$ rpki-client -vvf rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft File: EhrxRNkD4_iJffD-0gcaFkd17U8.mft (raw, json) Hash identifier: AlQBbUU01dZyYLT0dlYqWUS/Jtzm1r1cL8v2KASJOlc= Subject key identifier: 70:F9:69:F8:A6:F8:C2:BD:6E:5A:37:40:D7:5D:44:4F:86:21:45:C4 Authority key identifier: 12:1A:F1:44:D9:03:E3:F8:89:7D:F0:FE:D2:07:1A:16:47:75:ED:4F Certificate issuer: /CN=A91E554A/serialNumber=121AF144D903E3F8897DF0FED2071A164775ED4F Certificate serial: 8D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft Manifest number: 88 Signing time: Thu 03 Jul 2025 06:51:12 +0000 Manifest this update: Thu 03 Jul 2025 06:51:11 +0000 Manifest next update: Thu 10 Jul 2025 06:51:11 +0000 Files and hashes: 1: EhrxRNkD4_iJffD-0gcaFkd17U8.crl (hash: oSkFmfFZ0YKS1hFEXT1P4BeAyBcEx6MGrJVf7jPJmf8=) 2: 7C304160FECB11EFB755BB45C4F9AE02.roa (hash: 96JJ4xS4XL/KIJ4tbueQ63oeM+4CMNy+gkgjGzK0Myk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.crl rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 141 (0x8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E554A, serialNumber=121AF144D903E3F8897DF0FED2071A164775ED4F Validity Not Before: Jul 3 06:51:11 2025 GMT Not After : Jul 10 06:51:11 2025 GMT Subject: CN=68662860-3cc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:d3:24:d4:e5:06:99:91:59:97:e6:13:12:53: 35:45:14:f5:35:5a:61:c5:1d:4f:d8:6f:10:63:02: 1f:e5:9e:36:81:53:af:41:ca:72:90:87:c3:f5:f6: bf:f2:96:69:02:ae:49:bb:35:7f:34:c8:ed:32:16: 41:06:1b:19:f2:a2:77:44:da:ee:12:e7:3e:4d:9d: 27:6b:18:be:33:1d:52:e0:2a:d3:af:7b:2d:eb:17: 80:78:7a:15:9a:a9:7c:2f:b6:21:1a:4c:ae:8b:14: a5:e3:9b:e2:70:06:e5:6e:b8:cd:cf:d9:3e:06:2d: d8:c2:7b:8e:01:dd:ad:a6:ce:00:ef:cc:d4:37:cf: 00:c8:e7:72:a8:c8:13:62:79:b5:72:d7:a8:e6:ac: 1c:11:69:a5:2d:c1:c5:ce:55:b9:f8:33:74:7f:84: eb:24:c3:f9:ae:64:d8:52:51:34:3c:ed:cd:64:15: 38:db:1e:be:3f:5e:b3:1c:98:10:fc:da:3b:40:a8: 5c:57:e7:94:fe:02:44:96:30:d3:8f:72:01:47:f0: 7f:52:11:2f:71:ee:36:c8:b2:e5:f0:ce:9d:88:74: 99:38:03:6b:70:e5:fb:c2:27:7c:00:18:d9:22:de: 74:8d:53:5f:9c:44:1c:79:a1:87:bf:b7:2f:8d:f1: 55:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:F9:69:F8:A6:F8:C2:BD:6E:5A:37:40:D7:5D:44:4F:86:21:45:C4 X509v3 Authority Key Identifier: keyid:12:1A:F1:44:D9:03:E3:F8:89:7D:F0:FE:D2:07:1A:16:47:75:ED:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:d2:48:5a:90:8c:6a:c2:51:5a:89:8d:62:c9:91:55:f5:98: 99:5b:4a:89:e3:aa:8f:5b:3b:3c:62:94:5c:5f:0e:5a:95:4b: b2:ae:fb:26:c4:f7:ca:f4:20:14:9f:43:1d:0a:a6:a3:a2:82: 90:d4:ff:64:d7:a9:f3:1d:f2:81:a3:fd:28:95:c7:8c:32:41: f8:fb:3f:5a:23:9b:89:f8:8f:d9:4e:1c:d6:7e:7e:0b:cb:b2: f3:06:1f:b7:ba:5c:73:95:ba:45:73:84:15:d1:50:07:68:65: 74:7d:36:d3:d4:5c:c6:12:66:c2:83:d0:b8:40:8b:65:a8:2f: 60:ac:e1:d1:fc:05:71:5e:56:56:98:1d:ee:a8:5c:2a:3b:26: b3:90:8e:65:d6:8c:27:7f:df:ff:39:29:62:2c:cc:c3:2e:13: 72:31:f8:4d:7b:34:c0:8a:d1:9f:2f:6c:a8:10:61:5d:0b:ea: 3f:58:ff:4e:cd:8b:1b:75:1c:ee:d7:a9:c5:19:6d:13:b1:63: 27:c6:c5:86:6b:dd:01:a6:b5:b3:e9:1a:6a:5e:8a:6e:cb:e8: 8f:1d:2b:57:2d:d9:8f:68:a4:d5:6c:27:be:85:5a:1a:f0:da: 11:5a:27:ef:3a:3e:eb:23:d6:59:d9:c6:06:95:4c:99:05:91: 18:f2:2c:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU1NEExMTAvBgNVBAUTKDEyMUFGMTQ0RDkwM0UzRjg4OTdERjBGRUQyMDcxQTE2 NDc3NUVENEYwHhcNMjUwNzAzMDY1MTExWhcNMjUwNzEwMDY1MTExWjAYMRYwFAYD VQQDEw02ODY2Mjg2MC0zY2M3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz9Mk1OUGmZFZl+YTElM1RRT1NVphxR1P2G8QYwIf5Z42gVOvQcpykIfD9fa/ 8pZpAq5JuzV/NMjtMhZBBhsZ8qJ3RNruEuc+TZ0naxi+Mx1S4CrTr3st6xeAeHoV mql8L7YhGkyuixSl45vicAblbrjNz9k+Bi3YwnuOAd2tps4A78zUN88AyOdyqMgT Ynm1cteo5qwcEWmlLcHFzlW5+DN0f4TrJMP5rmTYUlE0PO3NZBU42x6+P16zHJgQ /No7QKhcV+eU/gJEljDTj3IBR/B/UhEvce42yLLl8M6diHSZOANrcOX7wid8ABjZ It50jVNfnEQceaGHv7cvjfFVEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHD5afim +MK9blo3QNddRE+GIUXEMB8GA1UdIwQYMBaAFBIa8UTZA+P4iX3w/tIHGhZHde1P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTU0QS83OTVFNzNEMDkx RjcxMUVGQURFMTEyNjZDNEY5QUUwMi9FaHJ4Uk5rRDRfaUpmZkQtMGdjYUZrZDE3 VTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0VocnhSTmtENF9pSmZmRC0wZ2NhRmtkMTdVOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTU0QS83OTVFNzNEMDkxRjcxMUVGQURFMTEyNjZDNEY5QUUwMi9FaHJ4Uk5rRDRf aUpmZkQtMGdjYUZrZDE3VTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBy0khakIxqwlFaiY1iyZFV9ZiZW0qJ46qPWzs8YpRcXw5alUuyrvsm xPfK9CAUn0MdCqajooKQ1P9k16nzHfKBo/0olceMMkH4+z9aI5uJ+I/ZThzWfn4L y7LzBh+3ulxzlbpFc4QV0VAHaGV0fTbT1FzGEmbCg9C4QItlqC9grOHR/AVxXlZW mB3uqFwqOyazkI5l1ownf9//OSliLMzDLhNyMfhNezTAitGfL2yoEGFdC+o/WP9O zYsbdRzu16nFGW0TsWMnxsWGa90BprWz6RpqXopuy+iPHStXLdmPaKTVbCe+hVoa 8NoRWifvOj7rI9ZZ2cYGlUyZBZEY8iz+ -----END CERTIFICATE-----Generated at Thu Jul 3 22:49:41 2025 by rpki-client