$ rpki-client -vvf rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.mft File: EK5_oM-c-qh-uthEzYxCasHDpec.mft (raw, json) Hash identifier: H2TfNap0Rea6yV3vTJZjrXg5HZ4L7lgSKVcMug2A+8Q= Subject key identifier: 8C:7B:2A:E2:2E:05:1A:DA:2D:61:58:D5:FD:31:0C:6C:D2:B8:48:72 Authority key identifier: 10:AE:7F:A0:CF:9C:FA:A8:7E:BA:D8:44:CD:8C:42:6A:C1:C3:A5:E7 Certificate issuer: /CN=A9123BFF/serialNumber=10AE7FA0CF9CFAA87EBAD844CD8C426AC1C3A5E7 Certificate serial: 20A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EK5_oM-c-qh-uthEzYxCasHDpec.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.mft Manifest number: 2098 Signing time: Fri 22 Aug 2025 16:00:47 +0000 Manifest this update: Fri 22 Aug 2025 16:00:46 +0000 Manifest next update: Fri 29 Aug 2025 16:00:46 +0000 Files and hashes: 1: EK5_oM-c-qh-uthEzYxCasHDpec.crl (hash: M0N1bqu3zXmnAdCMrw7WgUtS8/YJBM8T9ulSGfg/Gyo=) 2: 449C08948D1211EBB9548186C4F9AE02.roa (hash: 4cmAc73Ya3K4uXCXYcHrxMilUHhYgfgcQY7RcTrdD4o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.crl rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EK5_oM-c-qh-uthEzYxCasHDpec.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8352 (0x20a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123BFF, serialNumber=10AE7FA0CF9CFAA87EBAD844CD8C426AC1C3A5E7 Validity Not Before: Aug 22 16:00:46 2025 GMT Not After : Aug 29 16:00:46 2025 GMT Subject: CN=68a8942e-17cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f7:95:fa:a1:ec:e6:42:59:a6:2a:11:10:ec: b6:52:d2:2e:40:6a:09:ec:af:4d:68:6d:56:63:1d: 9f:cd:ce:54:b7:bc:eb:9e:95:9d:14:a9:1c:34:00: 4c:28:8f:a9:e3:b2:8f:d5:a5:73:6f:3b:6a:e7:2a: 57:a2:48:36:ea:f2:d6:06:4a:4e:1f:37:94:02:9f: fe:ba:d6:c6:4e:b9:4a:6e:f5:3b:fb:9a:e5:0a:f3: 09:0e:fc:74:c2:fb:12:06:0f:ee:e1:99:2a:a1:d3: e7:24:48:d0:a6:6e:46:fe:04:98:2b:a5:d8:53:91: 95:e8:cb:80:7a:6c:8f:2c:09:99:33:39:46:af:07: 97:14:f4:08:89:5d:b7:22:e9:0c:88:e7:4c:53:b6: 13:01:cb:9e:ce:96:5a:17:19:0b:3c:2c:80:96:87: 33:3c:84:d8:38:02:05:4d:ce:47:4b:90:19:a0:69: 74:06:d3:84:ee:3a:d5:68:d7:24:9c:c1:4b:e1:a8: 23:83:77:84:dd:68:7d:db:ac:95:2f:85:42:1b:fd: 21:9a:28:93:c9:25:c5:7b:44:2a:1c:97:22:97:58: a5:e3:55:48:65:40:f1:ad:4e:2d:db:44:8e:84:b8: 7d:df:5c:01:b5:22:df:d3:54:2e:0e:48:24:38:10: 5d:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:7B:2A:E2:2E:05:1A:DA:2D:61:58:D5:FD:31:0C:6C:D2:B8:48:72 X509v3 Authority Key Identifier: keyid:10:AE:7F:A0:CF:9C:FA:A8:7E:BA:D8:44:CD:8C:42:6A:C1:C3:A5:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EK5_oM-c-qh-uthEzYxCasHDpec.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:98:0c:5f:0c:b9:4d:9b:e8:1c:14:31:cb:20:6c:12:3e:fe: 14:47:d3:ba:eb:2e:45:49:8a:ad:be:62:b2:75:db:46:20:ba: 66:35:db:0c:b6:05:f5:db:b2:89:2f:40:b5:9f:7f:18:e4:d2: 4f:49:11:51:1b:84:25:1f:20:1f:cd:0f:c3:9b:ed:91:c4:8d: f6:fe:7b:58:77:b3:29:1d:9c:4f:9b:30:38:54:25:69:f0:97: 08:c1:38:f6:16:e9:64:0f:71:43:89:94:75:f2:dd:b4:4c:fe: 44:10:d4:6c:d6:c2:97:05:d7:0a:4e:47:8c:d7:0d:be:9e:d9: c9:42:ab:4c:af:f7:b6:41:56:40:34:69:ec:3a:78:66:bc:a6: 0f:0a:05:e1:07:69:31:7c:75:14:59:6e:10:59:9a:15:01:21: dd:9e:74:51:2b:b4:6a:42:02:30:1f:d0:0c:0e:31:41:89:49: 46:03:b4:04:ee:7e:e3:4a:69:eb:8f:ca:7b:54:be:bb:92:da: a6:54:0a:a3:1e:21:48:f7:76:19:8f:f2:4a:75:cb:9e:2a:78: 98:1b:c1:97:01:58:b7:e6:e1:f4:cf:66:ab:80:19:66:86:f8: 7e:a7:24:1e:94:7c:ab:df:8c:3e:d9:b1:c9:c9:30:e9:89:f6: 60:01:6b:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNCRkYxMTAvBgNVBAUTKDEwQUU3RkEwQ0Y5Q0ZBQTg3RUJBRDg0NENEOEM0MjZB QzFDM0E1RTcwHhcNMjUwODIyMTYwMDQ2WhcNMjUwODI5MTYwMDQ2WjAYMRYwFAYD VQQDEw02OGE4OTQyZS0xN2NmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuPeV+qHs5kJZpioREOy2UtIuQGoJ7K9NaG1WYx2fzc5Ut7zrnpWdFKkcNABM KI+p47KP1aVzbztq5ypXokg26vLWBkpOHzeUAp/+utbGTrlKbvU7+5rlCvMJDvx0 wvsSBg/u4ZkqodPnJEjQpm5G/gSYK6XYU5GV6MuAemyPLAmZMzlGrweXFPQIiV23 IukMiOdMU7YTAcuezpZaFxkLPCyAloczPITYOAIFTc5HS5AZoGl0BtOE7jrVaNck nMFL4agjg3eE3Wh926yVL4VCG/0hmiiTySXFe0QqHJcil1il41VIZUDxrU4t20SO hLh931wBtSLf01QuDkgkOBBdnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIx7KuIu BRraLWFY1f0xDGzSuEhyMB8GA1UdIwQYMBaAFBCuf6DPnPqofrrYRM2MQmrBw6Xn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0JGRi9GMjkwODI5QTEw REExMUU2ODVDNEJCM0RDNEY5QUUwMi9FSzVfb00tYy1xaC11dGhFell4Q2FzSERw ZWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VLNV9vTS1jLXFoLXV0aEV6WXhDYXNIRHBlYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0JGRi9GMjkwODI5QTEwREExMUU2ODVDNEJCM0RDNEY5QUUwMi9FSzVfb00tYy1x aC11dGhFell4Q2FzSERwZWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4mAxfDLlNm+gcFDHLIGwSPv4UR9O66y5FSYqtvmKyddtGILpmNdsM tgX127KJL0C1n38Y5NJPSRFRG4QlHyAfzQ/Dm+2RxI32/ntYd7MpHZxPmzA4VCVp 8JcIwTj2FulkD3FDiZR18t20TP5EENRs1sKXBdcKTkeM1w2+ntnJQqtMr/e2QVZA NGnsOnhmvKYPCgXhB2kxfHUUWW4QWZoVASHdnnRRK7RqQgIwH9AMDjFBiUlGA7QE 7n7jSmnrj8p7VL67ktqmVAqjHiFI93YZj/JKdcueKniYG8GXAVi35uH0z2argBlm hvh+pyQelHyr34w+2bHJyTDpifZgAWvS -----END CERTIFICATE-----Generated at Sat Aug 23 17:17:23 2025 by rpki-client