$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBBAF/191A638636DD11F096862166C4F9AE02/ep7epfyIL4Z-ujeIm807O7SsYjE.mft File: ep7epfyIL4Z-ujeIm807O7SsYjE.mft (raw, json) Hash identifier: oTHFyqA+lol7O76PRhjObR8J37C0lifbBolu+kiszlg= Subject key identifier: 42:57:28:8B:81:EB:2F:66:A7:16:9A:32:F9:53:39:89:10:A3:3F:EE Authority key identifier: 7A:9E:DE:A5:FC:88:2F:86:7E:BA:37:88:9B:CD:3B:3B:B4:AC:62:31 Certificate issuer: /CN=A91EBBAF/serialNumber=7A9EDEA5FC882F867EBA37889BCD3B3BB4AC6231 Certificate serial: 28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ep7epfyIL4Z-ujeIm807O7SsYjE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBBAF/191A638636DD11F096862166C4F9AE02/ep7epfyIL4Z-ujeIm807O7SsYjE.mft Manifest number: 28 Signing time: Thu 07 Aug 2025 08:24:40 +0000 Manifest this update: Thu 07 Aug 2025 08:24:39 +0000 Manifest next update: Thu 14 Aug 2025 08:24:39 +0000 Files and hashes: 1: ep7epfyIL4Z-ujeIm807O7SsYjE.crl (hash: EscUP46EfvmM8Kt6UHaudoKunLJWJ8+cUMV85BVhQYg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBBAF/191A638636DD11F096862166C4F9AE02/ep7epfyIL4Z-ujeIm807O7SsYjE.crl rsync://rpki.apnic.net/member_repository/A91EBBAF/191A638636DD11F096862166C4F9AE02/ep7epfyIL4Z-ujeIm807O7SsYjE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ep7epfyIL4Z-ujeIm807O7SsYjE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40 (0x28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBBAF, serialNumber=7A9EDEA5FC882F867EBA37889BCD3B3BB4AC6231 Validity Not Before: Aug 7 08:24:39 2025 GMT Not After : Aug 14 08:24:39 2025 GMT Subject: CN=689462c8-dda8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:e5:28:d6:a9:de:74:01:b8:da:00:b8:8a:d0: 88:84:35:bd:8d:9b:dd:e3:4a:2f:2f:22:3c:35:9a: 1d:dd:6d:f4:04:c3:f8:9e:8e:d8:91:63:93:0e:ae: 6b:f4:97:fb:cd:81:ec:4d:1a:17:0e:0a:58:47:63: f2:10:01:26:26:7a:6d:70:f2:97:2d:fd:fc:39:ec: 39:ae:0b:91:8e:ca:ce:b2:89:df:e3:44:3c:76:21: dd:10:28:04:e5:a0:5c:01:89:08:a6:42:c9:9b:21: de:09:2a:28:78:4e:24:28:ac:1d:0e:92:5e:87:0e: 19:28:34:48:89:64:fb:0a:1f:e1:89:42:6f:1e:96: e0:5c:c0:56:f4:81:bd:c8:ff:11:52:8b:3f:c3:3d: 03:e0:54:86:49:82:28:cd:8a:48:ec:74:29:83:51: 31:5d:41:8c:dd:66:51:4d:ab:fa:fe:d1:90:a6:f7: f6:14:2f:e7:56:09:d0:e1:44:ac:c2:6c:fb:9b:87: 28:33:2a:e5:c7:79:dd:ca:83:a4:a6:13:a9:94:eb: 76:95:e3:f3:89:79:d8:fa:2e:22:ee:e3:1a:b0:60: 3e:fb:03:df:ef:4d:bd:01:4b:6e:06:7e:6f:36:e0: 16:eb:82:e6:1e:b0:4c:7a:16:bd:ab:6e:b2:f9:52: d7:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:57:28:8B:81:EB:2F:66:A7:16:9A:32:F9:53:39:89:10:A3:3F:EE X509v3 Authority Key Identifier: keyid:7A:9E:DE:A5:FC:88:2F:86:7E:BA:37:88:9B:CD:3B:3B:B4:AC:62:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBBAF/191A638636DD11F096862166C4F9AE02/ep7epfyIL4Z-ujeIm807O7SsYjE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ep7epfyIL4Z-ujeIm807O7SsYjE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBBAF/191A638636DD11F096862166C4F9AE02/ep7epfyIL4Z-ujeIm807O7SsYjE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:bf:dd:8e:b3:db:4b:a1:77:7b:bb:8c:c6:4a:a5:a0:83:5d: a9:e9:6a:72:f8:60:dc:a0:68:10:3a:41:a8:0f:ea:67:10:b0: 17:94:f7:c2:78:28:79:0d:c6:28:9f:85:fe:98:af:6c:ee:0a: ca:c3:97:4e:4a:20:43:93:18:d7:4c:2c:9b:a4:ca:a6:54:f7: 70:43:18:f5:3a:0c:2b:5c:22:9d:c0:65:35:06:90:1b:ae:a2: 1f:5d:5c:8a:e5:01:89:f4:c9:90:ab:71:25:48:ab:12:c7:55: c0:94:00:9e:08:a5:a2:c5:b3:cc:96:a0:b0:8b:79:09:4b:32: 14:8e:d6:50:26:6e:6a:2d:b8:9c:a9:c8:b3:49:30:a5:3e:7a: 29:79:8a:a1:ac:9a:1b:bc:e3:0f:f1:d6:ce:12:06:7f:df:c0: 31:09:3d:16:ea:a1:75:fb:f5:71:a7:58:62:79:79:73:67:11: 70:eb:48:81:6a:66:b3:37:51:7e:6f:dd:e7:1b:5a:cc:e1:82: 43:95:98:f1:12:a3:39:91:4e:13:30:9e:1f:07:fe:5c:b3:3c: 92:00:47:71:e2:ee:ba:cd:77:d9:2b:9d:85:f6:e5:b6:17:47: 36:2a:29:79:3e:9a:ea:1e:71:58:16:f6:43:18:91:03:64:03: fc:f1:32:dc -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QkJBRjExMC8GA1UEBRMoN0E5RURFQTVGQzg4MkY4NjdFQkEzNzg4OUJDRDNCM0JC NEFDNjIzMTAeFw0yNTA4MDcwODI0MzlaFw0yNTA4MTQwODI0MzlaMBgxFjAUBgNV BAMTDTY4OTQ2MmM4LWRkYTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCx5SjWqd50AbjaALiK0IiENb2Nm93jSi8vIjw1mh3dbfQEw/iejtiRY5MOrmv0 l/vNgexNGhcOClhHY/IQASYmem1w8pct/fw57DmuC5GOys6yid/jRDx2Id0QKATl oFwBiQimQsmbId4JKih4TiQorB0Okl6HDhkoNEiJZPsKH+GJQm8eluBcwFb0gb3I /xFSiz/DPQPgVIZJgijNikjsdCmDUTFdQYzdZlFNq/r+0ZCm9/YUL+dWCdDhRKzC bPubhygzKuXHed3Kg6SmE6mU63aV4/OJedj6LiLu4xqwYD77A9/vTb0BS24Gfm82 4BbrguYesEx6Fr2rbrL5UtfvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUQlcoi4Hr L2anFpoy+VM5iRCjP+4wHwYDVR0jBBgwFoAUep7epfyIL4Z+ujeIm807O7SsYjEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVCQkFGLzE5MUE2Mzg2MzZE RDExRjA5Njg2MjE2NkM0RjlBRTAyL2VwN2VwZnlJTDRaLXVqZUltODA3TzdTc1lq RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZXA3ZXBmeUlMNFotdWplSW04MDdPN1NzWWpFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVC QkFGLzE5MUE2Mzg2MzZERDExRjA5Njg2MjE2NkM0RjlBRTAyL2VwN2VwZnlJTDRa LXVqZUltODA3TzdTc1lqRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJm/3Y6z20uhd3u7jMZKpaCDXanpanL4YNygaBA6QagP6mcQsBeU98J4 KHkNxiifhf6Yr2zuCsrDl05KIEOTGNdMLJukyqZU93BDGPU6DCtcIp3AZTUGkBuu oh9dXIrlAYn0yZCrcSVIqxLHVcCUAJ4IpaLFs8yWoLCLeQlLMhSO1lAmbmotuJyp yLNJMKU+eil5iqGsmhu84w/x1s4SBn/fwDEJPRbqoXX79XGnWGJ5eXNnEXDrSIFq ZrM3UX5v3ecbWszhgkOVmPESozmRThMwnh8H/lyzPJIAR3Hi7rrNd9krnYX25bYX RzYqKXk+muoecVgW9kMYkQNkA/zxMtw= -----END CERTIFICATE-----Generated at Fri Aug 8 19:23:26 2025 by rpki-client