$ rpki-client -vvf rpki.apnic.net/member_repository/A9145258/AC09C6EEE30611EFA807B053C4F9AE02/eERZpLZsg1_PXW5aVoctkkfUZYo.mft File: eERZpLZsg1_PXW5aVoctkkfUZYo.mft (raw, json) Hash identifier: /w2rOcZ3obA+AAortlhaNd1ifkCNflIgYsRytrfRgfc= Subject key identifier: 63:0B:F0:B5:BB:77:2D:77:43:CD:3F:2E:C0:C6:DB:93:A6:54:A3:6A Authority key identifier: 78:44:59:A4:B6:6C:83:5F:CF:5D:6E:5A:56:87:2D:92:47:D4:65:8A Certificate issuer: /CN=A9145258/serialNumber=784459A4B66C835FCF5D6E5A56872D9247D4658A Certificate serial: 5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eERZpLZsg1_PXW5aVoctkkfUZYo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145258/AC09C6EEE30611EFA807B053C4F9AE02/eERZpLZsg1_PXW5aVoctkkfUZYo.mft Manifest number: 56 Signing time: Thu 03 Jul 2025 07:32:13 +0000 Manifest this update: Thu 03 Jul 2025 07:32:13 +0000 Manifest next update: Thu 10 Jul 2025 07:32:13 +0000 Files and hashes: 1: eERZpLZsg1_PXW5aVoctkkfUZYo.crl (hash: nCAngjMdiw6lvDzSTQP5l+YH8MOmFLa4QONn17wA3LY=) 2: 2C7AE786042711F0BCEB4A75C4F9AE02.roa (hash: ugBH0sY3xsy9vZ2jc2RKWYdBc6yrBC0CxRNIPq7VafI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145258/AC09C6EEE30611EFA807B053C4F9AE02/eERZpLZsg1_PXW5aVoctkkfUZYo.crl rsync://rpki.apnic.net/member_repository/A9145258/AC09C6EEE30611EFA807B053C4F9AE02/eERZpLZsg1_PXW5aVoctkkfUZYo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eERZpLZsg1_PXW5aVoctkkfUZYo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 94 (0x5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145258, serialNumber=784459A4B66C835FCF5D6E5A56872D9247D4658A Validity Not Before: Jul 3 07:32:13 2025 GMT Not After : Jul 10 07:32:13 2025 GMT Subject: CN=686631fd-e123 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:5b:3c:d9:2a:54:a6:92:a6:ad:4f:59:0e:a7: 3f:8d:55:72:62:d5:11:ef:7d:c3:43:52:54:fc:08: 6e:af:90:fe:f5:dc:34:44:6c:9d:0b:d8:fb:40:6e: fe:f3:4a:6f:39:b8:22:e9:a9:42:52:28:ad:79:7e: 50:c6:d5:8c:ad:d5:8b:77:af:c0:32:f1:00:6c:77: 04:10:84:1e:db:dc:f9:8b:55:7a:29:af:74:67:ae: 7a:17:f2:f0:9e:f3:24:1b:9e:dc:bb:08:e3:20:5d: ce:65:84:00:b5:ee:52:a0:84:11:ba:d1:ce:38:52: 80:e4:07:cd:ee:9b:ef:22:b3:c9:ce:9a:70:e3:26: 14:0b:e6:51:9b:1f:5d:77:a4:19:e2:e5:85:60:65: 99:d0:fa:2c:70:6e:3c:c5:b0:d1:73:3d:67:da:0a: 5c:ac:15:07:a6:99:40:c2:19:65:c9:d9:e7:52:13: e9:d8:e6:52:da:ac:d5:7f:9e:f9:5e:46:68:85:60: 83:d9:31:5a:da:10:6f:0f:76:f0:8d:43:32:d5:ad: 49:45:3b:58:8b:1b:6e:c7:1d:60:c5:ba:4f:91:ad: f0:52:f6:ba:62:34:bc:bd:82:05:72:d5:de:85:68: 57:41:3f:6e:00:95:10:17:72:bc:85:93:f9:45:32: f4:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:0B:F0:B5:BB:77:2D:77:43:CD:3F:2E:C0:C6:DB:93:A6:54:A3:6A X509v3 Authority Key Identifier: keyid:78:44:59:A4:B6:6C:83:5F:CF:5D:6E:5A:56:87:2D:92:47:D4:65:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145258/AC09C6EEE30611EFA807B053C4F9AE02/eERZpLZsg1_PXW5aVoctkkfUZYo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eERZpLZsg1_PXW5aVoctkkfUZYo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145258/AC09C6EEE30611EFA807B053C4F9AE02/eERZpLZsg1_PXW5aVoctkkfUZYo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:4b:d8:0d:91:48:3b:40:df:82:e1:91:b5:e4:57:d3:bc:01: b1:50:23:34:3a:24:c1:e9:bc:81:a0:4e:b9:5e:b9:08:8a:a9: 8f:2e:71:d2:85:b9:80:26:ad:c2:b7:c2:d9:8c:fa:a8:46:e5: 8f:2d:fe:56:d0:b8:6d:48:9b:c1:50:15:de:cd:72:c6:03:cb: 8d:9d:62:75:83:b4:ef:02:7c:92:6e:f0:6e:78:1c:0f:59:13: 62:94:32:9c:4f:e2:b9:7c:7b:94:04:52:65:60:ba:78:79:33: 12:06:92:b3:ba:2d:f6:0d:f9:33:e6:7e:4e:3b:af:c6:64:ab: af:f1:5a:45:4b:f8:6f:8b:f8:8c:50:2f:9b:cf:83:f6:31:12: 9e:87:d2:ad:01:56:9b:14:b4:f7:f2:cf:5a:a4:b1:a2:24:c4: 6d:14:f5:10:6b:97:b5:eb:07:85:58:c0:af:73:fd:3d:f7:20: 69:b6:16:1e:da:5d:0d:89:d3:50:3e:78:f5:6d:9c:ad:c2:94: e4:32:26:9f:05:8e:b8:4e:08:06:b5:2d:09:b5:c3:11:3d:80: c4:eb:a8:75:1e:2c:0b:81:15:b6:ba:f5:56:87:fe:ec:9d:08: 1e:0a:9e:2c:21:a6:08:74:82:b1:f0:3e:cf:5c:07:08:59:98: 79:f9:b8:c8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NTI1ODExMC8GA1UEBRMoNzg0NDU5QTRCNjZDODM1RkNGNUQ2RTVBNTY4NzJEOTI0 N0Q0NjU4QTAeFw0yNTA3MDMwNzMyMTNaFw0yNTA3MTAwNzMyMTNaMBgxFjAUBgNV BAMTDTY4NjYzMWZkLWUxMjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDeWzzZKlSmkqatT1kOpz+NVXJi1RHvfcNDUlT8CG6vkP713DREbJ0L2PtAbv7z Sm85uCLpqUJSKK15flDG1Yyt1Yt3r8Ay8QBsdwQQhB7b3PmLVXopr3RnrnoX8vCe 8yQbnty7COMgXc5lhAC17lKghBG60c44UoDkB83um+8is8nOmnDjJhQL5lGbH113 pBni5YVgZZnQ+ixwbjzFsNFzPWfaClysFQemmUDCGWXJ2edSE+nY5lLarNV/nvle RmiFYIPZMVraEG8PdvCNQzLVrUlFO1iLG27HHWDFuk+RrfBS9rpiNLy9ggVy1d6F aFdBP24AlRAXcryFk/lFMvS3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUYwvwtbt3 LXdDzT8uwMbbk6ZUo2owHwYDVR0jBBgwFoAUeERZpLZsg1/PXW5aVoctkkfUZYow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1MjU4L0FDMDlDNkVFRTMw NjExRUZBODA3QjA1M0M0RjlBRTAyL2VFUlpwTFpzZzFfUFhXNWFWb2N0a2tmVVpZ by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZUVSWnBMWnNnMV9QWFc1YVZvY3Rra2ZVWllvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1 MjU4L0FDMDlDNkVFRTMwNjExRUZBODA3QjA1M0M0RjlBRTAyL2VFUlpwTFpzZzFf UFhXNWFWb2N0a2tmVVpZby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEhL2A2RSDtA34LhkbXkV9O8AbFQIzQ6JMHpvIGgTrleuQiKqY8ucdKF uYAmrcK3wtmM+qhG5Y8t/lbQuG1Im8FQFd7NcsYDy42dYnWDtO8CfJJu8G54HA9Z E2KUMpxP4rl8e5QEUmVgunh5MxIGkrO6LfYN+TPmfk47r8Zkq6/xWkVL+G+L+IxQ L5vPg/YxEp6H0q0BVpsUtPfyz1qksaIkxG0U9RBrl7XrB4VYwK9z/T33IGm2Fh7a XQ2J01A+ePVtnK3ClOQyJp8FjrhOCAa1LQm1wxE9gMTrqHUeLAuBFba69VaH/uyd CB4Kniwhpgh0grHwPs9cBwhZmHn5uMg= -----END CERTIFICATE-----Generated at Sat Jul 5 01:22:10 2025 by rpki-client