$ rpki-client -vvf rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft File: ehMEShEYWGwP2hOLs-vdSEiRTjc.mft (raw, json) Hash identifier: JBhNYZrImpekRxRdwKwuzcajNvUQYPQkeyLJ4JMm2HA= Subject key identifier: AA:8B:8E:D9:F8:3F:C0:93:CF:8A:5C:71:98:C0:0B:57:1B:75:02:A5 Authority key identifier: 7A:13:04:4A:11:18:58:6C:0F:DA:13:8B:B3:EB:DD:48:48:91:4E:37 Certificate issuer: /CN=A9154EAF/serialNumber=7A13044A1118586C0FDA138BB3EBDD4848914E37 Certificate serial: 0287 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ehMEShEYWGwP2hOLs-vdSEiRTjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft Manifest number: 0283 Signing time: Thu 07 Aug 2025 02:17:31 +0000 Manifest this update: Thu 07 Aug 2025 02:17:30 +0000 Manifest next update: Thu 14 Aug 2025 02:17:30 +0000 Files and hashes: 1: ehMEShEYWGwP2hOLs-vdSEiRTjc.crl (hash: ++QTwL2IiXCksaubYkiCvztRBKOjO91CdrMDBKXPe40=) 2: 62A0C17A16C511ED91E80F56C4F9AE02.roa (hash: JJX6OI5aam7BC0uvlTdjVV9SQAAwhFakRzY5oiIX9Uk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.crl rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ehMEShEYWGwP2hOLs-vdSEiRTjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 02:17:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 647 (0x287) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154EAF, serialNumber=7A13044A1118586C0FDA138BB3EBDD4848914E37 Validity Not Before: Aug 7 02:17:30 2025 GMT Not After : Aug 14 02:17:30 2025 GMT Subject: CN=68940cba-85e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:5b:8c:a4:e3:aa:f3:1b:df:a3:6e:f5:80:ab: 4e:19:8c:ff:c2:2e:d7:78:90:ad:c1:a7:c8:5a:de: e5:a3:99:4c:8e:e9:74:06:d3:18:31:5a:bb:db:94: 4c:42:52:c1:59:e3:b8:2e:73:ad:c4:1e:a8:e3:fe: 36:68:2b:71:0c:d1:8a:f8:52:f8:e4:ed:a3:3b:3a: 48:ed:42:be:db:0a:41:2f:27:d1:5f:9a:73:90:1f: 08:76:48:95:03:2a:68:e7:e3:d4:77:32:82:b6:ca: 28:81:65:00:32:4b:eb:ed:60:6c:7a:97:22:83:5d: 0d:b9:55:d5:60:f8:89:4a:b1:4c:d9:dc:22:36:93: bd:67:fb:2b:23:19:76:e3:0f:4a:ff:11:ff:d0:50: a4:44:b7:47:8a:60:9c:61:31:64:6c:bc:4b:e1:2f: b7:e0:b1:51:00:3c:34:ec:a1:27:13:cb:df:bd:38: 61:40:91:38:be:3e:e4:cc:3b:52:19:c2:07:28:0f: ff:9e:48:c7:8f:57:72:45:7c:8f:bf:85:a8:89:4d: 0d:09:ed:8a:b7:20:42:71:67:aa:c2:46:1e:3b:23: bd:fd:2d:51:02:5e:c6:0c:6e:b0:2d:29:ad:54:1c: 42:db:9a:2e:02:3e:34:fa:72:08:d6:2f:fd:1a:02: 2f:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:8B:8E:D9:F8:3F:C0:93:CF:8A:5C:71:98:C0:0B:57:1B:75:02:A5 X509v3 Authority Key Identifier: keyid:7A:13:04:4A:11:18:58:6C:0F:DA:13:8B:B3:EB:DD:48:48:91:4E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ehMEShEYWGwP2hOLs-vdSEiRTjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:6d:c5:78:e7:f5:1f:85:4c:5e:6e:c6:a5:a8:62:c2:61:2f: 68:91:93:0a:bd:54:c5:92:f3:83:a2:b0:89:31:15:3c:76:bd: ef:73:25:3c:00:62:f5:12:71:17:46:c6:67:a4:64:40:13:eb: ef:71:4b:fa:eb:54:64:9b:9c:77:af:2c:91:e5:d4:3e:c3:91: 83:01:1b:91:f5:da:05:92:c1:81:c9:b8:0e:c7:fc:9b:74:46: 0a:02:70:86:c6:3e:07:b2:3c:11:6f:1b:02:24:8f:d8:67:fc: 3c:29:cc:da:1f:49:0d:c2:b2:f7:48:c8:b8:2d:d9:e5:a3:de: 76:d6:4b:c8:25:c0:ce:8e:e5:44:11:9b:21:2d:e5:0b:0f:7b: 23:3d:a4:5c:dd:87:a4:b0:9f:aa:4e:fb:51:49:5a:c5:1c:ab: f6:24:66:93:6f:27:61:e3:ca:ba:1a:b1:ee:cc:0b:91:ed:8a: 5c:81:9e:47:87:18:b1:02:b1:d4:0f:e0:67:38:32:d7:1e:ab: fa:46:41:0b:cb:c0:16:3a:f0:9e:c7:6b:73:cb:d5:0f:16:ad: 9c:55:a4:fb:28:a5:5e:6c:16:c1:7b:91:f7:d5:35:76:f6:7a: 29:83:a1:8a:69:1e:0a:5a:da:a4:9e:33:99:c1:94:1d:a1:f2: a1:1f:c6:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAocwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRFQUYxMTAvBgNVBAUTKDdBMTMwNDRBMTExODU4NkMwRkRBMTM4QkIzRUJERDQ4 NDg5MTRFMzcwHhcNMjUwODA3MDIxNzMwWhcNMjUwODE0MDIxNzMwWjAYMRYwFAYD VQQDEw02ODk0MGNiYS04NWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArVuMpOOq8xvfo271gKtOGYz/wi7XeJCtwafIWt7lo5lMjul0BtMYMVq725RM QlLBWeO4LnOtxB6o4/42aCtxDNGK+FL45O2jOzpI7UK+2wpBLyfRX5pzkB8IdkiV Aypo5+PUdzKCtsoogWUAMkvr7WBsepcig10NuVXVYPiJSrFM2dwiNpO9Z/srIxl2 4w9K/xH/0FCkRLdHimCcYTFkbLxL4S+34LFRADw07KEnE8vfvThhQJE4vj7kzDtS GcIHKA//nkjHj1dyRXyPv4WoiU0NCe2KtyBCcWeqwkYeOyO9/S1RAl7GDG6wLSmt VBxC25ouAj40+nII1i/9GgIvjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKqLjtn4 P8CTz4pccZjAC1cbdQKlMB8GA1UdIwQYMBaAFHoTBEoRGFhsD9oTi7Pr3UhIkU43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEVBRi80N0Q1QTdFMDE2 QzMxMUVEQUU3RUI5NTVDNEY5QUUwMi9laE1FU2hFWVdHd1AyaE9Mcy12ZFNFaVJU amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VoTUVTaEVZV0d3UDJoT0xzLXZkU0VpUlRqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEVBRi80N0Q1QTdFMDE2QzMxMUVEQUU3RUI5NTVDNEY5QUUwMi9laE1FU2hFWVdH d1AyaE9Mcy12ZFNFaVJUamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcbcV45/UfhUxebsalqGLCYS9okZMKvVTFkvODorCJMRU8dr3vcyU8 AGL1EnEXRsZnpGRAE+vvcUv661Rkm5x3ryyR5dQ+w5GDARuR9doFksGBybgOx/yb dEYKAnCGxj4HsjwRbxsCJI/YZ/w8KczaH0kNwrL3SMi4Ldnlo9521kvIJcDOjuVE EZshLeULD3sjPaRc3YeksJ+qTvtRSVrFHKv2JGaTbydh48q6GrHuzAuR7YpcgZ5H hxixArHUD+BnODLXHqv6RkELy8AWOvCex2tzy9UPFq2cVaT7KKVebBbBe5H31TV2 9nopg6GKaR4KWtqknjOZwZQdofKhH8ah -----END CERTIFICATE-----Generated at Thu Aug 7 03:51:49 2025 by rpki-client