$ rpki-client -vvf rpki.apnic.net/member_repository/A9165FF3/CEABB4E61D9D11E28EAF4D8D08B02CD2/emYQUZRc4uj7SubeY7KEeLDO014.mft File: emYQUZRc4uj7SubeY7KEeLDO014.mft (raw, json) Hash identifier: FUIvL+OEvZLlkz0C/wFJqAClQPNfKKMHyFRYuGEcMPA= Subject key identifier: BE:5C:18:A4:2B:4E:21:60:85:32:77:BE:B6:D0:D2:3C:48:27:3E:EA Authority key identifier: 7A:66:10:51:94:5C:E2:E8:FB:4A:E6:DE:63:B2:84:78:B0:CE:D3:5E Certificate issuer: /CN=A9165FF3/serialNumber=7A661051945CE2E8FB4AE6DE63B28478B0CED35E Certificate serial: 34B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/emYQUZRc4uj7SubeY7KEeLDO014.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165FF3/CEABB4E61D9D11E28EAF4D8D08B02CD2/emYQUZRc4uj7SubeY7KEeLDO014.mft Manifest number: 34AD Signing time: Fri 08 Aug 2025 15:03:26 +0000 Manifest this update: Fri 08 Aug 2025 15:03:26 +0000 Manifest next update: Fri 15 Aug 2025 15:03:26 +0000 Files and hashes: 1: emYQUZRc4uj7SubeY7KEeLDO014.crl (hash: n0FO/+CK1wqYj5YMXmFqo4ABXQF6jRSp23ArZuASjRM=) 2: 5FBB084EAE6A11ECAA9D756AC4F9AE02.roa (hash: wwzdt+29bN5sRkpJd/eidoVjChYLuUnZj02CyiHrUiQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165FF3/CEABB4E61D9D11E28EAF4D8D08B02CD2/emYQUZRc4uj7SubeY7KEeLDO014.crl rsync://rpki.apnic.net/member_repository/A9165FF3/CEABB4E61D9D11E28EAF4D8D08B02CD2/emYQUZRc4uj7SubeY7KEeLDO014.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/emYQUZRc4uj7SubeY7KEeLDO014.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13490 (0x34b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165FF3, serialNumber=7A661051945CE2E8FB4AE6DE63B28478B0CED35E Validity Not Before: Aug 8 15:03:26 2025 GMT Not After : Aug 15 15:03:26 2025 GMT Subject: CN=689611be-72f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:97:0a:dd:08:3d:e2:8f:4b:1b:2d:be:26:dc: 52:75:ee:47:23:64:8e:51:5a:01:5a:08:96:fa:41: 53:d5:2f:88:c4:c1:46:24:be:30:87:26:16:db:0a: db:eb:84:72:d5:e2:a8:03:7d:03:e6:6a:12:19:86: aa:99:5c:71:66:13:29:4b:0a:cc:2a:01:88:4e:b6: b3:7c:09:74:c5:de:9a:96:96:80:5a:a9:d7:18:e6: a6:ac:94:f9:cc:0a:15:0c:15:69:2a:d6:72:42:f0: eb:ac:92:35:24:88:b3:d0:9b:6a:cf:dc:a5:3e:03: a3:a5:3b:be:d9:f5:16:9f:b5:29:31:d8:12:45:25: 49:be:05:c2:be:48:14:14:1d:61:ab:95:45:2f:77: bf:7b:53:e8:53:38:59:c4:cc:e2:a7:50:bb:c0:b2: ee:86:00:4a:ca:2c:eb:ff:1d:26:5a:1b:dd:59:8b: 6f:68:13:09:e4:cf:ee:43:5d:1c:b4:b3:9b:b8:55: f6:a5:ae:72:51:ae:af:be:0d:7b:ec:4e:d0:e3:fd: 87:30:df:44:a1:48:11:f1:34:a6:33:de:86:29:94: 26:40:80:e3:7d:19:94:c9:6c:dd:52:80:d1:23:06: 03:26:c0:76:af:57:0b:6c:fa:4b:d8:7c:14:17:19: 52:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:5C:18:A4:2B:4E:21:60:85:32:77:BE:B6:D0:D2:3C:48:27:3E:EA X509v3 Authority Key Identifier: keyid:7A:66:10:51:94:5C:E2:E8:FB:4A:E6:DE:63:B2:84:78:B0:CE:D3:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165FF3/CEABB4E61D9D11E28EAF4D8D08B02CD2/emYQUZRc4uj7SubeY7KEeLDO014.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/emYQUZRc4uj7SubeY7KEeLDO014.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165FF3/CEABB4E61D9D11E28EAF4D8D08B02CD2/emYQUZRc4uj7SubeY7KEeLDO014.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:14:de:d7:6e:d8:db:c1:44:3d:0a:b6:c9:f5:81:ce:bb:5f: 0a:f2:de:23:84:8d:0b:4b:a7:42:cc:04:05:13:e8:db:32:c7: b2:44:40:76:79:07:0d:e8:b8:a8:e1:80:6f:df:76:6e:2a:ec: b6:2c:a3:58:16:b9:8c:53:12:ce:9a:b3:32:a0:66:fc:4e:cf: 4c:f0:d8:77:f7:bd:a9:b6:a5:52:67:e2:25:e5:a6:e0:da:15: 2b:8e:d2:40:b5:2d:d4:5b:c1:87:b8:66:65:e9:13:43:c3:1b: 82:33:1c:a5:2c:aa:a1:ca:36:37:83:7c:94:0a:f3:9e:82:e4: 3f:b8:92:03:7d:8f:bd:a5:e8:58:ba:2a:fd:32:55:18:ed:ba: fb:55:f6:a2:30:e8:7b:8b:71:92:5e:59:83:54:31:ca:47:78: 57:e8:19:3d:df:0a:ef:f4:a8:69:a7:f8:d3:70:7f:bf:96:cb: be:c9:27:62:b1:8a:08:70:ba:4c:44:c0:f0:35:e2:f4:be:98: ae:4d:a8:bc:25:65:08:52:10:10:fe:d8:0b:48:33:97:00:95: 6c:dd:ba:05:94:bd:02:dd:97:a9:65:fe:d5:39:78:99:bd:f2: 58:73:70:3c:2d:a9:df:04:09:4c:02:18:d8:36:4c:58:8d:1a: ce:03:16:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVGRjMxMTAvBgNVBAUTKDdBNjYxMDUxOTQ1Q0UyRThGQjRBRTZERTYzQjI4NDc4 QjBDRUQzNUUwHhcNMjUwODA4MTUwMzI2WhcNMjUwODE1MTUwMzI2WjAYMRYwFAYD VQQDEw02ODk2MTFiZS03MmY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArpcK3Qg94o9LGy2+JtxSde5HI2SOUVoBWgiW+kFT1S+IxMFGJL4whyYW2wrb 64Ry1eKoA30D5moSGYaqmVxxZhMpSwrMKgGITrazfAl0xd6alpaAWqnXGOamrJT5 zAoVDBVpKtZyQvDrrJI1JIiz0Jtqz9ylPgOjpTu+2fUWn7UpMdgSRSVJvgXCvkgU FB1hq5VFL3e/e1PoUzhZxMzip1C7wLLuhgBKyizr/x0mWhvdWYtvaBMJ5M/uQ10c tLObuFX2pa5yUa6vvg177E7Q4/2HMN9EoUgR8TSmM96GKZQmQIDjfRmUyWzdUoDR IwYDJsB2r1cLbPpL2HwUFxlSSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL5cGKQr TiFghTJ3vrbQ0jxIJz7qMB8GA1UdIwQYMBaAFHpmEFGUXOLo+0rm3mOyhHiwztNe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUZGMy9DRUFCQjRFNjFE OUQxMUUyOEVBRjREOEQwOEIwMkNEMi9lbVlRVVpSYzR1ajdTdWJlWTdLRWVMRE8w MTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VtWVFVWlJjNHVqN1N1YmVZN0tFZUxETzAxNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUZGMy9DRUFCQjRFNjFEOUQxMUUyOEVBRjREOEQwOEIwMkNEMi9lbVlRVVpSYzR1 ajdTdWJlWTdLRWVMRE8wMTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJFN7XbtjbwUQ9CrbJ9YHOu18K8t4jhI0LS6dCzAQFE+jbMseyREB2 eQcN6Lio4YBv33ZuKuy2LKNYFrmMUxLOmrMyoGb8Ts9M8Nh3972ptqVSZ+Il5abg 2hUrjtJAtS3UW8GHuGZl6RNDwxuCMxylLKqhyjY3g3yUCvOeguQ/uJIDfY+9pehY uir9MlUY7br7VfaiMOh7i3GSXlmDVDHKR3hX6Bk93wrv9Khpp/jTcH+/lsu+ySdi sYoIcLpMRMDwNeL0vpiuTai8JWUIUhAQ/tgLSDOXAJVs3boFlL0C3ZepZf7VOXiZ vfJYc3A8LanfBAlMAhjYNkxYjRrOAxaK -----END CERTIFICATE-----Generated at Sun Aug 10 05:35:18 2025 by rpki-client