$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5FA2/032544405C3211EB97BF7C45C4F9AE02/ealNKOVCRzgJE4PV9Jdb_bzqrnk.mft File: ealNKOVCRzgJE4PV9Jdb_bzqrnk.mft (raw, json) Hash identifier: bRTw1t/gFsUWryvnrmSow37Q6Zl4dhYpj3Oxt1zmPgY= Subject key identifier: 60:FC:4B:E2:F1:5D:E2:05:76:BA:F9:7B:87:81:F4:DD:D0:AC:48:07 Authority key identifier: 79:A9:4D:28:E5:42:47:38:09:13:83:D5:F4:97:5B:FD:BC:EA:AE:79 Certificate issuer: /CN=A91F5FA2/serialNumber=79A94D28E5424738091383D5F4975BFDBCEAAE79 Certificate serial: 06F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ealNKOVCRzgJE4PV9Jdb_bzqrnk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5FA2/032544405C3211EB97BF7C45C4F9AE02/ealNKOVCRzgJE4PV9Jdb_bzqrnk.mft Manifest number: 06E9 Signing time: Fri 08 Aug 2025 22:23:24 +0000 Manifest this update: Fri 08 Aug 2025 22:23:24 +0000 Manifest next update: Fri 15 Aug 2025 22:23:24 +0000 Files and hashes: 1: ealNKOVCRzgJE4PV9Jdb_bzqrnk.crl (hash: SzoqFS9SSqEdmZqJUg2rc5w1gLjW2T4QnnP/0HQluBc=) 2: FE4992F25C3411EBA2B9004DC4F9AE02.roa (hash: WLTZjRNFNOpt4obFHZLuXm6PcfO8k1Rl/GXdIhTWuLo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5FA2/032544405C3211EB97BF7C45C4F9AE02/ealNKOVCRzgJE4PV9Jdb_bzqrnk.crl rsync://rpki.apnic.net/member_repository/A91F5FA2/032544405C3211EB97BF7C45C4F9AE02/ealNKOVCRzgJE4PV9Jdb_bzqrnk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ealNKOVCRzgJE4PV9Jdb_bzqrnk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1777 (0x6f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5FA2, serialNumber=79A94D28E5424738091383D5F4975BFDBCEAAE79 Validity Not Before: Aug 8 22:23:24 2025 GMT Not After : Aug 15 22:23:24 2025 GMT Subject: CN=689678dc-1eb2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:f5:bb:0f:9d:a3:b9:99:66:79:c8:88:5c:19: 83:87:02:1c:fc:e3:86:49:95:55:72:9c:24:75:31: d7:6e:16:ce:9b:62:82:d5:7d:c8:8d:c5:4f:f9:90: 6b:c6:19:c0:69:cd:10:3d:1b:55:90:bf:40:49:0b: 8e:08:af:12:4e:79:1d:1c:9e:2f:3d:d2:38:0f:14: 7a:f4:71:36:4d:2a:1c:a3:e7:df:3e:6a:57:75:be: 2e:ef:ce:a9:5a:23:ea:81:ac:d7:b6:ef:ef:f5:7c: 67:a6:54:2f:05:d1:2e:26:cc:3d:d6:44:2b:23:b5: 43:a3:06:8b:2e:17:52:39:24:43:54:e8:57:6f:53: 48:80:75:65:94:87:49:6d:23:7c:eb:ef:7b:76:d3: 75:1a:e4:bf:85:fc:8a:38:32:52:ff:60:81:ed:7b: 82:11:d2:9e:2e:15:75:7a:a0:07:1a:3d:aa:55:00: 65:a1:0f:5a:c8:42:c4:2f:1e:84:48:9b:10:8f:38: 08:a0:0c:b8:3a:22:61:53:01:3c:8d:b7:0a:c9:0d: 49:47:2c:6c:86:3b:dc:49:af:19:aa:98:75:af:17: 6d:64:4a:36:9c:d9:9d:cf:19:84:e9:c4:70:47:82: 9d:83:f4:33:07:98:de:d5:b7:6d:08:b1:7a:03:08: 64:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:FC:4B:E2:F1:5D:E2:05:76:BA:F9:7B:87:81:F4:DD:D0:AC:48:07 X509v3 Authority Key Identifier: keyid:79:A9:4D:28:E5:42:47:38:09:13:83:D5:F4:97:5B:FD:BC:EA:AE:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5FA2/032544405C3211EB97BF7C45C4F9AE02/ealNKOVCRzgJE4PV9Jdb_bzqrnk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ealNKOVCRzgJE4PV9Jdb_bzqrnk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5FA2/032544405C3211EB97BF7C45C4F9AE02/ealNKOVCRzgJE4PV9Jdb_bzqrnk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:51:88:d2:0d:da:26:fe:6d:6d:e8:ee:3a:9f:99:bf:c7:5f: 7b:e5:40:6c:7a:77:dd:4d:ad:4d:d5:c7:17:eb:9f:db:8f:3e: 2f:a9:65:fb:35:21:7e:1a:3b:0e:fd:ac:fe:ee:bf:6f:91:c4: 51:6f:04:f8:5e:54:1f:64:7d:db:a1:f4:8d:02:72:77:68:69: 29:8f:10:80:16:7e:fe:4e:5d:47:33:30:15:d0:9b:9a:29:8c: cc:34:1d:62:bb:24:a6:ba:0f:e5:d8:06:3c:88:c3:01:b8:d6: e4:2c:29:dc:f3:be:b5:4d:54:33:8b:12:25:d3:03:fa:8b:3f: ee:d2:f9:97:d3:ad:72:57:1d:94:75:23:72:af:f2:f7:38:05: fa:22:93:01:b6:f2:bf:b6:dc:17:3c:e1:e1:d9:e6:13:5d:01: 0c:8c:ba:31:4d:9f:cc:ec:14:2b:69:35:9f:6f:c3:83:fb:7f: f7:c8:5b:91:fd:53:aa:5a:0b:1b:19:a7:6a:3a:2e:81:55:c8: be:7f:8c:44:81:8a:37:96:6e:02:51:2a:10:2a:9d:79:cb:f1: 92:80:7a:6e:e3:b8:3b:4b:b1:54:ca:fc:5d:ac:72:46:7f:58: 2b:99:c3:fa:2e:11:0e:3c:bb:f6:01:a6:a2:92:81:65:28:90: aa:b0:63:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBvEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjVGQTIxMTAvBgNVBAUTKDc5QTk0RDI4RTU0MjQ3MzgwOTEzODNENUY0OTc1QkZE QkNFQUFFNzkwHhcNMjUwODA4MjIyMzI0WhcNMjUwODE1MjIyMzI0WjAYMRYwFAYD VQQDEw02ODk2NzhkYy0xZWIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5PW7D52juZlmeciIXBmDhwIc/OOGSZVVcpwkdTHXbhbOm2KC1X3IjcVP+ZBr xhnAac0QPRtVkL9ASQuOCK8STnkdHJ4vPdI4DxR69HE2TSoco+ffPmpXdb4u786p WiPqgazXtu/v9XxnplQvBdEuJsw91kQrI7VDowaLLhdSOSRDVOhXb1NIgHVllIdJ bSN86+97dtN1GuS/hfyKODJS/2CB7XuCEdKeLhV1eqAHGj2qVQBloQ9ayELELx6E SJsQjzgIoAy4OiJhUwE8jbcKyQ1JRyxshjvcSa8Zqph1rxdtZEo2nNmdzxmE6cRw R4Kdg/QzB5je1bdtCLF6Awhk/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGD8S+Lx XeIFdrr5e4eB9N3QrEgHMB8GA1UdIwQYMBaAFHmpTSjlQkc4CROD1fSXW/286q55 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNUZBMi8wMzI1NDQ0MDVD MzIxMUVCOTdCRjdDNDVDNEY5QUUwMi9lYWxOS09WQ1J6Z0pFNFBWOUpkYl9ienFy bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VhbE5LT1ZDUnpnSkU0UFY5SmRiX2J6cXJuay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NUZBMi8wMzI1NDQ0MDVDMzIxMUVCOTdCRjdDNDVDNEY5QUUwMi9lYWxOS09WQ1J6 Z0pFNFBWOUpkYl9ienFybmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqUYjSDdom/m1t6O46n5m/x1975UBsenfdTa1N1ccX65/bjz4vqWX7 NSF+GjsO/az+7r9vkcRRbwT4XlQfZH3bofSNAnJ3aGkpjxCAFn7+Tl1HMzAV0Jua KYzMNB1iuySmug/l2AY8iMMBuNbkLCnc8761TVQzixIl0wP6iz/u0vmX061yVx2U dSNyr/L3OAX6IpMBtvK/ttwXPOHh2eYTXQEMjLoxTZ/M7BQraTWfb8OD+3/3yFuR /VOqWgsbGadqOi6BVci+f4xEgYo3lm4CUSoQKp15y/GSgHpu47g7S7FUyvxdrHJG f1grmcP6LhEOPLv2AaaikoFlKJCqsGOZ -----END CERTIFICATE-----Generated at Sat Aug 9 23:13:44 2025 by rpki-client