$ rpki-client -vvf rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft File: ehMEShEYWGwP2hOLs-vdSEiRTjc.mft (raw, json) Hash identifier: lq71NJUWRG0S+jYQNMG26dqRjluLJN9XPBl6ZLnlnSQ= Subject key identifier: 58:80:A0:D1:73:54:95:76:F6:EC:8F:4A:60:03:01:D9:D7:10:6F:11 Authority key identifier: 7A:13:04:4A:11:18:58:6C:0F:DA:13:8B:B3:EB:DD:48:48:91:4E:37 Certificate issuer: /CN=A9154EAF/serialNumber=7A13044A1118586C0FDA138BB3EBDD4848914E37 Certificate serial: 0259 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ehMEShEYWGwP2hOLs-vdSEiRTjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft Manifest number: 0256 Signing time: Tue 13 May 2025 01:36:51 +0000 Manifest this update: Tue 13 May 2025 01:36:51 +0000 Manifest next update: Tue 20 May 2025 01:36:50 +0000 Files and hashes: 1: ehMEShEYWGwP2hOLs-vdSEiRTjc.crl (hash: awZA12JYzcuwmRkA/Q+SPwBT4eLNlMRrTeMt3xvzz4I=) 2: 62A0C17A16C511ED91E80F56C4F9AE02.roa (hash: kng6fCGLTbPsbCoI7dxHc95AMq1MgoPXW3QCzJfYN0g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.crl rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ehMEShEYWGwP2hOLs-vdSEiRTjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 01:36:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 601 (0x259) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154EAF, serialNumber=7A13044A1118586C0FDA138BB3EBDD4848914E37 Validity Not Before: May 13 01:36:51 2025 GMT Not After : May 20 01:36:50 2025 GMT Subject: CN=6822a233-081f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b6:7b:09:a8:1f:60:c8:6e:88:19:b9:1b:f2: 2a:58:5c:f4:52:b9:28:6c:21:0e:26:c9:6d:19:2a: 23:47:95:92:e1:b6:2e:46:dc:72:e2:8c:3a:63:5d: 29:32:05:b1:23:fa:a0:40:d6:b4:fd:68:87:d7:5c: 76:0c:2d:9a:8f:2c:8d:20:77:ef:5e:fb:a1:08:b7: 79:bc:dc:73:47:48:e7:08:8a:87:d0:04:d8:fe:98: 79:73:dd:5a:7e:90:44:c5:c2:d6:67:6b:63:dd:79: 70:ca:5a:d6:65:1f:d0:b4:04:1c:a8:0c:b0:1a:58: 98:33:c0:c5:48:78:8e:7f:10:8e:fd:24:1f:00:16: ca:fc:3b:2f:20:ea:67:14:f2:91:a5:8d:f5:8c:83: c4:c5:f4:7a:74:b9:c2:f4:a8:ec:24:f5:6d:93:69: 3c:df:18:a7:dd:3f:d4:51:4c:99:6e:50:4d:2b:a1: bf:6d:7b:ca:92:7f:84:95:9d:87:d3:9b:51:f4:bc: e2:33:bc:da:21:47:ce:63:b3:97:8c:d9:d5:df:bf: e2:a8:6a:0f:03:8e:2b:dd:43:c8:01:e1:29:14:a7: ba:b0:4e:78:9c:7d:d2:26:14:a1:88:80:43:18:95: f2:4f:ad:c4:7e:76:7f:41:65:c5:76:99:b7:ba:3c: 38:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:80:A0:D1:73:54:95:76:F6:EC:8F:4A:60:03:01:D9:D7:10:6F:11 X509v3 Authority Key Identifier: keyid:7A:13:04:4A:11:18:58:6C:0F:DA:13:8B:B3:EB:DD:48:48:91:4E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ehMEShEYWGwP2hOLs-vdSEiRTjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:03:e0:70:a5:a3:fb:e2:2c:18:25:96:a5:b2:bb:f1:b3:14: 2e:56:10:23:fc:b5:12:c5:74:e3:38:0a:39:d8:13:67:40:7f: 22:d4:71:e0:3a:f0:cd:d3:e8:de:60:ee:37:ce:56:88:ed:03: f3:d1:12:11:03:6c:07:d8:3f:b2:a4:4d:1e:8a:e2:11:4d:29: 0f:b7:11:ce:fc:05:18:4c:75:64:60:ff:78:ef:5f:91:e9:c5: 11:e4:e5:5a:7d:3f:d6:71:a7:71:3a:1e:78:c1:99:05:bd:a4: 9d:32:70:91:7d:24:35:2b:90:bd:dc:53:02:b4:2f:19:ab:71: 23:ee:44:6e:c0:b6:c6:8c:ca:63:75:3a:79:03:07:ce:da:35: c5:81:4e:aa:83:bb:db:81:0f:9d:a2:47:71:f6:e8:c0:0b:dd: ba:53:c8:04:2e:df:df:5e:c4:9f:a0:49:29:df:52:73:50:b3: e7:34:67:5e:c6:f2:8d:c6:d0:2c:a6:20:8f:3a:a6:b5:23:c4: cc:a6:49:6b:ff:a6:c0:bd:bf:33:14:c5:90:6c:4b:d3:16:40: 8b:e7:3e:06:71:2c:5e:cc:98:f1:db:91:48:1b:d9:05:76:cd: f3:3f:7b:d6:71:56:e2:8a:38:73:69:46:8a:88:d2:8f:a5:cc: f2:f5:b9:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRFQUYxMTAvBgNVBAUTKDdBMTMwNDRBMTExODU4NkMwRkRBMTM4QkIzRUJERDQ4 NDg5MTRFMzcwHhcNMjUwNTEzMDEzNjUxWhcNMjUwNTIwMDEzNjUwWjAYMRYwFAYD VQQDEw02ODIyYTIzMy0wODFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxbZ7CagfYMhuiBm5G/IqWFz0UrkobCEOJsltGSojR5WS4bYuRtxy4ow6Y10p MgWxI/qgQNa0/WiH11x2DC2ajyyNIHfvXvuhCLd5vNxzR0jnCIqH0ATY/ph5c91a fpBExcLWZ2tj3XlwylrWZR/QtAQcqAywGliYM8DFSHiOfxCO/SQfABbK/DsvIOpn FPKRpY31jIPExfR6dLnC9KjsJPVtk2k83xin3T/UUUyZblBNK6G/bXvKkn+ElZ2H 05tR9LziM7zaIUfOY7OXjNnV37/iqGoPA44r3UPIAeEpFKe6sE54nH3SJhShiIBD GJXyT63EfnZ/QWXFdpm3ujw4pwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFiAoNFz VJV29uyPSmADAdnXEG8RMB8GA1UdIwQYMBaAFHoTBEoRGFhsD9oTi7Pr3UhIkU43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEVBRi80N0Q1QTdFMDE2 QzMxMUVEQUU3RUI5NTVDNEY5QUUwMi9laE1FU2hFWVdHd1AyaE9Mcy12ZFNFaVJU amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VoTUVTaEVZV0d3UDJoT0xzLXZkU0VpUlRqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEVBRi80N0Q1QTdFMDE2QzMxMUVEQUU3RUI5NTVDNEY5QUUwMi9laE1FU2hFWVdH d1AyaE9Mcy12ZFNFaVJUamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJA+BwpaP74iwYJZalsrvxsxQuVhAj/LUSxXTjOAo52BNnQH8i1HHg OvDN0+jeYO43zlaI7QPz0RIRA2wH2D+ypE0eiuIRTSkPtxHO/AUYTHVkYP9471+R 6cUR5OVafT/WcadxOh54wZkFvaSdMnCRfSQ1K5C93FMCtC8Zq3Ej7kRuwLbGjMpj dTp5AwfO2jXFgU6qg7vbgQ+dokdx9ujAC926U8gELt/fXsSfoEkp31JzULPnNGde xvKNxtAspiCPOqa1I8TMpklr/6bAvb8zFMWQbEvTFkCL5z4GcSxezJjx25FIG9kF ds3zP3vWcVbiijhzaUaKiNKPpczy9bmG -----END CERTIFICATE-----Generated at Tue May 13 06:49:04 2025 by rpki-client