$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE814/8C57F15A4A3011EFA8307719C4F9AE02/EY2b3jF1T5hUy1VHQKKZ8TfiQeI.mft File: EY2b3jF1T5hUy1VHQKKZ8TfiQeI.mft (raw, json) Hash identifier: QuxFrLVGOZlnNGtRTY68vFNIn3PKKwB88mUewONg4Z0= Subject key identifier: 15:DE:72:35:4F:33:14:91:6E:AE:D1:59:3B:03:A3:33:47:45:B9:B1 Authority key identifier: 11:8D:9B:DE:31:75:4F:98:54:CB:55:47:40:A2:99:F1:37:E2:41:E2 Certificate issuer: /CN=A91CE814/serialNumber=118D9BDE31754F9854CB554740A299F137E241E2 Certificate serial: C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EY2b3jF1T5hUy1VHQKKZ8TfiQeI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE814/8C57F15A4A3011EFA8307719C4F9AE02/EY2b3jF1T5hUy1VHQKKZ8TfiQeI.mft Manifest number: C5 Signing time: Mon 11 Aug 2025 06:00:03 +0000 Manifest this update: Mon 11 Aug 2025 06:00:03 +0000 Manifest next update: Mon 18 Aug 2025 06:00:03 +0000 Files and hashes: 1: EY2b3jF1T5hUy1VHQKKZ8TfiQeI.crl (hash: yChovaPEF7zS2mx4ZAzCOOM/jMvQsYB5QAMrD+jdp2g=) 2: CA8007604A3011EFB101441AC4F9AE02.roa (hash: tG+xEb4Bj22fmRv5Ap5El7N6H/BamXJAvudixhV4S5A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE814/8C57F15A4A3011EFA8307719C4F9AE02/EY2b3jF1T5hUy1VHQKKZ8TfiQeI.crl rsync://rpki.apnic.net/member_repository/A91CE814/8C57F15A4A3011EFA8307719C4F9AE02/EY2b3jF1T5hUy1VHQKKZ8TfiQeI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EY2b3jF1T5hUy1VHQKKZ8TfiQeI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 06:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 199 (0xc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE814, serialNumber=118D9BDE31754F9854CB554740A299F137E241E2 Validity Not Before: Aug 11 06:00:03 2025 GMT Not After : Aug 18 06:00:03 2025 GMT Subject: CN=689986e3-c2b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:c2:6e:39:3a:47:47:62:69:82:37:14:56:dd: ef:de:6a:17:4b:90:22:be:91:6b:3d:45:83:07:3f: 9c:d9:03:49:46:cd:ed:58:ad:47:97:94:80:3a:cb: 48:16:31:ee:25:aa:30:ad:f2:2d:fc:b1:c3:a7:c7: 1b:39:d7:be:11:ce:c9:3e:cf:a5:58:8e:d3:72:a5: 1c:0b:55:1b:34:e8:87:19:92:54:ef:92:87:5b:44: 99:b3:e9:d2:43:0a:82:ba:cf:25:78:53:9a:22:2a: 1b:99:fc:19:91:70:ce:be:3a:f7:bd:c2:a9:f4:78: 59:30:60:89:33:8c:62:67:a8:29:d9:6b:26:14:fc: b6:3d:7d:a5:27:90:6d:2a:c8:46:d2:ac:c2:46:fd: 1e:a2:20:b1:6f:a6:0b:f5:60:ce:45:e0:dd:91:33: cd:49:29:04:d9:f2:c1:15:27:2d:b1:81:a7:ef:f5: 3d:12:5e:4f:fc:14:5d:fe:74:b0:9c:cf:e3:38:4b: 1e:5d:48:25:80:a4:35:4a:13:74:d4:84:e2:c0:e9: b4:4d:6e:82:ad:73:af:94:01:26:4c:99:b3:b0:8d: 6e:d1:d4:37:2f:5f:88:2f:bd:73:74:90:87:34:c8: 17:7f:0a:38:ff:6d:11:ce:fd:d2:38:29:26:7c:15: ab:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:DE:72:35:4F:33:14:91:6E:AE:D1:59:3B:03:A3:33:47:45:B9:B1 X509v3 Authority Key Identifier: keyid:11:8D:9B:DE:31:75:4F:98:54:CB:55:47:40:A2:99:F1:37:E2:41:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE814/8C57F15A4A3011EFA8307719C4F9AE02/EY2b3jF1T5hUy1VHQKKZ8TfiQeI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EY2b3jF1T5hUy1VHQKKZ8TfiQeI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE814/8C57F15A4A3011EFA8307719C4F9AE02/EY2b3jF1T5hUy1VHQKKZ8TfiQeI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:3b:69:38:45:1f:87:3d:61:ea:20:f0:e1:4b:18:16:6a:f0: e6:07:77:75:f9:9e:7f:5b:e7:fc:44:e5:39:35:01:0e:6c:1a: 7c:8f:25:40:f5:e0:25:8b:22:09:10:40:6f:e2:d3:55:05:62: 59:e9:8c:90:2b:27:e8:7c:62:17:d3:68:16:0b:99:f3:2b:e6: 12:59:c1:66:7f:ad:9a:f1:3d:4a:e7:a9:ec:1f:d8:a3:35:0b: 50:ba:3f:92:21:8e:6e:09:81:29:5c:00:a1:6a:44:66:b4:51: 25:c3:5b:81:81:41:a2:d6:1c:f7:47:ed:5b:c8:a3:bc:9f:26: 59:7c:b1:3f:37:56:33:2b:bd:38:6d:75:48:a4:5a:af:de:54: 12:7a:41:36:7f:e7:3c:51:22:29:59:64:fa:2a:ea:c0:cf:60: 0b:16:c3:5e:db:7c:04:53:31:a4:d8:4c:3a:e0:b2:af:14:e6: b3:c2:38:4c:e6:d7:46:d3:93:43:ae:33:5c:e7:21:2c:b0:e7: a4:1e:34:fa:4c:9c:6b:e4:16:19:69:88:7d:2a:7e:37:74:52: e6:5a:31:9e:d5:69:79:1f:80:0d:0b:34:3a:9e:b7:5f:3a:19: d6:91:be:e0:d3:80:87:93:0a:fd:be:7a:b1:66:e6:80:23:ba: 12:56:68:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U4MTQxMTAvBgNVBAUTKDExOEQ5QkRFMzE3NTRGOTg1NENCNTU0NzQwQTI5OUYx MzdFMjQxRTIwHhcNMjUwODExMDYwMDAzWhcNMjUwODE4MDYwMDAzWjAYMRYwFAYD VQQDEw02ODk5ODZlMy1jMmI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmcJuOTpHR2JpgjcUVt3v3moXS5AivpFrPUWDBz+c2QNJRs3tWK1Hl5SAOstI FjHuJaowrfIt/LHDp8cbOde+Ec7JPs+lWI7TcqUcC1UbNOiHGZJU75KHW0SZs+nS QwqCus8leFOaIiobmfwZkXDOvjr3vcKp9HhZMGCJM4xiZ6gp2WsmFPy2PX2lJ5Bt KshG0qzCRv0eoiCxb6YL9WDOReDdkTPNSSkE2fLBFSctsYGn7/U9El5P/BRd/nSw nM/jOEseXUglgKQ1ShN01ITiwOm0TW6CrXOvlAEmTJmzsI1u0dQ3L1+IL71zdJCH NMgXfwo4/20Rzv3SOCkmfBWrJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBXecjVP MxSRbq7RWTsDozNHRbmxMB8GA1UdIwQYMBaAFBGNm94xdU+YVMtVR0CimfE34kHi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTgxNC84QzU3RjE1QTRB MzAxMUVGQTgzMDc3MTlDNEY5QUUwMi9FWTJiM2pGMVQ1aFV5MVZIUUtLWjhUZmlR ZUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VZMmIzakYxVDVoVXkxVkhRS0taOFRmaVFlSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTgxNC84QzU3RjE1QTRBMzAxMUVGQTgzMDc3MTlDNEY5QUUwMi9FWTJiM2pGMVQ1 aFV5MVZIUUtLWjhUZmlRZUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMO2k4RR+HPWHqIPDhSxgWavDmB3d1+Z5/W+f8ROU5NQEObBp8jyVA 9eAliyIJEEBv4tNVBWJZ6YyQKyfofGIX02gWC5nzK+YSWcFmf62a8T1K56nsH9ij NQtQuj+SIY5uCYEpXAChakRmtFElw1uBgUGi1hz3R+1byKO8nyZZfLE/N1YzK704 bXVIpFqv3lQSekE2f+c8USIpWWT6KurAz2ALFsNe23wEUzGk2Ew64LKvFOazwjhM 5tdG05NDrjNc5yEssOekHjT6TJxr5BYZaYh9Kn43dFLmWjGe1Wl5H4ANCzQ6nrdf OhnWkb7g04CHkwr9vnqxZuaAI7oSVmj4 -----END CERTIFICATE-----Generated at Wed Aug 13 05:29:53 2025 by rpki-client