$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B93/773DFB7229FD11F0BD552033C4F9AE02/ez9hV-mX7xfKUH5mEH_Ino4-ORM.mft File: ez9hV-mX7xfKUH5mEH_Ino4-ORM.mft (raw, json) Hash identifier: tYnyZO5IlP5CR5stV0v817iCn6YQtsC+rXbKK7jvjTY= Subject key identifier: 37:70:68:35:FE:4C:C1:04:6E:B8:27:31:7C:27:36:90:51:0C:8B:D0 Authority key identifier: 7B:3F:61:57:E9:97:EF:17:CA:50:7E:66:10:7F:C8:9E:8E:3E:39:13 Certificate issuer: /CN=A9157B93/serialNumber=7B3F6157E997EF17CA507E66107FC89E8E3E3913 Certificate serial: 22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ez9hV-mX7xfKUH5mEH_Ino4-ORM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157B93/773DFB7229FD11F0BD552033C4F9AE02/ez9hV-mX7xfKUH5mEH_Ino4-ORM.mft Manifest number: 20 Signing time: Tue 01 Jul 2025 08:40:53 +0000 Manifest this update: Tue 01 Jul 2025 08:40:52 +0000 Manifest next update: Tue 08 Jul 2025 08:40:52 +0000 Files and hashes: 1: ez9hV-mX7xfKUH5mEH_Ino4-ORM.crl (hash: P8WOjobvzQ7wRGvmZuo3L2e3fH1+jQPjaproTsnf7TM=) 2: 7C487C522AD711F0889A9C4CC4F9AE02.roa (hash: dcosUg556kia3puig3z/Vay8g6P730lM2nj6N4MJmoE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157B93/773DFB7229FD11F0BD552033C4F9AE02/ez9hV-mX7xfKUH5mEH_Ino4-ORM.crl rsync://rpki.apnic.net/member_repository/A9157B93/773DFB7229FD11F0BD552033C4F9AE02/ez9hV-mX7xfKUH5mEH_Ino4-ORM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ez9hV-mX7xfKUH5mEH_Ino4-ORM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 08:40:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34 (0x22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157B93, serialNumber=7B3F6157E997EF17CA507E66107FC89E8E3E3913 Validity Not Before: Jul 1 08:40:52 2025 GMT Not After : Jul 8 08:40:52 2025 GMT Subject: CN=68639f15-b45f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:b5:66:2a:42:5a:16:03:f8:2d:96:8b:a4:3f: a9:a5:91:c9:5d:b6:5f:e1:03:89:da:78:d5:4c:46: 90:1f:76:54:bf:95:d8:d8:f0:09:68:7d:cb:59:ef: a2:30:05:5e:73:62:a9:5e:4f:5c:0a:d9:89:71:4d: 38:29:b7:07:fd:94:a8:29:1e:aa:36:46:b6:9b:8c: dd:43:92:2f:a4:60:c1:f6:1f:b7:ec:0b:75:f8:36: bd:ba:fc:d0:04:1f:fa:94:99:72:ba:f7:c6:70:6d: 2d:00:7e:2f:4c:28:22:3f:49:4e:42:2c:af:b1:a5: e4:4a:62:17:cd:89:ed:29:f8:f5:a4:d4:11:6a:a8: d6:87:77:27:fe:a3:bc:7b:96:27:c3:db:99:af:ea: 8f:55:ee:18:80:05:10:5f:c4:4a:f8:42:19:0d:da: ad:be:a9:f4:e1:21:c2:74:1c:87:60:e6:77:c8:ad: 08:27:0d:61:a4:78:b0:c4:93:c1:78:e0:d2:5d:c8: 54:f7:e2:49:be:85:4c:ec:ff:e3:5c:a4:5a:bb:bf: 15:42:59:8b:d1:55:6e:d2:43:9b:3f:f5:bf:2e:4a: a6:55:99:86:a7:ee:be:75:71:c8:e1:81:fc:0a:9b: 9f:7e:3c:b5:5b:28:de:d2:e5:81:f2:14:a5:b8:af: 38:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:70:68:35:FE:4C:C1:04:6E:B8:27:31:7C:27:36:90:51:0C:8B:D0 X509v3 Authority Key Identifier: keyid:7B:3F:61:57:E9:97:EF:17:CA:50:7E:66:10:7F:C8:9E:8E:3E:39:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157B93/773DFB7229FD11F0BD552033C4F9AE02/ez9hV-mX7xfKUH5mEH_Ino4-ORM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ez9hV-mX7xfKUH5mEH_Ino4-ORM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B93/773DFB7229FD11F0BD552033C4F9AE02/ez9hV-mX7xfKUH5mEH_Ino4-ORM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:09:f8:27:34:79:00:57:bf:e8:05:f5:97:81:da:82:d6:80: 2b:1e:6a:65:57:f8:61:49:ea:62:87:37:56:45:62:52:dc:30: 69:c5:be:2f:6e:b6:bd:fd:19:d3:f7:e9:2b:f7:65:7f:95:d3: 1c:ee:36:24:a8:ad:17:29:55:a6:0e:74:11:d2:20:b2:57:0f: 43:18:01:f6:65:9d:16:f9:00:53:0f:3d:4c:f3:00:19:bf:5c: a3:c6:c7:8a:fd:f4:2a:56:ff:df:e9:5d:64:79:68:a9:01:84: 96:e2:ba:48:ec:3c:36:ef:b7:03:e9:3e:d0:5e:c4:95:70:e4: de:ff:e3:fa:9a:83:7b:21:4a:aa:2e:3d:a5:5c:5a:a0:16:ef: c6:82:c2:5d:75:05:fd:67:4b:92:3f:9a:54:17:cf:53:8c:87: 4d:7b:1c:c5:33:7f:c0:e3:d8:9a:6a:0d:3d:e2:85:94:86:75: 8c:e8:ea:3a:0c:b2:ce:57:14:7d:34:f3:3f:3a:7c:cb:be:ed: 07:d4:b1:cf:74:5a:b0:fb:6c:67:d2:f7:e4:bc:ba:b8:1e:f8: dc:73:cf:b8:7d:96:c1:17:59:10:00:b7:b7:61:c3:0e:9f:e3: c7:9e:13:83:18:d7:27:87:84:26:d3:cf:ca:06:ef:dd:95:26: ac:84:06:1a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 N0I5MzExMC8GA1UEBRMoN0IzRjYxNTdFOTk3RUYxN0NBNTA3RTY2MTA3RkM4OUU4 RTNFMzkxMzAeFw0yNTA3MDEwODQwNTJaFw0yNTA3MDgwODQwNTJaMBgxFjAUBgNV BAMTDTY4NjM5ZjE1LWI0NWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCctWYqQloWA/gtloukP6mlkcldtl/hA4naeNVMRpAfdlS/ldjY8AlofctZ76Iw BV5zYqleT1wK2YlxTTgptwf9lKgpHqo2RrabjN1Dki+kYMH2H7fsC3X4Nr26/NAE H/qUmXK698ZwbS0Afi9MKCI/SU5CLK+xpeRKYhfNie0p+PWk1BFqqNaHdyf+o7x7 lifD25mv6o9V7hiABRBfxEr4QhkN2q2+qfThIcJ0HIdg5nfIrQgnDWGkeLDEk8F4 4NJdyFT34km+hUzs/+NcpFq7vxVCWYvRVW7SQ5s/9b8uSqZVmYan7r51ccjhgfwK m59+PLVbKN7S5YHyFKW4rzjXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUN3BoNf5M wQRuuCcxfCc2kFEMi9AwHwYDVR0jBBgwFoAUez9hV+mX7xfKUH5mEH/Ino4+ORMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU3QjkzLzc3M0RGQjcyMjlG RDExRjBCRDU1MjAzM0M0RjlBRTAyL2V6OWhWLW1YN3hmS1VINW1FSF9Jbm80LU9S TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZXo5aFYtbVg3eGZLVUg1bUVIX0lubzQtT1JNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU3 QjkzLzc3M0RGQjcyMjlGRDExRjBCRDU1MjAzM0M0RjlBRTAyL2V6OWhWLW1YN3hm S1VINW1FSF9Jbm80LU9STS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADUJ+Cc0eQBXv+gF9ZeB2oLWgCseamVX+GFJ6mKHN1ZFYlLcMGnFvi9u tr39GdP36Sv3ZX+V0xzuNiSorRcpVaYOdBHSILJXD0MYAfZlnRb5AFMPPUzzABm/ XKPGx4r99CpW/9/pXWR5aKkBhJbiukjsPDbvtwPpPtBexJVw5N7/4/qag3shSqou PaVcWqAW78aCwl11Bf1nS5I/mlQXz1OMh017HMUzf8Dj2JpqDT3ihZSGdYzo6joM ss5XFH008z86fMu+7QfUsc90WrD7bGfS9+S8urge+Nxzz7h9lsEXWRAAt7dhww6f 48eeE4MY1yeHhCbTz8oG792VJqyEBho= -----END CERTIFICATE-----Generated at Thu Jul 3 03:49:44 2025 by rpki-client