$ rpki-client -vvf rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.mft File: EW-SD4cwZnR6jO3a_-hLz72wNRo.mft (raw, json) Hash identifier: ICsuWrO2GPi8xa4pTDAbcuYIc53FU/4/N6OvTEaMxEM= Subject key identifier: D8:79:51:C9:A0:AA:F1:6F:38:9B:53:9C:D8:33:C1:1F:5F:14:EB:A9 Authority key identifier: 11:6F:92:0F:87:30:66:74:7A:8C:ED:DA:FF:E8:4B:CF:BD:B0:35:1A Certificate issuer: /CN=A9120CDE/serialNumber=116F920F873066747A8CEDDAFFE84BCFBDB0351A Certificate serial: 11C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EW-SD4cwZnR6jO3a_-hLz72wNRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.mft Manifest number: 11B6 Signing time: Fri 22 Aug 2025 17:19:06 +0000 Manifest this update: Fri 22 Aug 2025 17:19:05 +0000 Manifest next update: Fri 29 Aug 2025 17:19:05 +0000 Files and hashes: 1: EW-SD4cwZnR6jO3a_-hLz72wNRo.crl (hash: xJ7I9lpM3KC617o1DS2KvuXHTSuuQELTVfZ47UJx1oE=) 2: D8D63660B9A811ECB7EE5A71C4F9AE02.roa (hash: DIX09IMqDwhYz9qe1Nv5iQBk3kT+S7TLOQSBMI/PtT0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.crl rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EW-SD4cwZnR6jO3a_-hLz72wNRo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:19:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4546 (0x11c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120CDE, serialNumber=116F920F873066747A8CEDDAFFE84BCFBDB0351A Validity Not Before: Aug 22 17:19:05 2025 GMT Not After : Aug 29 17:19:05 2025 GMT Subject: CN=68a8a68a-a6d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:96:58:1e:c7:cf:a1:17:b4:62:52:3c:5f:ce: 02:6c:c6:67:14:55:2d:3e:7d:ff:e6:25:4c:3d:8c: 15:f5:3a:0a:d2:0d:cf:29:5f:cf:d5:89:19:dd:86: 9c:07:ff:4e:bd:31:69:20:b3:be:a6:2e:d5:33:9f: ac:83:f5:85:bf:9c:ea:e3:0d:a7:72:c0:66:00:03: f9:ee:fa:84:33:66:56:80:49:66:1f:13:e7:7b:ea: 54:eb:b1:9b:e1:93:96:a9:ac:8c:02:fe:01:bb:ed: f1:c3:c0:73:b2:7b:10:5a:f9:dc:4d:9e:96:3a:b2: ab:72:89:8c:a0:b1:34:d3:d4:2b:cc:c2:46:c6:f1: e5:b7:44:a0:48:93:1a:4b:8c:72:30:60:97:da:e7: 5e:9e:b9:65:2b:16:aa:22:f9:ff:00:0c:9a:74:a1: 16:b6:26:c0:3e:0b:87:82:4f:cc:30:b9:af:5f:d3: d6:66:a8:ba:27:ab:f3:91:0a:83:c2:4b:88:e5:05: 8b:96:88:47:9b:80:20:5f:ae:89:46:10:84:8b:41: a5:cd:ca:4a:48:28:bc:cf:cd:89:5c:f6:eb:61:39: 44:d3:d2:57:3d:12:fe:31:56:37:05:3f:65:6c:f2: 36:c8:5a:d6:f6:0d:85:dd:4e:7d:69:af:0a:79:c5: 8a:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:79:51:C9:A0:AA:F1:6F:38:9B:53:9C:D8:33:C1:1F:5F:14:EB:A9 X509v3 Authority Key Identifier: keyid:11:6F:92:0F:87:30:66:74:7A:8C:ED:DA:FF:E8:4B:CF:BD:B0:35:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EW-SD4cwZnR6jO3a_-hLz72wNRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:f0:66:d1:87:dd:b5:b1:59:be:c0:19:dc:de:d6:2a:33:dd: 17:24:9c:95:33:12:c8:1e:db:15:66:77:c5:6c:4c:f7:7f:b2: f3:ca:d8:1a:6a:71:7e:a0:8e:25:0f:6c:17:52:4e:35:1e:76: fe:91:cd:a9:2d:6c:d6:69:dc:c4:60:8f:66:ea:18:c3:c7:91: c9:bd:4f:5f:be:10:5f:e8:06:16:84:e2:8e:d1:7d:3c:f7:60: 80:d6:9c:3e:47:66:2f:22:60:94:7d:74:e6:07:fc:98:e7:78: 42:be:ec:ca:2e:ae:f3:86:b5:97:8b:6a:25:f1:b7:18:24:9f: d2:8f:1d:8d:39:e3:e9:e8:5d:7e:1f:8a:ea:78:fc:10:9c:52: b5:14:2c:95:b1:1c:33:1c:46:74:1a:2d:bf:47:01:bb:e4:03: 4a:3b:d6:ac:f5:75:0e:28:dd:08:10:c1:2d:1f:5d:1b:ec:f9: 7c:00:d3:3c:25:23:73:e3:a3:a0:40:3b:72:3d:ef:c7:e0:e1: 5c:77:97:62:39:e1:68:64:ab:29:62:15:58:a4:14:a5:56:5d: b0:55:90:5c:6a:6f:38:e7:34:15:65:43:66:14:49:b6:e9:8b: a0:03:f8:b7:4c:d7:85:8e:5b:1a:b6:3f:0c:6c:02:50:21:7c: 83:98:87:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEcIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBDREUxMTAvBgNVBAUTKDExNkY5MjBGODczMDY2NzQ3QThDRUREQUZGRTg0QkNG QkRCMDM1MUEwHhcNMjUwODIyMTcxOTA1WhcNMjUwODI5MTcxOTA1WjAYMRYwFAYD VQQDEw02OGE4YTY4YS1hNmQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwpZYHsfPoRe0YlI8X84CbMZnFFUtPn3/5iVMPYwV9ToK0g3PKV/P1YkZ3Yac B/9OvTFpILO+pi7VM5+sg/WFv5zq4w2ncsBmAAP57vqEM2ZWgElmHxPne+pU67Gb 4ZOWqayMAv4Bu+3xw8BzsnsQWvncTZ6WOrKrcomMoLE009QrzMJGxvHlt0SgSJMa S4xyMGCX2udenrllKxaqIvn/AAyadKEWtibAPguHgk/MMLmvX9PWZqi6J6vzkQqD wkuI5QWLlohHm4AgX66JRhCEi0GlzcpKSCi8z82JXPbrYTlE09JXPRL+MVY3BT9l bPI2yFrW9g2F3U59aa8KecWKRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNh5Ucmg qvFvOJtTnNgzwR9fFOupMB8GA1UdIwQYMBaAFBFvkg+HMGZ0eozt2v/oS8+9sDUa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMENERS8yM0Q4NTY2RUZC REIxMUU4OTIwQ0IwNDRDNEY5QUUwMi9FVy1TRDRjd1puUjZqTzNhXy1oTHo3MndO Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VXLVNENGN3Wm5SNmpPM2FfLWhMejcyd05Sby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MENERS8yM0Q4NTY2RUZCREIxMUU4OTIwQ0IwNDRDNEY5QUUwMi9FVy1TRDRjd1pu UjZqTzNhXy1oTHo3MndOUm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCG8GbRh921sVm+wBnc3tYqM90XJJyVMxLIHtsVZnfFbEz3f7Lzytga anF+oI4lD2wXUk41Hnb+kc2pLWzWadzEYI9m6hjDx5HJvU9fvhBf6AYWhOKO0X08 92CA1pw+R2YvImCUfXTmB/yY53hCvuzKLq7zhrWXi2ol8bcYJJ/Sjx2NOePp6F1+ H4rqePwQnFK1FCyVsRwzHEZ0Gi2/RwG75ANKO9as9XUOKN0IEMEtH10b7Pl8ANM8 JSNz46OgQDtyPe/H4OFcd5diOeFoZKspYhVYpBSlVl2wVZBcam845zQVZUNmFEm2 6YugA/i3TNeFjlsatj8MbAJQIXyDmIdN -----END CERTIFICATE-----Generated at Sat Aug 23 21:35:20 2025 by rpki-client