$ rpki-client -vvf rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.mft File: EpTEi8aWr-ggvRWC80NnutqwJDI.mft (raw, json) Hash identifier: bE/cwM6e+qTToSipzLMXUhdHrdJJvBZH6F5k6/uH444= Subject key identifier: 67:23:74:2A:F0:93:12:57:7B:1E:79:E4:90:24:E1:97:7E:44:4F:14 Authority key identifier: 12:94:C4:8B:C6:96:AF:E8:20:BD:15:82:F3:43:67:BA:DA:B0:24:32 Certificate issuer: /CN=A9117817/serialNumber=1294C48BC696AFE820BD1582F34367BADAB02432 Certificate serial: 04B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EpTEi8aWr-ggvRWC80NnutqwJDI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.mft Manifest number: 04AE Signing time: Sun 19 Oct 2025 01:45:29 +0000 Manifest this update: Sun 19 Oct 2025 01:45:29 +0000 Manifest next update: Sun 26 Oct 2025 01:45:29 +0000 Files and hashes: 1: EpTEi8aWr-ggvRWC80NnutqwJDI.crl (hash: cPhw2ckbLUIwDW9Cn5iP2gOPmI9Hf82ey+6ysgC9dU8=) 2: 2A84118CE0A311EC9CF2B738C4F9AE02.roa (hash: d5/NJRnIjibSymNbNk/lOaJ1Q3nAQoqs/MS6HVTtaFE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.crl rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EpTEi8aWr-ggvRWC80NnutqwJDI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:45:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1206 (0x4b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117817, serialNumber=1294C48BC696AFE820BD1582F34367BADAB02432 Validity Not Before: Oct 19 01:45:29 2025 GMT Not After : Oct 26 01:45:29 2025 GMT Subject: CN=68f442b9-126c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:b7:23:e5:5b:e6:e8:6e:39:af:ea:e8:2d:33: 49:7c:f3:dc:1f:ed:34:7d:c1:65:af:54:d9:57:06: 23:82:be:b1:93:ee:2d:ee:c8:df:7f:27:11:af:2a: ef:fc:fb:44:71:bf:b9:bc:31:a8:73:34:c2:0c:76: b4:b2:73:dc:d2:1c:6f:b1:2d:4a:7c:54:f1:49:15: c9:a8:d5:86:41:1e:2f:64:f4:79:cb:d9:9f:8d:d5: 6f:15:c8:21:f7:7d:22:f3:a4:f8:38:ba:d7:6c:45: d4:45:b5:e0:5c:cb:82:0c:d7:40:24:6c:2a:4e:8e: 95:6a:14:29:3a:cc:82:28:66:5f:40:43:84:fc:f1: 52:c4:0d:43:66:48:47:fd:23:f8:ad:eb:60:1e:44: 4e:6b:92:12:c6:05:16:4d:fd:0b:dd:d4:f6:b4:3f: 67:81:6b:ee:94:ce:9a:b0:7e:96:67:09:23:94:b9: 27:3a:d7:ef:3b:7f:b1:f9:cc:6a:d1:e8:d4:63:ee: 72:77:27:b1:cf:75:53:5c:7a:e0:67:2d:0a:8d:47: ed:2c:e0:54:db:7a:61:ac:51:89:d6:07:3d:d2:d9: a9:93:aa:53:eb:b9:78:3b:b2:b5:6a:dc:ca:bf:0c: 78:49:2a:0a:0a:98:38:25:a4:b5:e5:19:49:34:21: 15:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:23:74:2A:F0:93:12:57:7B:1E:79:E4:90:24:E1:97:7E:44:4F:14 X509v3 Authority Key Identifier: keyid:12:94:C4:8B:C6:96:AF:E8:20:BD:15:82:F3:43:67:BA:DA:B0:24:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EpTEi8aWr-ggvRWC80NnutqwJDI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:ac:fd:b8:b1:56:4e:88:8c:85:28:e9:50:2e:af:45:fb:16: 25:e8:e1:d9:59:ab:0f:91:f6:f0:0c:b3:9b:87:20:72:ea:6f: 84:d0:42:bf:d8:a1:4b:0d:76:13:6e:96:61:98:21:95:2f:2c: f6:09:4f:fc:c4:1f:e8:c6:bf:da:bd:3f:7a:a4:e4:82:6a:bf: e1:d4:a6:05:2d:38:60:ab:b1:f6:3a:a6:a8:05:f7:3a:1a:b8: e9:4f:7b:4d:e9:16:4d:99:46:68:c9:a9:29:a2:08:e3:2c:9f: a5:e4:de:16:eb:cd:db:77:dc:1f:66:3e:43:0c:28:91:07:e2: e6:14:ea:18:1c:dc:be:f4:ea:3f:b6:3b:50:18:0c:d2:b7:fc: a9:90:35:be:bb:c6:74:7c:6c:d9:b8:b3:eb:72:8c:0d:fa:86: 28:cc:82:57:29:76:26:0f:b1:7f:a7:87:d6:5d:07:41:63:30: 12:82:76:92:e9:40:d5:4b:ac:ad:05:79:fc:45:5d:51:5e:a9: a3:44:1c:07:bd:21:82:ca:84:82:f6:52:cc:42:ed:e4:e4:a3: e8:f9:12:29:02:19:bc:43:77:cb:2a:a4:4e:57:16:be:9e:0c: 0f:aa:fc:31:f4:f7:8a:a7:32:c9:03:8e:53:8c:40:b9:99:f1: 1a:67:a4:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc4MTcxMTAvBgNVBAUTKDEyOTRDNDhCQzY5NkFGRTgyMEJEMTU4MkYzNDM2N0JB REFCMDI0MzIwHhcNMjUxMDE5MDE0NTI5WhcNMjUxMDI2MDE0NTI5WjAYMRYwFAYD VQQDEw02OGY0NDJiOS0xMjZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuLcj5Vvm6G45r+roLTNJfPPcH+00fcFlr1TZVwYjgr6xk+4t7sjffycRryrv /PtEcb+5vDGoczTCDHa0snPc0hxvsS1KfFTxSRXJqNWGQR4vZPR5y9mfjdVvFcgh 930i86T4OLrXbEXURbXgXMuCDNdAJGwqTo6VahQpOsyCKGZfQEOE/PFSxA1DZkhH /SP4retgHkROa5ISxgUWTf0L3dT2tD9ngWvulM6asH6WZwkjlLknOtfvO3+x+cxq 0ejUY+5ydyexz3VTXHrgZy0KjUftLOBU23phrFGJ1gc90tmpk6pT67l4O7K1atzK vwx4SSoKCpg4JaS15RlJNCEV1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGcjdCrw kxJXex555JAk4Zd+RE8UMB8GA1UdIwQYMBaAFBKUxIvGlq/oIL0VgvNDZ7rasCQy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzgxNy8wNjgzRUI3MDRE QUMxMUVDODU3MTYwMjNDNEY5QUUwMi9FcFRFaThhV3ItZ2d2UldDODBObnV0cXdK REkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VwVEVpOGFXci1nZ3ZSV0M4ME5udXRxd0pESS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzgxNy8wNjgzRUI3MDREQUMxMUVDODU3MTYwMjNDNEY5QUUwMi9FcFRFaThhV3It Z2d2UldDODBObnV0cXdKREkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRrP24sVZOiIyFKOlQLq9F+xYl6OHZWasPkfbwDLObhyBy6m+E0EK/ 2KFLDXYTbpZhmCGVLyz2CU/8xB/oxr/avT96pOSCar/h1KYFLThgq7H2OqaoBfc6 GrjpT3tN6RZNmUZoyakpogjjLJ+l5N4W683bd9wfZj5DDCiRB+LmFOoYHNy+9Oo/ tjtQGAzSt/ypkDW+u8Z0fGzZuLPrcowN+oYozIJXKXYmD7F/p4fWXQdBYzASgnaS 6UDVS6ytBXn8RV1RXqmjRBwHvSGCyoSC9lLMQu3k5KPo+RIpAhm8Q3fLKqROVxa+ ngwPqvwx9PeKpzLJA45TjEC5mfEaZ6Qv -----END CERTIFICATE-----Generated at Mon Oct 20 07:56:15 2025 by rpki-client