$ rpki-client -vvf rpki.apnic.net/member_repository/A9163BFD/858F9AAC72F511EE801CC83CC4F9AE02/EAiP7ctRWnPwDu3X7GDodfnfCvY.mft File: EAiP7ctRWnPwDu3X7GDodfnfCvY.mft (raw, json) Hash identifier: 3N5LPXYhUiIdnATyuUJ0zhl5JrqnpINrLFNKZjvIOcs= Subject key identifier: 25:5D:53:1D:F3:45:7D:BD:77:4C:52:0D:1F:42:F4:BB:6D:E0:1A:6B Authority key identifier: 10:08:8F:ED:CB:51:5A:73:F0:0E:ED:D7:EC:60:E8:75:F9:DF:0A:F6 Certificate issuer: /CN=A9163BFD/serialNumber=10088FEDCB515A73F00EEDD7EC60E875F9DF0AF6 Certificate serial: 0151 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EAiP7ctRWnPwDu3X7GDodfnfCvY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163BFD/858F9AAC72F511EE801CC83CC4F9AE02/EAiP7ctRWnPwDu3X7GDodfnfCvY.mft Manifest number: 014F Signing time: Mon 11 Aug 2025 04:19:45 +0000 Manifest this update: Mon 11 Aug 2025 04:19:44 +0000 Manifest next update: Mon 18 Aug 2025 04:19:44 +0000 Files and hashes: 1: EAiP7ctRWnPwDu3X7GDodfnfCvY.crl (hash: 7BMgJcNE4Mq2urgdPDDnXZV+xE+ZEr3id0jQkd4gH8A=) 2: 29D7838672F611EEB309873EC4F9AE02.roa (hash: zu5oTBlWmiRJc0JKeXclVvx/PdtKlnfyN23W6szZl1s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163BFD/858F9AAC72F511EE801CC83CC4F9AE02/EAiP7ctRWnPwDu3X7GDodfnfCvY.crl rsync://rpki.apnic.net/member_repository/A9163BFD/858F9AAC72F511EE801CC83CC4F9AE02/EAiP7ctRWnPwDu3X7GDodfnfCvY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EAiP7ctRWnPwDu3X7GDodfnfCvY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 337 (0x151) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163BFD, serialNumber=10088FEDCB515A73F00EEDD7EC60E875F9DF0AF6 Validity Not Before: Aug 11 04:19:44 2025 GMT Not After : Aug 18 04:19:44 2025 GMT Subject: CN=68996f60-c6ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:77:77:1d:ed:7b:a0:13:60:9f:91:e5:d7:48: 53:e3:37:49:77:ca:56:9a:5d:86:a0:00:86:cb:2b: 32:26:63:bd:82:56:c1:e8:82:50:26:70:6d:0e:e5: 59:a3:bb:34:16:03:74:45:c7:58:e7:56:9d:7c:64: 15:11:90:30:16:09:56:83:8e:c0:a7:98:e7:11:6d: 97:b4:ae:d5:db:c0:0a:06:66:3c:d8:48:b0:b5:59: 77:d4:9f:46:b3:b3:09:08:64:71:23:e5:af:39:e2: 62:bd:cf:84:63:ef:f8:5a:84:42:13:18:a1:fc:42: aa:83:2f:59:38:65:2c:16:07:42:0a:9a:fc:47:4d: 05:db:f6:d7:97:80:7d:90:58:75:16:6a:ce:8a:44: 8a:76:c6:6a:da:1b:b9:39:b0:51:4d:f6:13:b7:65: b8:1f:2a:02:07:a9:17:63:1e:51:58:7d:62:9b:a9: 07:ce:53:ec:9a:b3:77:be:bd:da:b7:47:9c:71:d1: 21:c1:82:b5:b1:b1:2b:14:6a:47:da:b3:e1:1c:73: 36:ba:45:f2:92:d8:4d:25:9a:ae:b0:c8:39:4d:e5: 8a:25:93:16:2a:9f:23:40:4b:55:d8:7d:33:93:e5: 2e:ee:97:90:96:09:a7:75:30:1f:d8:96:f5:2b:1d: 1b:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:5D:53:1D:F3:45:7D:BD:77:4C:52:0D:1F:42:F4:BB:6D:E0:1A:6B X509v3 Authority Key Identifier: keyid:10:08:8F:ED:CB:51:5A:73:F0:0E:ED:D7:EC:60:E8:75:F9:DF:0A:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163BFD/858F9AAC72F511EE801CC83CC4F9AE02/EAiP7ctRWnPwDu3X7GDodfnfCvY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EAiP7ctRWnPwDu3X7GDodfnfCvY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163BFD/858F9AAC72F511EE801CC83CC4F9AE02/EAiP7ctRWnPwDu3X7GDodfnfCvY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:b9:d3:c3:26:8e:8d:c4:09:dd:eb:e9:59:53:eb:2d:bd:06: e6:5c:48:3b:cc:39:af:ff:7e:20:5c:97:e7:a6:2a:84:4e:43: 64:c5:3f:57:05:5a:6b:ce:fe:d4:c8:f0:ac:ab:76:55:c6:99: aa:23:cb:5d:12:b6:47:3b:fc:d8:fd:47:17:0a:e7:75:1e:0f: 7a:bf:82:1b:09:8b:e1:43:e4:64:b6:3d:9c:71:54:23:8c:89: 17:b4:1a:03:ed:8d:dc:51:b7:77:27:dd:7a:e0:1a:cd:2a:d3: 73:0b:30:dc:a9:18:34:e1:cd:35:dc:eb:0a:33:56:95:34:46: 79:8e:bf:51:d0:7a:fd:ba:96:6f:e1:5b:fd:06:e7:3e:39:26: 8b:48:90:ef:73:c8:c2:11:ba:52:1c:5c:97:94:7c:18:d1:5f: e0:6b:a8:ea:d6:19:4c:e7:00:eb:69:8f:e8:98:55:6d:4c:5f: cd:43:70:11:cf:a6:53:d3:03:fb:bd:78:36:8b:67:32:98:cc: b4:01:ef:54:91:e1:ed:3e:de:f0:1f:9b:90:75:1b:86:2d:39: 57:15:45:b6:53:3b:5a:9e:fb:e7:a5:36:b8:12:8b:b9:e6:d5: f0:82:e0:cd:1d:5e:b1:8c:7a:fc:61:d9:91:ce:7e:79:e7:1d: 05:3f:5c:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjNCRkQxMTAvBgNVBAUTKDEwMDg4RkVEQ0I1MTVBNzNGMDBFRUREN0VDNjBFODc1 RjlERjBBRjYwHhcNMjUwODExMDQxOTQ0WhcNMjUwODE4MDQxOTQ0WjAYMRYwFAYD VQQDEw02ODk5NmY2MC1jNmVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzXd3He17oBNgn5Hl10hT4zdJd8pWml2GoACGyysyJmO9glbB6IJQJnBtDuVZ o7s0FgN0RcdY51adfGQVEZAwFglWg47Ap5jnEW2XtK7V28AKBmY82EiwtVl31J9G s7MJCGRxI+WvOeJivc+EY+/4WoRCExih/EKqgy9ZOGUsFgdCCpr8R00F2/bXl4B9 kFh1FmrOikSKdsZq2hu5ObBRTfYTt2W4HyoCB6kXYx5RWH1im6kHzlPsmrN3vr3a t0eccdEhwYK1sbErFGpH2rPhHHM2ukXykthNJZqusMg5TeWKJZMWKp8jQEtV2H0z k+Uu7peQlgmndTAf2Jb1Kx0bqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCVdUx3z RX29d0xSDR9C9Ltt4BprMB8GA1UdIwQYMBaAFBAIj+3LUVpz8A7t1+xg6HX53wr2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2M0JGRC84NThGOUFBQzcy RjUxMUVFODAxQ0M4M0NDNEY5QUUwMi9FQWlQN2N0UlduUHdEdTNYN0dEb2RmbmZD dlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VBaVA3Y3RSV25Qd0R1M1g3R0RvZGZuZkN2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 M0JGRC84NThGOUFBQzcyRjUxMUVFODAxQ0M4M0NDNEY5QUUwMi9FQWlQN2N0Uldu UHdEdTNYN0dEb2RmbmZDdlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4udPDJo6NxAnd6+lZU+stvQbmXEg7zDmv/34gXJfnpiqETkNkxT9X BVprzv7UyPCsq3ZVxpmqI8tdErZHO/zY/UcXCud1Hg96v4IbCYvhQ+Rktj2ccVQj jIkXtBoD7Y3cUbd3J9164BrNKtNzCzDcqRg04c013OsKM1aVNEZ5jr9R0Hr9upZv 4Vv9Buc+OSaLSJDvc8jCEbpSHFyXlHwY0V/ga6jq1hlM5wDraY/omFVtTF/NQ3AR z6ZT0wP7vXg2i2cymMy0Ae9UkeHtPt7wH5uQdRuGLTlXFUW2UztanvvnpTa4Eou5 5tXwguDNHV6xjHr8YdmRzn555x0FP1x/ -----END CERTIFICATE-----Generated at Mon Aug 11 10:09:16 2025 by rpki-client