$ rpki-client -vvf rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft File: ehMEShEYWGwP2hOLs-vdSEiRTjc.mft (raw, json) Hash identifier: 4svPN1m1r3/csdebjd69ZwSneDYIQ5sSh5I7z50lM1U= Subject key identifier: B1:34:85:74:1A:75:05:36:A1:2C:43:09:C4:7C:4D:86:82:AD:08:59 Authority key identifier: 7A:13:04:4A:11:18:58:6C:0F:DA:13:8B:B3:EB:DD:48:48:91:4E:37 Certificate issuer: /CN=A9154EAF/serialNumber=7A13044A1118586C0FDA138BB3EBDD4848914E37 Certificate serial: 028F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ehMEShEYWGwP2hOLs-vdSEiRTjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft Manifest number: 028B Signing time: Sat 23 Aug 2025 01:53:45 +0000 Manifest this update: Sat 23 Aug 2025 01:53:44 +0000 Manifest next update: Sat 30 Aug 2025 01:53:44 +0000 Files and hashes: 1: ehMEShEYWGwP2hOLs-vdSEiRTjc.crl (hash: GUQnwyg9+nnU1JzuMgk8qDEv30Zl3d5lOeseu6DOAeQ=) 2: 62A0C17A16C511ED91E80F56C4F9AE02.roa (hash: JJX6OI5aam7BC0uvlTdjVV9SQAAwhFakRzY5oiIX9Uk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.crl rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ehMEShEYWGwP2hOLs-vdSEiRTjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:53:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 655 (0x28f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154EAF, serialNumber=7A13044A1118586C0FDA138BB3EBDD4848914E37 Validity Not Before: Aug 23 01:53:44 2025 GMT Not After : Aug 30 01:53:44 2025 GMT Subject: CN=68a91f28-fa9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:61:6b:05:3c:38:70:41:fc:7f:b3:88:9d:17: b8:58:a7:67:9f:07:f8:22:2f:bd:cd:83:69:c0:4a: e0:01:5c:b2:65:e2:12:c5:1f:ff:85:ca:a8:ae:ca: ec:4f:44:27:d5:a6:5a:7a:3f:6d:8b:39:c8:fa:1d: 91:a6:0c:14:5d:00:8f:ad:91:ef:84:19:95:b5:ea: d1:40:29:5a:04:10:bc:6a:0f:f3:90:51:02:60:a5: 45:ed:ad:f1:0b:33:43:89:ac:9d:41:15:38:6f:d2: 7c:2e:06:14:72:4a:5d:03:0f:78:7c:dd:6c:a9:8c: 55:94:d2:65:8d:de:5d:8e:ce:16:04:8f:b2:cc:5e: de:33:06:53:80:35:9a:1b:2b:8d:4a:1b:c4:28:35: 5a:74:f1:5f:c2:60:f4:67:05:52:b3:d1:24:dd:d8: 53:a6:1a:ea:71:af:5d:40:6c:35:76:38:cc:02:87: 35:c5:44:de:3a:dc:01:05:cf:70:82:ab:aa:17:cf: 4e:7c:43:c1:4b:2c:40:2b:80:87:9a:5b:53:c7:f6: 33:5b:32:d1:37:e5:07:81:90:35:db:68:33:f5:8c: 93:04:0a:f9:cd:74:03:79:25:44:df:ed:7c:f1:a9: 70:91:dc:25:0e:eb:ee:f5:28:e7:96:a7:ca:05:9d: 1a:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:34:85:74:1A:75:05:36:A1:2C:43:09:C4:7C:4D:86:82:AD:08:59 X509v3 Authority Key Identifier: keyid:7A:13:04:4A:11:18:58:6C:0F:DA:13:8B:B3:EB:DD:48:48:91:4E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ehMEShEYWGwP2hOLs-vdSEiRTjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:8b:79:96:22:c8:ef:32:a7:aa:37:b6:25:a5:79:0b:ce:27: b9:52:d5:e4:d3:e6:f9:3a:71:b5:50:63:42:69:4c:fe:e5:80: b7:03:35:de:2e:b4:ef:8e:34:6c:33:b1:21:c8:6e:d6:87:a1: 55:06:60:17:15:2f:16:52:19:45:89:d9:4e:c8:8b:9d:e8:32: 06:c0:8e:a1:0f:04:af:55:89:cb:7d:83:80:35:d9:8d:6e:17: c3:f8:af:a4:8a:f9:85:a6:30:4e:b5:63:ed:c8:99:0c:52:6b: c7:af:d0:5b:40:39:b3:3f:1e:73:1f:1b:93:10:b5:35:13:09: e4:eb:c6:6d:07:cf:eb:78:fb:ae:8d:f5:00:91:f2:de:27:08: 74:b0:48:b6:98:46:b5:fa:5b:f8:9f:67:0f:2e:79:e3:7b:a8: 38:6b:33:2b:ea:36:de:3b:90:a7:f2:e8:8d:40:5c:d4:30:dc: 7e:9f:6c:76:f4:e1:15:85:14:dd:5d:d8:b1:77:5e:69:ca:83: 3f:e3:9a:ad:0d:94:f7:6e:9f:ea:eb:39:cf:49:f2:37:ad:0d: c7:85:cb:9e:2b:14:a7:dd:b3:31:7a:22:41:b2:1d:40:04:85: 98:9d:3a:a8:f8:a7:38:f8:d6:f9:1b:fa:4c:75:49:9f:17:b5: da:dd:56:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAo8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRFQUYxMTAvBgNVBAUTKDdBMTMwNDRBMTExODU4NkMwRkRBMTM4QkIzRUJERDQ4 NDg5MTRFMzcwHhcNMjUwODIzMDE1MzQ0WhcNMjUwODMwMDE1MzQ0WjAYMRYwFAYD VQQDEw02OGE5MWYyOC1mYTljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw2FrBTw4cEH8f7OInRe4WKdnnwf4Ii+9zYNpwErgAVyyZeISxR//hcqorsrs T0Qn1aZaej9tiznI+h2RpgwUXQCPrZHvhBmVterRQClaBBC8ag/zkFECYKVF7a3x CzNDiaydQRU4b9J8LgYUckpdAw94fN1sqYxVlNJljd5djs4WBI+yzF7eMwZTgDWa GyuNShvEKDVadPFfwmD0ZwVSs9Ek3dhTphrqca9dQGw1djjMAoc1xUTeOtwBBc9w gquqF89OfEPBSyxAK4CHmltTx/YzWzLRN+UHgZA122gz9YyTBAr5zXQDeSVE3+18 8alwkdwlDuvu9SjnlqfKBZ0aIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLE0hXQa dQU2oSxDCcR8TYaCrQhZMB8GA1UdIwQYMBaAFHoTBEoRGFhsD9oTi7Pr3UhIkU43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEVBRi80N0Q1QTdFMDE2 QzMxMUVEQUU3RUI5NTVDNEY5QUUwMi9laE1FU2hFWVdHd1AyaE9Mcy12ZFNFaVJU amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VoTUVTaEVZV0d3UDJoT0xzLXZkU0VpUlRqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEVBRi80N0Q1QTdFMDE2QzMxMUVEQUU3RUI5NTVDNEY5QUUwMi9laE1FU2hFWVdH d1AyaE9Mcy12ZFNFaVJUamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3i3mWIsjvMqeqN7YlpXkLzie5UtXk0+b5OnG1UGNCaUz+5YC3AzXe LrTvjjRsM7EhyG7Wh6FVBmAXFS8WUhlFidlOyIud6DIGwI6hDwSvVYnLfYOANdmN bhfD+K+kivmFpjBOtWPtyJkMUmvHr9BbQDmzPx5zHxuTELU1Ewnk68ZtB8/rePuu jfUAkfLeJwh0sEi2mEa1+lv4n2cPLnnje6g4azMr6jbeO5Cn8uiNQFzUMNx+n2x2 9OEVhRTdXdixd15pyoM/45qtDZT3bp/q6znPSfI3rQ3HhcueKxSn3bMxeiJBsh1A BIWYnTqo+Kc4+Nb5G/pMdUmfF7Xa3VYk -----END CERTIFICATE-----Generated at Sat Aug 23 18:51:55 2025 by rpki-client