$ rpki-client -vvf rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft File: EhrxRNkD4_iJffD-0gcaFkd17U8.mft (raw, json) Hash identifier: orulylQQDpPtqReMX5vqhIurICBgsQRHGuhn5ZRW8LM= Subject key identifier: AC:BA:F3:AE:11:7D:B0:80:61:95:14:9D:6F:38:FC:D9:47:B3:C1:20 Authority key identifier: 12:1A:F1:44:D9:03:E3:F8:89:7D:F0:FE:D2:07:1A:16:47:75:ED:4F Certificate issuer: /CN=A91E554A/serialNumber=121AF144D903E3F8897DF0FED2071A164775ED4F Certificate serial: 9D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft Manifest number: 98 Signing time: Sun 03 Aug 2025 06:48:55 +0000 Manifest this update: Sun 03 Aug 2025 06:48:54 +0000 Manifest next update: Sun 10 Aug 2025 06:48:54 +0000 Files and hashes: 1: EhrxRNkD4_iJffD-0gcaFkd17U8.crl (hash: GcEtb3ogIsezaqM6vKwJ/32M+nJmfk52O181+R5uKec=) 2: 7C304160FECB11EFB755BB45C4F9AE02.roa (hash: 96JJ4xS4XL/KIJ4tbueQ63oeM+4CMNy+gkgjGzK0Myk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.crl rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 06:48:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 157 (0x9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E554A, serialNumber=121AF144D903E3F8897DF0FED2071A164775ED4F Validity Not Before: Aug 3 06:48:54 2025 GMT Not After : Aug 10 06:48:54 2025 GMT Subject: CN=688f0657-de3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:f4:59:0f:f0:9a:cd:69:d3:64:7e:c5:83:a8: 76:e5:48:07:c5:59:76:56:3a:fa:51:1b:42:aa:ca: 73:cf:cf:d6:1d:f2:4c:68:0c:58:0b:48:c7:53:15: 35:ce:14:c7:48:06:80:05:69:ab:a4:a7:8f:d6:d2: 18:53:94:4d:c9:64:46:50:60:bc:01:5b:f2:7a:6b: 68:57:9e:01:59:c9:6d:dd:f7:83:7c:d6:a4:75:7e: 35:22:0b:d0:f6:1a:ac:31:20:20:65:9d:e3:d9:98: cb:8b:b1:62:25:0a:cc:86:92:94:c0:e0:13:06:3a: 61:13:5b:d5:24:49:cd:03:49:33:a9:98:60:10:b1: ce:b0:5f:1c:e9:2b:79:ef:fd:9c:90:cd:2e:02:67: f1:86:b4:5d:3f:5a:0a:cd:99:43:a9:de:72:ed:aa: cb:d6:83:d9:f0:bd:f4:fc:28:04:5c:b2:70:9e:e0: 1b:5e:a4:de:0b:1f:e6:59:da:f2:ae:65:d5:11:b5: 50:fc:2a:e4:14:f1:4b:07:9c:40:64:8f:fa:8e:f5: 75:1f:61:4c:1d:a5:60:b4:4e:ae:8e:2b:30:68:14: 4c:bd:70:b4:fb:6a:b9:25:dc:a2:70:b1:d2:64:23: 48:fb:72:ea:1a:a4:e5:70:f6:39:fb:ae:23:aa:b4: 7e:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:BA:F3:AE:11:7D:B0:80:61:95:14:9D:6F:38:FC:D9:47:B3:C1:20 X509v3 Authority Key Identifier: keyid:12:1A:F1:44:D9:03:E3:F8:89:7D:F0:FE:D2:07:1A:16:47:75:ED:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:54:ef:04:09:29:ad:15:0f:d4:d3:02:17:fa:0a:96:82:fc: 73:57:d3:7c:0d:9e:27:7c:64:f9:fa:c4:7f:0e:b1:58:29:2c: 71:e7:1a:f1:6a:95:8a:3e:71:2b:87:52:ce:0a:6e:c8:13:72: 76:b3:9b:4a:bb:cb:e5:c9:1e:6a:de:28:25:18:11:b7:83:a3: 10:59:5e:15:c1:8f:87:42:e5:2a:32:7e:15:3c:95:f7:6b:52: de:33:78:ad:81:b6:8f:73:8a:46:45:e4:46:44:02:4b:84:37: 01:cd:c0:82:ea:7a:e5:90:c5:2c:e5:3c:b5:fe:d0:1f:7c:f3: ab:8d:d1:9a:c5:0d:a1:a9:f6:43:05:e0:b6:d2:0e:be:d1:3e: ec:e2:66:2b:a3:e3:aa:7d:5e:03:77:f0:32:2d:12:65:1a:90: 43:2e:f3:a1:df:4e:cb:7e:92:33:3d:9a:f2:4d:4a:42:87:9b: 9a:1f:53:c4:16:22:2b:37:79:84:63:b4:29:7e:60:97:0c:2a: 9e:62:cb:0c:73:48:b0:6e:89:4b:5e:37:8e:e8:a3:13:17:5c: 9b:3f:f3:37:47:1b:e2:30:3a:f5:69:ab:3c:1f:e1:24:d3:ae: 24:0b:df:9d:f2:fd:2c:55:b4:3f:96:2f:ac:26:c7:d1:47:b0: 67:08:20:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU1NEExMTAvBgNVBAUTKDEyMUFGMTQ0RDkwM0UzRjg4OTdERjBGRUQyMDcxQTE2 NDc3NUVENEYwHhcNMjUwODAzMDY0ODU0WhcNMjUwODEwMDY0ODU0WjAYMRYwFAYD VQQDEw02ODhmMDY1Ny1kZTNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6PRZD/CazWnTZH7Fg6h25UgHxVl2Vjr6URtCqspzz8/WHfJMaAxYC0jHUxU1 zhTHSAaABWmrpKeP1tIYU5RNyWRGUGC8AVvyemtoV54BWclt3feDfNakdX41IgvQ 9hqsMSAgZZ3j2ZjLi7FiJQrMhpKUwOATBjphE1vVJEnNA0kzqZhgELHOsF8c6St5 7/2ckM0uAmfxhrRdP1oKzZlDqd5y7arL1oPZ8L30/CgEXLJwnuAbXqTeCx/mWdry rmXVEbVQ/CrkFPFLB5xAZI/6jvV1H2FMHaVgtE6ujiswaBRMvXC0+2q5JdyicLHS ZCNI+3LqGqTlcPY5+64jqrR+0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKy6864R fbCAYZUUnW84/NlHs8EgMB8GA1UdIwQYMBaAFBIa8UTZA+P4iX3w/tIHGhZHde1P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTU0QS83OTVFNzNEMDkx RjcxMUVGQURFMTEyNjZDNEY5QUUwMi9FaHJ4Uk5rRDRfaUpmZkQtMGdjYUZrZDE3 VTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0VocnhSTmtENF9pSmZmRC0wZ2NhRmtkMTdVOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTU0QS83OTVFNzNEMDkxRjcxMUVGQURFMTEyNjZDNEY5QUUwMi9FaHJ4Uk5rRDRf aUpmZkQtMGdjYUZrZDE3VTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZVO8ECSmtFQ/U0wIX+gqWgvxzV9N8DZ4nfGT5+sR/DrFYKSxx5xrx apWKPnErh1LOCm7IE3J2s5tKu8vlyR5q3iglGBG3g6MQWV4VwY+HQuUqMn4VPJX3 a1LeM3itgbaPc4pGReRGRAJLhDcBzcCC6nrlkMUs5Ty1/tAffPOrjdGaxQ2hqfZD BeC20g6+0T7s4mYro+OqfV4Dd/AyLRJlGpBDLvOh307LfpIzPZryTUpCh5uaH1PE FiIrN3mEY7QpfmCXDCqeYssMc0iwbolLXjeO6KMTF1ybP/M3RxviMDr1aas8H+Ek 064kC9+d8v0sVbQ/li+sJsfRR7BnCCBf -----END CERTIFICATE-----Generated at Mon Aug 4 16:02:39 2025 by rpki-client