$ rpki-client -vvf rpki.apnic.net/member_repository/A9187D5B/7983385A692E11F0BD0F6819C4F9AE02/EKxjBm6avEIqxfRaInENUC6-Qsg.mft File: EKxjBm6avEIqxfRaInENUC6-Qsg.mft (raw, json) Hash identifier: oO9x4JAP6UBb6gCpcrhhkRoR4hto49+OgvM0/i2nYdA= Subject key identifier: 8B:03:39:AF:97:E4:57:3A:48:5E:AD:1B:5C:16:9D:F3:63:C2:19:0D Authority key identifier: 10:AC:63:06:6E:9A:BC:42:2A:C5:F4:5A:22:71:0D:50:2E:BE:42:C8 Certificate issuer: /CN=A9187D5B/serialNumber=10AC63066E9ABC422AC5F45A22710D502EBE42C8 Certificate serial: 3A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EKxjBm6avEIqxfRaInENUC6-Qsg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187D5B/7983385A692E11F0BD0F6819C4F9AE02/EKxjBm6avEIqxfRaInENUC6-Qsg.mft Manifest number: 38 Signing time: Wed 05 Nov 2025 07:46:56 +0000 Manifest this update: Wed 05 Nov 2025 07:46:55 +0000 Manifest next update: Wed 12 Nov 2025 07:46:55 +0000 Files and hashes: 1: EKxjBm6avEIqxfRaInENUC6-Qsg.crl (hash: 9oLUwyOgrS5w4qn4KdM6HtPA3xvnJBToqNNA23YeyEc=) 2: CA226038692E11F0B07B731AC4F9AE02.roa (hash: aA4NuSUsD5J7xDniHCGMsk40FqbunmjtgWh3zqGnLE0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187D5B/7983385A692E11F0BD0F6819C4F9AE02/EKxjBm6avEIqxfRaInENUC6-Qsg.crl rsync://rpki.apnic.net/member_repository/A9187D5B/7983385A692E11F0BD0F6819C4F9AE02/EKxjBm6avEIqxfRaInENUC6-Qsg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EKxjBm6avEIqxfRaInENUC6-Qsg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:46:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187D5B, serialNumber=10AC63066E9ABC422AC5F45A22710D502EBE42C8 Validity Not Before: Nov 5 07:46:55 2025 GMT Not After : Nov 12 07:46:55 2025 GMT Subject: CN=690b00f0-6bb6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:e8:b8:5a:69:95:b7:df:89:60:93:97:f8:3e: 23:99:d9:3c:ff:26:c6:7a:b0:95:1a:d8:3c:03:7b: bf:da:fd:5a:db:32:ea:ce:95:dc:04:28:28:57:e6: 7e:28:84:36:43:77:20:78:c2:ea:d3:9f:da:73:81: 43:8b:2e:cd:95:9f:75:b6:dc:53:3c:c9:5b:74:06: 57:e2:71:79:2e:9f:30:2f:23:da:a9:9f:4f:ca:d7: 88:f3:80:36:16:29:84:d3:bc:82:fb:ff:4f:46:cc: 3c:29:56:7a:45:4f:d4:52:0b:86:a7:f0:4d:24:60: d4:79:da:10:a1:ff:23:82:f5:58:03:4f:16:6a:5a: cc:80:c2:3c:ea:13:c5:eb:1b:4d:92:f9:64:7e:0e: ea:0e:51:99:bb:35:1a:15:85:6f:d2:75:94:c2:b1: 67:7c:b2:dd:ae:5e:33:92:6a:68:f0:55:41:be:29: 34:53:f9:82:a2:d5:2b:52:dd:9c:97:b7:c1:1f:43: c4:47:d5:7b:00:ac:fc:b8:a0:18:17:84:b7:19:51: 87:48:19:56:ad:eb:e5:e8:81:22:4a:65:ea:0e:9f: bd:15:80:34:f2:0e:f0:90:6c:56:98:d7:f0:6b:c7: 5b:41:ca:39:a1:3e:58:01:92:02:46:60:35:59:d4: 4c:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:03:39:AF:97:E4:57:3A:48:5E:AD:1B:5C:16:9D:F3:63:C2:19:0D X509v3 Authority Key Identifier: keyid:10:AC:63:06:6E:9A:BC:42:2A:C5:F4:5A:22:71:0D:50:2E:BE:42:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187D5B/7983385A692E11F0BD0F6819C4F9AE02/EKxjBm6avEIqxfRaInENUC6-Qsg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EKxjBm6avEIqxfRaInENUC6-Qsg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187D5B/7983385A692E11F0BD0F6819C4F9AE02/EKxjBm6avEIqxfRaInENUC6-Qsg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:a5:3b:06:08:bd:75:64:0d:a2:36:f6:17:e2:5b:48:54:7f: 5b:3a:96:93:c1:1b:d6:36:d6:d6:b7:7c:1e:9e:02:f8:42:5e: 05:f8:ac:0c:c7:d3:38:1e:41:d0:11:0d:9f:b5:7c:1a:46:e0: 7f:f3:ca:de:55:44:29:fd:86:bb:1a:fb:71:63:2c:9c:da:9f: bc:bd:f9:16:d0:18:14:78:40:80:1e:cf:c6:9e:b6:c8:97:2e: c1:72:19:eb:3c:33:84:f7:73:72:54:a4:5b:04:b2:9d:1e:1c: 2f:03:98:06:58:d7:e4:25:3d:9c:ab:f7:97:e5:fe:2d:f7:02: 89:03:fd:fc:08:32:5f:f9:d8:7c:ce:c0:91:8a:5e:2d:b0:38: 6c:9d:8d:45:f0:61:88:0c:50:49:37:a6:3b:53:a5:e3:95:c8: ff:2f:13:e3:a9:a8:82:a6:31:a1:83:9e:63:1c:92:1a:8a:cb: c0:a8:09:f7:18:1c:13:0e:4b:e1:a4:e9:ea:64:1f:c0:20:29: 0e:3d:ae:96:c9:20:28:dd:85:82:4b:e1:e7:2e:01:11:35:64: 2d:85:50:32:61:f4:62:95:9b:65:71:be:0b:b1:ac:06:07:3e: d3:65:a1:25:b7:e1:6d:7d:ac:74:90:be:c7:9d:fa:db:da:13: 28:48:0d:0a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 N0Q1QjExMC8GA1UEBRMoMTBBQzYzMDY2RTlBQkM0MjJBQzVGNDVBMjI3MTBENTAy RUJFNDJDODAeFw0yNTExMDUwNzQ2NTVaFw0yNTExMTIwNzQ2NTVaMBgxFjAUBgNV BAMTDTY5MGIwMGYwLTZiYjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCs6LhaaZW334lgk5f4PiOZ2Tz/JsZ6sJUa2DwDe7/a/VrbMurOldwEKChX5n4o hDZDdyB4wurTn9pzgUOLLs2Vn3W23FM8yVt0BlficXkunzAvI9qpn0/K14jzgDYW KYTTvIL7/09GzDwpVnpFT9RSC4an8E0kYNR52hCh/yOC9VgDTxZqWsyAwjzqE8Xr G02S+WR+DuoOUZm7NRoVhW/SdZTCsWd8st2uXjOSamjwVUG+KTRT+YKi1StS3ZyX t8EfQ8RH1XsArPy4oBgXhLcZUYdIGVat6+XogSJKZeoOn70VgDTyDvCQbFaY1/Br x1tByjmhPlgBkgJGYDVZ1ExZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUiwM5r5fk VzpIXq0bXBad82PCGQ0wHwYDVR0jBBgwFoAUEKxjBm6avEIqxfRaInENUC6+Qsgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg3RDVCLzc5ODMzODVBNjky RTExRjBCRDBGNjgxOUM0RjlBRTAyL0VLeGpCbTZhdkVJcXhmUmFJbkVOVUM2LVFz Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRUt4akJtNmF2RUlxeGZSYUluRU5VQzYtUXNnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg3 RDVCLzc5ODMzODVBNjkyRTExRjBCRDBGNjgxOUM0RjlBRTAyL0VLeGpCbTZhdkVJ cXhmUmFJbkVOVUM2LVFzZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABWlOwYIvXVkDaI29hfiW0hUf1s6lpPBG9Y21ta3fB6eAvhCXgX4rAzH 0zgeQdARDZ+1fBpG4H/zyt5VRCn9hrsa+3FjLJzan7y9+RbQGBR4QIAez8aetsiX LsFyGes8M4T3c3JUpFsEsp0eHC8DmAZY1+QlPZyr95fl/i33AokD/fwIMl/52HzO wJGKXi2wOGydjUXwYYgMUEk3pjtTpeOVyP8vE+OpqIKmMaGDnmMckhqKy8CoCfcY HBMOS+Gk6epkH8AgKQ49rpbJICjdhYJL4ecuARE1ZC2FUDJh9GKVm2VxvguxrAYH PtNloSW34W19rHSQvsed+tvaEyhIDQo= -----END CERTIFICATE-----Generated at Wed Nov 5 15:44:37 2025 by rpki-client