$ rpki-client -vvf rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.mft File: EpTEi8aWr-ggvRWC80NnutqwJDI.mft (raw, json) Hash identifier: Oqf43tcSgEAM9MgUL4OVZz1S36uKVl8W4OuDNk6zFZM= Subject key identifier: C1:C8:19:5E:A6:CE:41:F6:5F:84:AB:E1:6D:11:B4:7D:8A:85:C5:08 Authority key identifier: 12:94:C4:8B:C6:96:AF:E8:20:BD:15:82:F3:43:67:BA:DA:B0:24:32 Certificate issuer: /CN=A9117817/serialNumber=1294C48BC696AFE820BD1582F34367BADAB02432 Certificate serial: 047E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EpTEi8aWr-ggvRWC80NnutqwJDI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.mft Manifest number: 0476 Signing time: Tue 01 Jul 2025 00:37:21 +0000 Manifest this update: Tue 01 Jul 2025 00:37:20 +0000 Manifest next update: Tue 08 Jul 2025 00:37:20 +0000 Files and hashes: 1: EpTEi8aWr-ggvRWC80NnutqwJDI.crl (hash: 8TxysYwc6yaCnRIwtxe6Ro/qrStT1/KiCRPcfDO9K3Y=) 2: 2A84118CE0A311EC9CF2B738C4F9AE02.roa (hash: d5/NJRnIjibSymNbNk/lOaJ1Q3nAQoqs/MS6HVTtaFE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.crl rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EpTEi8aWr-ggvRWC80NnutqwJDI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 00:37:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1150 (0x47e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117817, serialNumber=1294C48BC696AFE820BD1582F34367BADAB02432 Validity Not Before: Jul 1 00:37:20 2025 GMT Not After : Jul 8 00:37:20 2025 GMT Subject: CN=68632dc0-5ce3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:b7:17:b1:6e:c5:1a:72:64:93:ff:d3:44:81: 33:18:7e:26:f8:60:e7:9f:d6:18:45:16:c4:f4:bb: fe:5c:86:bc:15:68:14:f3:9a:b1:cc:e0:74:09:04: 1d:0f:26:ed:fe:d2:22:f6:7b:ee:e7:a2:24:21:0a: c3:42:fb:8e:7c:07:82:a4:21:ee:24:1d:39:57:8a: f5:de:65:0b:71:f4:2c:27:48:ce:36:da:c3:02:2e: ca:4a:6e:b0:43:97:cd:0b:c1:9f:93:64:27:31:21: c2:60:e9:cd:e8:21:30:20:f2:a8:0c:34:e2:b3:b7: e3:d7:7f:20:90:15:13:7b:44:32:68:1b:a4:c5:e3: dd:e8:14:55:3b:39:77:ca:34:e9:97:62:8c:86:b6: ef:dd:e1:2d:d0:5f:b3:b7:57:3d:14:83:0e:d2:e1: 83:84:11:a7:e9:2d:ef:27:ff:3e:17:ea:11:fc:1e: 1e:96:06:f3:02:1b:8c:cb:49:0a:82:b2:0d:e2:65: 74:f6:65:ec:21:c0:32:38:50:c0:a6:24:1a:97:70: b0:15:1d:96:f1:b6:6d:70:f0:15:cd:97:7c:13:ae: b6:59:89:8b:6e:e5:05:01:3e:a5:c8:8b:cd:f7:d9: 4a:e7:a6:1d:32:3a:c1:5a:94:e8:e3:62:5d:39:78: 99:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:C8:19:5E:A6:CE:41:F6:5F:84:AB:E1:6D:11:B4:7D:8A:85:C5:08 X509v3 Authority Key Identifier: keyid:12:94:C4:8B:C6:96:AF:E8:20:BD:15:82:F3:43:67:BA:DA:B0:24:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EpTEi8aWr-ggvRWC80NnutqwJDI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:40:3d:ec:7e:c7:12:e3:88:5e:a5:69:17:cd:ca:e8:fb:94: 6e:73:f5:34:9d:9d:c1:cb:32:98:6b:0e:ea:de:21:b8:0e:b2: 3b:ff:21:cf:d9:7f:e4:c6:3e:7c:88:98:1b:d6:88:02:03:9c: 43:e2:74:a8:6f:2e:52:39:12:f2:8f:87:32:06:eb:54:31:f7: 22:d6:16:e6:54:f8:2b:b2:22:c7:15:85:52:0a:a5:b8:92:c0: 56:ed:bd:fe:85:76:6d:a6:a4:4d:b9:e8:fe:11:31:91:0e:d6: f0:31:f7:f0:f6:29:0d:ff:47:da:cf:44:86:65:4a:9d:5c:5c: 83:59:e3:c9:07:3f:32:22:ff:14:d1:5e:11:30:d7:b4:1e:75: 05:b7:59:29:0c:e0:e5:d5:a3:87:af:76:f4:7b:57:23:38:ea: 68:c3:cf:a0:b4:0a:82:b5:bc:81:58:7d:0a:8b:ef:bc:56:5d: c5:9d:98:b6:7b:24:12:11:0a:96:53:c2:dc:9e:51:d6:8a:26: d8:bc:d3:7e:b2:db:fe:20:a7:91:52:0b:17:dc:9a:e8:ca:a6: df:aa:61:fe:55:b3:26:74:21:80:af:d6:4d:0f:4d:69:c4:b7: 00:9c:6c:a8:50:2a:91:3d:7d:ba:af:d8:45:37:f1:f6:00:df: ba:49:e4:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBH4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc4MTcxMTAvBgNVBAUTKDEyOTRDNDhCQzY5NkFGRTgyMEJEMTU4MkYzNDM2N0JB REFCMDI0MzIwHhcNMjUwNzAxMDAzNzIwWhcNMjUwNzA4MDAzNzIwWjAYMRYwFAYD VQQDEw02ODYzMmRjMC01Y2UzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtbcXsW7FGnJkk//TRIEzGH4m+GDnn9YYRRbE9Lv+XIa8FWgU85qxzOB0CQQd Dybt/tIi9nvu56IkIQrDQvuOfAeCpCHuJB05V4r13mULcfQsJ0jONtrDAi7KSm6w Q5fNC8Gfk2QnMSHCYOnN6CEwIPKoDDTis7fj138gkBUTe0QyaBukxePd6BRVOzl3 yjTpl2KMhrbv3eEt0F+zt1c9FIMO0uGDhBGn6S3vJ/8+F+oR/B4elgbzAhuMy0kK grIN4mV09mXsIcAyOFDApiQal3CwFR2W8bZtcPAVzZd8E662WYmLbuUFAT6lyIvN 99lK56YdMjrBWpTo42JdOXiZCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMHIGV6m zkH2X4Sr4W0RtH2KhcUIMB8GA1UdIwQYMBaAFBKUxIvGlq/oIL0VgvNDZ7rasCQy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzgxNy8wNjgzRUI3MDRE QUMxMUVDODU3MTYwMjNDNEY5QUUwMi9FcFRFaThhV3ItZ2d2UldDODBObnV0cXdK REkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VwVEVpOGFXci1nZ3ZSV0M4ME5udXRxd0pESS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzgxNy8wNjgzRUI3MDREQUMxMUVDODU3MTYwMjNDNEY5QUUwMi9FcFRFaThhV3It Z2d2UldDODBObnV0cXdKREkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACQD3sfscS44hepWkXzcro+5Ruc/U0nZ3ByzKYaw7q3iG4DrI7/yHP 2X/kxj58iJgb1ogCA5xD4nSoby5SORLyj4cyButUMfci1hbmVPgrsiLHFYVSCqW4 ksBW7b3+hXZtpqRNuej+ETGRDtbwMffw9ikN/0faz0SGZUqdXFyDWePJBz8yIv8U 0V4RMNe0HnUFt1kpDODl1aOHr3b0e1cjOOpow8+gtAqCtbyBWH0Ki++8Vl3FnZi2 eyQSEQqWU8LcnlHWiibYvNN+stv+IKeRUgsX3JroyqbfqmH+VbMmdCGAr9ZND01p xLcAnGyoUCqRPX26r9hFN/H2AN+6SeSr -----END CERTIFICATE-----Generated at Tue Jul 1 21:10:24 2025 by rpki-client