$ rpki-client -vvf rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft File: EhrxRNkD4_iJffD-0gcaFkd17U8.mft (raw, json) Hash identifier: AC9AfyXnYWdaLJhNjTRFsmEIwDVTt8y3KXqtHulHcQE= Subject key identifier: D6:94:76:46:EA:F3:DB:4C:69:FB:C6:8C:0F:72:28:CB:8F:CF:5A:E3 Authority key identifier: 12:1A:F1:44:D9:03:E3:F8:89:7D:F0:FE:D2:07:1A:16:47:75:ED:4F Certificate issuer: /CN=A91E554A/serialNumber=121AF144D903E3F8897DF0FED2071A164775ED4F Certificate serial: 70 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft Manifest number: 6B Signing time: Mon 05 May 2025 05:50:55 +0000 Manifest this update: Mon 05 May 2025 05:50:55 +0000 Manifest next update: Mon 12 May 2025 05:50:55 +0000 Files and hashes: 1: EhrxRNkD4_iJffD-0gcaFkd17U8.crl (hash: Qs7mWUZ4JY4FL1RE/LW7xYKKah3DHPCGiGTUh0uTXE8=) 2: 7C304160FECB11EFB755BB45C4F9AE02.roa (hash: 96JJ4xS4XL/KIJ4tbueQ63oeM+4CMNy+gkgjGzK0Myk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.crl rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 05:50:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 112 (0x70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E554A, serialNumber=121AF144D903E3F8897DF0FED2071A164775ED4F Validity Not Before: May 5 05:50:55 2025 GMT Not After : May 12 05:50:55 2025 GMT Subject: CN=681851bf-a001 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:03:f0:2d:68:67:fa:e7:82:4e:c3:a7:e4:7f: 2b:3c:53:aa:7d:11:16:71:74:be:6d:22:1d:e4:ef: b2:cc:e1:fd:98:c9:fa:5e:36:6b:1c:73:c1:8e:af: 59:8c:70:4b:bb:6f:2b:f5:48:fb:38:a0:61:3f:bb: 1e:44:a9:d4:39:16:fb:d4:e6:e8:05:59:7e:3b:07: 0d:28:0c:24:66:59:9e:dd:ba:0b:eb:2c:16:8d:a5: 2a:14:11:34:64:20:6c:ed:92:b1:2a:e8:11:e9:bf: 4c:f0:54:01:dd:97:3c:d4:f6:00:45:28:47:40:0e: 3d:4f:9c:43:56:ae:fb:80:95:e1:87:3c:de:0e:04: 1a:00:41:18:7a:63:b6:1d:ee:8e:fe:e2:1e:2f:a7: 65:c2:53:00:54:e8:75:60:1e:8b:54:e4:af:4d:16: e2:8e:a8:fc:49:e3:2f:d8:94:1a:63:9d:63:db:24: 56:e4:9e:7b:ba:bc:d1:42:39:20:e2:78:c9:1a:fb: 21:a3:20:b6:60:10:2a:0d:6d:6b:33:73:86:12:e3: c4:d8:57:96:ad:f6:8a:dd:d6:31:17:c0:b1:2b:86: 8e:57:b4:f4:ed:b6:77:d4:94:ce:6a:9d:fe:6b:0d: 71:0a:e9:7c:1b:fa:00:ed:f5:9f:f1:3b:6e:33:13: 9a:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:94:76:46:EA:F3:DB:4C:69:FB:C6:8C:0F:72:28:CB:8F:CF:5A:E3 X509v3 Authority Key Identifier: keyid:12:1A:F1:44:D9:03:E3:F8:89:7D:F0:FE:D2:07:1A:16:47:75:ED:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:65:31:15:81:3a:90:aa:a0:d2:f2:df:62:b2:d9:c2:af:ed: ad:b7:1b:68:97:75:69:9c:9c:59:fb:0a:bd:b6:66:21:0e:e9: ed:0e:52:05:9d:79:3d:85:8e:f7:b5:96:92:2a:36:a5:e1:78: 7b:d1:1b:4f:73:5c:af:e2:ff:38:61:c0:56:95:83:59:01:95: 06:22:1a:8c:7c:37:8c:04:c9:91:fa:18:96:83:c9:72:53:9f: e2:63:cb:47:59:ea:d6:4d:0e:93:19:2a:63:9e:0a:ef:a4:13: 56:54:8d:a3:55:8a:41:f5:8f:11:dd:d1:9f:4a:6f:9d:ee:61: a2:b1:b3:96:4d:91:a2:fb:df:43:40:ff:31:ac:ee:d7:49:aa: 90:d0:cd:cc:5c:00:60:c5:41:9f:ed:fa:8d:5f:f8:c3:89:fa: 28:cf:dd:6a:5d:c4:06:bb:1a:0c:4c:ea:40:dd:a2:50:91:fa: c0:9b:7d:30:6f:fc:85:09:01:20:84:cb:9a:ff:7b:ac:9e:1b: 9c:a3:d7:f2:c3:ae:93:72:cd:70:af:96:89:47:5d:69:9d:56: f8:e7:82:71:d4:5a:4d:c8:c5:9b:b9:e1:cd:94:3e:c6:64:16: f8:50:33:77:d1:f2:d7:cc:d8:ef:bf:66:7f:6c:12:31:14:1b: ac:bf:8b:f4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NTU0QTExMC8GA1UEBRMoMTIxQUYxNDREOTAzRTNGODg5N0RGMEZFRDIwNzFBMTY0 Nzc1RUQ0RjAeFw0yNTA1MDUwNTUwNTVaFw0yNTA1MTIwNTUwNTVaMBgxFjAUBgNV BAMTDTY4MTg1MWJmLWEwMDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDOA/AtaGf654JOw6fkfys8U6p9ERZxdL5tIh3k77LM4f2YyfpeNmscc8GOr1mM cEu7byv1SPs4oGE/ux5EqdQ5FvvU5ugFWX47Bw0oDCRmWZ7dugvrLBaNpSoUETRk IGztkrEq6BHpv0zwVAHdlzzU9gBFKEdADj1PnENWrvuAleGHPN4OBBoAQRh6Y7Yd 7o7+4h4vp2XCUwBU6HVgHotU5K9NFuKOqPxJ4y/YlBpjnWPbJFbknnu6vNFCOSDi eMka+yGjILZgECoNbWszc4YS48TYV5at9ord1jEXwLErho5XtPTttnfUlM5qnf5r DXEK6Xwb+gDt9Z/xO24zE5obAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU1pR2Rurz 20xp+8aMD3Ioy4/PWuMwHwYDVR0jBBgwFoAUEhrxRNkD4/iJffD+0gcaFkd17U8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1NTRBLzc5NUU3M0QwOTFG NzExRUZBREUxMTI2NkM0RjlBRTAyL0VocnhSTmtENF9pSmZmRC0wZ2NhRmtkMTdV OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRWhyeFJOa0Q0X2lKZmZELTBnY2FGa2QxN1U4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1 NTRBLzc5NUU3M0QwOTFGNzExRUZBREUxMTI2NkM0RjlBRTAyL0VocnhSTmtENF9p SmZmRC0wZ2NhRmtkMTdVOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFllMRWBOpCqoNLy32Ky2cKv7a23G2iXdWmcnFn7Cr22ZiEO6e0OUgWd eT2Fjve1lpIqNqXheHvRG09zXK/i/zhhwFaVg1kBlQYiGox8N4wEyZH6GJaDyXJT n+Jjy0dZ6tZNDpMZKmOeCu+kE1ZUjaNVikH1jxHd0Z9Kb53uYaKxs5ZNkaL730NA /zGs7tdJqpDQzcxcAGDFQZ/t+o1f+MOJ+ijP3WpdxAa7GgxM6kDdolCR+sCbfTBv /IUJASCEy5r/e6yeG5yj1/LDrpNyzXCvlolHXWmdVvjngnHUWk3IxZu54c2UPsZk FvhQM3fR8tfM2O+/Zn9sEjEUG6y/i/Q= -----END CERTIFICATE-----Generated at Mon May 5 20:48:56 2025 by rpki-client