$ rpki-client -vvf rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft File: ehMEShEYWGwP2hOLs-vdSEiRTjc.mft (raw, json) Hash identifier: vW8yjU15rw5nVRxt0/idkruojzKssBUKaauPea4qWl4= Subject key identifier: 66:ED:A4:2E:98:52:92:8B:E0:BA:0F:2A:45:70:AA:3B:A5:B1:6B:14 Authority key identifier: 7A:13:04:4A:11:18:58:6C:0F:DA:13:8B:B3:EB:DD:48:48:91:4E:37 Certificate issuer: /CN=A9154EAF/serialNumber=7A13044A1118586C0FDA138BB3EBDD4848914E37 Certificate serial: 02AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ehMEShEYWGwP2hOLs-vdSEiRTjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft Manifest number: 02A8 Signing time: Sun 19 Oct 2025 03:43:10 +0000 Manifest this update: Sun 19 Oct 2025 03:43:09 +0000 Manifest next update: Sun 26 Oct 2025 03:43:09 +0000 Files and hashes: 1: ehMEShEYWGwP2hOLs-vdSEiRTjc.crl (hash: r3pS1oFgbefsDsjR2pBHZgw+hUegPJvxCS52xXzOZm0=) 2: 62A0C17A16C511ED91E80F56C4F9AE02.roa (hash: JJX6OI5aam7BC0uvlTdjVV9SQAAwhFakRzY5oiIX9Uk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.crl rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ehMEShEYWGwP2hOLs-vdSEiRTjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:43:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 684 (0x2ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154EAF, serialNumber=7A13044A1118586C0FDA138BB3EBDD4848914E37 Validity Not Before: Oct 19 03:43:09 2025 GMT Not After : Oct 26 03:43:09 2025 GMT Subject: CN=68f45e4e-c02e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:30:75:fd:40:25:40:5f:72:fa:c7:27:2f:a4: 28:ea:56:28:13:b4:46:b9:02:18:48:8e:3f:94:84: 03:e7:db:19:4c:f3:c6:1d:1b:1c:c6:52:f4:1b:3c: 70:f7:f2:1c:c5:a0:48:a2:af:5e:b5:56:10:8c:61: 0f:d6:19:c0:8b:2a:23:65:0c:1b:aa:ab:ab:67:35: cd:5c:53:2c:90:6b:44:30:66:29:4e:07:11:29:af: 21:3e:5b:55:10:73:f4:2c:08:9a:d0:e5:54:06:a2: e8:09:c6:72:64:cd:69:2a:d2:64:60:8f:7f:7c:96: ba:d2:3d:3b:08:71:d7:55:6e:7b:cb:0d:f9:fa:30: fc:87:cd:b6:20:8e:69:ae:4f:1d:21:93:ff:ae:8f: ce:80:08:75:29:1d:f6:f2:ce:88:d2:92:61:5d:d0: 75:51:35:53:dc:c0:0c:9e:c1:81:56:e0:b0:e2:7d: 36:b2:e2:88:9b:3a:3f:13:d7:68:68:f1:c8:79:83: b9:33:7e:52:a9:d7:75:a8:87:bf:e5:da:62:f9:c5: 00:bc:e3:c3:31:7e:43:5a:d4:17:7d:c0:6b:8b:34: d0:7b:88:ec:bb:61:52:07:9f:3c:a2:1f:de:e2:72: 2b:bc:99:0e:f7:db:5c:fe:08:0f:78:20:fc:06:40: cf:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:ED:A4:2E:98:52:92:8B:E0:BA:0F:2A:45:70:AA:3B:A5:B1:6B:14 X509v3 Authority Key Identifier: keyid:7A:13:04:4A:11:18:58:6C:0F:DA:13:8B:B3:EB:DD:48:48:91:4E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ehMEShEYWGwP2hOLs-vdSEiRTjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:23:dc:87:6a:50:66:89:df:3f:81:5a:5a:cf:b4:b9:05:da: 97:bb:69:59:80:df:a8:31:45:bd:33:33:aa:d0:01:e0:b9:c1: 4e:43:8b:c7:34:8e:16:f8:5b:bc:b1:2f:57:ac:e7:cc:7b:98: 28:6e:68:48:fa:33:a0:95:1a:fe:4a:28:3e:51:a2:c6:42:5d: 53:60:13:2b:74:5a:b7:34:39:9f:95:c5:e3:f9:21:41:91:de: 18:cd:00:a6:20:46:7d:f7:36:27:22:42:1d:48:98:69:8e:a2: 20:0e:6d:9b:4b:8d:9f:f9:65:45:87:97:2c:0d:87:10:c5:e7: 01:fa:3a:e4:af:21:46:b5:6e:bd:a3:54:a6:0b:94:b3:8f:91: e5:ee:43:a7:03:03:c7:f3:44:34:1b:f8:71:22:82:f0:0f:74: dc:56:f4:51:8f:57:c0:f2:9b:5c:47:66:a4:bd:03:fd:bc:09: 04:b8:8c:c0:b6:fa:5a:1f:81:90:64:07:8f:89:c1:ee:74:94: 72:98:6f:40:1d:25:7c:b3:a8:c1:03:3d:c5:b3:f4:49:50:eb: 39:fb:c2:ad:1d:5c:eb:6d:aa:3a:57:5a:55:35:e0:ed:20:64: 05:54:78:34:62:a0:c9:cf:64:45:b5:c8:91:53:78:06:44:a0: 62:77:94:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRFQUYxMTAvBgNVBAUTKDdBMTMwNDRBMTExODU4NkMwRkRBMTM4QkIzRUJERDQ4 NDg5MTRFMzcwHhcNMjUxMDE5MDM0MzA5WhcNMjUxMDI2MDM0MzA5WjAYMRYwFAYD VQQDEw02OGY0NWU0ZS1jMDJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxDB1/UAlQF9y+scnL6Qo6lYoE7RGuQIYSI4/lIQD59sZTPPGHRscxlL0Gzxw 9/IcxaBIoq9etVYQjGEP1hnAiyojZQwbqqurZzXNXFMskGtEMGYpTgcRKa8hPltV EHP0LAia0OVUBqLoCcZyZM1pKtJkYI9/fJa60j07CHHXVW57yw35+jD8h822II5p rk8dIZP/ro/OgAh1KR328s6I0pJhXdB1UTVT3MAMnsGBVuCw4n02suKImzo/E9do aPHIeYO5M35Sqdd1qIe/5dpi+cUAvOPDMX5DWtQXfcBrizTQe4jsu2FSB588oh/e 4nIrvJkO99tc/ggPeCD8BkDPAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGbtpC6Y UpKL4LoPKkVwqjulsWsUMB8GA1UdIwQYMBaAFHoTBEoRGFhsD9oTi7Pr3UhIkU43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEVBRi80N0Q1QTdFMDE2 QzMxMUVEQUU3RUI5NTVDNEY5QUUwMi9laE1FU2hFWVdHd1AyaE9Mcy12ZFNFaVJU amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VoTUVTaEVZV0d3UDJoT0xzLXZkU0VpUlRqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEVBRi80N0Q1QTdFMDE2QzMxMUVEQUU3RUI5NTVDNEY5QUUwMi9laE1FU2hFWVdH d1AyaE9Mcy12ZFNFaVJUamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASI9yHalBmid8/gVpaz7S5BdqXu2lZgN+oMUW9MzOq0AHgucFOQ4vH NI4W+Fu8sS9XrOfMe5gobmhI+jOglRr+Sig+UaLGQl1TYBMrdFq3NDmflcXj+SFB kd4YzQCmIEZ99zYnIkIdSJhpjqIgDm2bS42f+WVFh5csDYcQxecB+jrkryFGtW69 o1SmC5Szj5Hl7kOnAwPH80Q0G/hxIoLwD3TcVvRRj1fA8ptcR2akvQP9vAkEuIzA tvpaH4GQZAePicHudJRymG9AHSV8s6jBAz3Fs/RJUOs5+8KtHVzrbao6V1pVNeDt IGQFVHg0YqDJz2RFtciRU3gGRKBid5So -----END CERTIFICATE-----Generated at Mon Oct 20 07:12:49 2025 by rpki-client