$ rpki-client -vvf rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.mft File: EpTEi8aWr-ggvRWC80NnutqwJDI.mft (raw, json) Hash identifier: pyahw8cfuOSAL/lUHDrhiYcvCwoA+pd4AR1OFejpgNo= Subject key identifier: 1A:CB:04:3F:F8:6D:C6:93:5C:40:B5:DE:EA:A4:A0:1A:E3:F3:D5:D2 Authority key identifier: 12:94:C4:8B:C6:96:AF:E8:20:BD:15:82:F3:43:67:BA:DA:B0:24:32 Certificate issuer: /CN=A9117817/serialNumber=1294C48BC696AFE820BD1582F34367BADAB02432 Certificate serial: 0499 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EpTEi8aWr-ggvRWC80NnutqwJDI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.mft Manifest number: 0491 Signing time: Sat 23 Aug 2025 00:14:18 +0000 Manifest this update: Sat 23 Aug 2025 00:14:17 +0000 Manifest next update: Sat 30 Aug 2025 00:14:17 +0000 Files and hashes: 1: EpTEi8aWr-ggvRWC80NnutqwJDI.crl (hash: D06pc1H3f4gZ273reMC/cHj4w1D02fw/Iy2/WmVvdOY=) 2: 2A84118CE0A311EC9CF2B738C4F9AE02.roa (hash: d5/NJRnIjibSymNbNk/lOaJ1Q3nAQoqs/MS6HVTtaFE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.crl rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EpTEi8aWr-ggvRWC80NnutqwJDI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:14:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1177 (0x499) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117817, serialNumber=1294C48BC696AFE820BD1582F34367BADAB02432 Validity Not Before: Aug 23 00:14:17 2025 GMT Not After : Aug 30 00:14:17 2025 GMT Subject: CN=68a907da-a6a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:8d:71:5e:80:eb:f7:4e:dc:ea:ee:31:63:d1: c4:fc:77:24:a5:5e:f6:8f:84:a6:3e:58:68:dc:a0: 18:5b:16:7b:a9:ca:c2:89:b7:70:2b:49:f3:1b:36: 15:62:ab:fe:2e:48:f0:cd:1b:50:c9:2f:5d:f9:0c: ff:fc:45:3c:f4:f3:2f:2b:7b:ff:ce:1f:0d:4f:3f: 2e:c2:99:53:f7:92:d8:67:7e:4d:6d:a6:18:20:38: 8e:9a:d7:36:f5:9b:bd:61:af:65:6e:52:30:d1:bd: 9d:ab:a8:d9:99:15:fc:10:d0:94:ac:ea:2b:65:a4: 1e:9a:73:1d:c4:7f:da:22:74:ad:1a:97:f7:62:12: 2b:a0:f2:32:a3:d0:2b:f6:ae:79:97:3f:94:01:0e: ce:a7:39:85:f7:d0:38:4b:56:e3:d0:86:e5:2a:d4: 38:dd:64:c2:81:6d:c2:b5:91:31:4b:cc:c6:9d:19: ed:85:6f:b8:51:7d:4a:ab:a1:3c:c1:c0:42:3a:3f: 96:ba:b3:1a:35:bf:f6:08:80:8d:76:61:6b:38:0a: 25:97:ea:56:d7:e8:71:56:4c:69:c5:18:b3:f3:71: 48:97:fd:4d:fe:c6:86:67:97:d8:0c:bf:7b:80:08: 48:d8:cc:1b:22:76:a9:6f:b6:7a:b9:62:cf:5b:f0: 25:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:CB:04:3F:F8:6D:C6:93:5C:40:B5:DE:EA:A4:A0:1A:E3:F3:D5:D2 X509v3 Authority Key Identifier: keyid:12:94:C4:8B:C6:96:AF:E8:20:BD:15:82:F3:43:67:BA:DA:B0:24:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EpTEi8aWr-ggvRWC80NnutqwJDI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d9:99:e0:1c:cb:5f:f0:2f:d5:67:3a:93:f0:91:b5:47:7f:42: de:41:5a:a4:56:15:38:ca:32:84:45:07:19:88:b0:de:47:1f: c5:84:6f:0c:dd:c8:2e:0c:b9:1e:06:1e:ed:a3:b2:4f:2d:b6: 55:d8:33:e0:6f:8c:a1:72:21:1a:d0:12:18:3c:66:96:ae:3c: 86:35:9f:da:8a:d7:5c:e7:e7:f7:78:c7:61:b7:e4:29:e2:b8: c5:3f:5c:8f:70:1c:48:3d:7e:f4:1a:5b:31:2f:68:d1:75:4f: 90:06:e3:73:fa:f3:c6:ef:d5:8e:a7:81:96:cf:c6:23:c0:87: e2:cd:c7:ea:2c:3f:eb:99:3b:80:da:ec:21:de:4c:fe:f6:79: 66:aa:cd:0d:d2:6e:d7:72:4c:36:a1:29:5e:90:7c:89:67:24: 6b:5a:ad:75:f3:b6:42:72:b5:2b:b1:80:47:46:8a:9e:0f:ee: 38:a3:e7:c6:65:2d:41:75:2e:2a:35:db:51:f1:c0:37:51:65: 57:5c:9e:03:7a:bc:a2:49:e9:36:a6:a4:0f:b6:32:ae:74:79: 6e:51:05:42:76:8b:9d:b0:26:4a:d7:c5:a1:2f:8a:1d:a8:9c: f3:72:97:61:d9:79:b9:e0:58:75:9d:54:af:35:1d:25:20:9e: 33:13:ad:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc4MTcxMTAvBgNVBAUTKDEyOTRDNDhCQzY5NkFGRTgyMEJEMTU4MkYzNDM2N0JB REFCMDI0MzIwHhcNMjUwODIzMDAxNDE3WhcNMjUwODMwMDAxNDE3WjAYMRYwFAYD VQQDEw02OGE5MDdkYS1hNmEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvY1xXoDr907c6u4xY9HE/HckpV72j4SmPlho3KAYWxZ7qcrCibdwK0nzGzYV Yqv+LkjwzRtQyS9d+Qz//EU89PMvK3v/zh8NTz8uwplT95LYZ35NbaYYIDiOmtc2 9Zu9Ya9lblIw0b2dq6jZmRX8ENCUrOorZaQemnMdxH/aInStGpf3YhIroPIyo9Ar 9q55lz+UAQ7OpzmF99A4S1bj0IblKtQ43WTCgW3CtZExS8zGnRnthW+4UX1Kq6E8 wcBCOj+WurMaNb/2CICNdmFrOAoll+pW1+hxVkxpxRiz83FIl/1N/saGZ5fYDL97 gAhI2MwbInapb7Z6uWLPW/AlswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBrLBD/4 bcaTXEC13uqkoBrj89XSMB8GA1UdIwQYMBaAFBKUxIvGlq/oIL0VgvNDZ7rasCQy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzgxNy8wNjgzRUI3MDRE QUMxMUVDODU3MTYwMjNDNEY5QUUwMi9FcFRFaThhV3ItZ2d2UldDODBObnV0cXdK REkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VwVEVpOGFXci1nZ3ZSV0M4ME5udXRxd0pESS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzgxNy8wNjgzRUI3MDREQUMxMUVDODU3MTYwMjNDNEY5QUUwMi9FcFRFaThhV3It Z2d2UldDODBObnV0cXdKREkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDZmeAcy1/wL9VnOpPwkbVHf0LeQVqkVhU4yjKERQcZiLDeRx/FhG8M 3cguDLkeBh7to7JPLbZV2DPgb4yhciEa0BIYPGaWrjyGNZ/aitdc5+f3eMdht+Qp 4rjFP1yPcBxIPX70GlsxL2jRdU+QBuNz+vPG79WOp4GWz8YjwIfizcfqLD/rmTuA 2uwh3kz+9nlmqs0N0m7Xckw2oSlekHyJZyRrWq1187ZCcrUrsYBHRoqeD+44o+fG ZS1BdS4qNdtR8cA3UWVXXJ4DeryiSek2pqQPtjKudHluUQVCdoudsCZK18WhL4od qJzzcpdh2Xm54Fh1nVSvNR0lIJ4zE63f -----END CERTIFICATE-----Generated at Sat Aug 23 16:35:35 2025 by rpki-client