$ rpki-client -vvf rpki.apnic.net/member_repository/A91262F0/33AD0A62A30C11EDB3388C0CC4F9AE02/_Ern2eP0GafSBKVMedHz76mn1sg.mft File: _Ern2eP0GafSBKVMedHz76mn1sg.mft (raw, json) Hash identifier: QZHOXeCoN/rUzVK+qJmsKOnVzq8L4RbmEx1l3mI51wc= Subject key identifier: 6A:51:0E:0F:DF:8D:91:47:4E:03:F5:DE:B4:9B:5C:44:21:51:16:97 Authority key identifier: FC:4A:E7:D9:E3:F4:19:A7:D2:04:A5:4C:79:D1:F3:EF:A9:A7:D6:C8 Certificate issuer: /CN=A91262F0/serialNumber=FC4AE7D9E3F419A7D204A54C79D1F3EFA9A7D6C8 Certificate serial: 01E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Ern2eP0GafSBKVMedHz76mn1sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91262F0/33AD0A62A30C11EDB3388C0CC4F9AE02/_Ern2eP0GafSBKVMedHz76mn1sg.mft Manifest number: 01DD Signing time: Sat 23 Aug 2025 02:48:15 +0000 Manifest this update: Sat 23 Aug 2025 02:48:14 +0000 Manifest next update: Sat 30 Aug 2025 02:48:14 +0000 Files and hashes: 1: _Ern2eP0GafSBKVMedHz76mn1sg.crl (hash: bJ3I8E1KdLku79Fw1+SefL/Hz4WItPae04VxMPWqw+I=) 2: 8E412748A33311EDA2CB2420C4F9AE02.roa (hash: VYee2tDfZOJDgRSyvh9847Isyru0Slu6wYlhlW9JZCM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91262F0/33AD0A62A30C11EDB3388C0CC4F9AE02/_Ern2eP0GafSBKVMedHz76mn1sg.crl rsync://rpki.apnic.net/member_repository/A91262F0/33AD0A62A30C11EDB3388C0CC4F9AE02/_Ern2eP0GafSBKVMedHz76mn1sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Ern2eP0GafSBKVMedHz76mn1sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:48:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 482 (0x1e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91262F0, serialNumber=FC4AE7D9E3F419A7D204A54C79D1F3EFA9A7D6C8 Validity Not Before: Aug 23 02:48:14 2025 GMT Not After : Aug 30 02:48:14 2025 GMT Subject: CN=68a92bef-c889 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:0a:ac:3b:1c:d6:79:f2:3e:20:be:c5:a5:af: 54:4a:3b:42:62:a8:9b:59:4a:31:96:da:ac:d8:44: b8:83:5f:6c:ac:0e:e6:41:14:fc:0e:90:70:3f:cb: 10:ab:f9:a4:91:8e:b5:a5:47:a9:bd:c7:bb:89:75: e6:fa:43:48:fb:01:da:ea:aa:98:50:3b:6f:27:e2: 20:a4:34:c9:eb:c8:81:b6:b4:4f:30:84:5a:5e:ee: fe:6b:42:8c:1c:6f:7e:45:c7:04:75:57:1a:4c:fa: 21:5d:87:25:b6:14:f5:4e:07:f4:03:38:54:da:e2: 9c:e0:e5:5b:a6:5b:94:66:0d:4a:21:96:e6:f2:89: 06:94:df:02:a9:1e:2a:cf:90:48:d1:fb:89:5f:1b: ea:0f:7b:ef:d7:a0:4b:31:f8:ae:7a:4e:2e:c8:fd: f4:45:fb:9d:67:8c:80:d3:e8:f0:e5:de:08:8a:a3: 8f:35:29:4c:06:89:45:cb:4f:d8:e8:28:d5:cb:11: 6d:e6:44:9d:4e:78:4a:e6:d7:34:10:1d:c6:a0:29: 3e:41:a9:58:82:73:0a:9d:37:6f:3c:5a:79:04:2e: 60:24:50:c3:9f:b1:6f:4f:e5:8f:60:d1:4d:d5:8f: 09:11:15:0e:59:23:f1:0e:84:b8:9a:4a:3b:c4:91: 43:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:51:0E:0F:DF:8D:91:47:4E:03:F5:DE:B4:9B:5C:44:21:51:16:97 X509v3 Authority Key Identifier: keyid:FC:4A:E7:D9:E3:F4:19:A7:D2:04:A5:4C:79:D1:F3:EF:A9:A7:D6:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91262F0/33AD0A62A30C11EDB3388C0CC4F9AE02/_Ern2eP0GafSBKVMedHz76mn1sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Ern2eP0GafSBKVMedHz76mn1sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91262F0/33AD0A62A30C11EDB3388C0CC4F9AE02/_Ern2eP0GafSBKVMedHz76mn1sg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:82:42:06:4b:ce:48:31:4e:89:31:fc:6a:89:96:00:c1:35: 44:6d:96:5c:c0:ba:4e:4a:dd:08:75:42:19:ff:f4:4f:19:b1: b8:5e:50:26:40:43:ca:1e:43:88:3d:c3:10:3f:68:81:e8:8a: e3:9e:bb:81:28:d5:17:c8:5e:ef:3a:55:d1:94:ae:54:b2:47: 5f:2b:27:b1:dc:f8:95:ab:86:5a:0b:5e:17:97:0a:00:56:4c: 4f:59:03:85:ff:b3:0d:e8:80:c2:bd:27:96:1a:56:6b:60:99: 11:45:a5:9d:3b:16:dd:60:48:4e:d2:94:b7:b8:1a:4d:bc:ae: fc:2a:96:ef:0e:96:36:0b:f3:4a:d8:92:87:24:1c:a9:38:48: 6b:e2:1d:09:42:73:a0:03:81:26:26:c0:78:c3:89:28:1d:ac: a5:be:af:f5:ed:1a:6c:68:5f:44:e3:8a:12:b6:76:1d:39:c4: f6:c9:3b:13:8c:81:45:96:6e:89:a5:26:8f:b7:90:92:6b:10: 95:e2:6b:a7:47:37:91:03:5b:41:6e:f4:00:2b:d3:aa:5f:59: 9a:01:63:ba:41:17:fb:ec:ec:59:09:92:4e:7a:bc:d8:f2:40: e3:e2:99:c9:8c:bc:d4:04:07:f6:31:c4:ce:f8:06:fa:fb:51: 8c:b1:9a:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjYyRjAxMTAvBgNVBAUTKEZDNEFFN0Q5RTNGNDE5QTdEMjA0QTU0Qzc5RDFGM0VG QTlBN0Q2QzgwHhcNMjUwODIzMDI0ODE0WhcNMjUwODMwMDI0ODE0WjAYMRYwFAYD VQQDEw02OGE5MmJlZi1jODg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7gqsOxzWefI+IL7Fpa9USjtCYqibWUoxltqs2ES4g19srA7mQRT8DpBwP8sQ q/mkkY61pUepvce7iXXm+kNI+wHa6qqYUDtvJ+IgpDTJ68iBtrRPMIRaXu7+a0KM HG9+RccEdVcaTPohXYclthT1Tgf0AzhU2uKc4OVbpluUZg1KIZbm8okGlN8CqR4q z5BI0fuJXxvqD3vv16BLMfiuek4uyP30RfudZ4yA0+jw5d4IiqOPNSlMBolFy0/Y 6CjVyxFt5kSdTnhK5tc0EB3GoCk+QalYgnMKnTdvPFp5BC5gJFDDn7FvT+WPYNFN 1Y8JERUOWSPxDoS4mko7xJFD5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGpRDg/f jZFHTgP13rSbXEQhURaXMB8GA1UdIwQYMBaAFPxK59nj9Bmn0gSlTHnR8++pp9bI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjJGMC8zM0FEMEE2MkEz MEMxMUVEQjMzODhDMENDNEY5QUUwMi9fRXJuMmVQMEdhZlNCS1ZNZWRIejc2bW4x c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19Fcm4yZVAwR2FmU0JLVk1lZEh6NzZtbjFzZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NjJGMC8zM0FEMEE2MkEzMEMxMUVEQjMzODhDMENDNEY5QUUwMi9fRXJuMmVQMEdh ZlNCS1ZNZWRIejc2bW4xc2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAgkIGS85IMU6JMfxqiZYAwTVEbZZcwLpOSt0IdUIZ//RPGbG4XlAm QEPKHkOIPcMQP2iB6IrjnruBKNUXyF7vOlXRlK5UskdfKyex3PiVq4ZaC14XlwoA VkxPWQOF/7MN6IDCvSeWGlZrYJkRRaWdOxbdYEhO0pS3uBpNvK78KpbvDpY2C/NK 2JKHJBypOEhr4h0JQnOgA4EmJsB4w4koHaylvq/17RpsaF9E44oStnYdOcT2yTsT jIFFlm6JpSaPt5CSaxCV4munRzeRA1tBbvQAK9OqX1maAWO6QRf77OxZCZJOerzY 8kDj4pnJjLzUBAf2McTO+Ab6+1GMsZoE -----END CERTIFICATE-----Generated at Sat Aug 23 13:45:57 2025 by rpki-client