$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFBDA/6AD374AAE65D11EEB6123E41C4F9AE02/EHo5wcwE8nzHJmPb97rm2SqVA4A.mft File: EHo5wcwE8nzHJmPb97rm2SqVA4A.mft (raw, json) Hash identifier: zMC/KA9xgWk4ba0VnvGgVjgQk7HW1R7i6CGRkOXP0MU= Subject key identifier: D8:A1:4F:81:B0:4B:C2:E4:90:3B:1D:AE:2A:BE:F0:30:26:15:CF:C6 Authority key identifier: 10:7A:39:C1:CC:04:F2:7C:C7:26:63:DB:F7:BA:E6:D9:2A:95:03:80 Certificate issuer: /CN=A91AFBDA/serialNumber=107A39C1CC04F27CC72663DBF7BAE6D92A950380 Certificate serial: F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EHo5wcwE8nzHJmPb97rm2SqVA4A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFBDA/6AD374AAE65D11EEB6123E41C4F9AE02/EHo5wcwE8nzHJmPb97rm2SqVA4A.mft Manifest number: F3 Signing time: Tue 01 Jul 2025 06:11:45 +0000 Manifest this update: Tue 01 Jul 2025 06:11:44 +0000 Manifest next update: Tue 08 Jul 2025 06:11:44 +0000 Files and hashes: 1: EHo5wcwE8nzHJmPb97rm2SqVA4A.crl (hash: 0OxP5+rfQG2absieurrhmdImx2QJ7y9SwOLtyg88WNI=) 2: 62246EC4E67E11EEAD030482C4F9AE02.roa (hash: J5vtQMTwpL/xmHDO4Uy4YqCD/INA3rpqnN+ZrH/2hAs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFBDA/6AD374AAE65D11EEB6123E41C4F9AE02/EHo5wcwE8nzHJmPb97rm2SqVA4A.crl rsync://rpki.apnic.net/member_repository/A91AFBDA/6AD374AAE65D11EEB6123E41C4F9AE02/EHo5wcwE8nzHJmPb97rm2SqVA4A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EHo5wcwE8nzHJmPb97rm2SqVA4A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 06:11:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 247 (0xf7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFBDA, serialNumber=107A39C1CC04F27CC72663DBF7BAE6D92A950380 Validity Not Before: Jul 1 06:11:44 2025 GMT Not After : Jul 8 06:11:44 2025 GMT Subject: CN=68637c21-10be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:b8:ff:43:aa:d2:78:21:e8:37:dd:ad:60:fe: e4:f6:92:24:82:4e:7c:fb:b7:9e:6e:b6:30:48:e4: b6:7d:5c:8a:de:35:ea:fb:d1:dc:ca:d8:9f:82:c0: d2:07:6a:58:e3:10:8a:b0:c7:0b:80:e7:71:a9:0f: 2d:ea:78:1d:50:a1:2f:12:f2:2b:e7:d6:b7:d9:0c: 3e:55:1c:7b:e1:e9:b7:4b:5d:57:0f:23:36:e2:bf: 97:f3:05:d7:0b:55:73:62:e9:46:8d:0b:21:2a:1c: 34:0a:b4:c6:19:f0:1b:f2:58:8e:8c:9d:5b:ea:c7: 01:a5:3c:95:1b:1f:14:3a:90:84:be:3b:0b:76:1d: af:f7:ba:40:6e:b6:b1:d1:c0:aa:98:dc:fa:91:86: b4:8f:2a:c4:34:e9:dd:98:25:d6:64:ed:7e:26:95: 2a:a2:04:3d:76:99:3a:9c:9f:8e:a0:b9:05:16:36: 06:0d:3e:c9:45:38:10:af:62:90:72:74:f7:32:0c: 83:b7:3a:0b:fe:e8:cd:74:f2:ee:12:55:78:f1:d8: e6:1e:82:0e:3e:b5:0f:ae:60:a3:b7:07:78:a0:c5: 8b:e7:eb:1f:28:ea:86:f7:bd:b7:80:0f:62:38:fb: 7a:41:a2:dc:cf:a8:9c:fc:04:6a:8d:7b:77:ea:3a: c4:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:A1:4F:81:B0:4B:C2:E4:90:3B:1D:AE:2A:BE:F0:30:26:15:CF:C6 X509v3 Authority Key Identifier: keyid:10:7A:39:C1:CC:04:F2:7C:C7:26:63:DB:F7:BA:E6:D9:2A:95:03:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFBDA/6AD374AAE65D11EEB6123E41C4F9AE02/EHo5wcwE8nzHJmPb97rm2SqVA4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EHo5wcwE8nzHJmPb97rm2SqVA4A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFBDA/6AD374AAE65D11EEB6123E41C4F9AE02/EHo5wcwE8nzHJmPb97rm2SqVA4A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:5a:45:88:4b:88:2b:c5:9f:b4:66:4b:6c:13:05:fd:6f:ac: 98:14:00:a5:e5:4f:5b:2a:5b:03:f4:5d:88:df:78:91:90:ae: 52:5a:56:3c:5e:ae:62:86:36:c8:86:93:4a:11:47:be:34:95: bd:ca:75:94:0e:a3:ba:7f:7f:9c:62:bd:38:cd:e9:38:9e:5e: 4c:7e:c7:e0:24:c8:0e:f1:4a:de:1d:cd:78:a9:f0:9c:6a:95: 44:c5:c4:5d:28:b7:06:49:38:0b:f2:28:97:69:1a:cf:c2:6e: ae:0d:5d:04:41:1b:77:67:4f:23:a8:8e:53:b4:a8:bc:d1:10: fc:69:06:a8:e1:67:f2:09:1c:90:a6:75:09:ab:b4:ea:74:13: 13:15:e7:4c:34:14:f1:0b:3b:98:69:e2:09:16:05:a2:3f:05: 71:3d:a1:31:b8:ef:ce:89:90:68:16:7f:84:d3:45:fe:c3:61: f6:5e:70:21:b5:48:3f:c5:f3:75:c5:56:f9:8e:20:96:50:4e: 80:9f:87:f6:46:aa:44:81:84:0d:73:be:29:26:35:ba:84:e6: a1:9a:74:b8:ae:31:fc:e3:71:4d:08:7c:e6:33:09:e2:41:78: 43:d1:27:1c:6a:6a:fe:0d:af:15:cb:71:76:ce:be:4a:36:80: 57:84:da:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUZCREExMTAvBgNVBAUTKDEwN0EzOUMxQ0MwNEYyN0NDNzI2NjNEQkY3QkFFNkQ5 MkE5NTAzODAwHhcNMjUwNzAxMDYxMTQ0WhcNMjUwNzA4MDYxMTQ0WjAYMRYwFAYD VQQDEw02ODYzN2MyMS0xMGJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAurj/Q6rSeCHoN92tYP7k9pIkgk58+7eebrYwSOS2fVyK3jXq+9HcytifgsDS B2pY4xCKsMcLgOdxqQ8t6ngdUKEvEvIr59a32Qw+VRx74em3S11XDyM24r+X8wXX C1VzYulGjQshKhw0CrTGGfAb8liOjJ1b6scBpTyVGx8UOpCEvjsLdh2v97pAbrax 0cCqmNz6kYa0jyrENOndmCXWZO1+JpUqogQ9dpk6nJ+OoLkFFjYGDT7JRTgQr2KQ cnT3MgyDtzoL/ujNdPLuElV48djmHoIOPrUPrmCjtwd4oMWL5+sfKOqG9723gA9i OPt6QaLcz6ic/ARqjXt36jrEJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNihT4Gw S8LkkDsdriq+8DAmFc/GMB8GA1UdIwQYMBaAFBB6OcHMBPJ8xyZj2/e65tkqlQOA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRkJEQS82QUQzNzRBQUU2 NUQxMUVFQjYxMjNFNDFDNEY5QUUwMi9FSG81d2N3RThuekhKbVBiOTdybTJTcVZB NEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VIbzV3Y3dFOG56SEptUGI5N3JtMlNxVkE0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RkJEQS82QUQzNzRBQUU2NUQxMUVFQjYxMjNFNDFDNEY5QUUwMi9FSG81d2N3RThu ekhKbVBiOTdybTJTcVZBNEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeWkWIS4grxZ+0ZktsEwX9b6yYFACl5U9bKlsD9F2I33iRkK5SWlY8 Xq5ihjbIhpNKEUe+NJW9ynWUDqO6f3+cYr04zek4nl5MfsfgJMgO8UreHc14qfCc apVExcRdKLcGSTgL8iiXaRrPwm6uDV0EQRt3Z08jqI5TtKi80RD8aQao4WfyCRyQ pnUJq7TqdBMTFedMNBTxCzuYaeIJFgWiPwVxPaExuO/OiZBoFn+E00X+w2H2XnAh tUg/xfN1xVb5jiCWUE6An4f2RqpEgYQNc74pJjW6hOahmnS4rjH843FNCHzmMwni QXhD0Sccamr+Da8Vy3F2zr5KNoBXhNo0 -----END CERTIFICATE-----Generated at Tue Jul 1 16:06:08 2025 by rpki-client