$ rpki-client -vvf rpki.apnic.net/member_repository/A91F79A2/B8C0B0A026A011EFB9A37E39C4F9AE02/EdT02sf7qLXBIiQwBTm9xhVEXeU.mft File: EdT02sf7qLXBIiQwBTm9xhVEXeU.mft (raw, json) Hash identifier: I0t8pKMW5qRQ77zvRuxQJ32bcO0NxsKUJpHZlEtIaHM= Subject key identifier: DD:21:DB:95:FE:2A:72:A0:65:E8:C2:93:68:13:EE:C1:B7:17:CA:E7 Authority key identifier: 11:D4:F4:DA:C7:FB:A8:B5:C1:22:24:30:05:39:BD:C6:15:44:5D:E5 Certificate issuer: /CN=A91F79A2/serialNumber=11D4F4DAC7FBA8B5C12224300539BDC615445DE5 Certificate serial: E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EdT02sf7qLXBIiQwBTm9xhVEXeU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F79A2/B8C0B0A026A011EFB9A37E39C4F9AE02/EdT02sf7qLXBIiQwBTm9xhVEXeU.mft Manifest number: E1 Signing time: Sat 09 Aug 2025 05:56:02 +0000 Manifest this update: Sat 09 Aug 2025 05:56:02 +0000 Manifest next update: Sat 16 Aug 2025 05:56:02 +0000 Files and hashes: 1: EdT02sf7qLXBIiQwBTm9xhVEXeU.crl (hash: iON4hWfdvUuZoFN8nMunKwEP+fB2pe9ZtKM/MEP6EoU=) 2: 6B10AF52379A11F0B3AC7740C4F9AE02.roa (hash: rykf5EiwJxMbaGGZx16BKp2POKraZb9uuOUjLdA5j+M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F79A2/B8C0B0A026A011EFB9A37E39C4F9AE02/EdT02sf7qLXBIiQwBTm9xhVEXeU.crl rsync://rpki.apnic.net/member_repository/A91F79A2/B8C0B0A026A011EFB9A37E39C4F9AE02/EdT02sf7qLXBIiQwBTm9xhVEXeU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EdT02sf7qLXBIiQwBTm9xhVEXeU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 227 (0xe3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F79A2, serialNumber=11D4F4DAC7FBA8B5C12224300539BDC615445DE5 Validity Not Before: Aug 9 05:56:02 2025 GMT Not After : Aug 16 05:56:02 2025 GMT Subject: CN=6896e2f2-293f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:89:e5:ee:1f:9a:66:74:b9:26:0c:87:6e:f9: a2:30:a4:bc:c2:98:0f:cf:89:71:94:fa:75:53:82: 5e:c9:f7:44:ba:c0:45:4f:fa:f4:ec:95:88:53:05: 84:47:de:de:26:4c:a3:c4:45:cd:52:f9:9d:96:0d: 6e:88:07:19:f8:d2:4a:41:36:bc:53:82:bb:c3:ae: ce:5f:b5:14:2f:4a:4b:90:3c:1f:64:da:98:75:d2: 1b:be:dd:ad:30:6e:e0:55:01:a2:45:10:5f:18:72: bc:11:76:a3:a5:ef:d4:e3:a7:83:c5:1f:cf:d6:12: ef:36:aa:12:b8:d4:e5:e3:95:44:8d:49:52:a2:40: 57:42:f2:70:a6:36:ba:5b:d5:82:87:29:79:62:be: c1:31:e8:bc:47:34:c4:05:77:ee:c5:09:3e:72:64: 5d:b7:81:8d:2f:be:cf:09:94:ea:33:cf:2a:1d:4b: 05:65:84:a1:4c:48:59:76:7d:85:57:c1:4b:13:a8: 51:d4:17:8b:d3:0b:69:6a:93:20:e6:ce:5a:b8:81: a2:b2:38:8b:d3:00:f5:42:29:b7:5e:d4:1a:11:c4: 6f:37:07:6e:dc:d2:26:f2:60:ed:df:99:7b:ad:01: b8:0c:6a:7d:c1:5a:4c:47:b6:05:7e:30:b8:63:4a: 15:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:21:DB:95:FE:2A:72:A0:65:E8:C2:93:68:13:EE:C1:B7:17:CA:E7 X509v3 Authority Key Identifier: keyid:11:D4:F4:DA:C7:FB:A8:B5:C1:22:24:30:05:39:BD:C6:15:44:5D:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F79A2/B8C0B0A026A011EFB9A37E39C4F9AE02/EdT02sf7qLXBIiQwBTm9xhVEXeU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EdT02sf7qLXBIiQwBTm9xhVEXeU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F79A2/B8C0B0A026A011EFB9A37E39C4F9AE02/EdT02sf7qLXBIiQwBTm9xhVEXeU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:b0:ff:7f:88:7c:3b:61:f2:fe:c3:ed:85:51:d4:b2:71:18: 67:2d:5c:e0:42:5f:ae:89:04:fd:f6:6d:b5:e9:4d:75:43:bc: bc:90:36:2e:11:da:da:c6:e5:9a:c0:18:4e:57:b3:04:65:ae: b3:a9:d8:ec:7a:d4:d5:a7:bb:7f:08:ca:c2:28:70:45:87:a6: 05:25:63:fb:67:77:7b:ad:f4:6f:e7:58:62:60:ff:7c:96:b1: 73:8c:7c:c4:34:70:16:1f:ec:a2:b2:99:be:2d:43:f3:9f:f0: 13:f6:70:53:d7:fc:55:72:77:b0:33:77:5d:d0:d6:48:10:8a: 3e:75:c8:a8:07:ca:8e:1b:0e:73:b2:b6:59:7e:eb:ed:13:c7: f4:5a:86:69:ba:6b:70:bc:37:93:fb:b5:b2:a3:b0:f4:61:ce: 6c:dd:fb:8d:3c:8b:0b:73:b8:08:23:1d:94:7c:dc:20:55:1c: 62:4c:83:0f:ee:f3:06:6f:6d:3f:9f:9b:94:0b:43:ef:a1:62: 8b:f3:99:cc:80:83:e7:f9:63:ae:97:0f:e3:51:30:d5:e2:0a: b4:81:64:9e:98:a4:74:c7:61:1e:e4:17:b6:17:32:da:86:b6: 68:57:fd:a1:02:7c:25:00:b1:29:c0:06:38:08:ba:72:dc:23: 13:7f:86:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjc5QTIxMTAvBgNVBAUTKDExRDRGNERBQzdGQkE4QjVDMTIyMjQzMDA1MzlCREM2 MTU0NDVERTUwHhcNMjUwODA5MDU1NjAyWhcNMjUwODE2MDU1NjAyWjAYMRYwFAYD VQQDEw02ODk2ZTJmMi0yOTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl4nl7h+aZnS5JgyHbvmiMKS8wpgPz4lxlPp1U4JeyfdEusBFT/r07JWIUwWE R97eJkyjxEXNUvmdlg1uiAcZ+NJKQTa8U4K7w67OX7UUL0pLkDwfZNqYddIbvt2t MG7gVQGiRRBfGHK8EXajpe/U46eDxR/P1hLvNqoSuNTl45VEjUlSokBXQvJwpja6 W9WChyl5Yr7BMei8RzTEBXfuxQk+cmRdt4GNL77PCZTqM88qHUsFZYShTEhZdn2F V8FLE6hR1BeL0wtpapMg5s5auIGisjiL0wD1Qim3XtQaEcRvNwdu3NIm8mDt35l7 rQG4DGp9wVpMR7YFfjC4Y0oVHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN0h25X+ KnKgZejCk2gT7sG3F8rnMB8GA1UdIwQYMBaAFBHU9NrH+6i1wSIkMAU5vcYVRF3l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzlBMi9COEMwQjBBMDI2 QTAxMUVGQjlBMzdFMzlDNEY5QUUwMi9FZFQwMnNmN3FMWEJJaVF3QlRtOXhoVkVY ZVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VkVDAyc2Y3cUxYQklpUXdCVG05eGhWRVhlVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzlBMi9COEMwQjBBMDI2QTAxMUVGQjlBMzdFMzlDNEY5QUUwMi9FZFQwMnNmN3FM WEJJaVF3QlRtOXhoVkVYZVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnsP9/iHw7YfL+w+2FUdSycRhnLVzgQl+uiQT99m216U11Q7y8kDYu EdraxuWawBhOV7MEZa6zqdjsetTVp7t/CMrCKHBFh6YFJWP7Z3d7rfRv51hiYP98 lrFzjHzENHAWH+yispm+LUPzn/AT9nBT1/xVcnewM3dd0NZIEIo+dcioB8qOGw5z srZZfuvtE8f0WoZpumtwvDeT+7Wyo7D0Yc5s3fuNPIsLc7gIIx2UfNwgVRxiTIMP 7vMGb20/n5uUC0PvoWKL85nMgIPn+WOulw/jUTDV4gq0gWSemKR0x2Ee5Be2FzLa hrZoV/2hAnwlALEpwAY4CLpy3CMTf4Zr -----END CERTIFICATE-----Generated at Sun Aug 10 04:55:08 2025 by rpki-client