$ rpki-client -vvf rpki.apnic.net/member_repository/A918B5FE/3CEEDF906A9E11EBB6762318C4F9AE02/EhCVgwI-GF3korKUIxWZ1jZAvJo.mft File: EhCVgwI-GF3korKUIxWZ1jZAvJo.mft (raw, json) Hash identifier: 0FtJscg3SFHW/WrglMKOOaHDHZk9TaduXdL+7SoYbSE= Subject key identifier: 23:17:B1:40:22:A6:97:78:BC:AB:15:DF:78:47:13:BD:F2:EB:AE:83 Authority key identifier: 12:10:95:83:02:3E:18:5D:E4:A2:B2:94:23:15:99:D6:36:40:BC:9A Certificate issuer: /CN=A918B5FE/serialNumber=12109583023E185DE4A2B294231599D63640BC9A Certificate serial: 06AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EhCVgwI-GF3korKUIxWZ1jZAvJo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B5FE/3CEEDF906A9E11EBB6762318C4F9AE02/EhCVgwI-GF3korKUIxWZ1jZAvJo.mft Manifest number: 0699 Signing time: Mon 12 May 2025 22:00:08 +0000 Manifest this update: Mon 12 May 2025 22:00:08 +0000 Manifest next update: Mon 19 May 2025 22:00:08 +0000 Files and hashes: 1: EhCVgwI-GF3korKUIxWZ1jZAvJo.crl (hash: gqyTj7SVH0neRhAXv4N8nuS7KpnRSB3/Mc1WWzvGjqU=) 2: E744DAB06C0D11EB89BF4725C4F9AE02.roa (hash: GwGIG8w2Paja8QeJTC/4mPTw5xBTF4eu77tf9+sFGXE=) 3: E649E89E6C0D11EB89BF4725C4F9AE02.roa (hash: mUNLSSwDIjdC6PSsJdAOAQiuBxAVwe81C3tB9ntlwCU=) 4: 4652D2C2DF3C11EBAC0C7536C4F9AE02.roa (hash: WSWSmKF2Dr04+H2IY6+uuwpQnhp2M2KysyXEj72OLxo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B5FE/3CEEDF906A9E11EBB6762318C4F9AE02/EhCVgwI-GF3korKUIxWZ1jZAvJo.crl rsync://rpki.apnic.net/member_repository/A918B5FE/3CEEDF906A9E11EBB6762318C4F9AE02/EhCVgwI-GF3korKUIxWZ1jZAvJo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EhCVgwI-GF3korKUIxWZ1jZAvJo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 22:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1708 (0x6ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B5FE, serialNumber=12109583023E185DE4A2B294231599D63640BC9A Validity Not Before: May 12 22:00:08 2025 GMT Not After : May 19 22:00:08 2025 GMT Subject: CN=68226f68-646d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:19:43:85:29:e7:2e:9a:e0:d5:8a:16:49:1f: 33:6d:ff:b2:5b:0a:d1:11:79:23:7e:73:ac:88:f5: 65:21:82:05:0f:81:ea:4b:0e:67:ca:e2:76:e8:a5: a4:07:29:ae:0e:98:b1:17:46:54:24:82:b6:a0:aa: a3:a5:75:92:94:7d:4e:53:57:3f:72:4d:22:c3:af: 9f:40:cc:2a:37:01:37:82:a8:dd:e5:71:8d:23:68: e1:9c:43:0e:b9:a3:e1:54:e0:b7:3d:22:9b:7e:7f: f5:4a:7e:bb:3d:91:ce:cb:86:21:12:66:4d:28:3a: c7:ee:89:ea:96:29:97:e6:95:6b:53:f2:8c:95:69: ce:c1:00:4f:48:fc:b0:fa:df:a4:30:d1:76:5f:8a: 84:1a:d4:64:52:53:cc:5b:57:04:93:ef:91:2c:1e: 65:4e:ad:8d:a9:92:e6:9e:cc:87:23:7b:c2:93:1f: 91:f6:d5:46:ff:04:90:13:55:da:2c:59:a4:b2:12: 10:bc:7a:e1:40:73:81:24:aa:ba:5b:aa:e2:23:cb: e0:04:17:0f:42:f2:48:97:af:6d:7b:d4:0b:1c:34: 05:52:6b:1e:5c:d4:4f:40:3b:f5:ec:44:e6:30:fc: 06:8d:37:d2:04:b2:80:d1:60:e6:fc:9b:5a:1f:51: 4f:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:17:B1:40:22:A6:97:78:BC:AB:15:DF:78:47:13:BD:F2:EB:AE:83 X509v3 Authority Key Identifier: keyid:12:10:95:83:02:3E:18:5D:E4:A2:B2:94:23:15:99:D6:36:40:BC:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B5FE/3CEEDF906A9E11EBB6762318C4F9AE02/EhCVgwI-GF3korKUIxWZ1jZAvJo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EhCVgwI-GF3korKUIxWZ1jZAvJo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B5FE/3CEEDF906A9E11EBB6762318C4F9AE02/EhCVgwI-GF3korKUIxWZ1jZAvJo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:98:76:8d:df:aa:f5:8e:23:ae:24:14:c0:e8:8c:e4:d8:fe: fe:e3:1a:3a:1e:82:a6:25:37:51:f0:da:56:6b:d5:a5:a6:af: 68:aa:e0:14:50:9b:5b:90:2d:8d:bd:f4:fd:99:68:84:72:72: 4d:b3:3a:15:37:f1:b9:3a:b4:93:d9:e9:24:60:b7:15:9f:0d: 95:f0:33:65:83:dc:ce:e8:4d:b9:ed:57:5c:38:2c:82:c4:db: d4:18:7b:11:7e:8f:b2:66:17:f9:0a:f7:6d:4f:1c:9d:0a:d1: 95:79:8b:54:b3:16:32:ba:7b:9d:53:07:35:29:ce:3d:ca:5d: 17:6f:78:74:8c:de:48:9e:a4:b1:3f:5b:59:ea:06:65:24:be: b9:0c:c4:9a:35:31:39:d9:80:ce:1d:37:ef:69:62:67:c8:80: 0b:7d:8d:1d:72:d1:17:37:c9:7b:ab:65:df:42:aa:9e:b4:db: 9d:96:b6:e5:9e:3a:6b:c7:14:a8:7a:60:10:71:f2:e0:dc:db: f8:a3:34:74:d6:b6:80:71:d7:40:35:eb:16:1e:95:17:97:51: 15:08:88:3d:01:88:46:95:50:84:f9:9d:88:a1:db:63:d5:b4: 0f:ab:f4:3c:f6:4b:8f:2d:cf:64:b4:e5:14:48:02:21:a0:27: 4a:67:85:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEI1RkUxMTAvBgNVBAUTKDEyMTA5NTgzMDIzRTE4NURFNEEyQjI5NDIzMTU5OUQ2 MzY0MEJDOUEwHhcNMjUwNTEyMjIwMDA4WhcNMjUwNTE5MjIwMDA4WjAYMRYwFAYD VQQDEw02ODIyNmY2OC02NDZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8BlDhSnnLprg1YoWSR8zbf+yWwrREXkjfnOsiPVlIYIFD4HqSw5nyuJ26KWk BymuDpixF0ZUJIK2oKqjpXWSlH1OU1c/ck0iw6+fQMwqNwE3gqjd5XGNI2jhnEMO uaPhVOC3PSKbfn/1Sn67PZHOy4YhEmZNKDrH7onqlimX5pVrU/KMlWnOwQBPSPyw +t+kMNF2X4qEGtRkUlPMW1cEk++RLB5lTq2NqZLmnsyHI3vCkx+R9tVG/wSQE1Xa LFmkshIQvHrhQHOBJKq6W6riI8vgBBcPQvJIl69te9QLHDQFUmseXNRPQDv17ETm MPwGjTfSBLKA0WDm/JtaH1FPXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCMXsUAi ppd4vKsV33hHE73y666DMB8GA1UdIwQYMBaAFBIQlYMCPhhd5KKylCMVmdY2QLya MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjVGRS8zQ0VFREY5MDZB OUUxMUVCQjY3NjIzMThDNEY5QUUwMi9FaENWZ3dJLUdGM2tvcktVSXhXWjFqWkF2 Sm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VoQ1Znd0ktR0Yza29yS1VJeFdaMWpaQXZKby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjVGRS8zQ0VFREY5MDZBOUUxMUVCQjY3NjIzMThDNEY5QUUwMi9FaENWZ3dJLUdG M2tvcktVSXhXWjFqWkF2Sm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAmHaN36r1jiOuJBTA6Izk2P7+4xo6HoKmJTdR8NpWa9Wlpq9oquAU UJtbkC2NvfT9mWiEcnJNszoVN/G5OrST2ekkYLcVnw2V8DNlg9zO6E257VdcOCyC xNvUGHsRfo+yZhf5CvdtTxydCtGVeYtUsxYyunudUwc1Kc49yl0Xb3h0jN5InqSx P1tZ6gZlJL65DMSaNTE52YDOHTfvaWJnyIALfY0dctEXN8l7q2XfQqqetNudlrbl njprxxSoemAQcfLg3Nv4ozR01raAcddANesWHpUXl1EVCIg9AYhGlVCE+Z2Iodtj 1bQPq/Q89kuPLc9ktOUUSAIhoCdKZ4XK -----END CERTIFICATE-----Generated at Tue May 13 11:17:03 2025 by rpki-client