$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB72F/2FB49B3E43D111EF8BE8D87BC4F9AE02/EkR4XUDF7FjfxKMoVA8bOT3qI3U.mft File: EkR4XUDF7FjfxKMoVA8bOT3qI3U.mft (raw, json) Hash identifier: TChJUB2NUO5xXTSG3Ym5IzPBBg2evgz9NvUQeKIfga8= Subject key identifier: 16:45:9F:E8:76:7D:1D:05:35:E1:59:42:88:59:60:A1:41:5C:AA:12 Authority key identifier: 12:44:78:5D:40:C5:EC:58:DF:C4:A3:28:54:0F:1B:39:3D:EA:23:75 Certificate issuer: /CN=A91AB72F/serialNumber=1244785D40C5EC58DFC4A328540F1B393DEA2375 Certificate serial: C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EkR4XUDF7FjfxKMoVA8bOT3qI3U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB72F/2FB49B3E43D111EF8BE8D87BC4F9AE02/EkR4XUDF7FjfxKMoVA8bOT3qI3U.mft Manifest number: C7 Signing time: Sun 03 Aug 2025 06:07:07 +0000 Manifest this update: Sun 03 Aug 2025 06:07:07 +0000 Manifest next update: Sun 10 Aug 2025 06:07:07 +0000 Files and hashes: 1: EkR4XUDF7FjfxKMoVA8bOT3qI3U.crl (hash: ZCysVcCtzNSZHI7CHogU1Vwwmlff1SYPHi/U0qm1PQ8=) 2: 79F48DAAED0711EFA7332931C4F9AE02.roa (hash: GLbMFy1JbyAVM7u4jQAEv8xQTj/rbFbdkkf2ZQWfsOQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB72F/2FB49B3E43D111EF8BE8D87BC4F9AE02/EkR4XUDF7FjfxKMoVA8bOT3qI3U.crl rsync://rpki.apnic.net/member_repository/A91AB72F/2FB49B3E43D111EF8BE8D87BC4F9AE02/EkR4XUDF7FjfxKMoVA8bOT3qI3U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EkR4XUDF7FjfxKMoVA8bOT3qI3U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 06:07:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 200 (0xc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB72F, serialNumber=1244785D40C5EC58DFC4A328540F1B393DEA2375 Validity Not Before: Aug 3 06:07:07 2025 GMT Not After : Aug 10 06:07:07 2025 GMT Subject: CN=688efc8b-12bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:5d:28:a5:40:4c:95:51:32:79:0a:52:6b:30: 3c:23:c0:98:be:31:fe:18:36:41:9f:7d:96:6b:aa: a9:53:54:41:d4:d2:b0:37:df:c7:78:ec:0e:9f:a9: dc:07:51:5c:86:70:d6:38:58:34:45:4b:54:16:09: 12:df:7d:23:71:5a:96:4a:9d:2f:e1:bd:75:f4:fc: 03:fe:44:2e:02:95:6d:48:b4:f8:65:7f:47:22:48: e7:4e:99:8a:18:1a:92:a0:67:99:18:7e:b2:99:1b: 3a:8f:85:ab:1f:9b:cb:78:23:f0:8a:a4:11:54:57: e8:bf:a6:b8:ef:54:e8:0f:8d:79:9f:d9:7d:d4:33: c8:83:f6:ef:47:20:b7:12:37:83:af:24:15:c3:7c: 44:2b:01:8a:68:b1:be:15:36:e8:a2:48:54:b7:0a: 86:8b:86:64:5d:12:93:51:aa:f6:3d:95:40:16:ef: cc:db:c2:2a:df:da:4c:8c:48:9a:51:5c:ca:e3:28: 6f:22:fa:95:25:53:e0:78:55:a0:e7:8f:63:88:86: be:15:e9:7b:f9:ab:09:ad:7d:87:62:8a:f7:86:5d: 4f:5a:a2:ca:86:e9:49:d7:2a:97:87:86:b6:83:81: e7:5e:46:53:de:00:d2:7c:8f:6d:52:a4:b6:1b:8a: 96:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:45:9F:E8:76:7D:1D:05:35:E1:59:42:88:59:60:A1:41:5C:AA:12 X509v3 Authority Key Identifier: keyid:12:44:78:5D:40:C5:EC:58:DF:C4:A3:28:54:0F:1B:39:3D:EA:23:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB72F/2FB49B3E43D111EF8BE8D87BC4F9AE02/EkR4XUDF7FjfxKMoVA8bOT3qI3U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EkR4XUDF7FjfxKMoVA8bOT3qI3U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB72F/2FB49B3E43D111EF8BE8D87BC4F9AE02/EkR4XUDF7FjfxKMoVA8bOT3qI3U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:33:58:3f:ec:0b:a3:b9:7b:b4:c2:8e:17:cc:8f:29:8e:46: 83:74:6d:4c:16:17:f3:66:b1:ff:29:af:d3:66:9a:77:c9:21: f7:a9:02:6e:a8:d7:18:44:e6:71:96:0a:cb:bb:3c:c9:7d:d3: 3d:e9:d5:6f:15:52:41:05:c2:66:b6:a3:bc:48:57:33:3a:76: e9:7b:a9:b9:22:60:a5:6d:79:08:85:20:3b:cd:b4:d5:83:55: 1d:a4:e8:a9:62:07:f3:df:ae:da:38:c9:9f:9c:2c:e9:b0:52: 55:9a:81:19:9b:aa:88:6b:88:06:a0:1e:3c:f4:c1:ea:b6:6b: 10:10:3d:6a:68:ff:55:c9:9d:13:29:46:73:89:7e:30:ed:7d: 91:31:20:b0:d5:96:1b:50:35:23:9a:d1:af:3c:fe:46:a1:68: ed:3d:5b:30:72:73:54:55:70:e8:c5:b6:af:dc:a0:f1:15:7e: 1b:3a:7b:f2:99:f2:d7:a7:c9:7c:32:16:76:c3:c6:a1:1b:0e: 3b:ad:29:68:9f:c1:16:1a:11:cb:1d:ed:63:8b:1a:9f:96:1f: 8c:2f:9e:6b:f2:e8:3c:84:bb:52:cc:a1:f8:bd:5a:33:7b:8c: bd:ad:b3:da:11:d1:2b:c7:99:aa:eb:2f:53:07:cf:81:63:e4: 4b:59:77:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI3MkYxMTAvBgNVBAUTKDEyNDQ3ODVENDBDNUVDNThERkM0QTMyODU0MEYxQjM5 M0RFQTIzNzUwHhcNMjUwODAzMDYwNzA3WhcNMjUwODEwMDYwNzA3WjAYMRYwFAYD VQQDEw02ODhlZmM4Yi0xMmJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsl0opUBMlVEyeQpSazA8I8CYvjH+GDZBn32Wa6qpU1RB1NKwN9/HeOwOn6nc B1FchnDWOFg0RUtUFgkS330jcVqWSp0v4b119PwD/kQuApVtSLT4ZX9HIkjnTpmK GBqSoGeZGH6ymRs6j4WrH5vLeCPwiqQRVFfov6a471ToD415n9l91DPIg/bvRyC3 EjeDryQVw3xEKwGKaLG+FTbookhUtwqGi4ZkXRKTUar2PZVAFu/M28Iq39pMjEia UVzK4yhvIvqVJVPgeFWg549jiIa+Fel7+asJrX2HYor3hl1PWqLKhulJ1yqXh4a2 g4HnXkZT3gDSfI9tUqS2G4qWQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBZFn+h2 fR0FNeFZQohZYKFBXKoSMB8GA1UdIwQYMBaAFBJEeF1AxexY38SjKFQPGzk96iN1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjcyRi8yRkI0OUIzRTQz RDExMUVGOEJFOEQ4N0JDNEY5QUUwMi9Fa1I0WFVERjdGamZ4S01vVkE4Yk9UM3FJ M1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VrUjRYVURGN0ZqZnhLTW9WQThiT1QzcUkzVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjcyRi8yRkI0OUIzRTQzRDExMUVGOEJFOEQ4N0JDNEY5QUUwMi9Fa1I0WFVERjdG amZ4S01vVkE4Yk9UM3FJM1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAM1g/7AujuXu0wo4XzI8pjkaDdG1MFhfzZrH/Ka/TZpp3ySH3qQJu qNcYROZxlgrLuzzJfdM96dVvFVJBBcJmtqO8SFczOnbpe6m5ImClbXkIhSA7zbTV g1UdpOipYgfz367aOMmfnCzpsFJVmoEZm6qIa4gGoB489MHqtmsQED1qaP9VyZ0T KUZziX4w7X2RMSCw1ZYbUDUjmtGvPP5GoWjtPVswcnNUVXDoxbav3KDxFX4bOnvy mfLXp8l8MhZ2w8ahGw47rSlon8EWGhHLHe1jixqflh+ML55r8ug8hLtSzKH4vVoz e4y9rbPaEdErx5mq6y9TB8+BY+RLWXcw -----END CERTIFICATE-----Generated at Mon Aug 4 11:24:57 2025 by rpki-client