$ rpki-client -vvf rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft File: epYXaVSeCq0Km_mSVoO673M6Lxo.mft (raw, json) Hash identifier: gLOXZlZdi+asWWw3xvlYwMYu6iMLMCTTzxTT7jw6EVQ= Subject key identifier: D6:12:59:7D:FE:C2:0F:B5:A7:3F:5A:F3:3E:F6:A3:EA:58:DE:5A:1C Authority key identifier: 7A:96:17:69:54:9E:0A:AD:0A:9B:F9:92:56:83:BA:EF:73:3A:2F:1A Certificate issuer: /CN=A911C5B0/serialNumber=7A961769549E0AAD0A9BF9925683BAEF733A2F1A Certificate serial: 3514 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft Manifest number: 34DC Signing time: Mon 04 Aug 2025 14:22:49 +0000 Manifest this update: Mon 04 Aug 2025 14:22:48 +0000 Manifest next update: Mon 11 Aug 2025 14:22:48 +0000 Files and hashes: 1: epYXaVSeCq0Km_mSVoO673M6Lxo.crl (hash: 6gbh5bcnZzh07iO9OlLaoRYtvtgaL0BviYwve7GTFlc=) 2: A9B6556E064311F0BA61C549C4F9AE02.roa (hash: 3e60GR3MoJvujbyYCoktl4OQNQ+AEpGhTuH3AGAwszA=) 3: 1F5CD892C35111EE9D744F36C4F9AE02.roa (hash: 1gkTF4crGWzpTEQnLV3friPjpJHknrP6i19dnfTKZhs=) 4: 1A83389CC35211EE8CE04C38C4F9AE02.roa (hash: wP5Do/J+7GR346S2KVvf1dpQZtkQwT1BPnhQO5L+JJ4=) 5: DA202262C34F11EE93BC8317C4F9AE02.roa (hash: dcDioS0VFo6S9vVwz+paS1zd6YFHx5bsZVN3a7QsfW4=) 6: 61A65BF2C35011EE95366E18C4F9AE02.roa (hash: Q61bbCPssNF62XMkq5QJdqkEtUeKQLsoUnsJMBUa8ZI=) 7: 1EEE3E0AC35111EE9D744F36C4F9AE02.roa (hash: 5YdHJezTTAq6NbRIi4l4/6Fihe+icCcCreH0PZW2XgQ=) 8: A50EE218C34D11EEBC95A913C4F9AE02.roa (hash: 5q/2MUPjpxwhlN6OCcanacRv9yZj3jDJtQjCybC3W8U=) 9: 8C9959CE060A11F08CBBE511C4F9AE02.roa (hash: wBMnE1ikTeOfmThio4waRUY3j+LFozimFFQdqFnWb8Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.crl rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 14:22:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13588 (0x3514) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C5B0, serialNumber=7A961769549E0AAD0A9BF9925683BAEF733A2F1A Validity Not Before: Aug 4 14:22:48 2025 GMT Not After : Aug 11 14:22:48 2025 GMT Subject: CN=6890c238-3ee6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:bf:6d:cd:cd:c7:57:73:9f:5b:0c:31:26:4a: 72:ae:6e:1e:d6:15:2a:3e:ee:85:95:7a:e8:2b:6f: 15:9c:f5:24:6c:ab:b1:98:34:0b:7d:40:f2:0c:90: 1b:a0:b6:34:cf:32:16:6d:76:1c:ec:5a:2b:61:38: 17:f9:27:9b:ab:ce:11:48:dc:02:4c:79:81:69:de: 6a:ac:cc:c5:ce:90:ce:2f:3e:fd:47:4f:d6:ca:1e: 65:e6:7c:2e:ec:8e:82:22:57:84:c6:0b:31:7c:b0: 10:d0:3f:17:aa:16:fd:f2:a1:6d:24:1a:14:ff:ee: d8:bd:5a:ed:01:f7:dd:7b:36:d6:0b:17:79:f1:04: f0:5a:b0:a8:98:c3:3a:de:d4:83:58:dc:56:b1:37: 61:28:27:47:9b:37:55:37:46:36:2d:5b:83:c1:d7: f4:fc:12:a9:0f:41:71:3d:2a:07:f1:ff:e5:4a:9d: c7:01:d5:fc:a0:4e:8f:21:58:60:0e:1b:83:11:b3: 03:64:f2:f0:56:0c:73:c8:62:93:e2:0e:ab:ed:d8: 3f:5c:6e:f6:d8:bc:c8:d5:61:c0:78:3f:eb:8d:9d: 3b:b1:99:0d:08:81:1d:cb:d7:9a:61:d6:d1:33:f4: e3:e6:69:1b:f5:78:cc:44:53:2b:e5:89:3e:e5:ff: e9:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:12:59:7D:FE:C2:0F:B5:A7:3F:5A:F3:3E:F6:A3:EA:58:DE:5A:1C X509v3 Authority Key Identifier: keyid:7A:96:17:69:54:9E:0A:AD:0A:9B:F9:92:56:83:BA:EF:73:3A:2F:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:b3:42:15:e3:fa:c9:8b:fc:ef:f1:19:39:f8:75:c6:b1:83: a2:b1:21:61:34:c1:15:21:e9:81:f7:cc:d7:fd:83:cb:53:cb: 28:d7:f4:63:19:3b:bd:b5:40:be:79:06:fb:1a:c3:a5:86:75: 38:70:39:2a:22:ba:e4:e1:81:a7:b4:1b:02:68:85:34:26:57: a6:3e:14:61:93:15:2b:ff:09:bb:19:e1:4b:3f:d9:b8:98:24: 92:70:7b:f0:d9:e2:5e:80:1f:4e:f0:8b:18:0b:ed:84:82:8c: 9e:d4:c2:c0:c4:b5:c6:5d:f1:9d:79:7c:5c:cb:52:d5:c4:00: 65:df:14:b9:65:36:6b:70:37:57:1d:bd:87:f5:8b:22:55:af: 03:26:50:bd:0e:e6:26:cd:45:68:69:b7:bf:58:38:98:c1:62: 0b:b8:ae:15:13:e8:ff:d8:6c:9d:18:2a:bb:a6:0c:73:17:43: f1:95:8c:eb:84:d0:6e:4e:42:ac:34:30:0a:2d:a4:c5:b9:e8: 28:34:54:4e:bb:d6:0b:18:cb:eb:e9:75:4f:f1:04:d4:7d:62: 36:3a:32:f7:68:2e:57:63:49:83:01:1d:ed:ba:c0:0f:46:a9: 59:8a:eb:02:a4:7d:d2:25:97:fe:40:cf:01:6a:4d:3f:1b:e1: e2:91:1b:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNRQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM1QjAxMTAvBgNVBAUTKDdBOTYxNzY5NTQ5RTBBQUQwQTlCRjk5MjU2ODNCQUVG NzMzQTJGMUEwHhcNMjUwODA0MTQyMjQ4WhcNMjUwODExMTQyMjQ4WjAYMRYwFAYD VQQDEw02ODkwYzIzOC0zZWU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy79tzc3HV3OfWwwxJkpyrm4e1hUqPu6FlXroK28VnPUkbKuxmDQLfUDyDJAb oLY0zzIWbXYc7ForYTgX+Sebq84RSNwCTHmBad5qrMzFzpDOLz79R0/Wyh5l5nwu 7I6CIleExgsxfLAQ0D8Xqhb98qFtJBoU/+7YvVrtAffdezbWCxd58QTwWrComMM6 3tSDWNxWsTdhKCdHmzdVN0Y2LVuDwdf0/BKpD0FxPSoH8f/lSp3HAdX8oE6PIVhg DhuDEbMDZPLwVgxzyGKT4g6r7dg/XG722LzI1WHAeD/rjZ07sZkNCIEdy9eaYdbR M/Tj5mkb9XjMRFMr5Yk+5f/poQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNYSWX3+ wg+1pz9a8z72o+pY3locMB8GA1UdIwQYMBaAFHqWF2lUngqtCpv5klaDuu9zOi8a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzVCMC80MEM4RDVBNjFE ODMxMUUyODIzQTVGRDgwOEIwMkNEMi9lcFlYYVZTZUNxMEttX21TVm9PNjczTTZM eG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VwWVhhVlNlQ3EwS21fbVNWb082NzNNNkx4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzVCMC80MEM4RDVBNjFEODMxMUUyODIzQTVGRDgwOEIwMkNEMi9lcFlYYVZTZUNx MEttX21TVm9PNjczTTZMeG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHs0IV4/rJi/zv8Rk5+HXGsYOisSFhNMEVIemB98zX/YPLU8so1/Rj GTu9tUC+eQb7GsOlhnU4cDkqIrrk4YGntBsCaIU0JlemPhRhkxUr/wm7GeFLP9m4 mCSScHvw2eJegB9O8IsYC+2Egoye1MLAxLXGXfGdeXxcy1LVxABl3xS5ZTZrcDdX Hb2H9YsiVa8DJlC9DuYmzUVoabe/WDiYwWILuK4VE+j/2GydGCq7pgxzF0PxlYzr hNBuTkKsNDAKLaTFuegoNFROu9YLGMvr6XVP8QTUfWI2OjL3aC5XY0mDAR3tusAP RqlZiusCpH3SJZf+QM8Bak0/G+HikRsL -----END CERTIFICATE-----Generated at Wed Aug 6 12:44:32 2025 by rpki-client