$ rpki-client -vvf rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.mft File: EW-SD4cwZnR6jO3a_-hLz72wNRo.mft (raw, json) Hash identifier: rZEUkzuIqsl5b6E4AITtJYsMCEdmi7i+7Y2eYsjr78M= Subject key identifier: 16:03:01:33:7C:97:B7:5D:BF:68:3B:9F:ED:CF:14:57:BD:5A:93:5A Authority key identifier: 11:6F:92:0F:87:30:66:74:7A:8C:ED:DA:FF:E8:4B:CF:BD:B0:35:1A Certificate issuer: /CN=A9120CDE/serialNumber=116F920F873066747A8CEDDAFFE84BCFBDB0351A Certificate serial: 11A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EW-SD4cwZnR6jO3a_-hLz72wNRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.mft Manifest number: 119D Signing time: Fri 04 Jul 2025 17:29:22 +0000 Manifest this update: Fri 04 Jul 2025 17:29:21 +0000 Manifest next update: Fri 11 Jul 2025 17:29:21 +0000 Files and hashes: 1: EW-SD4cwZnR6jO3a_-hLz72wNRo.crl (hash: o3O8LQ7hkCDKLs+6VxhUAKTa7zuiE8+4dCO9ph+iKQo=) 2: D8D63660B9A811ECB7EE5A71C4F9AE02.roa (hash: DIX09IMqDwhYz9qe1Nv5iQBk3kT+S7TLOQSBMI/PtT0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.crl rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EW-SD4cwZnR6jO3a_-hLz72wNRo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4521 (0x11a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120CDE, serialNumber=116F920F873066747A8CEDDAFFE84BCFBDB0351A Validity Not Before: Jul 4 17:29:21 2025 GMT Not After : Jul 11 17:29:21 2025 GMT Subject: CN=68680f71-75bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:97:be:1e:3f:bb:c9:b3:ca:0e:7c:07:58:50: 62:7a:c2:41:3b:5c:11:2c:8c:a9:6e:88:e0:1e:f8: 74:3f:51:9e:bf:fa:60:aa:28:3c:85:87:70:6f:cf: 45:5b:61:8d:55:a6:01:ab:0b:fc:16:d6:c9:80:ee: 1d:47:ab:22:a0:19:1d:b0:90:79:9c:76:4d:0f:c8: dd:72:71:97:90:32:a1:e5:8f:f5:e7:42:30:53:3a: 3a:0b:0c:32:ae:0c:4f:4f:44:a4:f3:4c:0f:e4:09: ae:42:8a:48:68:45:59:e7:c3:7d:b1:a1:94:80:0c: 78:5a:fb:4d:52:7f:0e:c8:81:c7:ee:cf:29:47:59: 44:9d:61:29:35:50:82:38:c7:8d:99:93:b5:a5:46: 17:0c:60:6e:3b:c2:5d:ca:be:1b:03:0b:e3:a8:e9: f6:8f:17:92:1a:8f:8e:da:00:49:2c:96:67:94:45: 15:95:07:c2:be:b0:dd:87:98:9f:a8:9c:07:15:ba: 4c:60:90:04:bc:9e:f8:ef:a0:dd:e1:b3:9e:8b:48: bb:3d:83:80:3a:78:53:c0:5f:22:0b:8b:ab:f2:36: fe:96:5f:0a:49:45:90:94:3b:e9:a2:1d:6d:f3:b3: 5e:92:07:4f:cf:4a:21:b8:28:79:2b:f6:9e:92:33: f6:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:03:01:33:7C:97:B7:5D:BF:68:3B:9F:ED:CF:14:57:BD:5A:93:5A X509v3 Authority Key Identifier: keyid:11:6F:92:0F:87:30:66:74:7A:8C:ED:DA:FF:E8:4B:CF:BD:B0:35:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EW-SD4cwZnR6jO3a_-hLz72wNRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:77:bf:80:3d:8a:04:74:6b:68:d3:63:a3:05:e8:d3:0a:13: 06:ce:66:cd:1f:e9:3a:17:9d:99:15:60:c7:38:e4:da:45:06: e6:f9:ac:35:d5:b0:1a:8e:a7:64:a5:a3:c9:78:8c:a6:75:74: 67:e3:22:60:57:76:35:62:fd:bb:19:6c:af:fd:6c:1c:a6:cd: 1f:e8:ca:ac:8a:34:3d:50:e1:2e:9c:27:cf:70:50:92:58:f7: 07:46:96:e4:95:a1:be:82:e9:c2:d3:4b:57:a0:b2:6a:1c:ef: 11:14:61:b7:cd:87:c6:28:7c:2e:ca:dd:22:d3:86:e9:e4:a4: b4:21:e4:6c:60:28:39:a6:e1:08:a3:d2:e0:20:d6:b3:c0:1e: 8b:01:7c:24:b2:9c:30:38:11:87:92:15:31:6e:1a:c8:d8:d1: 12:63:04:50:49:b7:8c:d8:7a:32:74:5c:db:11:6d:01:0c:8e: d3:ab:a4:ee:cf:bc:85:84:91:cb:ca:d6:58:dd:0b:6c:99:d6: 9e:e7:00:29:e5:7f:5c:c0:cf:4b:dc:d5:bb:1f:6d:d5:fb:47: b4:b2:60:60:37:75:17:c2:2f:b2:c9:6d:13:64:2d:96:d4:3d: c8:f5:3c:19:61:b5:8f:73:46:0a:2b:a2:28:4a:cd:81:d7:ac: bd:c9:ee:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEakwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBDREUxMTAvBgNVBAUTKDExNkY5MjBGODczMDY2NzQ3QThDRUREQUZGRTg0QkNG QkRCMDM1MUEwHhcNMjUwNzA0MTcyOTIxWhcNMjUwNzExMTcyOTIxWjAYMRYwFAYD VQQDEw02ODY4MGY3MS03NWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Je+Hj+7ybPKDnwHWFBiesJBO1wRLIypbojgHvh0P1Gev/pgqig8hYdwb89F W2GNVaYBqwv8FtbJgO4dR6sioBkdsJB5nHZND8jdcnGXkDKh5Y/150IwUzo6Cwwy rgxPT0Sk80wP5AmuQopIaEVZ58N9saGUgAx4WvtNUn8OyIHH7s8pR1lEnWEpNVCC OMeNmZO1pUYXDGBuO8Jdyr4bAwvjqOn2jxeSGo+O2gBJLJZnlEUVlQfCvrDdh5if qJwHFbpMYJAEvJ7476Dd4bOei0i7PYOAOnhTwF8iC4ur8jb+ll8KSUWQlDvpoh1t 87NekgdPz0ohuCh5K/aekjP2CwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBYDATN8 l7ddv2g7n+3PFFe9WpNaMB8GA1UdIwQYMBaAFBFvkg+HMGZ0eozt2v/oS8+9sDUa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMENERS8yM0Q4NTY2RUZC REIxMUU4OTIwQ0IwNDRDNEY5QUUwMi9FVy1TRDRjd1puUjZqTzNhXy1oTHo3MndO Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VXLVNENGN3Wm5SNmpPM2FfLWhMejcyd05Sby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MENERS8yM0Q4NTY2RUZCREIxMUU4OTIwQ0IwNDRDNEY5QUUwMi9FVy1TRDRjd1pu UjZqTzNhXy1oTHo3MndOUm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBed7+APYoEdGto02OjBejTChMGzmbNH+k6F52ZFWDHOOTaRQbm+aw1 1bAajqdkpaPJeIymdXRn4yJgV3Y1Yv27GWyv/Wwcps0f6MqsijQ9UOEunCfPcFCS WPcHRpbklaG+gunC00tXoLJqHO8RFGG3zYfGKHwuyt0i04bp5KS0IeRsYCg5puEI o9LgINazwB6LAXwkspwwOBGHkhUxbhrI2NESYwRQSbeM2HoydFzbEW0BDI7Tq6Tu z7yFhJHLytZY3Qtsmdae5wAp5X9cwM9L3NW7H23V+0e0smBgN3UXwi+yyW0TZC2W 1D3I9TwZYbWPc0YKK6IoSs2B16y9ye5p -----END CERTIFICATE-----Generated at Fri Jul 4 22:25:05 2025 by rpki-client