$ rpki-client -vvf rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.mft File: EK5_oM-c-qh-uthEzYxCasHDpec.mft (raw, json) Hash identifier: EQyyBextgq4904OjxWbE7i2VH4PJ4c4QnIx6dg8Lb5w= Subject key identifier: 13:59:E9:FE:84:3A:01:E0:C2:B6:B2:1B:2E:C3:02:83:B6:B5:CE:50 Authority key identifier: 10:AE:7F:A0:CF:9C:FA:A8:7E:BA:D8:44:CD:8C:42:6A:C1:C3:A5:E7 Certificate issuer: /CN=A9123BFF/serialNumber=10AE7FA0CF9CFAA87EBAD844CD8C426AC1C3A5E7 Certificate serial: 2069 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EK5_oM-c-qh-uthEzYxCasHDpec.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.mft Manifest number: 2062 Signing time: Mon 12 May 2025 15:56:08 +0000 Manifest this update: Mon 12 May 2025 15:56:07 +0000 Manifest next update: Mon 19 May 2025 15:56:07 +0000 Files and hashes: 1: EK5_oM-c-qh-uthEzYxCasHDpec.crl (hash: fUViiUt0TwqjykCxYvlhEnBLCKyqp17+YGcUUU8Q3+U=) 2: 449C08948D1211EBB9548186C4F9AE02.roa (hash: hFvoTK4OtAWXeUzfRY08E0R6vhbINiOuVhDEOiD6rEA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.crl rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EK5_oM-c-qh-uthEzYxCasHDpec.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 15:56:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8297 (0x2069) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123BFF, serialNumber=10AE7FA0CF9CFAA87EBAD844CD8C426AC1C3A5E7 Validity Not Before: May 12 15:56:07 2025 GMT Not After : May 19 15:56:07 2025 GMT Subject: CN=68221a17-6d40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:50:09:75:6b:d0:60:1d:88:8b:64:ec:c8:94: 73:18:63:ce:6f:8c:db:a4:4f:6e:cb:e1:ce:a2:b0: 69:43:56:ff:a9:d6:c7:0e:f6:00:4d:ea:6a:23:23: c0:3a:cc:7b:7e:c1:09:e5:a4:a6:85:28:92:57:f3: f0:b4:de:05:06:f7:e9:fb:62:81:9b:5e:ff:f1:e0: 32:fc:fd:05:ee:77:68:48:56:7c:84:e6:52:46:7f: b8:39:53:f5:85:26:84:92:c1:05:09:63:c0:99:cb: 5d:6c:4d:29:54:c3:b3:e3:bc:40:a3:29:f7:28:f8: 63:68:95:df:06:b4:e1:16:ab:9e:0b:c3:2b:40:25: bb:dc:df:67:8e:3a:3b:be:d9:d8:c7:43:55:39:f7: 65:b8:c3:3f:2e:c3:58:37:f3:44:d4:1d:49:37:6a: b0:b4:d0:7f:ec:70:42:15:82:55:ab:fd:04:8b:49: b1:45:ea:c6:5f:99:e6:a9:5c:87:f6:06:11:de:7e: c8:9e:c4:57:7d:26:06:b7:f5:e5:18:db:24:28:35: 7d:dc:cb:0c:4b:6a:65:4b:29:27:5b:cb:c7:75:43: 1e:2d:66:ef:2f:74:ad:0f:ec:79:50:6a:e4:df:cc: d3:c3:d9:8f:24:46:14:37:24:c3:d5:9e:7a:7d:ef: e4:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:59:E9:FE:84:3A:01:E0:C2:B6:B2:1B:2E:C3:02:83:B6:B5:CE:50 X509v3 Authority Key Identifier: keyid:10:AE:7F:A0:CF:9C:FA:A8:7E:BA:D8:44:CD:8C:42:6A:C1:C3:A5:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EK5_oM-c-qh-uthEzYxCasHDpec.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:78:e4:90:c2:0a:a2:b9:ad:33:4d:bb:c2:5a:98:5b:bf:28: fd:45:4c:89:dd:33:72:2c:bb:6a:e7:26:45:4a:07:26:a9:c7: e6:ab:b0:16:0b:91:c8:2a:25:23:3b:44:fd:e0:d0:e5:9c:9d: 00:a4:c5:66:43:bc:c0:95:2a:5c:82:8d:cf:88:4e:84:4c:46: 66:db:41:0a:4b:8b:3e:bc:bf:45:18:58:63:96:0f:1e:b9:40: 3b:d3:ea:88:67:57:92:b6:0d:0f:e8:a5:77:72:e5:79:80:1b: 33:81:e0:27:55:0b:f1:91:d1:2a:f4:ce:18:f7:6e:70:cd:f5: a3:e1:8f:2b:50:41:0a:d1:ca:a0:03:86:e1:9e:2d:a8:7c:9e: 0f:40:39:7c:57:19:bd:59:fb:99:70:09:f4:4f:5c:a7:41:3a: 45:90:e3:9f:da:05:f3:79:f3:8a:82:d7:e2:1c:29:63:e7:e5: 22:e0:e5:6f:01:7f:e3:bd:c2:5a:66:eb:e3:40:b9:74:8c:ff: d9:9e:d1:cb:b4:2b:08:a7:09:aa:fa:33:4b:7e:3e:78:50:df: 09:df:cc:69:a9:e9:e6:59:79:f8:89:f4:bc:5b:00:34:b6:a6: 25:57:7f:8b:1c:bb:df:68:e3:6d:15:87:33:22:d2:68:d8:98: b3:1a:e4:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIGkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNCRkYxMTAvBgNVBAUTKDEwQUU3RkEwQ0Y5Q0ZBQTg3RUJBRDg0NENEOEM0MjZB QzFDM0E1RTcwHhcNMjUwNTEyMTU1NjA3WhcNMjUwNTE5MTU1NjA3WjAYMRYwFAYD VQQDEw02ODIyMWExNy02ZDQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy1AJdWvQYB2Ii2TsyJRzGGPOb4zbpE9uy+HOorBpQ1b/qdbHDvYATepqIyPA Osx7fsEJ5aSmhSiSV/PwtN4FBvfp+2KBm17/8eAy/P0F7ndoSFZ8hOZSRn+4OVP1 hSaEksEFCWPAmctdbE0pVMOz47xAoyn3KPhjaJXfBrThFqueC8MrQCW73N9njjo7 vtnYx0NVOfdluMM/LsNYN/NE1B1JN2qwtNB/7HBCFYJVq/0Ei0mxRerGX5nmqVyH 9gYR3n7InsRXfSYGt/XlGNskKDV93MsMS2plSyknW8vHdUMeLWbvL3StD+x5UGrk 38zTw9mPJEYUNyTD1Z56fe/kEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBNZ6f6E OgHgwrayGy7DAoO2tc5QMB8GA1UdIwQYMBaAFBCuf6DPnPqofrrYRM2MQmrBw6Xn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0JGRi9GMjkwODI5QTEw REExMUU2ODVDNEJCM0RDNEY5QUUwMi9FSzVfb00tYy1xaC11dGhFell4Q2FzSERw ZWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VLNV9vTS1jLXFoLXV0aEV6WXhDYXNIRHBlYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0JGRi9GMjkwODI5QTEwREExMUU2ODVDNEJCM0RDNEY5QUUwMi9FSzVfb00tYy1x aC11dGhFell4Q2FzSERwZWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEeOSQwgqiua0zTbvCWphbvyj9RUyJ3TNyLLtq5yZFSgcmqcfmq7AW C5HIKiUjO0T94NDlnJ0ApMVmQ7zAlSpcgo3PiE6ETEZm20EKS4s+vL9FGFhjlg8e uUA70+qIZ1eStg0P6KV3cuV5gBszgeAnVQvxkdEq9M4Y925wzfWj4Y8rUEEK0cqg A4bhni2ofJ4PQDl8Vxm9WfuZcAn0T1ynQTpFkOOf2gXzefOKgtfiHClj5+Ui4OVv AX/jvcJaZuvjQLl0jP/ZntHLtCsIpwmq+jNLfj54UN8J38xpqenmWXn4ifS8WwA0 tqYlV3+LHLvfaONtFYczItJo2JizGuTa -----END CERTIFICATE-----Generated at Mon May 12 19:52:51 2025 by rpki-client