$ rpki-client -vvf rpki.apnic.net/member_repository/A9156AFF/3B7B31B614D811F0A37EC04EC4F9AE02/EiOAOGQwr9Y_NklEdk4bNBhj0No.mft File: EiOAOGQwr9Y_NklEdk4bNBhj0No.mft (raw, json) Hash identifier: PQLaDM0D9wmv3p+jg4zaFeounqsfpQ1FnRzyzlCrJSg= Subject key identifier: 3D:B4:E8:6D:67:C6:72:41:46:82:E7:FB:78:E5:11:E2:0E:3C:A6:55 Authority key identifier: 12:23:80:38:64:30:AF:D6:3F:36:49:44:76:4E:1B:34:18:63:D0:DA Certificate issuer: /CN=A9156AFF/serialNumber=122380386430AFD63F364944764E1B341863D0DA Certificate serial: 2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EiOAOGQwr9Y_NklEdk4bNBhj0No.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156AFF/3B7B31B614D811F0A37EC04EC4F9AE02/EiOAOGQwr9Y_NklEdk4bNBhj0No.mft Manifest number: 2A Signing time: Tue 01 Jul 2025 08:31:14 +0000 Manifest this update: Tue 01 Jul 2025 08:31:14 +0000 Manifest next update: Tue 08 Jul 2025 08:31:14 +0000 Files and hashes: 1: EiOAOGQwr9Y_NklEdk4bNBhj0No.crl (hash: 5eJ+CZj1/VLQvSEWuY0iDGByL15gN8LlWNkla3SVAnY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156AFF/3B7B31B614D811F0A37EC04EC4F9AE02/EiOAOGQwr9Y_NklEdk4bNBhj0No.crl rsync://rpki.apnic.net/member_repository/A9156AFF/3B7B31B614D811F0A37EC04EC4F9AE02/EiOAOGQwr9Y_NklEdk4bNBhj0No.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EiOAOGQwr9Y_NklEdk4bNBhj0No.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 08:31:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156AFF, serialNumber=122380386430AFD63F364944764E1B341863D0DA Validity Not Before: Jul 1 08:31:14 2025 GMT Not After : Jul 8 08:31:14 2025 GMT Subject: CN=68639cd2-2977 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:04:d2:9d:44:c0:9e:da:4f:a8:95:14:00:ac: 36:05:8d:19:24:f7:a4:7e:df:6c:94:0e:9e:dc:c1: 6e:1a:1e:6e:f9:40:9a:6b:b7:36:66:e3:44:a8:20: 3d:6a:69:01:0b:32:bf:90:4e:b0:37:2b:f9:98:72: 07:cf:73:ec:03:fd:a6:99:f7:58:09:b6:cc:e0:c7: f8:e9:50:21:5a:21:a0:b1:8d:52:61:9e:04:2f:d4: 84:18:28:2d:ad:06:a3:ae:d6:3e:2b:c6:0f:2f:47: d6:4e:9f:ef:21:2f:14:3b:54:d2:1d:3e:57:ba:1f: 46:5a:56:9c:10:82:36:4e:2e:15:7b:db:6a:07:47: 42:b3:96:b0:49:cd:be:f0:48:db:1f:48:76:84:ea: 4e:0e:55:e6:61:9c:10:7e:1e:6a:9c:c2:b2:61:c0: fe:85:56:8e:37:e7:2d:5c:d2:6f:c4:45:b4:e9:94: 9c:55:80:e2:c4:6a:f2:5d:5d:3b:75:51:8f:c8:ab: 90:f5:e2:a0:88:05:8c:a0:24:d5:a0:b1:46:cd:fb: e8:7e:e7:9b:a4:4b:2c:d6:9b:99:44:f3:b9:f6:11: f4:2a:70:c4:da:d9:08:2f:f1:07:5a:db:99:69:a2: da:df:f5:8f:5d:7f:9a:58:3e:82:96:ef:02:a9:3f: 3e:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:B4:E8:6D:67:C6:72:41:46:82:E7:FB:78:E5:11:E2:0E:3C:A6:55 X509v3 Authority Key Identifier: keyid:12:23:80:38:64:30:AF:D6:3F:36:49:44:76:4E:1B:34:18:63:D0:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156AFF/3B7B31B614D811F0A37EC04EC4F9AE02/EiOAOGQwr9Y_NklEdk4bNBhj0No.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EiOAOGQwr9Y_NklEdk4bNBhj0No.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156AFF/3B7B31B614D811F0A37EC04EC4F9AE02/EiOAOGQwr9Y_NklEdk4bNBhj0No.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:42:1c:c1:60:9d:96:8d:eb:49:2b:cf:70:7d:2c:b2:37:6b: aa:9d:7a:35:92:0e:57:80:e1:01:37:6a:2c:4b:32:56:e0:3b: eb:76:69:64:46:cc:d6:90:43:df:12:66:b8:7f:03:26:90:3d: e5:dc:e8:66:e9:64:9c:84:e7:60:a1:16:c3:ac:00:e3:93:cb: 27:52:09:8f:6b:8e:d4:1e:4a:8b:05:98:38:9b:07:5b:76:36: bb:e7:36:94:46:85:d9:c2:c9:44:01:a4:1e:af:e9:9f:4e:98: 20:79:e3:38:08:ac:17:12:7f:2a:f5:f4:bf:90:ca:c4:16:d4: 02:31:f6:b1:3f:eb:00:fa:3d:d2:17:8a:80:ab:44:1b:b0:93: 7a:eb:d8:45:2e:9f:f9:5d:7f:50:89:81:fb:e9:d1:61:cd:59: a4:c7:4e:04:f1:ed:c3:3f:40:c1:a6:88:57:19:64:5b:52:1c: 5f:a8:c9:3f:94:43:fd:ed:8d:cc:08:01:0c:27:28:b7:73:2c: 40:a2:cd:fb:d1:35:02:62:cf:47:f1:69:e8:93:14:6f:79:7a: e0:0d:79:c5:a7:2c:68:c9:26:ae:92:c0:99:ef:7d:db:e3:26: 43:5a:82:9b:33:ff:6f:eb:0c:4c:c4:ae:c0:7a:5e:34:20:2d: 34:2d:41:55 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NkFGRjExMC8GA1UEBRMoMTIyMzgwMzg2NDMwQUZENjNGMzY0OTQ0NzY0RTFCMzQx ODYzRDBEQTAeFw0yNTA3MDEwODMxMTRaFw0yNTA3MDgwODMxMTRaMBgxFjAUBgNV BAMTDTY4NjM5Y2QyLTI5NzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDfBNKdRMCe2k+olRQArDYFjRkk96R+32yUDp7cwW4aHm75QJprtzZm40SoID1q aQELMr+QTrA3K/mYcgfPc+wD/aaZ91gJtszgx/jpUCFaIaCxjVJhngQv1IQYKC2t BqOu1j4rxg8vR9ZOn+8hLxQ7VNIdPle6H0ZaVpwQgjZOLhV722oHR0KzlrBJzb7w SNsfSHaE6k4OVeZhnBB+HmqcwrJhwP6FVo435y1c0m/ERbTplJxVgOLEavJdXTt1 UY/Iq5D14qCIBYygJNWgsUbN++h+55ukSyzWm5lE87n2EfQqcMTa2Qgv8Qda25lp otrf9Y9df5pYPoKW7wKpPz5rAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUPbTobWfG ckFGguf7eOUR4g48plUwHwYDVR0jBBgwFoAUEiOAOGQwr9Y/NklEdk4bNBhj0Now DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU2QUZGLzNCN0IzMUI2MTRE ODExRjBBMzdFQzA0RUM0RjlBRTAyL0VpT0FPR1F3cjlZX05rbEVkazRiTkJoajBO by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRWlPQU9HUXdyOVlfTmtsRWRrNGJOQmhqME5vLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU2 QUZGLzNCN0IzMUI2MTREODExRjBBMzdFQzA0RUM0RjlBRTAyL0VpT0FPR1F3cjlZ X05rbEVkazRiTkJoajBOby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKFCHMFgnZaN60krz3B9LLI3a6qdejWSDleA4QE3aixLMlbgO+t2aWRG zNaQQ98SZrh/AyaQPeXc6GbpZJyE52ChFsOsAOOTyydSCY9rjtQeSosFmDibB1t2 NrvnNpRGhdnCyUQBpB6v6Z9OmCB54zgIrBcSfyr19L+QysQW1AIx9rE/6wD6PdIX ioCrRBuwk3rr2EUun/ldf1CJgfvp0WHNWaTHTgTx7cM/QMGmiFcZZFtSHF+oyT+U Q/3tjcwIAQwnKLdzLECizfvRNQJiz0fxaeiTFG95euANecWnLGjJJq6SwJnvfdvj JkNagpsz/2/rDEzErsB6XjQgLTQtQVU= -----END CERTIFICATE-----Generated at Wed Jul 2 19:51:49 2025 by rpki-client