$ rpki-client -vvf rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft File: ehMEShEYWGwP2hOLs-vdSEiRTjc.mft (raw, json) Hash identifier: Og98zCp3brZN1Vae7ujAesn3gYVNM9ckOtvmXTIeQSg= Subject key identifier: 88:F5:8F:A7:2F:D6:69:18:9B:65:79:CA:46:28:DA:FF:4E:C4:AD:80 Authority key identifier: 7A:13:04:4A:11:18:58:6C:0F:DA:13:8B:B3:EB:DD:48:48:91:4E:37 Certificate issuer: /CN=A9154EAF/serialNumber=7A13044A1118586C0FDA138BB3EBDD4848914E37 Certificate serial: 02B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ehMEShEYWGwP2hOLs-vdSEiRTjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft Manifest number: 02B0 Signing time: Wed 05 Nov 2025 01:34:54 +0000 Manifest this update: Wed 05 Nov 2025 01:34:53 +0000 Manifest next update: Wed 12 Nov 2025 01:34:53 +0000 Files and hashes: 1: ehMEShEYWGwP2hOLs-vdSEiRTjc.crl (hash: nzTEmMzdJzNam+EPZSULLpMPXwVLKnfvI6W8Y55pNyA=) 2: 62A0C17A16C511ED91E80F56C4F9AE02.roa (hash: JJX6OI5aam7BC0uvlTdjVV9SQAAwhFakRzY5oiIX9Uk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.crl rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ehMEShEYWGwP2hOLs-vdSEiRTjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:34:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 692 (0x2b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154EAF, serialNumber=7A13044A1118586C0FDA138BB3EBDD4848914E37 Validity Not Before: Nov 5 01:34:53 2025 GMT Not After : Nov 12 01:34:53 2025 GMT Subject: CN=690aa9bd-6190 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:cf:e4:21:0c:84:f5:57:27:6a:bf:7b:33:c6: 5b:66:ca:d5:f9:a1:1a:d8:29:06:ec:c5:aa:53:8b: 55:4d:25:fb:81:6d:9c:1d:01:cb:84:46:4f:d0:72: 07:01:37:e7:14:f9:33:64:73:fb:e9:37:26:ae:3a: 36:c7:a7:e3:70:13:6e:ba:c4:d2:36:68:cf:b6:d5: d7:cd:94:8a:27:15:51:5d:e9:4b:6a:fc:3c:a0:fe: 1f:fc:6d:6e:84:85:83:00:8a:58:42:55:25:54:1a: 1b:d7:a1:1f:d4:ab:05:43:d2:8a:e1:d0:c3:84:eb: 25:fa:be:9c:20:87:ff:57:90:2c:e9:7d:77:4c:74: d3:03:df:15:28:91:2a:8b:f3:f7:a1:b8:a2:de:98: 60:36:66:24:3f:7a:84:f7:05:ed:8a:9b:84:d6:60: b5:6a:49:27:9d:7b:54:ac:0b:6c:97:51:65:a6:2e: fa:e2:8a:22:5a:81:65:54:93:15:27:fd:90:7a:1e: 10:ef:4a:fd:5b:de:b8:b3:49:52:a9:c0:44:35:28: 51:f7:54:8d:09:b5:64:36:69:d2:26:98:e8:1d:42: 54:4f:a4:81:1f:b1:fb:25:03:40:01:7d:36:51:79: 8d:ab:d2:93:22:c4:a2:96:41:a8:23:f6:c2:97:a2: 26:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:F5:8F:A7:2F:D6:69:18:9B:65:79:CA:46:28:DA:FF:4E:C4:AD:80 X509v3 Authority Key Identifier: keyid:7A:13:04:4A:11:18:58:6C:0F:DA:13:8B:B3:EB:DD:48:48:91:4E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ehMEShEYWGwP2hOLs-vdSEiRTjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:9e:64:ec:59:cb:19:2c:0c:04:cc:8e:71:36:3d:b0:bd:b5: 34:0e:08:32:6b:33:cd:c2:2e:ba:35:58:22:9d:c8:9f:af:51: 1c:bd:5a:64:96:93:a9:7e:b4:ec:c7:0c:1b:17:7d:d7:f9:42: a6:f3:20:3a:c4:b1:80:da:c6:26:1a:96:65:18:ca:05:f0:99: cc:47:02:1c:6b:a8:60:d2:be:84:55:af:41:89:ce:b4:7e:dd: 16:25:9b:c4:81:ec:ca:0d:2e:d6:80:44:f4:8d:6c:b7:01:dd: 0f:eb:b1:1b:37:b3:01:f9:4d:49:f4:6f:d5:0d:2e:ff:6a:29: df:d8:bb:44:89:b4:02:ca:8f:1f:e6:bf:b1:9f:d9:22:c0:b3: d9:6c:3e:55:7e:91:39:96:ee:90:40:f2:76:26:e5:86:1a:58: aa:25:48:bd:f9:af:c0:37:4d:b2:b6:7d:7a:79:12:42:cd:b7: aa:12:20:0e:12:c4:92:00:0c:26:b6:60:7b:bc:10:b1:10:52: 16:f8:82:43:ed:78:ff:c4:90:64:6b:1e:f1:b3:13:d0:67:62: c1:4f:54:10:ed:48:23:e2:e0:16:30:fd:4d:1c:1d:8e:b9:30: 24:6e:4f:b8:53:07:58:6b:91:b9:26:7b:d1:e6:16:e3:42:f9: 6d:cd:98:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRFQUYxMTAvBgNVBAUTKDdBMTMwNDRBMTExODU4NkMwRkRBMTM4QkIzRUJERDQ4 NDg5MTRFMzcwHhcNMjUxMTA1MDEzNDUzWhcNMjUxMTEyMDEzNDUzWjAYMRYwFAYD VQQDEw02OTBhYTliZC02MTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy8/kIQyE9Vcnar97M8ZbZsrV+aEa2CkG7MWqU4tVTSX7gW2cHQHLhEZP0HIH ATfnFPkzZHP76Tcmrjo2x6fjcBNuusTSNmjPttXXzZSKJxVRXelLavw8oP4f/G1u hIWDAIpYQlUlVBob16Ef1KsFQ9KK4dDDhOsl+r6cIIf/V5As6X13THTTA98VKJEq i/P3obii3phgNmYkP3qE9wXtipuE1mC1akknnXtUrAtsl1Flpi764ooiWoFlVJMV J/2Qeh4Q70r9W964s0lSqcBENShR91SNCbVkNmnSJpjoHUJUT6SBH7H7JQNAAX02 UXmNq9KTIsSilkGoI/bCl6ImVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIj1j6cv 1mkYm2V5ykYo2v9OxK2AMB8GA1UdIwQYMBaAFHoTBEoRGFhsD9oTi7Pr3UhIkU43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEVBRi80N0Q1QTdFMDE2 QzMxMUVEQUU3RUI5NTVDNEY5QUUwMi9laE1FU2hFWVdHd1AyaE9Mcy12ZFNFaVJU amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VoTUVTaEVZV0d3UDJoT0xzLXZkU0VpUlRqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEVBRi80N0Q1QTdFMDE2QzMxMUVEQUU3RUI5NTVDNEY5QUUwMi9laE1FU2hFWVdH d1AyaE9Mcy12ZFNFaVJUamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCInmTsWcsZLAwEzI5xNj2wvbU0DggyazPNwi66NVgincifr1EcvVpk lpOpfrTsxwwbF33X+UKm8yA6xLGA2sYmGpZlGMoF8JnMRwIca6hg0r6EVa9Bic60 ft0WJZvEgezKDS7WgET0jWy3Ad0P67EbN7MB+U1J9G/VDS7/ainf2LtEibQCyo8f 5r+xn9kiwLPZbD5VfpE5lu6QQPJ2JuWGGliqJUi9+a/AN02ytn16eRJCzbeqEiAO EsSSAAwmtmB7vBCxEFIW+IJD7Xj/xJBkax7xsxPQZ2LBT1QQ7Ugj4uAWMP1NHB2O uTAkbk+4UwdYa5G5JnvR5hbjQvltzZgj -----END CERTIFICATE-----Generated at Wed Nov 5 12:16:54 2025 by rpki-client