$ rpki-client -vvf rpki.apnic.net/member_repository/A914DF56/BD7FA038152311ECB74F2080C4F9AE02/E5bqlAlF_CBf8uPRsr4bkNcsxek.mft File: E5bqlAlF_CBf8uPRsr4bkNcsxek.mft (raw, json) Hash identifier: eKFC9z3re24BURikvlZRCt5yUIDeYE8CFAH7E3ex+cQ= Subject key identifier: F8:E8:5E:20:F4:83:2E:DD:22:50:B9:20:9E:13:17:75:DF:87:E9:05 Authority key identifier: 13:96:EA:94:09:45:FC:20:5F:F2:E3:D1:B2:BE:1B:90:D7:2C:C5:E9 Certificate issuer: /CN=A914DF56/serialNumber=1396EA940945FC205FF2E3D1B2BE1B90D72CC5E9 Certificate serial: 0525 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E5bqlAlF_CBf8uPRsr4bkNcsxek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DF56/BD7FA038152311ECB74F2080C4F9AE02/E5bqlAlF_CBf8uPRsr4bkNcsxek.mft Manifest number: 051D Signing time: Thu 07 Aug 2025 00:06:26 +0000 Manifest this update: Thu 07 Aug 2025 00:06:26 +0000 Manifest next update: Thu 14 Aug 2025 00:06:26 +0000 Files and hashes: 1: E5bqlAlF_CBf8uPRsr4bkNcsxek.crl (hash: BZ/x48spkjiIvEZPCidByg6dwEdbFfTr7Dm2aDyjtvM=) 2: EB17A8C2152511ECAD055780C4F9AE02.roa (hash: 3Who1qUDm6eD8QDguJD4EaJb2KgGViSYhJ9baOpktjo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DF56/BD7FA038152311ECB74F2080C4F9AE02/E5bqlAlF_CBf8uPRsr4bkNcsxek.crl rsync://rpki.apnic.net/member_repository/A914DF56/BD7FA038152311ECB74F2080C4F9AE02/E5bqlAlF_CBf8uPRsr4bkNcsxek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E5bqlAlF_CBf8uPRsr4bkNcsxek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 00:06:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1317 (0x525) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DF56, serialNumber=1396EA940945FC205FF2E3D1B2BE1B90D72CC5E9 Validity Not Before: Aug 7 00:06:26 2025 GMT Not After : Aug 14 00:06:26 2025 GMT Subject: CN=6893ee02-453e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:a4:6e:01:66:84:68:5a:4f:89:98:8b:b1:8b: 3d:c9:61:50:2c:ce:ad:07:99:61:c5:3f:c8:e6:e7: c4:1f:16:00:42:b2:e2:a8:7e:1d:cf:f6:03:03:b7: bb:4e:f3:c6:c9:61:79:64:b8:e3:71:e6:a3:6b:27: bc:a7:c9:59:dc:b5:34:4b:9d:5a:46:04:8f:2d:6c: 62:b8:df:16:03:6b:5a:2f:b9:f4:0e:cc:66:af:5e: 95:89:46:a3:74:0b:f0:96:44:de:fa:b1:c3:53:83: cf:b7:43:bf:d5:80:c6:72:4e:0e:4e:05:b4:a5:c4: 86:8b:12:1a:46:24:46:8f:31:8d:95:c7:ad:0f:35: b8:2e:61:94:c1:93:c1:d3:25:c6:a2:7a:cc:57:01: be:a5:b0:85:e1:46:14:d9:c0:1b:5c:fe:9b:b6:ff: aa:a2:37:cb:f2:c9:42:21:7d:3d:70:57:98:c2:4e: a6:09:e2:42:cc:fd:29:3d:dc:60:d8:06:ea:9e:68: de:0d:03:ec:a8:bb:df:3f:f7:9a:aa:18:82:5b:6b: a8:bd:6b:2b:62:c2:9f:02:5f:2c:97:08:8b:e9:6a: 9d:9d:6e:d6:f0:8c:75:5b:4e:b7:22:e6:bb:d7:6f: 62:bf:92:a0:bd:1a:37:01:01:e0:20:bd:13:40:cc: 26:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:E8:5E:20:F4:83:2E:DD:22:50:B9:20:9E:13:17:75:DF:87:E9:05 X509v3 Authority Key Identifier: keyid:13:96:EA:94:09:45:FC:20:5F:F2:E3:D1:B2:BE:1B:90:D7:2C:C5:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DF56/BD7FA038152311ECB74F2080C4F9AE02/E5bqlAlF_CBf8uPRsr4bkNcsxek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E5bqlAlF_CBf8uPRsr4bkNcsxek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DF56/BD7FA038152311ECB74F2080C4F9AE02/E5bqlAlF_CBf8uPRsr4bkNcsxek.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:f5:a5:ba:e6:e1:c2:9d:38:d9:4a:08:db:ca:04:14:a9:39: 80:40:4a:78:27:b3:11:1f:be:97:21:0d:9d:16:63:ae:69:7f: b2:68:d5:b5:ba:d6:a5:57:36:90:87:4d:a6:e8:c3:75:74:86: 9f:d8:41:08:87:ef:80:9b:73:0c:86:fc:2e:3c:7f:c3:58:a0: e4:cf:6b:05:84:00:54:57:f8:52:11:90:89:85:11:2d:d7:77: b4:7b:e6:6d:e8:8c:e2:38:a8:bc:74:3a:a0:f2:9d:f6:5b:6d: 19:4b:47:94:e9:3b:e4:e6:2c:b7:b1:48:d9:17:a6:22:06:e2: 63:60:7d:65:59:ea:8a:fb:93:7a:f1:c5:98:15:0e:34:11:1d: b6:1a:13:85:82:93:e9:93:e7:74:2e:1f:a7:8c:9e:6d:45:0c: 93:a8:56:43:1a:35:bc:dd:12:e2:47:60:9d:f5:f2:53:c9:f1: 91:01:e6:ab:0b:3c:ba:92:14:a9:2a:31:e6:a7:e7:02:14:90: 17:72:80:85:c1:c8:60:45:f5:96:0d:c6:cd:b5:29:ef:29:bc: df:7f:a4:7f:cb:7f:15:1c:aa:0d:91:e7:32:b1:b3:16:cc:cd: 52:e5:11:71:a7:be:bb:cf:98:63:57:e6:9a:4c:80:af:bd:27: 85:81:a6:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERGNTYxMTAvBgNVBAUTKDEzOTZFQTk0MDk0NUZDMjA1RkYyRTNEMUIyQkUxQjkw RDcyQ0M1RTkwHhcNMjUwODA3MDAwNjI2WhcNMjUwODE0MDAwNjI2WjAYMRYwFAYD VQQDEw02ODkzZWUwMi00NTNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA66RuAWaEaFpPiZiLsYs9yWFQLM6tB5lhxT/I5ufEHxYAQrLiqH4dz/YDA7e7 TvPGyWF5ZLjjceajaye8p8lZ3LU0S51aRgSPLWxiuN8WA2taL7n0Dsxmr16ViUaj dAvwlkTe+rHDU4PPt0O/1YDGck4OTgW0pcSGixIaRiRGjzGNlcetDzW4LmGUwZPB 0yXGonrMVwG+pbCF4UYU2cAbXP6btv+qojfL8slCIX09cFeYwk6mCeJCzP0pPdxg 2AbqnmjeDQPsqLvfP/eaqhiCW2uovWsrYsKfAl8slwiL6WqdnW7W8Ix1W063Iua7 129iv5KgvRo3AQHgIL0TQMwmrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPjoXiD0 gy7dIlC5IJ4TF3Xfh+kFMB8GA1UdIwQYMBaAFBOW6pQJRfwgX/Lj0bK+G5DXLMXp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REY1Ni9CRDdGQTAzODE1 MjMxMUVDQjc0RjIwODBDNEY5QUUwMi9FNWJxbEFsRl9DQmY4dVBSc3I0YmtOY3N4 ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0U1YnFsQWxGX0NCZjh1UFJzcjRia05jc3hlay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 REY1Ni9CRDdGQTAzODE1MjMxMUVDQjc0RjIwODBDNEY5QUUwMi9FNWJxbEFsRl9D QmY4dVBSc3I0YmtOY3N4ZWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA59aW65uHCnTjZSgjbygQUqTmAQEp4J7MRH76XIQ2dFmOuaX+yaNW1 utalVzaQh02m6MN1dIaf2EEIh++Am3MMhvwuPH/DWKDkz2sFhABUV/hSEZCJhREt 13e0e+Zt6IziOKi8dDqg8p32W20ZS0eU6Tvk5iy3sUjZF6YiBuJjYH1lWeqK+5N6 8cWYFQ40ER22GhOFgpPpk+d0Lh+njJ5tRQyTqFZDGjW83RLiR2Cd9fJTyfGRAear Czy6khSpKjHmp+cCFJAXcoCFwchgRfWWDcbNtSnvKbzff6R/y38VHKoNkecysbMW zM1S5RFxp767z5hjV+aaTICvvSeFgabI -----END CERTIFICATE-----Generated at Fri Aug 8 21:00:48 2025 by rpki-client