$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE637/9BAEA13A974311E9BFD8E519C4F9AE02/EJhSul3Eo2jPdhIFFeysYu_aPkA.mft File: EJhSul3Eo2jPdhIFFeysYu_aPkA.mft (raw, json) Hash identifier: cmi8hpJuFDdW4NCDnKsTMyJ6IE4L4TH0Ytk8hx45juM= Subject key identifier: 37:92:46:CC:61:48:18:44:40:E7:A0:41:46:1F:06:BF:D6:88:CA:67 Authority key identifier: 10:98:52:BA:5D:C4:A3:68:CF:76:12:05:15:EC:AC:62:EF:DA:3E:40 Certificate issuer: /CN=A91FE637/serialNumber=109852BA5DC4A368CF76120515ECAC62EFDA3E40 Certificate serial: 0E95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EJhSul3Eo2jPdhIFFeysYu_aPkA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE637/9BAEA13A974311E9BFD8E519C4F9AE02/EJhSul3Eo2jPdhIFFeysYu_aPkA.mft Manifest number: 0E8F Signing time: Fri 08 Aug 2025 17:53:15 +0000 Manifest this update: Fri 08 Aug 2025 17:53:14 +0000 Manifest next update: Fri 15 Aug 2025 17:53:14 +0000 Files and hashes: 1: EJhSul3Eo2jPdhIFFeysYu_aPkA.crl (hash: X4q2+F4ZaC88Ja9ySIOqhWnJ56XVbbiQleDigqueRPg=) 2: 3D88426C974511E982D6FD1BC4F9AE02.roa (hash: U9KBsxBRcXn+lvll9K6vuuTm2toDlFCHVWsbee/fhwU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE637/9BAEA13A974311E9BFD8E519C4F9AE02/EJhSul3Eo2jPdhIFFeysYu_aPkA.crl rsync://rpki.apnic.net/member_repository/A91FE637/9BAEA13A974311E9BFD8E519C4F9AE02/EJhSul3Eo2jPdhIFFeysYu_aPkA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EJhSul3Eo2jPdhIFFeysYu_aPkA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3733 (0xe95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE637, serialNumber=109852BA5DC4A368CF76120515ECAC62EFDA3E40 Validity Not Before: Aug 8 17:53:14 2025 GMT Not After : Aug 15 17:53:14 2025 GMT Subject: CN=6896398a-181f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:6c:c2:af:77:01:1c:be:3b:68:be:a2:19:d2: a8:dc:a4:98:e0:db:ab:ac:8e:f6:85:02:64:78:81: 09:c9:a9:9f:ff:6e:f3:45:94:5b:8f:e3:01:60:39: 88:00:68:b8:e6:60:5d:e1:3d:b1:f9:ed:88:f2:56: 74:c3:db:8d:e0:b4:f6:13:fe:2f:7c:fd:11:f7:a1: 33:aa:c4:10:1f:45:ef:8f:95:cd:11:db:32:d7:78: de:f6:ff:d6:56:6d:ac:5c:af:6d:84:7b:c9:b2:79: 1c:ff:7d:2b:4a:37:70:af:5a:e4:fc:0e:1e:7d:6b: 8c:94:3f:2e:91:9c:51:f9:71:7e:3f:fe:a1:a3:05: e6:bc:c4:19:c9:99:e5:e1:03:f2:ac:91:b0:2f:9e: c9:ac:9a:74:ec:42:42:93:25:32:b0:85:85:0d:b3: 1e:a8:2c:6a:1f:44:8b:71:b1:9c:00:19:8d:ec:c2: b8:e2:dd:ca:1f:14:49:1c:6a:40:da:6e:a2:b9:4a: 9c:af:b8:b3:98:de:f7:4f:94:69:88:79:c6:0b:93: 6f:fa:0d:cb:b0:09:d9:51:ff:8e:3d:d9:07:02:d6: dd:e5:61:54:20:b3:c0:e7:2e:a8:b8:5b:de:30:a0: 4a:18:f5:b8:6a:1e:b8:42:d1:38:05:49:e8:8f:97: 6f:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:92:46:CC:61:48:18:44:40:E7:A0:41:46:1F:06:BF:D6:88:CA:67 X509v3 Authority Key Identifier: keyid:10:98:52:BA:5D:C4:A3:68:CF:76:12:05:15:EC:AC:62:EF:DA:3E:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE637/9BAEA13A974311E9BFD8E519C4F9AE02/EJhSul3Eo2jPdhIFFeysYu_aPkA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EJhSul3Eo2jPdhIFFeysYu_aPkA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE637/9BAEA13A974311E9BFD8E519C4F9AE02/EJhSul3Eo2jPdhIFFeysYu_aPkA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e0:92:f1:7d:a0:54:1d:a3:94:4b:46:13:35:0a:5f:18:29:61: 8f:a3:f8:36:72:80:ba:33:bb:0b:c2:3d:18:de:00:70:d3:0a: d5:23:54:60:ac:fb:91:0f:bb:04:2f:60:eb:dc:34:77:fc:d6: 13:7c:3e:c8:0f:6b:24:41:fd:e4:1b:ec:08:78:0c:c7:71:7b: 5c:8c:6b:ce:72:a2:5f:fa:90:ea:2b:d3:91:ab:19:d7:f3:4e: c2:67:ac:53:d0:a5:a5:2c:b7:c8:89:6b:5e:f4:19:6f:51:6e: 4a:06:7b:a7:72:59:a7:8c:59:af:44:69:1c:55:93:d3:c7:d0: 4f:dc:63:3e:13:68:d0:97:2d:56:15:47:c6:cb:fc:e4:55:40: 38:bd:e0:c5:5e:1a:a8:9e:a1:09:e2:d8:78:bc:6f:9c:e8:c7: 33:15:0f:b2:64:22:92:02:ca:da:77:ff:20:02:4b:14:f6:ae: 76:f8:b1:f1:a1:1a:63:eb:3c:7a:bf:7b:89:5e:4c:dd:7b:45: b2:d7:32:c6:c3:14:8b:40:d2:4e:2a:4b:90:a8:16:d9:eb:71: c1:f1:5e:08:20:61:03:44:77:18:8f:e7:68:25:22:42:04:6b: b3:35:1f:df:11:8e:c5:c6:29:6d:2a:6a:7a:ee:91:4f:09:1a: 77:cb:d4:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDpUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkU2MzcxMTAvBgNVBAUTKDEwOTg1MkJBNURDNEEzNjhDRjc2MTIwNTE1RUNBQzYy RUZEQTNFNDAwHhcNMjUwODA4MTc1MzE0WhcNMjUwODE1MTc1MzE0WjAYMRYwFAYD VQQDEw02ODk2Mzk4YS0xODFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsmzCr3cBHL47aL6iGdKo3KSY4NurrI72hQJkeIEJyamf/27zRZRbj+MBYDmI AGi45mBd4T2x+e2I8lZ0w9uN4LT2E/4vfP0R96EzqsQQH0Xvj5XNEdsy13je9v/W Vm2sXK9thHvJsnkc/30rSjdwr1rk/A4efWuMlD8ukZxR+XF+P/6howXmvMQZyZnl 4QPyrJGwL57JrJp07EJCkyUysIWFDbMeqCxqH0SLcbGcABmN7MK44t3KHxRJHGpA 2m6iuUqcr7izmN73T5RpiHnGC5Nv+g3LsAnZUf+OPdkHAtbd5WFUILPA5y6ouFve MKBKGPW4ah64QtE4BUnoj5dv6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDeSRsxh SBhEQOegQUYfBr/WiMpnMB8GA1UdIwQYMBaAFBCYUrpdxKNoz3YSBRXsrGLv2j5A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTYzNy85QkFFQTEzQTk3 NDMxMUU5QkZEOEU1MTlDNEY5QUUwMi9FSmhTdWwzRW8yalBkaElGRmV5c1l1X2FQ a0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VKaFN1bDNFbzJqUGRoSUZGZXlzWXVfYVBrQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTYzNy85QkFFQTEzQTk3NDMxMUU5QkZEOEU1MTlDNEY5QUUwMi9FSmhTdWwzRW8y alBkaElGRmV5c1l1X2FQa0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDgkvF9oFQdo5RLRhM1Cl8YKWGPo/g2coC6M7sLwj0Y3gBw0wrVI1Rg rPuRD7sEL2Dr3DR3/NYTfD7ID2skQf3kG+wIeAzHcXtcjGvOcqJf+pDqK9ORqxnX 807CZ6xT0KWlLLfIiWte9BlvUW5KBnunclmnjFmvRGkcVZPTx9BP3GM+E2jQly1W FUfGy/zkVUA4veDFXhqonqEJ4th4vG+c6MczFQ+yZCKSAsrad/8gAksU9q52+LHx oRpj6zx6v3uJXkzde0Wy1zLGwxSLQNJOKkuQqBbZ63HB8V4IIGEDRHcYj+doJSJC BGuzNR/fEY7FxiltKmp67pFPCRp3y9Q4 -----END CERTIFICATE-----Generated at Sat Aug 9 01:02:12 2025 by rpki-client