$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.mft File: eKfTXvnEd150y6PRZrYbdZAkFSM.mft (raw, json) Hash identifier: Jf7/mGLaDuUW6D+o4aRs2POvvYTpXbxhpFiEJp66Emc= Subject key identifier: 73:0E:CD:D8:9A:1C:E5:32:E6:3E:0A:1E:E0:76:7E:B3:F3:D5:F3:22 Authority key identifier: 78:A7:D3:5E:F9:C4:77:5E:74:CB:A3:D1:66:B6:1B:75:90:24:15:23 Certificate issuer: /CN=A91D2C38/serialNumber=78A7D35EF9C4775E74CBA3D166B61B7590241523 Certificate serial: 73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eKfTXvnEd150y6PRZrYbdZAkFSM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.mft Manifest number: 72 Signing time: Thu 03 Jul 2025 07:04:42 +0000 Manifest this update: Thu 03 Jul 2025 07:04:41 +0000 Manifest next update: Thu 10 Jul 2025 07:04:41 +0000 Files and hashes: 1: eKfTXvnEd150y6PRZrYbdZAkFSM.crl (hash: v7cUoVbQtjk2NuRiaMkItAzUMChkOmrJMm5LG0U1wR4=) 2: 8DDD0D56A98C11EFAAC0F364C4F9AE02.roa (hash: yg1U4JyDYBAoLLqLQFnhNTd+uuZ0oKhea1PeFahobmY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.crl rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eKfTXvnEd150y6PRZrYbdZAkFSM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 115 (0x73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2C38, serialNumber=78A7D35EF9C4775E74CBA3D166B61B7590241523 Validity Not Before: Jul 3 07:04:41 2025 GMT Not After : Jul 10 07:04:41 2025 GMT Subject: CN=68662b8a-e119 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:bb:9b:86:0f:24:79:cf:3b:d1:63:c2:27:b6: ff:d1:51:ad:0a:f6:61:82:ae:84:2f:18:2c:7b:91: 6e:88:46:de:5d:09:02:e4:c5:cc:02:29:d8:ca:2a: d8:70:9f:f1:48:45:87:34:0f:7c:3e:f2:5f:7a:ed: 7d:2f:d9:7c:40:d9:17:64:88:00:11:d4:33:21:45: 4b:2a:5f:f6:79:0b:9a:12:ee:c4:bc:42:bf:09:87: c7:93:8c:b1:28:a2:a9:69:49:14:0d:37:25:1a:b2: c9:92:36:bd:d2:e1:a1:fb:41:ad:9f:f8:c0:67:a6: 30:ab:17:a5:54:b0:93:62:96:28:a3:8c:09:80:1b: 82:df:46:79:aa:e6:ca:0b:36:41:5b:3b:84:33:9e: bb:9f:02:57:ce:be:56:4f:66:4f:ea:8d:4e:79:8f: 51:9c:06:ad:cc:ce:97:96:82:9f:be:84:f4:f1:e5: 1a:40:bf:a1:61:17:58:10:a4:45:2a:93:2c:94:0d: c1:51:6e:8e:1b:9e:79:f8:9e:5d:6a:d7:a0:6c:4d: 8d:a4:46:90:94:28:35:2e:27:d1:39:5d:df:16:45: 1f:a1:4f:07:0b:88:e5:f5:b6:dd:03:c1:4d:62:a4: 0f:c4:fd:c3:84:5b:2f:5d:fa:ca:cf:a1:3e:c5:61: b6:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:0E:CD:D8:9A:1C:E5:32:E6:3E:0A:1E:E0:76:7E:B3:F3:D5:F3:22 X509v3 Authority Key Identifier: keyid:78:A7:D3:5E:F9:C4:77:5E:74:CB:A3:D1:66:B6:1B:75:90:24:15:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eKfTXvnEd150y6PRZrYbdZAkFSM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:af:5a:c3:59:9c:d4:46:5a:a4:5e:27:1e:07:16:1e:33:32: 6a:eb:c3:99:18:93:d4:e0:d3:e2:75:92:68:4f:cd:4e:2d:27: a5:cb:84:cb:b3:75:5b:83:22:17:9e:81:79:97:10:5b:8f:92: 6d:8f:74:eb:c2:60:2f:e4:c3:d8:6a:fd:43:da:86:b7:5a:1d: 88:61:47:3a:22:6d:ba:45:22:9b:dc:31:35:20:a6:11:15:9c: 53:31:7c:a8:37:4c:d2:3f:08:1d:76:b9:78:95:10:e5:fa:7f: 57:d4:70:12:1b:19:b2:4a:f7:21:25:c7:11:07:be:6a:ac:fc: f8:7a:76:63:cc:db:dd:10:82:02:2f:0d:25:ab:04:17:b6:aa: e5:37:39:dc:33:2e:92:46:df:a8:b2:b4:10:39:1c:8a:0a:35: 26:b5:d5:2f:d2:22:29:d5:95:06:8c:08:99:ca:67:d1:ac:20: 31:3d:da:93:c2:76:27:8f:58:6d:82:19:d4:43:93:b7:55:15: 58:1e:02:fa:41:3d:9f:55:2e:3f:c2:03:b3:38:2a:94:a2:70: 58:7d:8a:12:f3:57:1e:24:f0:f0:77:5b:8d:a6:db:c9:88:44: c7:bd:10:98:50:0f:ca:28:4a:28:88:f8:92:d2:cc:4e:fc:63: 55:36:6b:80 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBczANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MkMzODExMC8GA1UEBRMoNzhBN0QzNUVGOUM0Nzc1RTc0Q0JBM0QxNjZCNjFCNzU5 MDI0MTUyMzAeFw0yNTA3MDMwNzA0NDFaFw0yNTA3MTAwNzA0NDFaMBgxFjAUBgNV BAMTDTY4NjYyYjhhLWUxMTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDQu5uGDyR5zzvRY8Intv/RUa0K9mGCroQvGCx7kW6IRt5dCQLkxcwCKdjKKthw n/FIRYc0D3w+8l967X0v2XxA2RdkiAAR1DMhRUsqX/Z5C5oS7sS8Qr8Jh8eTjLEo oqlpSRQNNyUassmSNr3S4aH7Qa2f+MBnpjCrF6VUsJNiliijjAmAG4LfRnmq5soL NkFbO4QznrufAlfOvlZPZk/qjU55j1GcBq3MzpeWgp++hPTx5RpAv6FhF1gQpEUq kyyUDcFRbo4bnnn4nl1q16BsTY2kRpCUKDUuJ9E5Xd8WRR+hTwcLiOX1tt0DwU1i pA/E/cOEWy9d+srPoT7FYbapAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUcw7N2Joc 5TLmPgoe4HZ+s/PV8yIwHwYDVR0jBBgwFoAUeKfTXvnEd150y6PRZrYbdZAkFSMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQyQzM4LzBERTg5MzQwQTk4 QzExRUY5MzUwRkI2M0M0RjlBRTAyL2VLZlRYdm5FZDE1MHk2UFJaclliZFpBa0ZT TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZUtmVFh2bkVkMTUweTZQUlpyWWJkWkFrRlNNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQy QzM4LzBERTg5MzQwQTk4QzExRUY5MzUwRkI2M0M0RjlBRTAyL2VLZlRYdm5FZDE1 MHk2UFJaclliZFpBa0ZTTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHavWsNZnNRGWqReJx4HFh4zMmrrw5kYk9Tg0+J1kmhPzU4tJ6XLhMuz dVuDIheegXmXEFuPkm2PdOvCYC/kw9hq/UPahrdaHYhhRzoibbpFIpvcMTUgphEV nFMxfKg3TNI/CB12uXiVEOX6f1fUcBIbGbJK9yElxxEHvmqs/Ph6dmPM290QggIv DSWrBBe2quU3OdwzLpJG36iytBA5HIoKNSa11S/SIinVlQaMCJnKZ9GsIDE92pPC diePWG2CGdRDk7dVFVgeAvpBPZ9VLj/CA7M4KpSicFh9ihLzVx4k8PB3W42m28mI RMe9EJhQD8ooSiiI+JLSzE78Y1U2a4A= -----END CERTIFICATE-----Generated at Thu Jul 3 08:33:59 2025 by rpki-client