$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFBDA/6AD374AAE65D11EEB6123E41C4F9AE02/EHo5wcwE8nzHJmPb97rm2SqVA4A.mft File: EHo5wcwE8nzHJmPb97rm2SqVA4A.mft (raw, json) Hash identifier: DyanOhnDXgt3blbeENDpa5CvxLcjy5zgnmuq0yyl3Gc= Subject key identifier: 17:67:DB:8B:A4:9A:1B:FF:84:06:F4:EA:3B:24:E5:27:9B:75:7F:B8 Authority key identifier: 10:7A:39:C1:CC:04:F2:7C:C7:26:63:DB:F7:BA:E6:D9:2A:95:03:80 Certificate issuer: /CN=A91AFBDA/serialNumber=107A39C1CC04F27CC72663DBF7BAE6D92A950380 Certificate serial: DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EHo5wcwE8nzHJmPb97rm2SqVA4A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFBDA/6AD374AAE65D11EEB6123E41C4F9AE02/EHo5wcwE8nzHJmPb97rm2SqVA4A.mft Manifest number: D7 Signing time: Fri 09 May 2025 04:37:57 +0000 Manifest this update: Fri 09 May 2025 04:37:57 +0000 Manifest next update: Fri 16 May 2025 04:37:57 +0000 Files and hashes: 1: EHo5wcwE8nzHJmPb97rm2SqVA4A.crl (hash: zq7DMboXoDB49cljQKrAV/xE3LJuFJG7cT/ER7HPmrQ=) 2: 62246EC4E67E11EEAD030482C4F9AE02.roa (hash: 6duqYPlVAYgFYXyMYfQRt0UOQZ9fwNVTaTSO3qscAF8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFBDA/6AD374AAE65D11EEB6123E41C4F9AE02/EHo5wcwE8nzHJmPb97rm2SqVA4A.crl rsync://rpki.apnic.net/member_repository/A91AFBDA/6AD374AAE65D11EEB6123E41C4F9AE02/EHo5wcwE8nzHJmPb97rm2SqVA4A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EHo5wcwE8nzHJmPb97rm2SqVA4A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 04:37:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 218 (0xda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFBDA, serialNumber=107A39C1CC04F27CC72663DBF7BAE6D92A950380 Validity Not Before: May 9 04:37:57 2025 GMT Not After : May 16 04:37:57 2025 GMT Subject: CN=681d86a5-8c77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:12:5d:15:c1:a2:af:d1:c1:08:b5:7e:b4:b2: ea:4b:d4:cb:46:ee:76:7f:3f:e2:56:57:a2:42:8e: 26:7e:97:65:df:04:27:44:2f:a2:92:a6:67:6b:2e: 3d:8d:16:63:0d:e7:ba:88:5f:bf:e1:a1:e4:d1:c2: dd:ab:ff:ec:bd:7a:e6:2b:3e:de:1c:f6:b4:03:e7: 4d:de:d4:e6:5b:3b:61:e9:1e:f7:38:53:a2:38:b7: 88:80:2a:df:b9:ab:47:b5:a6:12:72:15:c7:59:67: aa:82:ac:38:79:1e:d7:92:55:b3:3e:f6:81:28:94: 12:82:fa:d8:bb:c3:cf:03:ed:ca:2d:f6:7e:46:68: 7d:a0:29:f2:a4:b5:8b:84:d0:d6:ad:87:c5:c9:11: b0:42:e1:0a:7d:82:99:89:e0:6d:62:46:42:82:e0: 22:e6:d0:30:00:ca:2f:4b:38:fd:47:31:1d:bf:b9: 9e:3e:38:03:70:55:0d:3b:08:cb:46:0c:2f:d3:8e: 93:f3:53:7c:d3:ca:4a:47:13:7d:35:16:43:ab:2d: 68:32:86:53:f6:74:dc:f6:2f:75:c7:bb:e4:6e:8e: 8c:17:02:f7:e4:aa:16:2c:3e:f5:4d:8c:2c:27:45: 89:13:0c:34:74:56:18:68:81:55:cc:bd:89:e7:aa: 34:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:67:DB:8B:A4:9A:1B:FF:84:06:F4:EA:3B:24:E5:27:9B:75:7F:B8 X509v3 Authority Key Identifier: keyid:10:7A:39:C1:CC:04:F2:7C:C7:26:63:DB:F7:BA:E6:D9:2A:95:03:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFBDA/6AD374AAE65D11EEB6123E41C4F9AE02/EHo5wcwE8nzHJmPb97rm2SqVA4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EHo5wcwE8nzHJmPb97rm2SqVA4A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFBDA/6AD374AAE65D11EEB6123E41C4F9AE02/EHo5wcwE8nzHJmPb97rm2SqVA4A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:07:0b:03:71:e4:39:87:2f:ad:2f:65:d5:4e:49:2a:d5:21: db:dc:07:ed:e6:63:28:47:48:2b:a1:5c:ac:10:76:28:26:81: 48:ad:2c:ff:b0:a5:89:ca:6d:7a:31:82:f4:3e:d7:db:b4:62: 73:75:3f:a7:2e:cc:49:dc:25:0c:31:a4:fc:04:21:03:be:3f: 56:38:5f:41:b3:4c:82:f0:d6:5a:c8:20:f4:d7:87:8a:f7:f9: d6:03:e0:9d:67:9c:ac:9d:70:54:55:de:25:79:31:74:96:4f: 6d:53:12:24:54:13:2b:4e:07:7b:95:f6:7b:1a:bc:c7:d4:60: 83:c3:e0:9f:d8:bc:b5:cf:05:9a:29:fe:4a:74:78:7d:3a:a0: 85:27:12:56:27:c8:f5:6c:4f:11:59:b6:0d:16:cf:25:3d:01: 6f:4e:d9:4f:80:91:fb:52:52:0a:bf:97:52:ca:8a:86:d3:60: 82:f2:ab:59:80:fd:83:fe:52:eb:8b:c7:0f:af:ce:24:6c:b6: b1:53:fc:89:fe:8d:31:90:c5:4d:2c:df:1a:98:16:09:63:23: 7a:bc:09:28:44:76:28:eb:bc:a8:12:3c:86:bb:46:15:ec:65: c2:73:18:61:a7:4b:62:1a:94:da:7d:95:b0:22:c6:ca:c8:20: c2:0d:ca:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUZCREExMTAvBgNVBAUTKDEwN0EzOUMxQ0MwNEYyN0NDNzI2NjNEQkY3QkFFNkQ5 MkE5NTAzODAwHhcNMjUwNTA5MDQzNzU3WhcNMjUwNTE2MDQzNzU3WjAYMRYwFAYD VQQDEw02ODFkODZhNS04Yzc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmBJdFcGir9HBCLV+tLLqS9TLRu52fz/iVleiQo4mfpdl3wQnRC+ikqZnay49 jRZjDee6iF+/4aHk0cLdq//svXrmKz7eHPa0A+dN3tTmWzth6R73OFOiOLeIgCrf uatHtaYSchXHWWeqgqw4eR7XklWzPvaBKJQSgvrYu8PPA+3KLfZ+Rmh9oCnypLWL hNDWrYfFyRGwQuEKfYKZieBtYkZCguAi5tAwAMovSzj9RzEdv7mePjgDcFUNOwjL Rgwv046T81N808pKRxN9NRZDqy1oMoZT9nTc9i91x7vkbo6MFwL35KoWLD71TYws J0WJEww0dFYYaIFVzL2J56o00QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBdn24uk mhv/hAb06jsk5SebdX+4MB8GA1UdIwQYMBaAFBB6OcHMBPJ8xyZj2/e65tkqlQOA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRkJEQS82QUQzNzRBQUU2 NUQxMUVFQjYxMjNFNDFDNEY5QUUwMi9FSG81d2N3RThuekhKbVBiOTdybTJTcVZB NEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VIbzV3Y3dFOG56SEptUGI5N3JtMlNxVkE0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RkJEQS82QUQzNzRBQUU2NUQxMUVFQjYxMjNFNDFDNEY5QUUwMi9FSG81d2N3RThu ekhKbVBiOTdybTJTcVZBNEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvBwsDceQ5hy+tL2XVTkkq1SHb3Aft5mMoR0groVysEHYoJoFIrSz/ sKWJym16MYL0PtfbtGJzdT+nLsxJ3CUMMaT8BCEDvj9WOF9Bs0yC8NZayCD014eK 9/nWA+CdZ5ysnXBUVd4leTF0lk9tUxIkVBMrTgd7lfZ7GrzH1GCDw+Cf2Ly1zwWa Kf5KdHh9OqCFJxJWJ8j1bE8RWbYNFs8lPQFvTtlPgJH7UlIKv5dSyoqG02CC8qtZ gP2D/lLri8cPr84kbLaxU/yJ/o0xkMVNLN8amBYJYyN6vAkoRHYo67yoEjyGu0YV 7GXCcxhhp0tiGpTafZWwIsbKyCDCDcqq -----END CERTIFICATE-----Generated at Sat May 10 18:55:27 2025 by rpki-client