$ rpki-client -vvf rpki.apnic.net/member_repository/A9174A5B/11E96B34701211EB8BEE0A1FC4F9AE02/tN_eECSMkMVYSwFupua0nnge2CA.mft File: tN_eECSMkMVYSwFupua0nnge2CA.mft (raw, json) Hash identifier: K8m4f40kFBYCoWshqRmtGtky0M9dZf8U9HVAGzdav30= Subject key identifier: C2:69:D8:D6:D5:E4:74:FD:BA:F8:7D:45:7D:FB:04:15:D7:65:72:68 Authority key identifier: B4:DF:DE:10:24:8C:90:C5:58:4B:01:6E:A6:E6:B4:9E:78:1E:D8:20 Certificate issuer: /CN=A9174A5B/serialNumber=B4DFDE10248C90C5584B016EA6E6B49E781ED820 Certificate serial: 06B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tN_eECSMkMVYSwFupua0nnge2CA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174A5B/11E96B34701211EB8BEE0A1FC4F9AE02/tN_eECSMkMVYSwFupua0nnge2CA.mft Manifest number: 06B3 Signing time: Fri 08 Aug 2025 22:31:52 +0000 Manifest this update: Fri 08 Aug 2025 22:31:51 +0000 Manifest next update: Fri 15 Aug 2025 22:31:51 +0000 Files and hashes: 1: tN_eECSMkMVYSwFupua0nnge2CA.crl (hash: wz7VVeNwWyKk8dxHPMb/xtLmTPaPUqbIn+rSGyWH4KY=) 2: 9E9FA4C40AB011EC8906F464C4F9AE02.roa (hash: y+B4buIfbruqaejaK6x75+RSn7pa5KBjABUZlRGt/q8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174A5B/11E96B34701211EB8BEE0A1FC4F9AE02/tN_eECSMkMVYSwFupua0nnge2CA.crl rsync://rpki.apnic.net/member_repository/A9174A5B/11E96B34701211EB8BEE0A1FC4F9AE02/tN_eECSMkMVYSwFupua0nnge2CA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tN_eECSMkMVYSwFupua0nnge2CA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1721 (0x6b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174A5B, serialNumber=B4DFDE10248C90C5584B016EA6E6B49E781ED820 Validity Not Before: Aug 8 22:31:51 2025 GMT Not After : Aug 15 22:31:51 2025 GMT Subject: CN=68967ad8-1f95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:85:df:93:36:bf:2a:19:c0:fb:d6:f4:ee:63: 8a:e6:6f:bc:11:9e:27:c5:be:64:f0:7b:3d:09:99: 6e:d6:96:f9:d7:d3:ba:94:ef:f4:09:54:f9:6d:e8: 8b:57:8d:e5:76:f0:f7:e8:60:78:80:7b:cc:04:e1: 30:c6:94:78:a6:f6:35:06:f2:4a:0d:2e:64:de:ba: 6e:1b:b6:7d:17:48:c6:d0:a2:2e:e2:6a:f0:df:69: 05:36:8f:c2:6c:98:94:0c:59:b7:e6:bc:b1:49:71: c7:98:a4:68:bb:54:2a:4f:76:85:13:c8:6c:bb:28: ec:d5:f2:c9:44:98:2a:76:57:02:a3:db:5a:1d:47: 4f:74:fd:85:ff:3a:87:d7:dd:97:1d:ce:92:7d:42: cb:cb:1f:21:b7:6b:8f:b3:1e:b4:85:80:16:30:c9: d9:bf:66:48:eb:9c:2c:76:d6:11:51:21:c3:a5:47: e7:6e:67:7d:14:dc:fa:95:ba:64:ad:65:5b:1b:05: ad:e3:ca:90:10:56:15:47:d2:ea:57:ee:ab:45:0e: d4:ae:80:52:d4:ef:56:89:74:1c:c9:7f:5a:d2:fe: df:95:63:05:52:f3:16:06:44:f3:fd:4b:74:a3:a4: 83:59:af:13:82:d5:7b:94:80:82:d7:79:4e:12:20: 96:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:69:D8:D6:D5:E4:74:FD:BA:F8:7D:45:7D:FB:04:15:D7:65:72:68 X509v3 Authority Key Identifier: keyid:B4:DF:DE:10:24:8C:90:C5:58:4B:01:6E:A6:E6:B4:9E:78:1E:D8:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174A5B/11E96B34701211EB8BEE0A1FC4F9AE02/tN_eECSMkMVYSwFupua0nnge2CA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tN_eECSMkMVYSwFupua0nnge2CA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174A5B/11E96B34701211EB8BEE0A1FC4F9AE02/tN_eECSMkMVYSwFupua0nnge2CA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:9b:99:90:27:17:d5:58:8d:67:a1:cc:ef:6b:76:11:52:ba: b8:9f:d2:b1:73:90:f0:ba:be:ba:99:65:5e:a3:f4:68:75:9a: 77:bd:4d:ca:d6:81:89:39:94:05:ae:21:a3:be:4e:b1:b9:db: 23:54:2b:7b:3c:22:29:0a:8a:d7:90:63:1d:4a:a7:41:6d:01: f1:e6:42:77:d6:e9:2b:04:f4:09:85:97:0d:90:df:7a:ee:6a: 2e:0f:8a:9d:22:93:9e:c9:61:de:b8:e4:2d:5e:66:4c:d1:59: 07:7a:1f:44:00:ff:74:04:de:ca:cf:be:33:18:05:7d:81:ba: 27:13:2d:82:f4:26:f1:62:21:63:88:b0:34:b2:a5:36:16:6d: c0:e1:01:e4:a2:b8:54:00:cf:b3:ae:fb:e6:dc:9e:a6:03:3d: 1d:17:1f:5d:b9:22:83:24:08:1d:cd:83:65:2f:e3:62:75:44: f9:d4:6c:19:9e:6b:ee:b5:2c:68:02:1e:cf:b5:29:76:b4:49: e7:2f:75:57:bc:43:df:b4:bb:c8:c8:31:0e:08:14:15:f4:8e: b4:5b:34:2b:dc:d9:ed:3e:72:fb:f6:cc:cd:8a:31:cf:25:a1: c9:99:54:c9:38:39:22:f4:54:9c:37:fe:52:93:a2:ad:5d:c5: ee:69:25:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRBNUIxMTAvBgNVBAUTKEI0REZERTEwMjQ4QzkwQzU1ODRCMDE2RUE2RTZCNDlF NzgxRUQ4MjAwHhcNMjUwODA4MjIzMTUxWhcNMjUwODE1MjIzMTUxWjAYMRYwFAYD VQQDEw02ODk2N2FkOC0xZjk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwIXfkza/KhnA+9b07mOK5m+8EZ4nxb5k8Hs9CZlu1pb519O6lO/0CVT5beiL V43ldvD36GB4gHvMBOEwxpR4pvY1BvJKDS5k3rpuG7Z9F0jG0KIu4mrw32kFNo/C bJiUDFm35ryxSXHHmKRou1QqT3aFE8hsuyjs1fLJRJgqdlcCo9taHUdPdP2F/zqH 192XHc6SfULLyx8ht2uPsx60hYAWMMnZv2ZI65wsdtYRUSHDpUfnbmd9FNz6lbpk rWVbGwWt48qQEFYVR9LqV+6rRQ7UroBS1O9WiXQcyX9a0v7flWMFUvMWBkTz/Ut0 o6SDWa8TgtV7lICC13lOEiCW9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMJp2NbV 5HT9uvh9RX37BBXXZXJoMB8GA1UdIwQYMBaAFLTf3hAkjJDFWEsBbqbmtJ54Htgg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEE1Qi8xMUU5NkIzNDcw MTIxMUVCOEJFRTBBMUZDNEY5QUUwMi90Tl9lRUNTTWtNVllTd0Z1cHVhMG5uZ2Uy Q0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ROX2VFQ1NNa01WWVN3RnVwdWEwbm5nZTJDQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NEE1Qi8xMUU5NkIzNDcwMTIxMUVCOEJFRTBBMUZDNEY5QUUwMi90Tl9lRUNTTWtN VllTd0Z1cHVhMG5uZ2UyQ0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnm5mQJxfVWI1noczva3YRUrq4n9Kxc5Dwur66mWVeo/RodZp3vU3K 1oGJOZQFriGjvk6xudsjVCt7PCIpCorXkGMdSqdBbQHx5kJ31ukrBPQJhZcNkN96 7mouD4qdIpOeyWHeuOQtXmZM0VkHeh9EAP90BN7Kz74zGAV9gbonEy2C9CbxYiFj iLA0sqU2Fm3A4QHkorhUAM+zrvvm3J6mAz0dFx9duSKDJAgdzYNlL+NidUT51GwZ nmvutSxoAh7PtSl2tEnnL3VXvEPftLvIyDEOCBQV9I60WzQr3NntPnL79szNijHP JaHJmVTJODki9FScN/5Sk6KtXcXuaSWT -----END CERTIFICATE-----Generated at Sun Aug 10 18:50:14 2025 by rpki-client