$ rpki-client -vvf rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft File: eHDyQLxFFuOanCWVjPl7GUvnZWc.mft (raw, json) Hash identifier: UWbR+nPowF7/MK5zBCkjKVCnS191771QbE8NUD/80nM= Subject key identifier: A2:F5:5B:FB:EA:8E:92:58:94:9C:70:03:90:CF:0F:15:2E:D5:95:3E Authority key identifier: 78:70:F2:40:BC:45:16:E3:9A:9C:25:95:8C:F9:7B:19:4B:E7:65:67 Certificate issuer: /CN=A91A09BF/serialNumber=7870F240BC4516E39A9C25958CF97B194BE76567 Certificate serial: 0BB6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHDyQLxFFuOanCWVjPl7GUvnZWc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft Manifest number: 0B99 Signing time: Fri 04 Jul 2025 19:21:48 +0000 Manifest this update: Fri 04 Jul 2025 19:21:48 +0000 Manifest next update: Fri 11 Jul 2025 19:21:48 +0000 Files and hashes: 1: eHDyQLxFFuOanCWVjPl7GUvnZWc.crl (hash: 08j34Ep/qdcW+RFAUWVsPT8sezWCNfZeiEm+aGlvz24=) 2: CEFDECF850B011F0B9262D4FC4F9AE02.roa (hash: WtUGGPBORu2ELV1J85b8AQ+2CLGSrU7TTTxiEKhsYHc=) 3: EC4AB04AAA5511EABCEBDE19C4F9AE02.roa (hash: xCXQqgm7s0yqcl5rlXb69u+J291yS3/BUfkPMKe4WIs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.crl rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHDyQLxFFuOanCWVjPl7GUvnZWc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2998 (0xbb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A09BF, serialNumber=7870F240BC4516E39A9C25958CF97B194BE76567 Validity Not Before: Jul 4 19:21:48 2025 GMT Not After : Jul 11 19:21:48 2025 GMT Subject: CN=686829cc-790b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:52:f5:0c:e9:57:94:64:d9:f3:4b:a6:c2:b8: c8:0e:8f:0e:df:b6:17:3f:58:b9:7d:fa:62:34:c9: ef:c3:4a:69:da:60:79:3c:23:b5:04:12:64:d6:5c: 6a:41:37:73:70:5c:48:3c:59:4f:cf:8c:1b:b8:81: 0d:bd:a0:7c:44:19:26:7a:e6:11:ab:47:c3:62:97: 62:2c:aa:5e:b8:33:0e:50:2b:b7:05:61:4c:86:c2: 5f:5c:d2:e4:7a:0c:6b:a1:57:8b:c1:db:7d:f0:20: d0:14:81:db:97:70:e2:67:24:be:34:57:10:b2:4e: ad:a7:ff:eb:00:21:3d:dd:6b:30:38:0b:13:9b:3e: bf:3e:d9:5d:cf:ee:91:4e:5c:fd:a0:a3:27:3f:fa: be:56:2b:5f:49:81:3a:56:c2:fe:28:4f:12:f3:18: 3e:03:07:cb:67:0d:ea:fa:2a:96:b1:1d:b1:f9:d5: 0d:2e:f0:e0:2b:c2:5e:ba:e1:3f:05:8d:2d:7f:ef: d7:ac:25:2c:51:bf:af:ba:cc:29:ef:2c:6f:c3:43: cc:d2:95:5f:31:53:c8:35:d8:91:21:cd:86:8a:7e: 8f:3f:2b:08:33:b8:5c:9a:4e:ea:9d:5b:7d:36:ec: c4:32:e4:6c:4d:1b:bd:0a:65:60:5a:5a:dd:40:75: 7c:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:F5:5B:FB:EA:8E:92:58:94:9C:70:03:90:CF:0F:15:2E:D5:95:3E X509v3 Authority Key Identifier: keyid:78:70:F2:40:BC:45:16:E3:9A:9C:25:95:8C:F9:7B:19:4B:E7:65:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHDyQLxFFuOanCWVjPl7GUvnZWc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:cf:06:37:75:22:63:c6:5b:20:c1:28:b8:76:cd:42:24:a9: 0e:c3:41:fa:76:1a:66:ef:0e:55:16:91:3b:c2:fd:2d:bf:29: 4e:42:0f:da:23:85:96:36:4d:70:35:49:57:b7:24:43:f3:0e: b5:12:f8:2f:41:70:c0:b0:ba:2e:29:38:eb:fa:98:de:27:67: af:be:d6:cf:cb:a7:e3:ba:bf:ba:4b:a6:4f:12:71:27:04:f3: f6:43:10:f2:86:dc:9a:15:c5:98:58:82:2d:62:47:01:ee:c8: 14:47:5e:b3:17:9a:58:ad:75:c3:d8:e4:eb:ff:a9:c7:aa:cd: 7a:8d:2e:28:6c:40:e8:ba:7a:c9:ed:be:31:61:e0:a7:19:85: a6:a4:ff:28:47:2b:f3:fe:c9:52:22:11:1c:7a:c6:55:88:4b: 02:de:4c:f0:a6:f6:57:cf:5b:35:e5:c5:fd:c4:c4:1d:1d:98: 17:c7:6e:d0:b4:cd:78:70:84:cc:4c:4f:03:cb:31:bc:5a:79: c4:40:c1:09:55:e0:07:b4:f2:73:ad:1b:b2:29:8b:b3:6c:a6: 4a:1e:a9:dc:31:84:a1:12:a4:00:d0:f3:b6:b6:b6:f3:40:23: 5a:15:93:96:74:78:94:eb:00:70:e4:41:1a:38:c8:11:6f:42: 6f:01:64:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC7YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA5QkYxMTAvBgNVBAUTKDc4NzBGMjQwQkM0NTE2RTM5QTlDMjU5NThDRjk3QjE5 NEJFNzY1NjcwHhcNMjUwNzA0MTkyMTQ4WhcNMjUwNzExMTkyMTQ4WjAYMRYwFAYD VQQDEw02ODY4MjljYy03OTBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA01L1DOlXlGTZ80umwrjIDo8O37YXP1i5ffpiNMnvw0pp2mB5PCO1BBJk1lxq QTdzcFxIPFlPz4wbuIENvaB8RBkmeuYRq0fDYpdiLKpeuDMOUCu3BWFMhsJfXNLk egxroVeLwdt98CDQFIHbl3DiZyS+NFcQsk6tp//rACE93WswOAsTmz6/Ptldz+6R Tlz9oKMnP/q+VitfSYE6VsL+KE8S8xg+AwfLZw3q+iqWsR2x+dUNLvDgK8JeuuE/ BY0tf+/XrCUsUb+vuswp7yxvw0PM0pVfMVPINdiRIc2Gin6PPysIM7hcmk7qnVt9 NuzEMuRsTRu9CmVgWlrdQHV8FwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKL1W/vq jpJYlJxwA5DPDxUu1ZU+MB8GA1UdIwQYMBaAFHhw8kC8RRbjmpwllYz5exlL52Vn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDlCRi9EMTNEQTFENDJE RkMxMUVBQkMxQjZCODJDNEY5QUUwMi9lSER5UUx4RkZ1T2FuQ1dWalBsN0dVdm5a V2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VIRHlRTHhGRnVPYW5DV1ZqUGw3R1V2blpXYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDlCRi9EMTNEQTFENDJERkMxMUVBQkMxQjZCODJDNEY5QUUwMi9lSER5UUx4RkZ1 T2FuQ1dWalBsN0dVdm5aV2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOzwY3dSJjxlsgwSi4ds1CJKkOw0H6dhpm7w5VFpE7wv0tvylOQg/a I4WWNk1wNUlXtyRD8w61EvgvQXDAsLouKTjr+pjeJ2evvtbPy6fjur+6S6ZPEnEn BPP2QxDyhtyaFcWYWIItYkcB7sgUR16zF5pYrXXD2OTr/6nHqs16jS4obEDounrJ 7b4xYeCnGYWmpP8oRyvz/slSIhEcesZViEsC3kzwpvZXz1s15cX9xMQdHZgXx27Q tM14cITMTE8DyzG8WnnEQMEJVeAHtPJzrRuyKYuzbKZKHqncMYShEqQA0PO2trbz QCNaFZOWdHiU6wBw5EEaOMgRb0JvAWTy -----END CERTIFICATE-----Generated at Fri Jul 4 21:39:02 2025 by rpki-client