8e:7a:6d:ed:64:fd:dd:6f:9a:53:3f:a5: e7:f2:28:6e:7a:44:e0:61:75:b3:c9:01:0a:b0:4b:57:0c:92: e7:26:ae:d0:0f:83:4a:bd:d2:b1:64:69:9a:7d:e5:d1:ae:ea: 56:10:51:95:23:be:10:4b:5a:dd:bb:e1:01:02:16:02:cd:46: 9c:1c:1e:34:95:b3:09:b8:9d:ed:4d:e8:b7:10:ec:75:3c:88: 73:4a:4a:d2:e7:a3:b9:74:d9:4e:6c:05:48:c9:41:43:06:bb: 9c:6c:4f:73:2a:78:9d:dd:ef:ee:dd:e4:58:12:3c:15:00:42: c8:73:93:d1:7c:19:3f:16:30:f1:3a:42:ea:17:0e:99:c0:a7: 7a:9a:1b:0d:52:37:95:d2:69:ee:54:92:92:b2:3e:3f:84:a9: 5f:ed:15:6a:61:89:17:d9:b4:0e:28:45:64:00:eb:f5:22:ea: 93:04:f6:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUxM0ExMTAvBgNVBAUTKDEzNjEyQzM0ODlFQkFFREI1NjM5MDJCQzlERTU5MkZD OEQ4M0M1NUIwHhcNMjUwNjA0MTUxODIxWhcNMjUwNjExMTUxODIxWjAYMRYwFAYD VQQDEw02ODQwNjNiZS1hZWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2bcKdu5fgYCHvCZHVfYfn3BpfVoIVY/NcQmWFmhUTzIlBF6CHYFIlRqb/c8/ tDHW0Ron0k31j93pjviZ7A4VjRooQ/nSzb+S8FOEUMoLHs+xBddEKIP1dwP5QEnt IjlVSCUAw7U1wQFacHot7jjBUaXUPJBe3x/huOFQtDH6w+z4oPt3S0pWi1FH9QFG R/zsr93Wy5xJcpylAj8rN9GZ9NsrVXTUGFSItzFGpARdy00QL3/jPQb2nRs15j9D XL6/rqsOw31R15baj2mm5mOXsW2hjuBElcYxADiTl930Z3OYowv0POINn16JSHY7 /E5NSOWF2Hq8HGvqpEgIAxBqWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHn63waM xcziEJZ18ZpwiJEoxlA2MB8GA1UdIwQYMBaAFBNhLDSJ667bVjkCvJ3lkvyNg8Vb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTEzQS80MDFCRjgxRTFE QUExMUUyQTU3MkUyQTUwOEIwMkNEMi9FMkVzTklucnJ0dFdPUUs4bmVXU19JMkR4 VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0UyRXNOSW5ycnR0V09RSzhuZVdTX0kyRHhWcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTEzQS80MDFCRjgxRTFEQUExMUUyQTU3MkUyQTUwOEIwMkNEMi9FMkVzTklucnJ0 dFdPUUs4bmVXU19JMkR4VnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANU8zHSK9Qq4ivELwUTrMaIJXro/6wf9Xn6zoMRq6gmQelBrLKaxKQ MtrkkfqbBGsTh7mEfNUxbPvKQwflOa+XZ51WerpL0zjojiCXDliOem3tZP3db5pT P6Xn8ihuekTgYXWzyQEKsEtXDJLnJq7QD4NKvdKxZGmafeXRrupWEFGVI74QS1rd u+EBAhYCzUacHB40lbMJuJ3tTei3EOx1PIhzSkrS56O5dNlObAVIyUFDBrucbE9z Knid3e/u3eRYEjwVAELIc5PRfBk/FjDxOkLqFw6ZwKd6mhsNUjeV0mnuVJKSsj4/ hKlf7RVqYYkX2bQOKEVkAOv1IuqTBPYN -----END CERTIFICATE-----Generated at Fri Jun 6 17:00:47 2025 by rpki-client