$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6F87/B1CD71F0268811EBBE7C682BC4F9AE02/elR0EjxUiBfiXzSEzCa2CwZBvWk.mft File: elR0EjxUiBfiXzSEzCa2CwZBvWk.mft (raw, json) Hash identifier: B5CiDc0mol2KeuzVYcHcU0vmPidxzEJgSSb4ikeZWjQ= Subject key identifier: 99:0D:06:7F:08:1F:69:C7:3C:69:75:AC:CD:1A:78:0B:2F:C1:98:A2 Authority key identifier: 7A:54:74:12:3C:54:88:17:E2:5F:34:84:CC:26:B6:0B:06:41:BD:69 Certificate issuer: /CN=A91B6F87/serialNumber=7A5474123C548817E25F3484CC26B60B0641BD69 Certificate serial: 076E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/elR0EjxUiBfiXzSEzCa2CwZBvWk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6F87/B1CD71F0268811EBBE7C682BC4F9AE02/elR0EjxUiBfiXzSEzCa2CwZBvWk.mft Manifest number: 075D Signing time: Wed 14 May 2025 21:45:00 +0000 Manifest this update: Wed 14 May 2025 21:45:00 +0000 Manifest next update: Wed 21 May 2025 21:45:00 +0000 Files and hashes: 1: elR0EjxUiBfiXzSEzCa2CwZBvWk.crl (hash: wpxQtzQS972WMud2SQ6vMWBVCO+ZP/KhP+/p+970FEU=) 2: 6AB849742C9C11EBB49A3A32C4F9AE02.roa (hash: N5rp+wOVUON+v7kAB8u9Xt4nLHS1jUGQrfJ3N9lLpxU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6F87/B1CD71F0268811EBBE7C682BC4F9AE02/elR0EjxUiBfiXzSEzCa2CwZBvWk.crl rsync://rpki.apnic.net/member_repository/A91B6F87/B1CD71F0268811EBBE7C682BC4F9AE02/elR0EjxUiBfiXzSEzCa2CwZBvWk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/elR0EjxUiBfiXzSEzCa2CwZBvWk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 21:44:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1902 (0x76e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6F87, serialNumber=7A5474123C548817E25F3484CC26B60B0641BD69 Validity Not Before: May 14 21:45:00 2025 GMT Not After : May 21 21:45:00 2025 GMT Subject: CN=68250edc-ae0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:11:41:33:db:ed:03:3c:0d:96:0b:65:c2:d9: a5:d2:36:92:7a:21:f8:3a:cc:ec:dd:a2:3d:cf:69: 01:e4:07:34:01:90:35:1f:bf:3b:41:92:03:74:ca: 69:9e:29:3e:7d:c6:d8:a5:20:d6:cf:fa:44:22:a8: c6:e8:67:5c:73:f4:96:d7:cf:af:03:3f:d1:30:2e: 8e:a6:8b:9c:bf:83:69:c8:29:3a:57:65:b0:36:d3: ff:9e:79:59:58:13:4b:8f:52:16:6f:bd:73:b7:8f: 46:5a:7c:97:8e:76:37:c3:fe:eb:d1:d9:e6:1f:1f: 1e:d4:53:be:fa:e1:f3:29:c5:5e:fe:ac:b8:d2:0e: 31:28:fe:53:2f:2a:cd:aa:20:8e:47:90:4a:fb:52: 85:52:3f:63:a0:df:3a:f5:ef:d5:b6:a1:a0:02:b6: 9a:ab:68:39:ca:e0:dc:b6:2c:d8:f9:24:48:3b:fa: 4f:5e:c7:d1:95:af:8d:47:90:54:45:47:bf:c9:7e: 5c:50:6b:50:8f:01:eb:57:b5:9e:5b:fb:31:4b:2e: be:41:8d:af:0b:ed:26:84:45:51:7f:9a:60:15:d9: 5d:65:cd:50:4a:1c:10:7c:a4:3e:1f:ca:01:80:56: c6:cb:da:32:e6:e6:87:3c:70:3d:03:2a:89:d3:d5: 26:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:0D:06:7F:08:1F:69:C7:3C:69:75:AC:CD:1A:78:0B:2F:C1:98:A2 X509v3 Authority Key Identifier: keyid:7A:54:74:12:3C:54:88:17:E2:5F:34:84:CC:26:B6:0B:06:41:BD:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6F87/B1CD71F0268811EBBE7C682BC4F9AE02/elR0EjxUiBfiXzSEzCa2CwZBvWk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/elR0EjxUiBfiXzSEzCa2CwZBvWk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6F87/B1CD71F0268811EBBE7C682BC4F9AE02/elR0EjxUiBfiXzSEzCa2CwZBvWk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:6c:19:55:be:26:55:04:16:e9:bb:a3:cb:ac:c4:a1:20:ce: 0a:43:8c:96:87:75:3d:e0:40:9c:b7:e4:e8:09:3f:ef:12:75: 66:3c:48:0c:75:71:44:01:54:82:e4:32:96:00:84:2c:db:fa: 9a:bf:96:32:c4:9f:2a:ad:01:81:7a:38:5d:88:a8:53:02:65: 34:58:3b:21:87:cf:5a:ab:a8:59:30:a8:5c:69:78:35:ea:b2: 15:9b:2b:1e:e8:89:cd:f6:4d:f0:b0:78:81:2f:18:df:06:2c: f0:39:b7:61:62:de:79:4e:b7:a8:b6:6b:40:77:2b:48:0b:f7: b9:2b:7e:02:4e:06:72:34:0f:60:13:a9:c4:97:1a:05:aa:41: 28:3c:81:56:8d:64:71:86:47:be:ad:67:f9:8e:a9:30:99:33: 4d:44:6a:ba:cd:47:d6:f2:db:a0:df:63:d4:1d:39:ff:2b:ee: 93:50:13:9c:a5:20:fc:6f:ee:f7:ee:fb:e6:db:07:8b:11:0d: 98:66:e0:9b:f8:cf:5b:61:e3:95:0a:28:89:84:98:6d:35:73: 34:ec:72:b2:f1:22:08:12:7e:4e:c3:d0:56:b7:ea:a8:c6:d7: ab:cc:6b:1d:56:45:ff:ad:36:eb:9a:ea:a8:3a:a9:15:a8:d1: 6d:de:b0:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB24wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjZGODcxMTAvBgNVBAUTKDdBNTQ3NDEyM0M1NDg4MTdFMjVGMzQ4NENDMjZCNjBC MDY0MUJENjkwHhcNMjUwNTE0MjE0NTAwWhcNMjUwNTIxMjE0NTAwWjAYMRYwFAYD VQQDEw02ODI1MGVkYy1hZTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqBFBM9vtAzwNlgtlwtml0jaSeiH4Oszs3aI9z2kB5Ac0AZA1H787QZIDdMpp nik+fcbYpSDWz/pEIqjG6Gdcc/SW18+vAz/RMC6Opoucv4NpyCk6V2WwNtP/nnlZ WBNLj1IWb71zt49GWnyXjnY3w/7r0dnmHx8e1FO++uHzKcVe/qy40g4xKP5TLyrN qiCOR5BK+1KFUj9joN869e/VtqGgAraaq2g5yuDctizY+SRIO/pPXsfRla+NR5BU RUe/yX5cUGtQjwHrV7WeW/sxSy6+QY2vC+0mhEVRf5pgFdldZc1QShwQfKQ+H8oB gFbGy9oy5uaHPHA9AyqJ09UmpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJkNBn8I H2nHPGl1rM0aeAsvwZiiMB8GA1UdIwQYMBaAFHpUdBI8VIgX4l80hMwmtgsGQb1p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNkY4Ny9CMUNENzFGMDI2 ODgxMUVCQkU3QzY4MkJDNEY5QUUwMi9lbFIwRWp4VWlCZmlYelNFekNhMkN3WkJ2 V2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VsUjBFanhVaUJmaVh6U0V6Q2EyQ3daQnZXay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NkY4Ny9CMUNENzFGMDI2ODgxMUVCQkU3QzY4MkJDNEY5QUUwMi9lbFIwRWp4VWlC ZmlYelNFekNhMkN3WkJ2V2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwbBlVviZVBBbpu6PLrMShIM4KQ4yWh3U94ECct+ToCT/vEnVmPEgM dXFEAVSC5DKWAIQs2/qav5YyxJ8qrQGBejhdiKhTAmU0WDshh89aq6hZMKhcaXg1 6rIVmyse6InN9k3wsHiBLxjfBizwObdhYt55TreotmtAdytIC/e5K34CTgZyNA9g E6nElxoFqkEoPIFWjWRxhke+rWf5jqkwmTNNRGq6zUfW8tug32PUHTn/K+6TUBOc pSD8b+737vvm2weLEQ2YZuCb+M9bYeOVCiiJhJhtNXM07HKy8SIIEn5Ow9BWt+qo xterzGsdVkX/rTbrmuqoOqkVqNFt3rBa -----END CERTIFICATE-----Generated at Fri May 16 10:01:17 2025 by rpki-client