$ rpki-client -vvf rpki.apnic.net/member_repository/A91A030C/A7036700F47611EFBE466D7FC4F9AE02/EDki63fZQHF8gZ4oyWZGKUgLvOU.mft File: EDki63fZQHF8gZ4oyWZGKUgLvOU.mft (raw, json) Hash identifier: irW3f/3ocENInn1ysFjVpwZxD0ytlWLdW8a//6tUavw= Subject key identifier: A8:53:39:89:CB:E6:FF:FC:9A:00:2B:D6:49:EB:C4:5E:90:33:9E:AA Authority key identifier: 10:39:22:EB:77:D9:40:71:7C:81:9E:28:C9:66:46:29:48:0B:BC:E5 Certificate issuer: /CN=A91A030C/serialNumber=103922EB77D940717C819E28C9664629480BBCE5 Certificate serial: 59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EDki63fZQHF8gZ4oyWZGKUgLvOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A030C/A7036700F47611EFBE466D7FC4F9AE02/EDki63fZQHF8gZ4oyWZGKUgLvOU.mft Manifest number: 56 Signing time: Tue 05 Aug 2025 07:50:39 +0000 Manifest this update: Tue 05 Aug 2025 07:50:39 +0000 Manifest next update: Tue 12 Aug 2025 07:50:39 +0000 Files and hashes: 1: EDki63fZQHF8gZ4oyWZGKUgLvOU.crl (hash: EyFsnJMCW4jJzUCycRqQCar/dbT/tmbl5KznfrVLV5E=) 2: 17D98518FD6911EFA889E84DC4F9AE02.roa (hash: TAYiLVNUfBDudM++NA0KlcXDtTA+39+D4En0/M5r2I8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A030C/A7036700F47611EFBE466D7FC4F9AE02/EDki63fZQHF8gZ4oyWZGKUgLvOU.crl rsync://rpki.apnic.net/member_repository/A91A030C/A7036700F47611EFBE466D7FC4F9AE02/EDki63fZQHF8gZ4oyWZGKUgLvOU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EDki63fZQHF8gZ4oyWZGKUgLvOU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 07:50:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 89 (0x59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A030C, serialNumber=103922EB77D940717C819E28C9664629480BBCE5 Validity Not Before: Aug 5 07:50:39 2025 GMT Not After : Aug 12 07:50:39 2025 GMT Subject: CN=6891b7cf-3fab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:c0:e7:b6:66:4a:0c:8f:67:ff:b7:e5:22:36: f3:cd:e2:38:ad:69:2b:39:fd:89:37:d5:3b:59:0b: 3f:0d:dd:43:2a:06:22:5d:c1:61:ed:f0:84:da:20: 68:26:1b:79:92:6e:98:77:e0:46:42:8b:b5:73:98: 93:b8:03:b1:03:dc:20:bf:c9:b7:72:84:83:4a:af: 9f:af:49:93:c8:0a:f2:8b:2e:f0:a2:87:c8:3b:8a: dc:49:62:7c:ff:4a:7b:0d:ba:89:51:0c:ae:cb:f1: 00:a8:db:fb:c9:d3:c7:48:10:4c:c2:30:5b:e1:fb: cc:6f:60:fe:2e:ea:8a:90:0c:58:9f:a3:42:bd:19: eb:5b:d5:fc:50:37:71:b8:14:fc:c8:68:3e:5b:15: 35:ad:88:57:8f:9b:ce:c3:58:81:34:dc:ff:8c:0a: e3:07:b3:87:82:a7:31:49:72:2b:0a:d9:34:dd:f5: 27:16:ac:bc:7d:44:6a:d7:fa:bd:1c:b7:91:55:cd: ea:96:12:d3:9a:73:5f:15:8c:7a:34:22:b0:4b:9f: b0:89:93:a8:cc:24:4b:47:29:b1:cf:6e:70:99:28: 7a:52:c0:48:e7:2e:d8:32:d7:b7:b9:df:ca:34:d2: 40:ae:e8:38:be:62:d0:db:ff:f9:9e:7e:c3:ee:4f: 96:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:53:39:89:CB:E6:FF:FC:9A:00:2B:D6:49:EB:C4:5E:90:33:9E:AA X509v3 Authority Key Identifier: keyid:10:39:22:EB:77:D9:40:71:7C:81:9E:28:C9:66:46:29:48:0B:BC:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A030C/A7036700F47611EFBE466D7FC4F9AE02/EDki63fZQHF8gZ4oyWZGKUgLvOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EDki63fZQHF8gZ4oyWZGKUgLvOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A030C/A7036700F47611EFBE466D7FC4F9AE02/EDki63fZQHF8gZ4oyWZGKUgLvOU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:87:83:4e:d1:78:57:2f:d1:e4:47:6c:2c:a5:f4:12:eb:a8: b9:bb:ef:7f:36:a5:a5:96:b7:10:09:af:43:f6:30:d8:08:af: 22:d6:7b:d9:31:ff:ca:6c:50:a8:40:57:5b:a9:db:80:78:00: e4:3e:83:b6:37:58:b5:7b:96:db:08:0a:da:bf:69:59:94:06: 3b:a9:3d:4f:d2:cf:07:79:f6:34:73:4c:76:8a:fe:bb:a0:67: b6:3c:80:c6:dc:10:e6:e4:ba:d2:6d:09:7f:3f:87:24:09:14: 02:2e:bd:73:8a:d5:a7:c8:ca:4d:24:df:dc:a7:7e:54:13:b2: b9:82:a2:77:34:7f:a3:d1:19:f8:43:16:ba:19:46:fd:1e:bb: 9a:3e:d9:16:d7:f6:06:d6:9c:2d:4a:9e:6c:19:a9:59:63:7a: 2a:38:95:d0:f4:1d:8c:7a:e5:e7:f0:60:c7:f9:75:9f:81:2f: 3d:ff:3b:3a:87:46:a6:e5:cd:56:12:25:9b:a3:69:e0:3e:b8: 5b:13:2a:35:ce:29:06:fa:10:d6:7a:c7:91:84:27:62:0f:9a: f7:6d:33:51:5b:b2:c6:2c:f7:a8:4c:54:06:b8:c2:d2:10:c2: 8a:5b:bc:af:b8:e7:9f:e1:fe:f7:1e:41:e0:a3:3a:7b:8e:a9: 44:71:ca:8c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MDMwQzExMC8GA1UEBRMoMTAzOTIyRUI3N0Q5NDA3MTdDODE5RTI4Qzk2NjQ2Mjk0 ODBCQkNFNTAeFw0yNTA4MDUwNzUwMzlaFw0yNTA4MTIwNzUwMzlaMBgxFjAUBgNV BAMTDTY4OTFiN2NmLTNmYWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+wOe2ZkoMj2f/t+UiNvPN4jitaSs5/Yk31TtZCz8N3UMqBiJdwWHt8ITaIGgm G3mSbph34EZCi7VzmJO4A7ED3CC/ybdyhINKr5+vSZPICvKLLvCih8g7itxJYnz/ SnsNuolRDK7L8QCo2/vJ08dIEEzCMFvh+8xvYP4u6oqQDFifo0K9Getb1fxQN3G4 FPzIaD5bFTWtiFePm87DWIE03P+MCuMHs4eCpzFJcisK2TTd9ScWrLx9RGrX+r0c t5FVzeqWEtOac18VjHo0IrBLn7CJk6jMJEtHKbHPbnCZKHpSwEjnLtgy17e538o0 0kCu6Di+YtDb//mefsPuT5ZJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUqFM5icvm //yaACvWSevEXpAznqowHwYDVR0jBBgwFoAUEDki63fZQHF8gZ4oyWZGKUgLvOUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEwMzBDL0E3MDM2NzAwRjQ3 NjExRUZCRTQ2NkQ3RkM0RjlBRTAyL0VEa2k2M2ZaUUhGOGdaNG95V1pHS1VnTHZP VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRURraTYzZlpRSEY4Z1o0b3lXWkdLVWdMdk9VLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEw MzBDL0E3MDM2NzAwRjQ3NjExRUZCRTQ2NkQ3RkM0RjlBRTAyL0VEa2k2M2ZaUUhG OGdaNG95V1pHS1VnTHZPVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAKHg07ReFcv0eRHbCyl9BLrqLm77382paWWtxAJr0P2MNgIryLWe9kx /8psUKhAV1up24B4AOQ+g7Y3WLV7ltsICtq/aVmUBjupPU/Szwd59jRzTHaK/rug Z7Y8gMbcEObkutJtCX8/hyQJFAIuvXOK1afIyk0k39ynflQTsrmConc0f6PRGfhD FroZRv0eu5o+2RbX9gbWnC1KnmwZqVljeio4ldD0HYx65efwYMf5dZ+BLz3/OzqH RqblzVYSJZujaeA+uFsTKjXOKQb6ENZ6x5GEJ2IPmvdtM1FbssYs96hMVAa4wtIQ wopbvK+455/h/vceQeCjOnuOqURxyow= -----END CERTIFICATE-----Generated at Wed Aug 6 14:07:09 2025 by rpki-client