$ rpki-client -vvf rpki.apnic.net/member_repository/A9145258/AC09C6EEE30611EFA807B053C4F9AE02/eERZpLZsg1_PXW5aVoctkkfUZYo.mft File: eERZpLZsg1_PXW5aVoctkkfUZYo.mft (raw, json) Hash identifier: ytbMKQ0PXuK5ki3ChPWfFpaUBeMZzFOjVOG+F2bIyD8= Subject key identifier: 62:3F:9B:63:85:26:A7:3B:5C:66:2B:69:03:38:B4:C2:65:9C:B1:5C Authority key identifier: 78:44:59:A4:B6:6C:83:5F:CF:5D:6E:5A:56:87:2D:92:47:D4:65:8A Certificate issuer: /CN=A9145258/serialNumber=784459A4B66C835FCF5D6E5A56872D9247D4658A Certificate serial: 95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eERZpLZsg1_PXW5aVoctkkfUZYo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145258/AC09C6EEE30611EFA807B053C4F9AE02/eERZpLZsg1_PXW5aVoctkkfUZYo.mft Manifest number: 8D Signing time: Sun 19 Oct 2025 09:54:42 +0000 Manifest this update: Sun 19 Oct 2025 09:54:42 +0000 Manifest next update: Sun 26 Oct 2025 09:54:42 +0000 Files and hashes: 1: eERZpLZsg1_PXW5aVoctkkfUZYo.crl (hash: fUexwRbR19eGGqW7fajCMcdNXPbP3haQ8ocD7p417G8=) 2: 2C7AE786042711F0BCEB4A75C4F9AE02.roa (hash: ugBH0sY3xsy9vZ2jc2RKWYdBc6yrBC0CxRNIPq7VafI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145258/AC09C6EEE30611EFA807B053C4F9AE02/eERZpLZsg1_PXW5aVoctkkfUZYo.crl rsync://rpki.apnic.net/member_repository/A9145258/AC09C6EEE30611EFA807B053C4F9AE02/eERZpLZsg1_PXW5aVoctkkfUZYo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eERZpLZsg1_PXW5aVoctkkfUZYo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:54:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 149 (0x95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145258, serialNumber=784459A4B66C835FCF5D6E5A56872D9247D4658A Validity Not Before: Oct 19 09:54:42 2025 GMT Not After : Oct 26 09:54:42 2025 GMT Subject: CN=68f4b562-bd7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:96:ae:1d:ce:46:7a:8c:99:8a:4d:35:55:b0: e6:15:e2:1f:d5:68:4d:6a:f0:c5:70:77:7a:8b:3c: dd:1c:6b:3d:e3:46:2e:5d:dc:a6:72:f4:67:28:4a: 36:91:d6:28:2c:c5:bd:0d:f9:8e:48:f1:cb:dd:24: c8:72:7b:b3:61:a1:3f:19:96:27:2f:49:79:e9:ec: 5f:d3:04:72:f4:a3:73:b2:e4:39:7f:ae:18:5f:3c: 85:24:e4:41:47:a8:83:ee:b4:c8:f7:2e:86:a5:04: cd:07:ec:2a:9a:6b:03:2a:4b:1b:d5:6b:2d:9d:a4: ec:a5:6e:2b:97:3b:b8:b4:3e:e3:41:c5:75:cc:7a: e6:45:01:23:5a:02:26:7c:aa:91:e2:07:0c:e0:6e: 2a:06:23:d0:e5:91:2a:78:64:3d:ea:f2:b5:ee:a3: f7:b2:61:eb:9f:23:1b:0f:94:0d:6a:22:12:e6:3f: bd:8f:46:9b:d1:d3:8a:27:46:ba:56:4a:e2:0f:9b: c7:fb:cc:11:86:38:96:4a:cd:c7:f1:70:d7:ee:fe: 4f:73:3e:5b:0f:99:83:ce:69:3a:76:ab:68:4b:a8: c2:08:37:ae:d4:4b:b6:b1:bb:50:f5:3b:eb:a2:ee: 80:c9:e1:66:7a:2f:a8:2e:48:22:0f:89:de:9b:f6: de:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:3F:9B:63:85:26:A7:3B:5C:66:2B:69:03:38:B4:C2:65:9C:B1:5C X509v3 Authority Key Identifier: keyid:78:44:59:A4:B6:6C:83:5F:CF:5D:6E:5A:56:87:2D:92:47:D4:65:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145258/AC09C6EEE30611EFA807B053C4F9AE02/eERZpLZsg1_PXW5aVoctkkfUZYo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eERZpLZsg1_PXW5aVoctkkfUZYo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145258/AC09C6EEE30611EFA807B053C4F9AE02/eERZpLZsg1_PXW5aVoctkkfUZYo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:eb:73:7c:5c:a0:dd:4a:fc:2c:ef:14:f4:4e:9a:24:45:86: dc:a4:d1:4b:01:b5:b3:b4:b8:8b:19:b7:31:1e:70:40:64:d9: 37:c2:f6:b5:4c:cd:12:00:0c:31:b1:5a:2a:19:88:68:f3:99: 50:37:a7:1a:34:e2:1a:83:bd:b0:99:ca:24:e6:88:65:b2:75: d6:e1:83:9a:49:79:8b:50:8b:53:ab:63:60:3e:ba:3d:e0:99: ed:e8:61:ef:ab:55:65:9d:0b:9a:e4:5b:aa:3d:3f:11:d8:52: 12:e5:84:32:6a:9a:ae:bf:5d:37:95:ac:53:eb:7e:90:fc:4b: d0:c8:6b:6d:1b:4a:69:21:63:2a:84:d8:42:2e:41:d2:8f:8c: c6:8b:a5:6e:24:08:dc:46:fe:8a:d6:e9:2d:dc:c2:95:ad:23: 0b:97:c2:17:63:fe:52:c3:bf:82:a3:84:a1:24:61:40:48:26: 59:b8:f2:12:cf:16:ef:e6:1d:7f:db:7b:8f:be:26:17:08:4c: 87:10:3c:c8:e3:78:cd:c5:97:cd:21:8a:18:f9:71:1d:8e:68: 0f:fb:9f:60:84:dd:9c:aa:8b:51:10:95:bd:fc:c1:b0:d1:f5: de:ef:c2:c9:dd:22:db:68:7e:77:07:78:32:2c:1c:45:86:d1: 08:21:02:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDUyNTgxMTAvBgNVBAUTKDc4NDQ1OUE0QjY2QzgzNUZDRjVENkU1QTU2ODcyRDky NDdENDY1OEEwHhcNMjUxMDE5MDk1NDQyWhcNMjUxMDI2MDk1NDQyWjAYMRYwFAYD VQQDEw02OGY0YjU2Mi1iZDdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAypauHc5GeoyZik01VbDmFeIf1WhNavDFcHd6izzdHGs940YuXdymcvRnKEo2 kdYoLMW9DfmOSPHL3STIcnuzYaE/GZYnL0l56exf0wRy9KNzsuQ5f64YXzyFJORB R6iD7rTI9y6GpQTNB+wqmmsDKksb1WstnaTspW4rlzu4tD7jQcV1zHrmRQEjWgIm fKqR4gcM4G4qBiPQ5ZEqeGQ96vK17qP3smHrnyMbD5QNaiIS5j+9j0ab0dOKJ0a6 VkriD5vH+8wRhjiWSs3H8XDX7v5Pcz5bD5mDzmk6dqtoS6jCCDeu1Eu2sbtQ9Tvr ou6AyeFmei+oLkgiD4nem/beOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGI/m2OF Jqc7XGYraQM4tMJlnLFcMB8GA1UdIwQYMBaAFHhEWaS2bINfz11uWlaHLZJH1GWK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTI1OC9BQzA5QzZFRUUz MDYxMUVGQTgwN0IwNTNDNEY5QUUwMi9lRVJacExac2cxX1BYVzVhVm9jdGtrZlVa WW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VFUlpwTFpzZzFfUFhXNWFWb2N0a2tmVVpZby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NTI1OC9BQzA5QzZFRUUzMDYxMUVGQTgwN0IwNTNDNEY5QUUwMi9lRVJacExac2cx X1BYVzVhVm9jdGtrZlVaWW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBn63N8XKDdSvws7xT0TpokRYbcpNFLAbWztLiLGbcxHnBAZNk3wva1 TM0SAAwxsVoqGYho85lQN6caNOIag72wmcok5ohlsnXW4YOaSXmLUItTq2NgPro9 4Jnt6GHvq1VlnQua5FuqPT8R2FIS5YQyapquv103laxT636Q/EvQyGttG0ppIWMq hNhCLkHSj4zGi6VuJAjcRv6K1ukt3MKVrSMLl8IXY/5Sw7+Co4ShJGFASCZZuPIS zxbv5h1/23uPviYXCEyHEDzI43jNxZfNIYoY+XEdjmgP+59ghN2cqotREJW9/MGw 0fXe78LJ3SLbaH53B3gyLBxFhtEIIQLX -----END CERTIFICATE-----Generated at Mon Oct 20 08:01:25 2025 by rpki-client