$ rpki-client -vvf rpki.apnic.net/member_repository/A9145258/AC09C6EEE30611EFA807B053C4F9AE02/eERZpLZsg1_PXW5aVoctkkfUZYo.mft File: eERZpLZsg1_PXW5aVoctkkfUZYo.mft (raw, json) Hash identifier: nAcXqpniiAdTlYVclFVvoY+8xKbxGd00YhgbxU+/oIc= Subject key identifier: 5E:5F:2C:A5:DB:9B:B8:52:69:96:DA:CF:E1:62:15:8F:D9:C6:58:2B Authority key identifier: 78:44:59:A4:B6:6C:83:5F:CF:5D:6E:5A:56:87:2D:92:47:D4:65:8A Certificate issuer: /CN=A9145258/serialNumber=784459A4B66C835FCF5D6E5A56872D9247D4658A Certificate serial: 78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eERZpLZsg1_PXW5aVoctkkfUZYo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145258/AC09C6EEE30611EFA807B053C4F9AE02/eERZpLZsg1_PXW5aVoctkkfUZYo.mft Manifest number: 70 Signing time: Sat 23 Aug 2025 07:13:08 +0000 Manifest this update: Sat 23 Aug 2025 07:13:07 +0000 Manifest next update: Sat 30 Aug 2025 07:13:07 +0000 Files and hashes: 1: eERZpLZsg1_PXW5aVoctkkfUZYo.crl (hash: 5u/6FfS+7aa3nl3htxLgvg+K2R5JTdTWqeetSECgUJY=) 2: 2C7AE786042711F0BCEB4A75C4F9AE02.roa (hash: ugBH0sY3xsy9vZ2jc2RKWYdBc6yrBC0CxRNIPq7VafI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145258/AC09C6EEE30611EFA807B053C4F9AE02/eERZpLZsg1_PXW5aVoctkkfUZYo.crl rsync://rpki.apnic.net/member_repository/A9145258/AC09C6EEE30611EFA807B053C4F9AE02/eERZpLZsg1_PXW5aVoctkkfUZYo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eERZpLZsg1_PXW5aVoctkkfUZYo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:13:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 120 (0x78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145258, serialNumber=784459A4B66C835FCF5D6E5A56872D9247D4658A Validity Not Before: Aug 23 07:13:07 2025 GMT Not After : Aug 30 07:13:07 2025 GMT Subject: CN=68a96a04-3ea2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:5b:db:a7:6a:95:97:1b:4e:cd:15:ac:b8:e8: 61:4d:38:d3:47:ba:c2:44:cf:ca:48:b3:3a:07:13: 43:ee:e9:96:00:11:5a:ee:ca:77:59:47:7e:55:16: bc:eb:d2:03:00:fd:76:4c:04:e4:c0:a7:a9:b1:ae: 29:64:94:86:05:ad:c8:99:cd:fb:ba:cc:32:67:0e: f6:ed:2f:4b:c3:4c:e1:47:01:f4:5d:44:96:26:35: ea:6b:f5:ab:e0:c1:3d:f4:c0:53:ce:30:fe:04:9b: 34:9c:23:64:1e:19:35:5b:67:4d:14:72:62:fe:5a: 03:24:11:09:01:8e:e4:e3:17:47:c2:c8:30:70:f3: 5e:2f:c6:1c:55:80:ca:5c:f4:3e:81:29:cf:76:f3: d2:d0:b2:af:55:0e:bd:6f:c6:fe:f9:fb:25:dc:47: d9:ea:b3:88:66:57:81:da:cd:49:e1:fe:50:82:b8: b2:c6:9c:0a:5c:6d:c1:2e:dc:cb:ec:99:52:b0:55: 97:88:66:0e:f9:39:9f:ae:41:92:43:b5:f5:ba:df: 9d:22:d4:e7:e3:57:52:64:e2:88:96:67:26:58:de: cf:10:c5:69:91:72:07:8d:e6:27:d7:f8:43:76:35: d5:18:73:39:e5:f8:17:d8:2b:4b:b6:72:3d:dd:51: 3b:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:5F:2C:A5:DB:9B:B8:52:69:96:DA:CF:E1:62:15:8F:D9:C6:58:2B X509v3 Authority Key Identifier: keyid:78:44:59:A4:B6:6C:83:5F:CF:5D:6E:5A:56:87:2D:92:47:D4:65:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145258/AC09C6EEE30611EFA807B053C4F9AE02/eERZpLZsg1_PXW5aVoctkkfUZYo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eERZpLZsg1_PXW5aVoctkkfUZYo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145258/AC09C6EEE30611EFA807B053C4F9AE02/eERZpLZsg1_PXW5aVoctkkfUZYo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:23:5e:ca:39:75:e6:0e:90:3d:51:b6:e5:53:6a:06:fe:2b: 9f:52:58:88:56:a6:6e:34:59:de:90:b0:6e:7e:61:00:00:64: 7c:21:9f:f1:ec:7e:57:fb:38:37:bc:14:dc:aa:8c:93:dd:dd: f4:f6:08:82:37:cc:78:e4:ca:2d:3b:8c:2b:34:34:9c:e5:9f: bb:51:03:5d:87:11:5c:c7:c0:f9:3d:a4:21:bd:bf:b9:10:1a: bb:9f:f0:e3:cc:07:fc:47:d2:51:51:32:c9:98:c6:f9:c4:2e: da:4d:c2:51:64:73:93:4f:d8:ec:e2:e9:51:31:99:f0:d6:4b: f3:69:50:d3:da:22:30:4c:59:2b:dc:6a:4b:64:5e:e7:59:57: 21:33:1b:57:39:08:44:aa:38:da:ba:06:d7:60:2b:73:c2:a4: cb:74:e8:f8:18:8a:e2:9a:8e:cb:27:4b:34:22:d9:6a:1e:49: 85:21:cb:0e:26:62:46:05:59:4b:70:b3:e7:e9:1d:c4:94:d2: 79:8e:62:37:eb:12:c5:07:46:3f:62:34:cc:3b:a2:37:21:18: 33:18:93:a3:3c:6f:ea:82:54:e4:a6:a0:fb:0f:45:d9:fb:f7: 73:8c:9f:60:56:3c:11:3c:bb:31:d5:08:66:84:fd:60:35:91: e1:2c:05:95 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NTI1ODExMC8GA1UEBRMoNzg0NDU5QTRCNjZDODM1RkNGNUQ2RTVBNTY4NzJEOTI0 N0Q0NjU4QTAeFw0yNTA4MjMwNzEzMDdaFw0yNTA4MzAwNzEzMDdaMBgxFjAUBgNV BAMTDTY4YTk2YTA0LTNlYTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLW9unapWXG07NFay46GFNONNHusJEz8pIszoHE0Pu6ZYAEVruyndZR35VFrzr 0gMA/XZMBOTAp6mxrilklIYFrciZzfu6zDJnDvbtL0vDTOFHAfRdRJYmNepr9avg wT30wFPOMP4EmzScI2QeGTVbZ00UcmL+WgMkEQkBjuTjF0fCyDBw814vxhxVgMpc 9D6BKc9289LQsq9VDr1vxv75+yXcR9nqs4hmV4HazUnh/lCCuLLGnApcbcEu3Mvs mVKwVZeIZg75OZ+uQZJDtfW6350i1OfjV1Jk4oiWZyZY3s8QxWmRcgeN5ifX+EN2 NdUYcznl+BfYK0u2cj3dUTtLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUXl8spdub uFJpltrP4WIVj9nGWCswHwYDVR0jBBgwFoAUeERZpLZsg1/PXW5aVoctkkfUZYow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1MjU4L0FDMDlDNkVFRTMw NjExRUZBODA3QjA1M0M0RjlBRTAyL2VFUlpwTFpzZzFfUFhXNWFWb2N0a2tmVVpZ by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZUVSWnBMWnNnMV9QWFc1YVZvY3Rra2ZVWllvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1 MjU4L0FDMDlDNkVFRTMwNjExRUZBODA3QjA1M0M0RjlBRTAyL2VFUlpwTFpzZzFf UFhXNWFWb2N0a2tmVVpZby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACUjXso5deYOkD1RtuVTagb+K59SWIhWpm40Wd6QsG5+YQAAZHwhn/Hs flf7ODe8FNyqjJPd3fT2CII3zHjkyi07jCs0NJzln7tRA12HEVzHwPk9pCG9v7kQ Gruf8OPMB/xH0lFRMsmYxvnELtpNwlFkc5NP2Ozi6VExmfDWS/NpUNPaIjBMWSvc aktkXudZVyEzG1c5CESqONq6BtdgK3PCpMt06PgYiuKajssnSzQi2WoeSYUhyw4m YkYFWUtws+fpHcSU0nmOYjfrEsUHRj9iNMw7ojchGDMYk6M8b+qCVOSmoPsPRdn7 93OMn2BWPBE8uzHVCGaE/WA1keEsBZU= -----END CERTIFICATE-----Generated at Sat Aug 23 16:37:01 2025 by rpki-client