$ rpki-client -vvf rpki.apnic.net/member_repository/A91E782F/764CA2D0407011EFBDA9D66FC4F9AE02/ep_4ZMUDGAZxMFiObbqSi6HAOl0.mft File: ep_4ZMUDGAZxMFiObbqSi6HAOl0.mft (raw, json) Hash identifier: njuqeKPaSDWL8J89F7fS1GbmvVBle2250LJA569Spcc= Subject key identifier: 1A:9E:42:76:70:E4:13:F3:F7:4F:65:E3:FE:2F:4E:60:E2:B0:6A:05 Authority key identifier: 7A:9F:F8:64:C5:03:18:06:71:30:58:8E:6D:BA:92:8B:A1:C0:3A:5D Certificate issuer: /CN=A91E782F/serialNumber=7A9FF864C50318067130588E6DBA928BA1C03A5D Certificate serial: A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ep_4ZMUDGAZxMFiObbqSi6HAOl0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E782F/764CA2D0407011EFBDA9D66FC4F9AE02/ep_4ZMUDGAZxMFiObbqSi6HAOl0.mft Manifest number: A5 Signing time: Sat 31 May 2025 05:44:27 +0000 Manifest this update: Sat 31 May 2025 05:44:27 +0000 Manifest next update: Sat 07 Jun 2025 05:44:27 +0000 Files and hashes: 1: ep_4ZMUDGAZxMFiObbqSi6HAOl0.crl (hash: MgY8npd3FoxNRo1Ieu8Rp29Ogi//H5MZKm4fFgqRUP4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E782F/764CA2D0407011EFBDA9D66FC4F9AE02/ep_4ZMUDGAZxMFiObbqSi6HAOl0.crl rsync://rpki.apnic.net/member_repository/A91E782F/764CA2D0407011EFBDA9D66FC4F9AE02/ep_4ZMUDGAZxMFiObbqSi6HAOl0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ep_4ZMUDGAZxMFiObbqSi6HAOl0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:44:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 165 (0xa5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E782F, serialNumber=7A9FF864C50318067130588E6DBA928BA1C03A5D Validity Not Before: May 31 05:44:27 2025 GMT Not After : Jun 7 05:44:27 2025 GMT Subject: CN=683a973b-bfcc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:fb:ef:a3:5a:c8:a2:7d:e6:de:4e:83:f7:ea: ff:49:a9:14:75:b6:01:44:16:d5:c6:fb:e1:46:3a: 85:8d:4f:db:90:b9:15:dd:49:2b:26:e9:01:bb:c7: 65:5a:b6:05:59:4f:43:91:64:49:b1:63:df:d3:f3: dc:03:dd:0a:49:a3:db:8f:e5:a7:5f:cf:b5:c8:2a: 6b:e1:9b:51:69:47:c6:62:cd:9f:08:87:4c:ea:8c: 89:79:7f:c8:d9:bf:91:5f:df:63:6c:41:ec:08:41: a9:dd:75:ed:15:a0:35:cf:38:63:3b:55:33:a8:56: 91:d7:bf:ff:7e:ba:2b:5a:ba:a8:52:49:d2:d4:c8: 01:52:2c:7b:28:22:27:93:40:93:19:43:e0:7e:b7: 5e:4c:fe:20:77:6c:7f:ad:85:96:8f:c2:9e:de:c6: 29:39:c9:a3:30:be:56:19:82:09:39:58:2b:b8:b7: 48:a7:65:fb:36:96:b3:b4:e8:0c:07:b8:b7:49:48: 41:15:0a:92:9b:62:b5:37:d8:fe:29:17:c8:32:ac: e1:bb:21:b3:3e:d3:4a:6a:3e:ca:80:a3:89:f1:d9: 6b:9e:a0:34:2b:60:c6:8f:ac:8e:9e:54:09:6f:b6: 98:72:05:ce:1a:9c:5d:c8:19:dd:fc:ff:20:fd:71: ec:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:9E:42:76:70:E4:13:F3:F7:4F:65:E3:FE:2F:4E:60:E2:B0:6A:05 X509v3 Authority Key Identifier: keyid:7A:9F:F8:64:C5:03:18:06:71:30:58:8E:6D:BA:92:8B:A1:C0:3A:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E782F/764CA2D0407011EFBDA9D66FC4F9AE02/ep_4ZMUDGAZxMFiObbqSi6HAOl0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ep_4ZMUDGAZxMFiObbqSi6HAOl0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E782F/764CA2D0407011EFBDA9D66FC4F9AE02/ep_4ZMUDGAZxMFiObbqSi6HAOl0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:db:94:75:b4:ec:34:85:b2:20:af:c8:08:f9:5c:ca:3b:69: 59:d4:17:7c:a4:e3:cf:a1:22:55:2e:04:ca:98:29:4b:2e:7f: 25:40:80:68:44:a9:31:83:42:31:62:41:af:b3:33:71:c3:ed: c4:a2:e2:b5:27:71:d3:fc:88:b9:d0:db:a2:78:b1:5d:51:09: 6f:8e:ac:15:f2:3a:85:5e:87:67:78:0a:af:b0:0d:a1:64:d7: f5:45:64:2e:9d:b6:3d:04:d8:ac:5e:3d:77:04:17:7b:e4:36: 79:b1:84:6b:09:b3:df:e5:f0:23:24:4e:78:20:9e:7f:f1:78: 47:e8:4e:ef:1e:aa:ae:20:39:fe:57:4b:f3:59:62:93:73:bd: 16:b0:09:75:c8:0a:1d:36:ee:93:24:d9:0d:39:a8:85:83:8b: e2:14:9d:26:df:20:b2:13:7b:e7:32:46:91:08:52:5d:e3:2f: 62:84:f2:30:02:cf:12:d1:d0:a8:bb:74:87:80:3a:ac:e7:76: 1f:34:1c:11:af:6f:30:a9:f5:04:c7:0d:9b:34:fe:44:a6:89: df:4b:9f:45:e2:9f:6d:80:02:43:43:61:70:d6:80:19:cc:0c: 10:9f:b7:ee:0f:6d:63:e4:88:18:ee:50:98:75:4a:d0:5c:cb: 7b:91:72:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTc4MkYxMTAvBgNVBAUTKDdBOUZGODY0QzUwMzE4MDY3MTMwNTg4RTZEQkE5MjhC QTFDMDNBNUQwHhcNMjUwNTMxMDU0NDI3WhcNMjUwNjA3MDU0NDI3WjAYMRYwFAYD VQQDEw02ODNhOTczYi1iZmNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq/vvo1rIon3m3k6D9+r/SakUdbYBRBbVxvvhRjqFjU/bkLkV3UkrJukBu8dl WrYFWU9DkWRJsWPf0/PcA90KSaPbj+WnX8+1yCpr4ZtRaUfGYs2fCIdM6oyJeX/I 2b+RX99jbEHsCEGp3XXtFaA1zzhjO1UzqFaR17//frorWrqoUknS1MgBUix7KCIn k0CTGUPgfrdeTP4gd2x/rYWWj8Ke3sYpOcmjML5WGYIJOVgruLdIp2X7NpaztOgM B7i3SUhBFQqSm2K1N9j+KRfIMqzhuyGzPtNKaj7KgKOJ8dlrnqA0K2DGj6yOnlQJ b7aYcgXOGpxdyBnd/P8g/XHspQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBqeQnZw 5BPz909l4/4vTmDisGoFMB8GA1UdIwQYMBaAFHqf+GTFAxgGcTBYjm26kouhwDpd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzgyRi83NjRDQTJEMDQw NzAxMUVGQkRBOUQ2NkZDNEY5QUUwMi9lcF80Wk1VREdBWnhNRmlPYmJxU2k2SEFP bDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VwXzRaTVVER0FaeE1GaU9iYnFTaTZIQU9sMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzgyRi83NjRDQTJEMDQwNzAxMUVGQkRBOUQ2NkZDNEY5QUUwMi9lcF80Wk1VREdB WnhNRmlPYmJxU2k2SEFPbDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBH25R1tOw0hbIgr8gI+VzKO2lZ1Bd8pOPPoSJVLgTKmClLLn8lQIBo RKkxg0IxYkGvszNxw+3EouK1J3HT/Ii50NuieLFdUQlvjqwV8jqFXodneAqvsA2h ZNf1RWQunbY9BNisXj13BBd75DZ5sYRrCbPf5fAjJE54IJ5/8XhH6E7vHqquIDn+ V0vzWWKTc70WsAl1yAodNu6TJNkNOaiFg4viFJ0m3yCyE3vnMkaRCFJd4y9ihPIw As8S0dCou3SHgDqs53YfNBwRr28wqfUExw2bNP5EponfS59F4p9tgAJDQ2Fw1oAZ zAwQn7fuD21j5IgY7lCYdUrQXMt7kXK1 -----END CERTIFICATE-----Generated at Sat May 31 16:57:50 2025 by rpki-client