$ rpki-client -vvf rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft File: eHDyQLxFFuOanCWVjPl7GUvnZWc.mft (raw, json) Hash identifier: rcTqhByT37lm5Qb33uFkjIBsNPBT8Hrl+YrqXGDy9uQ= Subject key identifier: B0:D5:EF:E6:18:75:54:4F:87:B2:92:41:1F:98:0F:D7:1B:AD:BC:D8 Authority key identifier: 78:70:F2:40:BC:45:16:E3:9A:9C:25:95:8C:F9:7B:19:4B:E7:65:67 Certificate issuer: /CN=A91A09BF/serialNumber=7870F240BC4516E39A9C25958CF97B194BE76567 Certificate serial: 0B99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHDyQLxFFuOanCWVjPl7GUvnZWc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft Manifest number: 0B7D Signing time: Sat 10 May 2025 18:50:56 +0000 Manifest this update: Sat 10 May 2025 18:50:56 +0000 Manifest next update: Sat 17 May 2025 18:50:56 +0000 Files and hashes: 1: eHDyQLxFFuOanCWVjPl7GUvnZWc.crl (hash: R8Wj21kwfGFU6DYxZ5yjFazDmp3N/CW9bSo0y6Rlm20=) 2: 7510C8E4A58111EFB180AE4CC4F9AE02.roa (hash: EYUdErvrNyXXGWy2iexeF4zrxrreLq1Yski9zt4iFNY=) 3: EC4AB04AAA5511EABCEBDE19C4F9AE02.roa (hash: xCXQqgm7s0yqcl5rlXb69u+J291yS3/BUfkPMKe4WIs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.crl rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHDyQLxFFuOanCWVjPl7GUvnZWc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 18:50:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2969 (0xb99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A09BF, serialNumber=7870F240BC4516E39A9C25958CF97B194BE76567 Validity Not Before: May 10 18:50:56 2025 GMT Not After : May 17 18:50:56 2025 GMT Subject: CN=681fa010-4ac8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:13:da:5e:0c:44:bb:7c:9e:30:d0:f5:56:d6: f7:46:08:c5:d7:95:88:9d:d6:c9:14:79:a3:d9:6b: 57:50:48:b9:89:13:15:ec:8d:f4:36:3e:7d:72:51: f5:22:d9:08:1b:60:1e:fa:f3:31:bb:d1:84:37:e4: f7:b3:96:fe:b7:97:ff:3d:25:47:db:1a:93:30:46: 38:41:d9:d7:3a:e3:c3:0e:e8:be:c7:0e:c5:3f:87: 65:11:3f:11:45:6d:2f:62:b6:d4:d0:ee:69:a3:0c: 9c:e2:70:14:a4:b7:16:0f:a6:cd:23:cf:1f:a5:af: d6:af:a3:18:bf:8e:07:36:5a:85:27:43:73:97:62: a2:94:46:35:cd:bc:46:6b:96:39:c6:c1:65:ef:80: 1c:b3:da:5e:8f:ac:fe:f8:07:7d:63:f7:c2:45:41: a0:e0:60:6e:67:f2:bb:c2:1e:6e:e7:2b:b2:17:4c: 54:98:e7:69:8c:a0:65:9d:a2:d7:12:dd:3a:23:84: 19:5b:1f:e5:6c:66:bc:9a:21:27:ff:04:c0:0c:51: 56:4d:32:02:88:9d:84:f0:8a:d7:1d:49:16:39:6f: f1:ca:93:c8:c7:9a:0d:00:1e:56:1a:66:00:6f:68: 61:fd:b9:00:97:df:b3:42:a6:98:19:1a:f9:a9:51: 9b:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:D5:EF:E6:18:75:54:4F:87:B2:92:41:1F:98:0F:D7:1B:AD:BC:D8 X509v3 Authority Key Identifier: keyid:78:70:F2:40:BC:45:16:E3:9A:9C:25:95:8C:F9:7B:19:4B:E7:65:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHDyQLxFFuOanCWVjPl7GUvnZWc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:7a:00:0d:9f:8a:c2:93:ce:48:48:dc:c7:01:2c:ff:f2:a1: 62:70:84:2e:f0:67:d3:90:16:c8:8b:fb:a9:81:14:e2:e3:ea: 24:0b:a4:2e:d2:63:53:7a:47:db:91:f4:f1:81:75:a7:ac:3f: 91:75:bd:9e:08:9f:1f:22:c5:16:e4:04:3a:e4:5b:40:94:f5: 17:15:d7:5c:f1:6e:32:9c:0f:81:13:b5:c9:cd:0a:ad:2d:c1: 6c:f9:f1:53:5a:20:3b:9f:52:24:ca:c1:4f:99:ec:74:28:4d: 87:48:28:13:bb:56:ed:62:cc:30:db:e6:53:cd:1a:7c:61:ab: ba:47:a8:db:d7:a5:45:4e:ce:48:e5:11:8e:4e:ef:70:8a:4a: ac:32:ba:40:9a:1a:42:7c:44:dc:f6:30:59:88:86:be:55:33: 14:87:fa:5e:9a:c4:f9:94:ad:dc:08:32:f2:3d:6d:ec:c3:d4: 16:26:c1:8e:b7:8b:39:9f:6c:5a:69:a9:b8:66:24:3f:1d:21: de:00:38:dd:96:11:be:d0:37:42:ca:f4:ca:2e:26:4b:42:59: 00:ab:b1:11:b3:39:c3:ed:cf:a2:63:75:2d:70:20:b8:4a:12: a0:3a:10:80:20:81:52:d5:29:d2:42:06:bc:36:5d:af:65:a5: 02:d5:bf:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC5kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA5QkYxMTAvBgNVBAUTKDc4NzBGMjQwQkM0NTE2RTM5QTlDMjU5NThDRjk3QjE5 NEJFNzY1NjcwHhcNMjUwNTEwMTg1MDU2WhcNMjUwNTE3MTg1MDU2WjAYMRYwFAYD VQQDEw02ODFmYTAxMC00YWM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvxPaXgxEu3yeMND1Vtb3RgjF15WIndbJFHmj2WtXUEi5iRMV7I30Nj59clH1 ItkIG2Ae+vMxu9GEN+T3s5b+t5f/PSVH2xqTMEY4QdnXOuPDDui+xw7FP4dlET8R RW0vYrbU0O5powyc4nAUpLcWD6bNI88fpa/Wr6MYv44HNlqFJ0Nzl2KilEY1zbxG a5Y5xsFl74Acs9pej6z++Ad9Y/fCRUGg4GBuZ/K7wh5u5yuyF0xUmOdpjKBlnaLX Et06I4QZWx/lbGa8miEn/wTADFFWTTICiJ2E8IrXHUkWOW/xypPIx5oNAB5WGmYA b2hh/bkAl9+zQqaYGRr5qVGbhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLDV7+YY dVRPh7KSQR+YD9cbrbzYMB8GA1UdIwQYMBaAFHhw8kC8RRbjmpwllYz5exlL52Vn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDlCRi9EMTNEQTFENDJE RkMxMUVBQkMxQjZCODJDNEY5QUUwMi9lSER5UUx4RkZ1T2FuQ1dWalBsN0dVdm5a V2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VIRHlRTHhGRnVPYW5DV1ZqUGw3R1V2blpXYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDlCRi9EMTNEQTFENDJERkMxMUVBQkMxQjZCODJDNEY5QUUwMi9lSER5UUx4RkZ1 T2FuQ1dWalBsN0dVdm5aV2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMegANn4rCk85ISNzHASz/8qFicIQu8GfTkBbIi/upgRTi4+okC6Qu 0mNTekfbkfTxgXWnrD+Rdb2eCJ8fIsUW5AQ65FtAlPUXFddc8W4ynA+BE7XJzQqt LcFs+fFTWiA7n1IkysFPmex0KE2HSCgTu1btYsww2+ZTzRp8Yau6R6jb16VFTs5I 5RGOTu9wikqsMrpAmhpCfETc9jBZiIa+VTMUh/pemsT5lK3cCDLyPW3sw9QWJsGO t4s5n2xaaam4ZiQ/HSHeADjdlhG+0DdCyvTKLiZLQlkAq7ERsznD7c+iY3UtcCC4 ShKgOhCAIIFS1SnSQga8Nl2vZaUC1b8C -----END CERTIFICATE-----Generated at Mon May 12 10:19:36 2025 by rpki-client