$ rpki-client -vvf rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft File: eHDyQLxFFuOanCWVjPl7GUvnZWc.mft (raw, json) Hash identifier: MaDdZUIXR9t+NA+YbzevhOxSm1r9iWiRFqCD7sGWEJU= Subject key identifier: EC:5D:F6:3D:F2:2D:83:05:52:E0:90:8A:C9:D1:25:7D:79:80:25:D4 Authority key identifier: 78:70:F2:40:BC:45:16:E3:9A:9C:25:95:8C:F9:7B:19:4B:E7:65:67 Certificate issuer: /CN=A91A09BF/serialNumber=7870F240BC4516E39A9C25958CF97B194BE76567 Certificate serial: 0BC7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHDyQLxFFuOanCWVjPl7GUvnZWc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft Manifest number: 0BAA Signing time: Wed 06 Aug 2025 19:14:28 +0000 Manifest this update: Wed 06 Aug 2025 19:14:28 +0000 Manifest next update: Wed 13 Aug 2025 19:14:28 +0000 Files and hashes: 1: eHDyQLxFFuOanCWVjPl7GUvnZWc.crl (hash: UiHq8K8d6tTZkFI4GGvno/deLjxHp4GcaNeYy4wcA9c=) 2: CEFDECF850B011F0B9262D4FC4F9AE02.roa (hash: WtUGGPBORu2ELV1J85b8AQ+2CLGSrU7TTTxiEKhsYHc=) 3: EC4AB04AAA5511EABCEBDE19C4F9AE02.roa (hash: xCXQqgm7s0yqcl5rlXb69u+J291yS3/BUfkPMKe4WIs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.crl rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHDyQLxFFuOanCWVjPl7GUvnZWc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 19:14:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3015 (0xbc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A09BF, serialNumber=7870F240BC4516E39A9C25958CF97B194BE76567 Validity Not Before: Aug 6 19:14:28 2025 GMT Not After : Aug 13 19:14:28 2025 GMT Subject: CN=6893a994-189c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:ae:6d:95:50:14:af:6e:ea:80:27:95:eb:96: ae:cf:f3:bf:8c:16:c7:d0:e0:75:cc:bc:10:8f:66: 73:24:30:ed:c5:2f:9c:89:6a:65:a8:df:6c:d8:93: ae:27:c8:31:65:6a:4e:b9:20:b2:c5:58:37:a5:82: 32:33:da:ba:80:a3:2a:f7:0f:98:6b:cb:3a:e0:76: a2:45:f2:e6:ec:6d:56:83:ae:3b:90:2f:24:61:eb: 29:4d:9e:be:fe:a2:90:34:f3:e2:bb:c1:58:f6:62: 70:11:de:45:d3:68:d3:c6:c1:14:92:1b:26:ac:0f: 35:27:d3:a2:53:f2:eb:e4:09:d4:cb:6d:1d:e8:e0: 85:50:e1:f9:6b:dc:59:60:7f:5c:23:18:fc:de:6a: 2c:6c:3b:ea:9d:70:06:f7:54:17:d9:b4:08:a2:9e: 3c:e5:1f:13:ed:42:e4:ed:10:af:4e:9c:69:00:bb: 7a:47:da:50:c8:83:e6:74:1b:57:67:0d:ac:21:56: 70:6d:94:d6:2b:4e:8a:09:5c:cb:98:14:dc:40:59: c0:5a:6e:20:b2:80:d3:5f:7c:59:34:ec:77:68:68: 5c:6d:c7:0f:af:a4:2d:34:44:70:c3:a4:d5:9f:65: 2a:86:8a:69:00:fe:33:ac:98:ed:24:e5:c4:3c:69: 41:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:5D:F6:3D:F2:2D:83:05:52:E0:90:8A:C9:D1:25:7D:79:80:25:D4 X509v3 Authority Key Identifier: keyid:78:70:F2:40:BC:45:16:E3:9A:9C:25:95:8C:F9:7B:19:4B:E7:65:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHDyQLxFFuOanCWVjPl7GUvnZWc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:e1:cc:4d:bb:1b:d3:85:e1:23:41:47:07:f9:02:b7:49:17: 53:0d:33:1a:a5:45:33:11:32:15:ef:84:14:e5:93:6e:fa:1a: 31:ce:d2:80:aa:eb:af:01:94:be:83:77:4d:e9:d3:aa:fc:ba: e3:fe:b0:3b:69:8e:ac:8f:f2:f2:0e:cd:19:57:36:41:cf:0a: c7:3e:6b:7c:eb:31:5a:90:4a:50:7e:ea:37:3e:bb:68:2c:3a: 44:77:8d:03:38:51:b6:47:5f:21:0c:0d:a5:c8:cf:7f:5e:78: 19:f6:56:dc:42:a7:bf:1b:aa:ab:60:87:b6:f6:cd:a3:c2:e3: 67:9e:07:df:72:5d:3c:33:71:4d:9b:9e:a3:b6:20:dc:fd:95: ef:d9:63:64:18:c0:2a:64:e3:3c:4d:b7:5d:9d:c9:83:4c:b9: b7:ba:0e:6a:92:a9:0c:fe:a0:b8:14:7a:b7:47:07:00:b0:de: 40:7f:59:9e:d1:af:22:72:e3:21:18:b2:61:47:fd:74:d8:ea: c0:be:29:27:a9:77:97:d2:1a:8b:04:d6:67:74:24:b6:e9:9a: 89:fc:f3:91:d8:e7:57:0a:54:e1:c6:a5:4e:8a:5b:81:21:02: b7:65:ef:47:00:39:3d:c6:91:50:db:68:d5:7d:e8:0c:58:7f: a5:93:5e:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC8cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA5QkYxMTAvBgNVBAUTKDc4NzBGMjQwQkM0NTE2RTM5QTlDMjU5NThDRjk3QjE5 NEJFNzY1NjcwHhcNMjUwODA2MTkxNDI4WhcNMjUwODEzMTkxNDI4WjAYMRYwFAYD VQQDEw02ODkzYTk5NC0xODljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2q5tlVAUr27qgCeV65auz/O/jBbH0OB1zLwQj2ZzJDDtxS+ciWplqN9s2JOu J8gxZWpOuSCyxVg3pYIyM9q6gKMq9w+Ya8s64HaiRfLm7G1Wg647kC8kYespTZ6+ /qKQNPPiu8FY9mJwEd5F02jTxsEUkhsmrA81J9OiU/Lr5AnUy20d6OCFUOH5a9xZ YH9cIxj83mosbDvqnXAG91QX2bQIop485R8T7ULk7RCvTpxpALt6R9pQyIPmdBtX Zw2sIVZwbZTWK06KCVzLmBTcQFnAWm4gsoDTX3xZNOx3aGhcbccPr6QtNERww6TV n2UqhoppAP4zrJjtJOXEPGlB+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOxd9j3y LYMFUuCQisnRJX15gCXUMB8GA1UdIwQYMBaAFHhw8kC8RRbjmpwllYz5exlL52Vn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDlCRi9EMTNEQTFENDJE RkMxMUVBQkMxQjZCODJDNEY5QUUwMi9lSER5UUx4RkZ1T2FuQ1dWalBsN0dVdm5a V2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VIRHlRTHhGRnVPYW5DV1ZqUGw3R1V2blpXYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDlCRi9EMTNEQTFENDJERkMxMUVBQkMxQjZCODJDNEY5QUUwMi9lSER5UUx4RkZ1 T2FuQ1dWalBsN0dVdm5aV2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB14cxNuxvTheEjQUcH+QK3SRdTDTMapUUzETIV74QU5ZNu+hoxztKA quuvAZS+g3dN6dOq/Lrj/rA7aY6sj/LyDs0ZVzZBzwrHPmt86zFakEpQfuo3Prto LDpEd40DOFG2R18hDA2lyM9/XngZ9lbcQqe/G6qrYIe29s2jwuNnngffcl08M3FN m56jtiDc/ZXv2WNkGMAqZOM8TbddncmDTLm3ug5qkqkM/qC4FHq3RwcAsN5Af1me 0a8icuMhGLJhR/102OrAviknqXeX0hqLBNZndCS26ZqJ/POR2OdXClThxqVOiluB IQK3Ze9HADk9xpFQ22jVfegMWH+lk147 -----END CERTIFICATE-----Generated at Fri Aug 8 19:21:41 2025 by rpki-client