$ rpki-client -vvf rpki.apnic.net/member_repository/A9156AFF/3B7B31B614D811F0A37EC04EC4F9AE02/EiOAOGQwr9Y_NklEdk4bNBhj0No.mft File: EiOAOGQwr9Y_NklEdk4bNBhj0No.mft (raw, json) Hash identifier: AiiCHMRm3BXjbiIcMVoBRoIB6kcUVbEJsmo8bHtR6W8= Subject key identifier: B7:32:C2:4B:14:BF:6F:84:4D:2F:C0:21:66:4C:7B:FB:92:70:69:92 Authority key identifier: 12:23:80:38:64:30:AF:D6:3F:36:49:44:76:4E:1B:34:18:63:D0:DA Certificate issuer: /CN=A9156AFF/serialNumber=122380386430AFD63F364944764E1B341863D0DA Certificate serial: 45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EiOAOGQwr9Y_NklEdk4bNBhj0No.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156AFF/3B7B31B614D811F0A37EC04EC4F9AE02/EiOAOGQwr9Y_NklEdk4bNBhj0No.mft Manifest number: 45 Signing time: Sat 23 Aug 2025 07:39:02 +0000 Manifest this update: Sat 23 Aug 2025 07:39:01 +0000 Manifest next update: Sat 30 Aug 2025 07:39:01 +0000 Files and hashes: 1: EiOAOGQwr9Y_NklEdk4bNBhj0No.crl (hash: 1GFepSeVJUxWGf43GfpfEepA5pdkYFSFpiyhjMxfQU4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156AFF/3B7B31B614D811F0A37EC04EC4F9AE02/EiOAOGQwr9Y_NklEdk4bNBhj0No.crl rsync://rpki.apnic.net/member_repository/A9156AFF/3B7B31B614D811F0A37EC04EC4F9AE02/EiOAOGQwr9Y_NklEdk4bNBhj0No.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EiOAOGQwr9Y_NklEdk4bNBhj0No.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:39:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69 (0x45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156AFF, serialNumber=122380386430AFD63F364944764E1B341863D0DA Validity Not Before: Aug 23 07:39:01 2025 GMT Not After : Aug 30 07:39:01 2025 GMT Subject: CN=68a97015-5de8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:60:94:e3:48:cf:07:ae:64:8a:c5:0a:e7:8c: 1a:aa:c3:68:5f:06:2a:90:0c:0c:f5:5a:6a:00:c6: 54:48:01:87:9f:19:cf:dc:3c:e5:29:ab:fb:62:9f: 9f:1a:4d:09:0b:fb:ca:a5:6b:2b:48:86:d6:fb:7b: 6e:07:29:a4:5e:b4:d1:b7:6e:a2:7b:5e:42:24:c4: fa:8e:8b:65:2e:e3:2a:5d:a2:c1:ab:fd:e1:60:58: 83:d5:35:a0:eb:8e:56:c5:02:08:c7:41:7f:96:b0: 20:61:7f:ef:c9:e3:b0:e2:8a:6a:ba:62:11:b6:a6: 47:48:a0:03:6d:85:22:38:74:dc:ad:4b:b6:ea:6f: d7:de:e1:5d:ec:fd:6a:95:4c:ca:fa:47:99:83:cd: ce:7b:48:c7:da:23:2b:14:73:40:9e:ed:01:97:8a: d9:94:76:f7:5f:5c:95:ae:4e:a7:9a:b8:e4:e9:45: 7d:9d:4b:95:99:2a:6a:1f:fa:e6:57:3b:06:27:d4: 72:c2:f8:85:0b:12:7f:9f:ca:90:52:32:9c:fc:5b: 06:cb:f0:98:e1:93:8e:a8:2f:78:9d:da:2d:d2:46: c6:3e:89:65:81:8d:54:cb:b7:8d:8b:8a:bc:df:a5: 4f:b5:cf:8c:17:b2:e3:9e:c7:2b:0d:fc:b8:07:1e: 97:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:32:C2:4B:14:BF:6F:84:4D:2F:C0:21:66:4C:7B:FB:92:70:69:92 X509v3 Authority Key Identifier: keyid:12:23:80:38:64:30:AF:D6:3F:36:49:44:76:4E:1B:34:18:63:D0:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156AFF/3B7B31B614D811F0A37EC04EC4F9AE02/EiOAOGQwr9Y_NklEdk4bNBhj0No.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EiOAOGQwr9Y_NklEdk4bNBhj0No.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156AFF/3B7B31B614D811F0A37EC04EC4F9AE02/EiOAOGQwr9Y_NklEdk4bNBhj0No.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:d0:41:a2:15:5b:f9:9b:2e:01:3c:c4:c9:41:a0:d2:7d:dd: 7b:1e:72:25:54:53:28:6f:c4:42:d5:bf:b3:8e:90:c6:77:a9: a1:af:fd:86:03:f2:3d:4e:6a:e0:18:8c:d0:4b:03:73:ea:30: 13:19:7b:0a:ed:a6:03:d4:13:71:cb:45:83:1c:d8:a9:42:e1: 8e:a6:59:1f:93:10:f8:bc:7e:9d:9a:6b:db:60:15:7f:33:7e: 53:3e:54:30:eb:e2:5c:f5:b0:8f:c8:f1:be:8d:62:01:38:8e: 8b:9c:c8:b3:0b:cd:62:cf:09:b1:de:35:20:db:c5:c1:4d:4d: 46:f3:31:e7:d2:a1:20:cb:92:ff:02:b7:90:c7:a8:43:0c:c6: fd:37:6d:3c:b9:2f:0b:3d:70:eb:33:05:5d:72:0e:95:b0:5d: 57:11:f1:45:1c:6f:0d:35:2a:2d:cb:d4:9d:25:fe:11:a7:49: ff:3b:27:a9:8e:a9:ec:58:e2:d3:3a:0e:64:ce:7c:90:af:7c: da:ef:90:f3:8a:5f:da:33:0a:af:ed:14:1d:3e:63:78:5e:d2: 9e:d5:2d:05:2a:27:36:f1:63:d7:c2:9d:1f:7f:5e:45:70:79: 21:e5:73:22:63:df:68:2f:ae:38:f3:73:cd:33:be:8a:fd:91: f1:11:d1:88 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NkFGRjExMC8GA1UEBRMoMTIyMzgwMzg2NDMwQUZENjNGMzY0OTQ0NzY0RTFCMzQx ODYzRDBEQTAeFw0yNTA4MjMwNzM5MDFaFw0yNTA4MzAwNzM5MDFaMBgxFjAUBgNV BAMTDTY4YTk3MDE1LTVkZTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAYJTjSM8HrmSKxQrnjBqqw2hfBiqQDAz1WmoAxlRIAYefGc/cPOUpq/tin58a TQkL+8qlaytIhtb7e24HKaRetNG3bqJ7XkIkxPqOi2Uu4ypdosGr/eFgWIPVNaDr jlbFAgjHQX+WsCBhf+/J47Diimq6YhG2pkdIoANthSI4dNytS7bqb9fe4V3s/WqV TMr6R5mDzc57SMfaIysUc0Ce7QGXitmUdvdfXJWuTqeauOTpRX2dS5WZKmof+uZX OwYn1HLC+IULEn+fypBSMpz8WwbL8Jjhk46oL3id2i3SRsY+iWWBjVTLt42Lirzf pU+1z4wXsuOexysN/LgHHpc9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUtzLCSxS/ b4RNL8AhZkx7+5JwaZIwHwYDVR0jBBgwFoAUEiOAOGQwr9Y/NklEdk4bNBhj0Now DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU2QUZGLzNCN0IzMUI2MTRE ODExRjBBMzdFQzA0RUM0RjlBRTAyL0VpT0FPR1F3cjlZX05rbEVkazRiTkJoajBO by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRWlPQU9HUXdyOVlfTmtsRWRrNGJOQmhqME5vLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU2 QUZGLzNCN0IzMUI2MTREODExRjBBMzdFQzA0RUM0RjlBRTAyL0VpT0FPR1F3cjlZ X05rbEVkazRiTkJoajBOby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAITQQaIVW/mbLgE8xMlBoNJ93XseciVUUyhvxELVv7OOkMZ3qaGv/YYD 8j1OauAYjNBLA3PqMBMZewrtpgPUE3HLRYMc2KlC4Y6mWR+TEPi8fp2aa9tgFX8z flM+VDDr4lz1sI/I8b6NYgE4joucyLMLzWLPCbHeNSDbxcFNTUbzMefSoSDLkv8C t5DHqEMMxv03bTy5Lws9cOszBV1yDpWwXVcR8UUcbw01Ki3L1J0l/hGnSf87J6mO qexY4tM6DmTOfJCvfNrvkPOKX9ozCq/tFB0+Y3he0p7VLQUqJzbxY9fCnR9/XkVw eSHlcyJj32gvrjjzc80zvor9kfER0Yg= -----END CERTIFICATE-----Generated at Sun Aug 24 03:06:55 2025 by rpki-client