$ rpki-client -vvf rpki.apnic.net/member_repository/A91833FF/14EFE7E4E07D11E8A5F0FB35C4F9AE02/EjJ9_J6Ig827bG7us5JfLIwPfl4.mft File: EjJ9_J6Ig827bG7us5JfLIwPfl4.mft (raw, json) Hash identifier: vjYQdfv2y1rr+eAsN4fB3rEqKoo3QUtYDaU6EzoXB2Q= Subject key identifier: E9:D8:B1:8D:52:F7:DC:78:4C:2E:E2:2B:B4:11:A4:99:25:24:55:47 Authority key identifier: 12:32:7D:FC:9E:88:83:CD:BB:6C:6E:EE:B3:92:5F:2C:8C:0F:7E:5E Certificate issuer: /CN=A91833FF/serialNumber=12327DFC9E8883CDBB6C6EEEB3925F2C8C0F7E5E Certificate serial: 1245 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EjJ9_J6Ig827bG7us5JfLIwPfl4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91833FF/14EFE7E4E07D11E8A5F0FB35C4F9AE02/EjJ9_J6Ig827bG7us5JfLIwPfl4.mft Manifest number: 1239 Signing time: Sun 10 Aug 2025 17:07:34 +0000 Manifest this update: Sun 10 Aug 2025 17:07:33 +0000 Manifest next update: Sun 17 Aug 2025 17:07:33 +0000 Files and hashes: 1: EjJ9_J6Ig827bG7us5JfLIwPfl4.crl (hash: Pp6OsX6os7JKRKBW/OBc+LlYp0hfDMhYIjqq8KLBXoI=) 2: 659F6E188F2211E98AC7590DC4F9AE02.roa (hash: NX0Uu06g9kaFwSmmKkUW0sgMJpCNI4RFhei0HlK1wt8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91833FF/14EFE7E4E07D11E8A5F0FB35C4F9AE02/EjJ9_J6Ig827bG7us5JfLIwPfl4.crl rsync://rpki.apnic.net/member_repository/A91833FF/14EFE7E4E07D11E8A5F0FB35C4F9AE02/EjJ9_J6Ig827bG7us5JfLIwPfl4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EjJ9_J6Ig827bG7us5JfLIwPfl4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4677 (0x1245) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91833FF, serialNumber=12327DFC9E8883CDBB6C6EEEB3925F2C8C0F7E5E Validity Not Before: Aug 10 17:07:33 2025 GMT Not After : Aug 17 17:07:33 2025 GMT Subject: CN=6898d1d5-b87f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:84:1e:0c:a3:06:eb:56:85:76:db:90:9e:08: 3d:98:9b:f4:ee:dd:f4:a9:1c:a0:10:f9:d6:8f:ea: 3d:aa:60:6b:b2:8c:ee:db:4d:37:f4:92:dd:3f:67: f6:1c:85:85:d0:63:9e:b6:7a:ee:c8:c2:78:b6:7e: de:9c:c3:6c:8d:28:39:28:a6:a1:d5:ba:bc:18:5a: 35:a1:74:ed:1f:66:b3:cb:bf:0e:23:f1:14:74:7b: 89:5f:dc:9b:aa:52:0a:ad:bb:fd:dd:ec:14:b5:d4: b3:61:ef:cf:6d:dd:a5:6d:df:50:27:b0:e8:04:d4: 7d:bb:50:ad:64:39:7f:80:3c:37:ec:af:b8:0a:eb: 20:7b:2c:3e:54:79:bd:c6:04:a1:82:80:46:8c:48: 0a:0f:54:f1:58:37:ee:4d:05:d0:7e:1d:94:9f:2e: 34:ad:86:2a:6a:be:c5:53:9f:0e:ff:65:1e:7c:23: 41:50:71:4d:f3:b3:72:7b:35:c5:82:66:8e:28:43: be:91:2e:b4:44:fd:74:c3:87:09:df:a1:82:e2:1d: 2f:ab:19:e8:8a:2f:cb:78:4c:17:3f:eb:55:d1:c5: cf:a6:7d:65:5c:b3:12:ce:fa:44:2e:3f:3c:50:ea: 1e:8f:cd:ec:20:02:39:fb:6c:93:d8:da:7b:43:b0: 4b:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:D8:B1:8D:52:F7:DC:78:4C:2E:E2:2B:B4:11:A4:99:25:24:55:47 X509v3 Authority Key Identifier: keyid:12:32:7D:FC:9E:88:83:CD:BB:6C:6E:EE:B3:92:5F:2C:8C:0F:7E:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91833FF/14EFE7E4E07D11E8A5F0FB35C4F9AE02/EjJ9_J6Ig827bG7us5JfLIwPfl4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EjJ9_J6Ig827bG7us5JfLIwPfl4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91833FF/14EFE7E4E07D11E8A5F0FB35C4F9AE02/EjJ9_J6Ig827bG7us5JfLIwPfl4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:d5:36:a3:97:9b:ce:56:b7:c3:04:34:25:a5:50:04:16:d2: a0:90:21:ec:e6:2d:d1:8c:c9:8f:be:e3:b1:c4:8e:e3:ad:39: c6:3f:ff:bc:fa:67:4d:ff:31:83:07:6a:d9:ec:2a:65:76:9c: 41:1e:57:8f:40:b3:c0:00:ad:6a:24:c2:2b:72:c4:cb:fc:c5: fb:d8:c9:1c:96:86:98:d7:52:94:a5:86:1d:44:e9:92:27:a2: 04:3d:a1:ae:cd:95:4a:98:14:8b:0b:18:7a:8c:c6:54:b8:9a: 96:74:b9:7e:d2:f9:6b:32:ab:06:fd:70:3e:3d:50:bb:8d:a6: 2a:af:d8:c5:b8:d2:8e:76:67:d6:b3:31:8c:5a:57:a2:4d:ea: 3e:74:ad:7d:48:a7:2b:74:cc:3f:e8:c2:76:f2:05:88:9a:c1: ee:84:73:2b:9c:2e:17:34:ba:bf:d4:94:06:56:3a:a1:42:63: 58:8e:f2:98:35:81:c2:f9:bf:2c:4a:2e:02:51:c4:c4:9a:41: 59:b1:19:a7:0c:56:88:0b:5a:ae:2b:cf:f5:a0:44:4b:a9:ae: 91:e5:79:f9:20:19:5f:b5:03:39:73:b1:e7:85:ee:81:26:a4: d5:66:11:c6:9c:6e:78:5c:92:31:b5:53:f8:a8:39:8f:29:cf: f9:b7:71:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEkUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODMzRkYxMTAvBgNVBAUTKDEyMzI3REZDOUU4ODgzQ0RCQjZDNkVFRUIzOTI1RjJD OEMwRjdFNUUwHhcNMjUwODEwMTcwNzMzWhcNMjUwODE3MTcwNzMzWjAYMRYwFAYD VQQDEw02ODk4ZDFkNS1iODdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuoQeDKMG61aFdtuQngg9mJv07t30qRygEPnWj+o9qmBrsozu20039JLdP2f2 HIWF0GOetnruyMJ4tn7enMNsjSg5KKah1bq8GFo1oXTtH2azy78OI/EUdHuJX9yb qlIKrbv93ewUtdSzYe/Pbd2lbd9QJ7DoBNR9u1CtZDl/gDw37K+4Cusgeyw+VHm9 xgShgoBGjEgKD1TxWDfuTQXQfh2Uny40rYYqar7FU58O/2UefCNBUHFN87NyezXF gmaOKEO+kS60RP10w4cJ36GC4h0vqxnoii/LeEwXP+tV0cXPpn1lXLMSzvpELj88 UOoej83sIAI5+2yT2Np7Q7BL0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOnYsY1S 99x4TC7iK7QRpJklJFVHMB8GA1UdIwQYMBaAFBIyffyeiIPNu2xu7rOSXyyMD35e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MzNGRi8xNEVGRTdFNEUw N0QxMUU4QTVGMEZCMzVDNEY5QUUwMi9Fako5X0o2SWc4MjdiRzd1czVKZkxJd1Bm bDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VqSjlfSjZJZzgyN2JHN3VzNUpmTEl3UGZsNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MzNGRi8xNEVGRTdFNEUwN0QxMUU4QTVGMEZCMzVDNEY5QUUwMi9Fako5X0o2SWc4 MjdiRzd1czVKZkxJd1BmbDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCq1Tajl5vOVrfDBDQlpVAEFtKgkCHs5i3RjMmPvuOxxI7jrTnGP/+8 +mdN/zGDB2rZ7CpldpxBHlePQLPAAK1qJMIrcsTL/MX72MkcloaY11KUpYYdROmS J6IEPaGuzZVKmBSLCxh6jMZUuJqWdLl+0vlrMqsG/XA+PVC7jaYqr9jFuNKOdmfW szGMWleiTeo+dK19SKcrdMw/6MJ28gWImsHuhHMrnC4XNLq/1JQGVjqhQmNYjvKY NYHC+b8sSi4CUcTEmkFZsRmnDFaIC1quK8/1oERLqa6R5Xn5IBlftQM5c7Hnhe6B JqTVZhHGnG54XJIxtVP4qDmPKc/5t3Gl -----END CERTIFICATE-----Generated at Sun Aug 10 21:12:54 2025 by rpki-client