$ rpki-client -vvf rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft File: ehMEShEYWGwP2hOLs-vdSEiRTjc.mft (raw, json) Hash identifier: WrDKVsQDnaPtpUTTKtHtu4AUevFuYjAKTIo3kOVTiEg= Subject key identifier: FB:3B:39:38:7B:C8:20:09:79:4D:13:BF:65:EE:07:32:F1:87:CE:92 Authority key identifier: 7A:13:04:4A:11:18:58:6C:0F:DA:13:8B:B3:EB:DD:48:48:91:4E:37 Certificate issuer: /CN=A9154EAF/serialNumber=7A13044A1118586C0FDA138BB3EBDD4848914E37 Certificate serial: 0274 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ehMEShEYWGwP2hOLs-vdSEiRTjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft Manifest number: 0270 Signing time: Tue 01 Jul 2025 02:26:28 +0000 Manifest this update: Tue 01 Jul 2025 02:26:27 +0000 Manifest next update: Tue 08 Jul 2025 02:26:27 +0000 Files and hashes: 1: ehMEShEYWGwP2hOLs-vdSEiRTjc.crl (hash: z5v2vhk1qpCjf2o1zkD+LsJlRmLD05MgFjt3XCDZuGA=) 2: 62A0C17A16C511ED91E80F56C4F9AE02.roa (hash: JJX6OI5aam7BC0uvlTdjVV9SQAAwhFakRzY5oiIX9Uk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.crl rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ehMEShEYWGwP2hOLs-vdSEiRTjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 02:26:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 628 (0x274) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154EAF, serialNumber=7A13044A1118586C0FDA138BB3EBDD4848914E37 Validity Not Before: Jul 1 02:26:27 2025 GMT Not After : Jul 8 02:26:27 2025 GMT Subject: CN=68634754-33c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:7b:c5:d8:db:58:7a:ee:59:ee:3e:55:12:9d: 5f:ce:64:24:d5:8a:97:f1:ab:0c:fc:0f:8d:9a:c2: 4d:95:47:c6:41:f6:b6:89:a6:4d:6b:b0:eb:6c:15: 9f:12:50:16:d4:cd:0e:f2:b8:60:d6:50:23:f7:26: d2:1b:82:2f:aa:dc:12:ce:08:d3:51:2c:78:db:5e: 6d:61:4a:5e:cd:4f:32:db:fc:a7:ed:7a:4c:0b:60: 9f:2b:2c:67:e9:df:ed:d9:cd:fb:6d:49:41:5c:8e: e1:47:af:86:8b:07:c7:da:a0:1f:68:39:f0:0e:4c: 0a:7e:a5:c6:61:53:3a:e1:c6:73:6a:03:16:c5:a6: a7:f2:b7:f9:4b:55:78:fa:e2:2e:af:be:20:34:16: 96:8f:32:07:a1:e9:b5:b2:77:7a:5c:39:87:eb:f1: 6c:5a:05:ca:c4:55:a0:95:0b:e0:5f:ff:95:4d:71: 1a:bb:9f:09:0f:b5:49:a7:5e:af:00:82:52:12:aa: 92:ff:db:50:bd:81:52:f0:43:2f:87:73:47:b3:8b: 63:a2:43:49:25:2d:42:63:e2:80:55:d8:98:d9:84: 10:c8:62:28:29:ef:72:34:2b:9e:4e:17:34:0c:91: 5a:59:64:f5:85:1f:4b:b0:70:b6:b6:03:b1:c4:3e: 33:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:3B:39:38:7B:C8:20:09:79:4D:13:BF:65:EE:07:32:F1:87:CE:92 X509v3 Authority Key Identifier: keyid:7A:13:04:4A:11:18:58:6C:0F:DA:13:8B:B3:EB:DD:48:48:91:4E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ehMEShEYWGwP2hOLs-vdSEiRTjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:cc:0c:1a:87:ff:9a:29:8b:f8:fe:33:b5:58:fb:dd:0c:26: 7b:10:c9:2f:e3:5c:25:fe:9f:e3:57:54:61:61:34:48:21:aa: 94:ca:8c:58:e0:aa:fd:fd:f9:ce:86:51:70:f8:c9:80:6d:c3: c4:dc:f2:2e:d8:a8:a8:5e:b2:3a:26:25:be:46:db:10:e7:b5: 17:a4:15:b0:42:55:a1:e9:c5:ac:51:c5:ea:da:a5:6e:5e:be: 4f:0a:d1:b9:e0:8d:e0:bd:a0:5d:ff:e8:87:8a:7b:f9:6e:02: 2c:10:95:2f:10:2b:30:1e:18:57:43:71:e6:a9:7b:1a:d3:93: 5d:cc:6e:2b:02:4b:ee:ca:f4:e4:0a:b0:b8:9c:06:f0:c0:28: d5:85:d6:02:ed:95:11:75:19:ba:57:d7:f4:10:6e:ba:68:f4: b3:3c:8e:96:22:ea:24:fe:9d:38:f6:d4:9a:43:06:2e:f3:a2: 08:29:90:c6:3d:57:40:7e:e8:22:ac:17:2a:d6:5d:04:0b:6c: f7:99:23:92:bb:b7:68:ab:1f:a3:ee:3d:0a:a3:51:d3:7a:a8: 68:a6:78:df:18:00:1a:63:89:55:e4:44:ac:2b:fa:1e:18:46: 8c:47:48:af:0c:8a:01:ab:d4:2c:bf:ed:64:e7:6a:80:58:93: 61:68:31:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRFQUYxMTAvBgNVBAUTKDdBMTMwNDRBMTExODU4NkMwRkRBMTM4QkIzRUJERDQ4 NDg5MTRFMzcwHhcNMjUwNzAxMDIyNjI3WhcNMjUwNzA4MDIyNjI3WjAYMRYwFAYD VQQDEw02ODYzNDc1NC0zM2M3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvnvF2NtYeu5Z7j5VEp1fzmQk1YqX8asM/A+NmsJNlUfGQfa2iaZNa7DrbBWf ElAW1M0O8rhg1lAj9ybSG4IvqtwSzgjTUSx4215tYUpezU8y2/yn7XpMC2CfKyxn 6d/t2c37bUlBXI7hR6+GiwfH2qAfaDnwDkwKfqXGYVM64cZzagMWxaan8rf5S1V4 +uIur74gNBaWjzIHoem1snd6XDmH6/FsWgXKxFWglQvgX/+VTXEau58JD7VJp16v AIJSEqqS/9tQvYFS8EMvh3NHs4tjokNJJS1CY+KAVdiY2YQQyGIoKe9yNCueThc0 DJFaWWT1hR9LsHC2tgOxxD4zWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPs7OTh7 yCAJeU0Tv2XuBzLxh86SMB8GA1UdIwQYMBaAFHoTBEoRGFhsD9oTi7Pr3UhIkU43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEVBRi80N0Q1QTdFMDE2 QzMxMUVEQUU3RUI5NTVDNEY5QUUwMi9laE1FU2hFWVdHd1AyaE9Mcy12ZFNFaVJU amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VoTUVTaEVZV0d3UDJoT0xzLXZkU0VpUlRqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEVBRi80N0Q1QTdFMDE2QzMxMUVEQUU3RUI5NTVDNEY5QUUwMi9laE1FU2hFWVdH d1AyaE9Mcy12ZFNFaVJUamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIzAwah/+aKYv4/jO1WPvdDCZ7EMkv41wl/p/jV1RhYTRIIaqUyoxY 4Kr9/fnOhlFw+MmAbcPE3PIu2KioXrI6JiW+RtsQ57UXpBWwQlWh6cWsUcXq2qVu Xr5PCtG54I3gvaBd/+iHinv5bgIsEJUvECswHhhXQ3HmqXsa05NdzG4rAkvuyvTk CrC4nAbwwCjVhdYC7ZURdRm6V9f0EG66aPSzPI6WIuok/p049tSaQwYu86IIKZDG PVdAfugirBcq1l0EC2z3mSOSu7doqx+j7j0Ko1HTeqhopnjfGAAaY4lV5ESsK/oe GEaMR0ivDIoBq9Qsv+1k52qAWJNhaDEy -----END CERTIFICATE-----Generated at Tue Jul 1 16:51:25 2025 by rpki-client