$ rpki-client -vvf rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.mft File: EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.mft (raw, json) Hash identifier: OGys/DUti65XJJ62KsMrU0bzmlR17WaWPsvwU+S14B8= Subject key identifier: AF:B4:2B:B7:96:09:59:15:47:10:F8:EE:2F:F8:ED:4E:05:80:4E:87 Authority key identifier: 13:24:04:30:21:BB:45:D7:FF:66:F2:0A:FC:68:39:34:31:30:C3:F2 Certificate issuer: /CN=A917FFB0/serialNumber=1324043021BB45D7FF66F20AFC6839343130C3F2 Certificate serial: 3569 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.mft Manifest number: 3525 Signing time: Mon 03 Nov 2025 13:05:28 +0000 Manifest this update: Mon 03 Nov 2025 13:05:28 +0000 Manifest next update: Mon 10 Nov 2025 13:05:28 +0000 Files and hashes: 1: EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.crl (hash: A2pwcvR56b6jLJpryCE4hX5eOZruJWcrec9LPf5GKv8=) 2: 80B30FA48F5611EA9C04912BC4F9AE02.roa (hash: fT98Wy1t5VScFWJuQupk2LhedSGkV+ojkzEZelCkDWM=) 3: C335158CB8B511F0B7968E10C4F9AE02.roa (hash: 9hcdJKUo4Eetg6NHepuJxuFCENGbgHGCDh1IAzw8cyk=) 4: A88A36D0003A11EEB8430127C4F9AE02.roa (hash: dGU6CJvrS/pXM1BPExEcoLwBj3XVO3Qw6BjkQ3c5uZ8=) 5: 187F92966F0911ED8A7BD268C4F9AE02.roa (hash: d/7DMtiXfQBwX+8qOXb96W9MkSduRe+bpauiOZ+JfzU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.crl rsync://rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 13:05:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13673 (0x3569) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917FFB0, serialNumber=1324043021BB45D7FF66F20AFC6839343130C3F2 Validity Not Before: Nov 3 13:05:28 2025 GMT Not After : Nov 10 13:05:28 2025 GMT Subject: CN=6908a898-41fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:c8:47:60:09:3f:cd:95:9c:f6:49:ea:72:5e: e2:9e:80:bd:d2:ec:9c:90:5f:e1:34:31:c8:63:43: 96:6b:91:da:8c:31:8b:43:2d:22:99:de:16:c5:dc: 00:29:5c:92:b6:da:cb:6b:70:66:00:c1:86:d9:ba: 22:2d:0e:4b:30:f4:6c:76:70:01:c4:67:58:06:c7: b0:f0:19:d0:23:db:93:e6:93:54:87:fd:b9:7e:7b: 3b:45:29:d2:fb:d5:1a:6c:17:6b:8c:60:c1:a2:4a: c3:f1:93:b8:99:d0:32:ca:39:f5:d6:ec:62:9a:2d: 09:f1:4a:f9:75:d8:ad:85:97:ad:b0:c0:39:38:79: 41:42:f5:92:ee:44:11:52:f1:f7:22:08:41:ee:f6: d3:19:68:dc:c5:bd:6e:c0:76:68:fe:79:aa:f4:b3: 61:bb:27:99:48:e0:93:d9:b0:02:1d:b6:62:54:88: 9f:3f:bf:cb:b5:4c:4a:f1:2d:7e:1e:dc:00:3d:d0: 7d:95:b7:b3:1b:97:b3:5a:48:7a:32:04:df:ee:f1: cd:e2:6c:eb:af:c6:c2:bd:94:76:54:8b:80:54:07: 1d:28:4b:33:5a:99:1d:cd:5c:6c:2f:9f:1e:e8:fe: 8f:81:a4:39:03:65:08:3b:4f:33:be:10:91:1c:38: 1c:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:B4:2B:B7:96:09:59:15:47:10:F8:EE:2F:F8:ED:4E:05:80:4E:87 X509v3 Authority Key Identifier: keyid:13:24:04:30:21:BB:45:D7:FF:66:F2:0A:FC:68:39:34:31:30:C3:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:7c:0f:75:9b:5f:80:6d:51:2a:b2:5d:74:50:ee:49:b9:34: c0:f4:87:fc:5c:03:ec:52:12:df:45:bd:84:00:06:2b:6b:24: fe:ee:3b:62:ad:b9:cd:24:0c:2a:c4:b0:dc:ed:92:7b:e1:20: 8a:18:30:d1:80:04:ad:b7:a1:82:62:0c:a1:5d:a1:cb:c6:6e: 7c:9c:05:76:cb:4e:c2:86:9e:b6:5d:01:8b:03:a2:ac:53:f1: f8:f7:c2:d7:c6:c4:aa:ac:d8:1f:ae:2e:03:9c:be:ef:57:a6: 89:46:01:ea:a1:0c:d7:14:8e:c2:d9:77:fe:7a:10:1c:e2:ce: 0f:bd:20:f2:7a:1a:20:e2:1b:3c:12:1d:c7:c1:28:31:72:e6: 68:b0:68:71:1c:27:c6:62:8d:e5:08:cf:53:cf:2d:f9:38:cc: d6:a1:9f:7a:9c:3d:6f:10:0e:39:25:06:7a:8d:0e:6b:20:4f: 58:62:b1:af:85:f0:a7:4f:62:71:ed:70:0f:53:6e:a2:55:4b: c9:9f:a9:a7:e6:26:bb:a6:62:0b:c1:55:16:3d:2a:55:0f:41: e3:55:ae:b9:b9:24:3e:7c:00:ed:03:06:ab:d1:49:b5:2a:13: 04:ca:31:ab:b6:c4:5c:b5:f4:d8:b9:b5:58:58:1a:4d:b7:41: 25:11:81:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNWkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0ZGQjAxMTAvBgNVBAUTKDEzMjQwNDMwMjFCQjQ1RDdGRjY2RjIwQUZDNjgzOTM0 MzEzMEMzRjIwHhcNMjUxMTAzMTMwNTI4WhcNMjUxMTEwMTMwNTI4WjAYMRYwFAYD VQQDEw02OTA4YTg5OC00MWZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0chHYAk/zZWc9knqcl7inoC90uyckF/hNDHIY0OWa5HajDGLQy0imd4WxdwA KVySttrLa3BmAMGG2boiLQ5LMPRsdnABxGdYBsew8BnQI9uT5pNUh/25fns7RSnS +9UabBdrjGDBokrD8ZO4mdAyyjn11uximi0J8Ur5ddithZetsMA5OHlBQvWS7kQR UvH3IghB7vbTGWjcxb1uwHZo/nmq9LNhuyeZSOCT2bACHbZiVIifP7/LtUxK8S1+ HtwAPdB9lbezG5ezWkh6MgTf7vHN4mzrr8bCvZR2VIuAVAcdKEszWpkdzVxsL58e 6P6PgaQ5A2UIO08zvhCRHDgcjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK+0K7eW CVkVRxD47i/47U4FgE6HMB8GA1UdIwQYMBaAFBMkBDAhu0XX/2byCvxoOTQxMMPy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RkZCMC9FNTU3QzAwMDFE OTIxMUUyOTMzQTIxRjYwOEIwMkNEMi9FeVFFTUNHN1JkZl9adklLX0dnNU5ERXd3 X0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0V5UUVNQ0c3UmRmX1p2SUtfR2c1TkRFd3dfSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RkZCMC9FNTU3QzAwMDFEOTIxMUUyOTMzQTIxRjYwOEIwMkNEMi9FeVFFTUNHN1Jk Zl9adklLX0dnNU5ERXd3X0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABfA91m1+AbVEqsl10UO5JuTTA9If8XAPsUhLfRb2EAAYrayT+7jti rbnNJAwqxLDc7ZJ74SCKGDDRgAStt6GCYgyhXaHLxm58nAV2y07Chp62XQGLA6Ks U/H498LXxsSqrNgfri4DnL7vV6aJRgHqoQzXFI7C2Xf+ehAc4s4PvSDyehog4hs8 Eh3HwSgxcuZosGhxHCfGYo3lCM9Tzy35OMzWoZ96nD1vEA45JQZ6jQ5rIE9YYrGv hfCnT2Jx7XAPU26iVUvJn6mn5ia7pmILwVUWPSpVD0HjVa65uSQ+fADtAwar0Um1 KhMEyjGrtsRctfTYubVYWBpNt0ElEYGi -----END CERTIFICATE-----Generated at Tue Nov 4 08:18:16 2025 by rpki-client