$ rpki-client -vvf rpki.apnic.net/member_repository/A9187D5B/7983385A692E11F0BD0F6819C4F9AE02/EKxjBm6avEIqxfRaInENUC6-Qsg.mft File: EKxjBm6avEIqxfRaInENUC6-Qsg.mft (raw, json) Hash identifier: CjONZl1ZKhWjSHKttscv73BHegdJl4QzKven/RYoF6A= Subject key identifier: 6A:CD:0C:5D:72:7B:6F:C9:0E:AD:E8:D5:16:2D:3B:9D:A5:C5:FE:88 Authority key identifier: 10:AC:63:06:6E:9A:BC:42:2A:C5:F4:5A:22:71:0D:50:2E:BE:42:C8 Certificate issuer: /CN=A9187D5B/serialNumber=10AC63066E9ABC422AC5F45A22710D502EBE42C8 Certificate serial: 0B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EKxjBm6avEIqxfRaInENUC6-Qsg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187D5B/7983385A692E11F0BD0F6819C4F9AE02/EKxjBm6avEIqxfRaInENUC6-Qsg.mft Manifest number: 0A Signing time: Sat 09 Aug 2025 08:40:59 +0000 Manifest this update: Sat 09 Aug 2025 08:40:59 +0000 Manifest next update: Sat 16 Aug 2025 08:40:59 +0000 Files and hashes: 1: EKxjBm6avEIqxfRaInENUC6-Qsg.crl (hash: 4Eb3BrlyQIhiHjm+mPvoTW7NF5uHIx2/Xx1EsQvPAY0=) 2: CA226038692E11F0B07B731AC4F9AE02.roa (hash: Jl0PXlGRVMz6VTGQ9JZnlXDKUJBJbG15PDPmjCjHDwo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187D5B/7983385A692E11F0BD0F6819C4F9AE02/EKxjBm6avEIqxfRaInENUC6-Qsg.crl rsync://rpki.apnic.net/member_repository/A9187D5B/7983385A692E11F0BD0F6819C4F9AE02/EKxjBm6avEIqxfRaInENUC6-Qsg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EKxjBm6avEIqxfRaInENUC6-Qsg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11 (0xb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187D5B, serialNumber=10AC63066E9ABC422AC5F45A22710D502EBE42C8 Validity Not Before: Aug 9 08:40:59 2025 GMT Not After : Aug 16 08:40:59 2025 GMT Subject: CN=6897099b-eb37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:bc:aa:5f:05:28:8f:17:47:bc:96:bf:f7:ac: 74:fa:72:da:41:87:be:d6:e5:1f:c3:f0:e4:d0:e1: 30:91:97:0c:fb:2a:5a:34:2b:b7:84:82:f6:7e:15: cd:39:72:d9:3f:94:d3:08:51:2a:29:21:95:e9:2a: 14:bf:58:5b:05:b8:0a:33:57:7f:41:ce:4f:c4:12: a5:b5:ab:d0:d7:89:46:71:eb:0e:87:53:c9:7e:c0: b3:ca:c2:76:07:c7:96:b9:38:f9:ad:0d:e5:38:e2: 4c:71:2d:02:8c:1d:cf:21:86:9b:f9:be:6b:36:8f: 8a:f2:57:b9:86:0d:2b:d8:df:f3:87:6a:5c:f9:9d: 5f:1e:4b:e9:69:8a:01:66:d5:f7:85:15:e5:73:b3: f2:10:fe:d1:f0:f0:bc:ad:f4:00:25:11:c8:bd:47: e1:68:31:eb:ff:85:35:6f:31:9f:83:be:0c:2c:74: 35:7e:05:20:41:7c:b6:70:00:96:c5:7e:33:f2:0d: 20:74:b4:08:15:c5:b7:85:f7:6e:2b:e1:67:6c:e4: 52:c0:56:8c:75:65:6f:75:01:95:9a:27:99:75:2f: 35:dc:65:2f:62:3e:cf:82:a5:8b:e1:66:9e:47:82: 44:06:1e:a9:ca:bb:6b:33:b8:82:dc:38:8f:49:2e: 84:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:CD:0C:5D:72:7B:6F:C9:0E:AD:E8:D5:16:2D:3B:9D:A5:C5:FE:88 X509v3 Authority Key Identifier: keyid:10:AC:63:06:6E:9A:BC:42:2A:C5:F4:5A:22:71:0D:50:2E:BE:42:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187D5B/7983385A692E11F0BD0F6819C4F9AE02/EKxjBm6avEIqxfRaInENUC6-Qsg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EKxjBm6avEIqxfRaInENUC6-Qsg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187D5B/7983385A692E11F0BD0F6819C4F9AE02/EKxjBm6avEIqxfRaInENUC6-Qsg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:3f:96:13:60:6e:5a:33:33:72:1a:5c:38:da:d9:ea:74:25: 3a:fe:c1:39:24:c6:3e:fb:50:8e:71:dd:8f:33:76:77:ab:25: 16:40:25:a7:67:c2:e9:83:dd:ff:c7:f8:d7:13:99:1b:bb:16: 78:c0:0c:a0:b6:bc:53:77:1b:9c:96:4e:27:72:50:e7:9b:d3: f5:7b:03:90:34:ea:be:b3:51:6a:92:f4:85:a6:16:f7:0e:61: a5:ed:03:db:55:41:9e:c0:e4:c9:76:01:6b:15:7d:91:e8:60: b9:76:55:88:e9:f4:e0:19:96:15:39:06:76:21:91:09:06:c7: 2c:ad:22:19:80:1b:72:03:34:43:eb:89:15:ec:42:3a:b1:54: df:35:95:8c:bd:18:e8:2a:90:89:05:4d:ce:a0:03:16:41:6f: df:ef:5a:96:54:dd:fd:06:cc:65:84:a7:2a:ef:8d:55:e5:c7: 2c:88:1e:0a:d5:ce:b5:83:eb:a0:f9:dd:d7:63:2e:61:62:ac: 4f:43:46:7d:3f:a7:0c:94:a1:61:42:a6:fb:f7:a3:f1:eb:e5: 05:dc:0c:7b:cc:0c:8d:02:6f:38:3c:d2:af:cc:8d:06:a1:e0: 80:97:0f:37:21:ae:f8:0c:0a:90:ea:7c:8d:51:55:28:9b:5b: ec:fe:69:88 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 N0Q1QjExMC8GA1UEBRMoMTBBQzYzMDY2RTlBQkM0MjJBQzVGNDVBMjI3MTBENTAy RUJFNDJDODAeFw0yNTA4MDkwODQwNTlaFw0yNTA4MTYwODQwNTlaMBgxFjAUBgNV BAMTDTY4OTcwOTliLWViMzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyvKpfBSiPF0e8lr/3rHT6ctpBh77W5R/D8OTQ4TCRlwz7Klo0K7eEgvZ+Fc05 ctk/lNMIUSopIZXpKhS/WFsFuAozV39Bzk/EEqW1q9DXiUZx6w6HU8l+wLPKwnYH x5a5OPmtDeU44kxxLQKMHc8hhpv5vms2j4ryV7mGDSvY3/OHalz5nV8eS+lpigFm 1feFFeVzs/IQ/tHw8Lyt9AAlEci9R+FoMev/hTVvMZ+DvgwsdDV+BSBBfLZwAJbF fjPyDSB0tAgVxbeF924r4Wds5FLAVox1ZW91AZWaJ5l1LzXcZS9iPs+CpYvhZp5H gkQGHqnKu2szuILcOI9JLoShAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUas0MXXJ7 b8kOrejVFi07naXF/ogwHwYDVR0jBBgwFoAUEKxjBm6avEIqxfRaInENUC6+Qsgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg3RDVCLzc5ODMzODVBNjky RTExRjBCRDBGNjgxOUM0RjlBRTAyL0VLeGpCbTZhdkVJcXhmUmFJbkVOVUM2LVFz Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRUt4akJtNmF2RUlxeGZSYUluRU5VQzYtUXNnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg3 RDVCLzc5ODMzODVBNjkyRTExRjBCRDBGNjgxOUM0RjlBRTAyL0VLeGpCbTZhdkVJ cXhmUmFJbkVOVUM2LVFzZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEA/lhNgblozM3IaXDja2ep0JTr+wTkkxj77UI5x3Y8zdnerJRZAJadn wumD3f/H+NcTmRu7FnjADKC2vFN3G5yWTidyUOeb0/V7A5A06r6zUWqS9IWmFvcO YaXtA9tVQZ7A5Ml2AWsVfZHoYLl2VYjp9OAZlhU5BnYhkQkGxyytIhmAG3IDNEPr iRXsQjqxVN81lYy9GOgqkIkFTc6gAxZBb9/vWpZU3f0GzGWEpyrvjVXlxyyIHgrV zrWD66D53ddjLmFirE9DRn0/pwyUoWFCpvv3o/Hr5QXcDHvMDI0Cbzg80q/MjQah 4ICXDzchrvgMCpDqfI1RVSibW+z+aYg= -----END CERTIFICATE-----Generated at Mon Aug 11 07:37:23 2025 by rpki-client