$ rpki-client -vvf rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft File: EhrxRNkD4_iJffD-0gcaFkd17U8.mft (raw, json) Hash identifier: +ckM0DdbgEynWpsi6F626sUsh4xym6ZW9ZYzuezOGdg= Subject key identifier: DC:79:A7:7D:A2:82:9E:08:85:32:DB:33:D5:3C:9C:75:28:7E:EE:43 Authority key identifier: 12:1A:F1:44:D9:03:E3:F8:89:7D:F0:FE:D2:07:1A:16:47:75:ED:4F Certificate issuer: /CN=A91E554A/serialNumber=121AF144D903E3F8897DF0FED2071A164775ED4F Certificate serial: 95 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft Manifest number: 90 Signing time: Sat 19 Jul 2025 06:46:45 +0000 Manifest this update: Sat 19 Jul 2025 06:46:45 +0000 Manifest next update: Sat 26 Jul 2025 06:46:45 +0000 Files and hashes: 1: EhrxRNkD4_iJffD-0gcaFkd17U8.crl (hash: LYxzxyx48llcpPdiNbIuW/4Hoyq27WwdItL2z+eL/T4=) 2: 7C304160FECB11EFB755BB45C4F9AE02.roa (hash: 96JJ4xS4XL/KIJ4tbueQ63oeM+4CMNy+gkgjGzK0Myk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.crl rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 06:46:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 149 (0x95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E554A, serialNumber=121AF144D903E3F8897DF0FED2071A164775ED4F Validity Not Before: Jul 19 06:46:45 2025 GMT Not After : Jul 26 06:46:45 2025 GMT Subject: CN=687b3f55-c6a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:53:bf:6e:ca:83:2b:44:ac:53:5c:f0:28:ec: e0:02:ca:13:52:d4:37:e2:30:c5:52:8f:6a:9e:f0: e6:ca:d8:e6:23:9c:44:6e:2c:44:69:40:d3:6f:f9: 55:b3:81:1f:d6:cb:9f:01:e9:eb:76:c1:80:5a:50: ad:1e:f7:cb:d1:41:6a:f4:2f:73:9f:01:6f:ff:da: d9:3b:18:ba:3f:71:c4:3a:72:98:0b:81:d9:e4:f5: 99:a9:2e:9d:07:6b:3a:8f:c5:a5:cc:e6:cc:46:4c: 4c:ea:84:85:87:7e:a6:cc:2a:f9:e6:f2:b3:47:0a: b9:d5:77:ad:29:f2:dd:73:1f:f0:43:4b:a4:86:d4: 88:5a:81:5a:97:34:e4:1e:2a:a9:f6:f7:c6:79:9b: 5e:2f:ee:78:2c:ea:76:db:ad:79:52:ee:26:14:e5: 07:a8:6f:bf:51:b8:0d:82:0d:5f:0e:42:56:5d:0a: 63:ed:f6:fd:2c:c8:9f:c6:9c:dd:2f:cc:31:5b:a8: 43:8a:3c:ad:9c:79:50:df:9c:92:a7:d3:1a:5f:7f: 50:e4:1a:c5:03:13:5c:c6:8d:c3:4a:ba:62:f8:a1: 7e:3a:94:fb:e4:3c:f4:ef:e8:30:18:cd:70:e0:49: 47:6f:e8:8a:08:74:b5:fa:10:d4:40:f3:2f:d8:48: 18:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:79:A7:7D:A2:82:9E:08:85:32:DB:33:D5:3C:9C:75:28:7E:EE:43 X509v3 Authority Key Identifier: keyid:12:1A:F1:44:D9:03:E3:F8:89:7D:F0:FE:D2:07:1A:16:47:75:ED:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:9f:1c:65:b2:44:d6:08:d9:6f:b5:24:48:36:81:03:cc:66: c7:13:4e:4d:5c:22:b4:f3:e7:0e:73:1a:f3:9c:15:c7:e9:b9: ca:45:fa:d5:34:2a:10:76:46:6c:d9:4f:2a:3c:6a:e8:1d:d0: e1:c4:96:26:eb:25:ea:2d:7d:b8:2f:32:d2:1d:ac:dd:dd:3f: 6b:78:bc:9e:8d:10:53:2c:96:ef:8a:8c:3a:80:b9:a0:79:69: b6:9c:09:a6:34:b6:02:c0:ea:e1:ab:45:4e:8b:ea:de:1b:16: 79:32:71:a1:c4:55:79:a4:13:44:97:ee:a5:51:8f:66:fe:0f: ba:2d:eb:1e:7a:98:f4:e2:36:e8:4a:20:c5:81:9e:59:81:4d: 3a:d9:2e:2e:fb:3e:32:63:a1:0e:11:1a:47:0a:cd:91:4a:b3: 20:0b:96:99:7e:ca:d1:77:20:0d:d4:86:5a:26:a1:77:10:f3: f0:a8:72:1f:de:ea:4f:30:ef:2a:6a:4f:ee:05:ef:ea:7f:55: a5:30:a4:1d:08:78:6f:02:d4:0a:f4:07:ad:59:f9:81:19:f0: 63:63:48:a5:bf:1e:cf:3d:43:23:53:5c:19:56:32:0b:81:28: e0:90:1b:f3:9e:d1:6d:a1:0f:0e:78:3b:95:5e:3e:7e:e8:d1: 92:e6:cd:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU1NEExMTAvBgNVBAUTKDEyMUFGMTQ0RDkwM0UzRjg4OTdERjBGRUQyMDcxQTE2 NDc3NUVENEYwHhcNMjUwNzE5MDY0NjQ1WhcNMjUwNzI2MDY0NjQ1WjAYMRYwFAYD VQQDEw02ODdiM2Y1NS1jNmEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA71O/bsqDK0SsU1zwKOzgAsoTUtQ34jDFUo9qnvDmytjmI5xEbixEaUDTb/lV s4Ef1sufAenrdsGAWlCtHvfL0UFq9C9znwFv/9rZOxi6P3HEOnKYC4HZ5PWZqS6d B2s6j8WlzObMRkxM6oSFh36mzCr55vKzRwq51XetKfLdcx/wQ0ukhtSIWoFalzTk Hiqp9vfGeZteL+54LOp22615Uu4mFOUHqG+/UbgNgg1fDkJWXQpj7fb9LMifxpzd L8wxW6hDijytnHlQ35ySp9MaX39Q5BrFAxNcxo3DSrpi+KF+OpT75Dz07+gwGM1w 4ElHb+iKCHS1+hDUQPMv2EgY3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNx5p32i gp4IhTLbM9U8nHUofu5DMB8GA1UdIwQYMBaAFBIa8UTZA+P4iX3w/tIHGhZHde1P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTU0QS83OTVFNzNEMDkx RjcxMUVGQURFMTEyNjZDNEY5QUUwMi9FaHJ4Uk5rRDRfaUpmZkQtMGdjYUZrZDE3 VTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0VocnhSTmtENF9pSmZmRC0wZ2NhRmtkMTdVOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTU0QS83OTVFNzNEMDkxRjcxMUVGQURFMTEyNjZDNEY5QUUwMi9FaHJ4Uk5rRDRf aUpmZkQtMGdjYUZrZDE3VTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcnxxlskTWCNlvtSRINoEDzGbHE05NXCK08+cOcxrznBXH6bnKRfrV NCoQdkZs2U8qPGroHdDhxJYm6yXqLX24LzLSHazd3T9reLyejRBTLJbviow6gLmg eWm2nAmmNLYCwOrhq0VOi+reGxZ5MnGhxFV5pBNEl+6lUY9m/g+6Leseepj04jbo SiDFgZ5ZgU062S4u+z4yY6EOERpHCs2RSrMgC5aZfsrRdyAN1IZaJqF3EPPwqHIf 3upPMO8qak/uBe/qf1WlMKQdCHhvAtQK9AetWfmBGfBjY0ilvx7PPUMjU1wZVjIL gSjgkBvzntFtoQ8OeDuVXj5+6NGS5s3X -----END CERTIFICATE-----Generated at Mon Jul 21 02:04:44 2025 by rpki-client