$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/ER6YG60wGDD3weWQzBqotIImDtg.mft File: ER6YG60wGDD3weWQzBqotIImDtg.mft (raw, json) Hash identifier: s12vc8MUVwepHKLhSdXDKeWp0faVylHsX1NJCTrSWZ0= Subject key identifier: F0:BE:07:CD:69:7F:12:F7:E0:A8:B2:39:9A:DE:58:6B:27:EE:B4:3D Authority key identifier: 11:1E:98:1B:AD:30:18:30:F7:C1:E5:90:CC:1A:A8:B4:82:26:0E:D8 Certificate issuer: /CN=A91F0FE2/serialNumber=111E981BAD301830F7C1E590CC1AA8B482260ED8 Certificate serial: 1C5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ER6YG60wGDD3weWQzBqotIImDtg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/ER6YG60wGDD3weWQzBqotIImDtg.mft Manifest number: 1C46 Signing time: Fri 08 Aug 2025 16:20:44 +0000 Manifest this update: Fri 08 Aug 2025 16:20:44 +0000 Manifest next update: Fri 15 Aug 2025 16:20:44 +0000 Files and hashes: 1: ER6YG60wGDD3weWQzBqotIImDtg.crl (hash: WA7xs4MydEAC32Zk5TaYvGRBxSSc1fR5aw/ofa5Cz/k=) 2: 14564AB0E83311E6A72DC543C4F9AE02.roa (hash: 4+gvlbrCKPYHxXa5P1wV2CMHV3TVWTeug3ZLXYBNytU=) 3: 20C4803669A011EA9055BD0EC4F9AE02.roa (hash: nzh03mGpFuWBuJjX4zOpsk0cBliW2iPs211HjGanKnk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/ER6YG60wGDD3weWQzBqotIImDtg.crl rsync://rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/ER6YG60wGDD3weWQzBqotIImDtg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ER6YG60wGDD3weWQzBqotIImDtg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7263 (0x1c5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0FE2, serialNumber=111E981BAD301830F7C1E590CC1AA8B482260ED8 Validity Not Before: Aug 8 16:20:44 2025 GMT Not After : Aug 15 16:20:44 2025 GMT Subject: CN=689623dc-8070 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:d2:0d:76:6e:aa:a0:6d:82:38:66:43:fe:60: 2e:5e:6f:6b:eb:89:17:26:26:b6:2f:40:4e:df:a7: ee:93:7e:e9:99:9a:4e:fe:a4:ad:2d:fc:bf:cf:06: 5f:a5:8e:3c:fb:88:eb:01:6d:da:5d:df:dd:1f:17: 86:5a:c8:4e:8d:ef:96:9e:22:37:af:68:33:7a:c4: 33:ac:c4:77:64:2d:12:da:ef:7e:e7:e3:b3:30:78: 3b:a0:7e:c2:b4:2d:37:ff:8e:40:78:14:ee:c8:6d: 6b:9c:5e:ee:0d:d0:83:3a:bf:b2:2d:f6:a1:3e:15: 2f:65:f6:ae:91:63:31:51:2f:ca:f4:55:7d:fc:1d: f0:f2:2e:43:a5:2c:2b:e0:86:b6:08:aa:06:47:ab: 0b:27:f9:0e:78:86:9a:ba:18:9d:34:4c:f6:5a:ac: 2b:4c:58:76:00:6c:f3:7f:8e:5e:21:09:b8:88:70: 5a:c1:5f:da:27:58:06:9d:4e:65:9c:41:ad:b2:79: 01:a1:fe:ea:28:b2:f5:4d:bd:96:dc:a9:d9:8f:d2: 85:62:91:59:db:f3:b2:6e:24:fb:ad:ec:d5:3a:ad: c5:a4:d5:00:86:26:4b:97:4d:1d:b9:6f:42:9a:08: 19:83:30:48:ff:3a:89:c5:af:a3:3e:0e:c8:2c:16: 4f:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:BE:07:CD:69:7F:12:F7:E0:A8:B2:39:9A:DE:58:6B:27:EE:B4:3D X509v3 Authority Key Identifier: keyid:11:1E:98:1B:AD:30:18:30:F7:C1:E5:90:CC:1A:A8:B4:82:26:0E:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/ER6YG60wGDD3weWQzBqotIImDtg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ER6YG60wGDD3weWQzBqotIImDtg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/ER6YG60wGDD3weWQzBqotIImDtg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:67:8b:76:21:62:7e:a8:1e:de:ef:37:be:e7:47:b4:df:b9: a9:3e:22:42:03:da:2a:d3:6c:db:07:16:27:27:04:a3:c9:02: 39:9f:a9:ea:38:45:ea:6f:67:a4:df:3a:ca:57:7b:50:e2:53: fb:85:ce:50:23:cd:85:1f:a3:8a:a7:e2:65:33:be:ab:2b:c1: e3:4e:cf:8c:fe:24:6f:7f:20:37:e4:94:e6:b0:44:2d:72:29: c7:cb:37:44:23:83:bf:5e:4c:cd:ce:04:87:6e:42:cf:5c:36: ca:95:b7:a0:dd:2d:3c:8d:10:f2:d7:3c:bb:3f:92:ab:4d:6a: 17:da:a3:a7:90:37:fb:7d:9f:10:d0:fa:64:6f:b2:5e:a2:c6: 9d:06:a4:fb:c7:52:03:09:77:36:bc:b4:3c:df:b9:0f:48:52: ab:4b:4d:24:3d:03:b3:2e:99:4b:83:33:cf:e0:a2:c4:d6:fa: 00:56:30:9c:4e:9c:08:27:a5:4a:e2:2d:f5:8c:7c:54:6c:ba: 55:9a:4e:c6:c4:95:86:6f:60:04:e6:20:45:91:99:1f:84:f5: a0:aa:c9:e2:b8:db:44:2b:c0:cd:1d:fd:d3:04:00:26:53:d0: 8f:42:c7:8a:0f:8d:49:62:82:6e:5e:f8:fe:37:bf:9b:f1:26: 21:fd:4a:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHF8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBGRTIxMTAvBgNVBAUTKDExMUU5ODFCQUQzMDE4MzBGN0MxRTU5MENDMUFBOEI0 ODIyNjBFRDgwHhcNMjUwODA4MTYyMDQ0WhcNMjUwODE1MTYyMDQ0WjAYMRYwFAYD VQQDEw02ODk2MjNkYy04MDcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7dINdm6qoG2COGZD/mAuXm9r64kXJia2L0BO36fuk37pmZpO/qStLfy/zwZf pY48+4jrAW3aXd/dHxeGWshOje+WniI3r2gzesQzrMR3ZC0S2u9+5+OzMHg7oH7C tC03/45AeBTuyG1rnF7uDdCDOr+yLfahPhUvZfaukWMxUS/K9FV9/B3w8i5DpSwr 4Ia2CKoGR6sLJ/kOeIaauhidNEz2WqwrTFh2AGzzf45eIQm4iHBawV/aJ1gGnU5l nEGtsnkBof7qKLL1Tb2W3KnZj9KFYpFZ2/OybiT7rezVOq3FpNUAhiZLl00duW9C mggZgzBI/zqJxa+jPg7ILBZPzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPC+B81p fxL34KiyOZreWGsn7rQ9MB8GA1UdIwQYMBaAFBEemButMBgw98HlkMwaqLSCJg7Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEZFMi8yRkY5QkIyMkU4 MzIxMUU2QkY1MTI4NDJDNEY5QUUwMi9FUjZZRzYwd0dERDN3ZVdRekJxb3RJSW1E dGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VSNllHNjB3R0REM3dlV1F6QnFvdElJbUR0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEZFMi8yRkY5QkIyMkU4MzIxMUU2QkY1MTI4NDJDNEY5QUUwMi9FUjZZRzYwd0dE RDN3ZVdRekJxb3RJSW1EdGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqZ4t2IWJ+qB7e7ze+50e037mpPiJCA9oq02zbBxYnJwSjyQI5n6nq OEXqb2ek3zrKV3tQ4lP7hc5QI82FH6OKp+JlM76rK8HjTs+M/iRvfyA35JTmsEQt cinHyzdEI4O/XkzNzgSHbkLPXDbKlbeg3S08jRDy1zy7P5KrTWoX2qOnkDf7fZ8Q 0Ppkb7JeosadBqT7x1IDCXc2vLQ837kPSFKrS00kPQOzLplLgzPP4KLE1voAVjCc TpwIJ6VK4i31jHxUbLpVmk7GxJWGb2AE5iBFkZkfhPWgqsniuNtEK8DNHf3TBAAm U9CPQseKD41JYoJuXvj+N7+b8SYh/Uqz -----END CERTIFICATE-----Generated at Sat Aug 9 01:22:21 2025 by rpki-client