$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B93/773DFB7229FD11F0BD552033C4F9AE02/ez9hV-mX7xfKUH5mEH_Ino4-ORM.mft File: ez9hV-mX7xfKUH5mEH_Ino4-ORM.mft (raw, json) Hash identifier: Qfz023MXGLWxCfGiaX2YuwNqKagOd4DGHMWXEaHOVIk= Subject key identifier: BE:AD:B4:5C:79:5A:95:4E:DB:90:DD:2F:B7:66:3E:FB:A0:E5:23:7A Authority key identifier: 7B:3F:61:57:E9:97:EF:17:CA:50:7E:66:10:7F:C8:9E:8E:3E:39:13 Certificate issuer: /CN=A9157B93/serialNumber=7B3F6157E997EF17CA507E66107FC89E8E3E3913 Certificate serial: 3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ez9hV-mX7xfKUH5mEH_Ino4-ORM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157B93/773DFB7229FD11F0BD552033C4F9AE02/ez9hV-mX7xfKUH5mEH_Ino4-ORM.mft Manifest number: 3B Signing time: Sat 23 Aug 2025 07:47:13 +0000 Manifest this update: Sat 23 Aug 2025 07:47:12 +0000 Manifest next update: Sat 30 Aug 2025 07:47:12 +0000 Files and hashes: 1: ez9hV-mX7xfKUH5mEH_Ino4-ORM.crl (hash: 33KHUR8lHu9arilP3wT84VlVsfdLmSIqDPIC5KuK+CU=) 2: 7C487C522AD711F0889A9C4CC4F9AE02.roa (hash: dcosUg556kia3puig3z/Vay8g6P730lM2nj6N4MJmoE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157B93/773DFB7229FD11F0BD552033C4F9AE02/ez9hV-mX7xfKUH5mEH_Ino4-ORM.crl rsync://rpki.apnic.net/member_repository/A9157B93/773DFB7229FD11F0BD552033C4F9AE02/ez9hV-mX7xfKUH5mEH_Ino4-ORM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ez9hV-mX7xfKUH5mEH_Ino4-ORM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:47:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61 (0x3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157B93, serialNumber=7B3F6157E997EF17CA507E66107FC89E8E3E3913 Validity Not Before: Aug 23 07:47:12 2025 GMT Not After : Aug 30 07:47:12 2025 GMT Subject: CN=68a97200-3863 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:7d:04:f6:a3:ba:20:fa:01:7f:91:7d:19:58: 4d:ab:5f:e6:aa:06:20:65:bf:14:fc:a2:de:fb:ab: f4:fa:5b:c8:38:90:4f:f2:a8:a1:da:a7:05:7c:29: ca:5f:5c:7b:4a:cb:55:82:c7:bf:e4:00:95:9d:7a: ab:65:c2:a1:8e:d8:d2:db:01:0a:c2:72:ef:27:d4: a8:99:53:f2:de:44:3f:34:de:70:5c:0a:af:08:b2: 02:1e:e8:38:25:21:89:3c:b5:fa:aa:45:49:54:f3: 9f:2c:dd:18:44:e5:39:d7:5a:7e:77:79:2a:a8:7f: ad:f4:30:74:66:8b:14:a1:5e:49:39:2e:79:25:1a: a6:dd:64:b6:30:a7:bc:96:41:a6:f2:24:d0:2a:6e: 28:19:7b:b9:78:f1:75:67:78:77:be:4c:5c:9b:1f: 6f:ac:d2:06:bb:aa:32:02:67:bb:cd:b6:db:a6:f9: 3c:01:2c:e3:77:bf:d7:76:57:a6:c2:81:4c:60:33: 71:4d:ac:f8:4f:6f:b1:4a:fc:d6:6b:b6:46:0c:f9: 48:f7:8a:f6:3e:b9:0c:79:82:f4:1d:9e:c5:5c:e7: 85:42:db:ff:8e:25:07:b3:4f:9f:c2:0d:ef:37:a8: 3a:b7:48:9f:52:70:ce:05:70:8e:77:64:c4:c2:2b: 88:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:AD:B4:5C:79:5A:95:4E:DB:90:DD:2F:B7:66:3E:FB:A0:E5:23:7A X509v3 Authority Key Identifier: keyid:7B:3F:61:57:E9:97:EF:17:CA:50:7E:66:10:7F:C8:9E:8E:3E:39:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157B93/773DFB7229FD11F0BD552033C4F9AE02/ez9hV-mX7xfKUH5mEH_Ino4-ORM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ez9hV-mX7xfKUH5mEH_Ino4-ORM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B93/773DFB7229FD11F0BD552033C4F9AE02/ez9hV-mX7xfKUH5mEH_Ino4-ORM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:c9:a1:3a:d5:32:54:49:b7:9c:63:a8:ad:94:f9:3e:22:1e: 8b:2d:18:e5:6c:0a:79:66:b8:d3:d9:4e:2d:ce:21:ba:0f:09: 62:bd:a6:57:90:04:9a:33:ce:56:66:11:40:07:fc:66:86:9d: a1:53:b1:56:da:18:71:5a:67:64:63:8e:73:8f:00:e1:67:be: cf:90:2c:40:b2:ae:2d:e4:15:0f:ff:7f:95:f2:5b:9f:db:93: f2:5a:9c:ab:e1:02:9e:e2:e4:69:60:f6:62:bc:38:83:6d:87: fa:50:52:78:49:a8:cf:65:61:46:46:4a:2a:b0:12:61:bc:7b: e7:e7:87:58:df:5e:0f:a1:25:ea:64:93:ad:a1:ba:62:f3:93: 1c:d4:ff:be:70:80:3f:1b:ea:11:f6:5b:94:bb:4d:1b:dc:37: 9e:3f:3a:0b:6b:22:8f:81:14:11:f8:2f:09:44:93:5f:ae:a2: 9d:d5:f9:5f:10:4c:bc:de:3e:57:8c:4b:62:41:50:a5:dd:93: 0c:f8:29:70:41:ef:10:ad:7b:a9:71:90:93:18:c5:df:8d:14: 45:00:24:5f:42:08:1a:ce:4a:80:81:9b:c1:5e:f5:6a:00:96: 85:8e:cd:59:cb:3c:62:df:09:c9:28:ee:b2:77:30:1a:9f:6c: 8f:ef:66:d3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 N0I5MzExMC8GA1UEBRMoN0IzRjYxNTdFOTk3RUYxN0NBNTA3RTY2MTA3RkM4OUU4 RTNFMzkxMzAeFw0yNTA4MjMwNzQ3MTJaFw0yNTA4MzAwNzQ3MTJaMBgxFjAUBgNV BAMTDTY4YTk3MjAwLTM4NjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDfQT2o7og+gF/kX0ZWE2rX+aqBiBlvxT8ot77q/T6W8g4kE/yqKHapwV8Kcpf XHtKy1WCx7/kAJWdeqtlwqGO2NLbAQrCcu8n1KiZU/LeRD803nBcCq8IsgIe6Dgl IYk8tfqqRUlU858s3RhE5TnXWn53eSqof630MHRmixShXkk5LnklGqbdZLYwp7yW QabyJNAqbigZe7l48XVneHe+TFybH2+s0ga7qjICZ7vNttum+TwBLON3v9d2V6bC gUxgM3FNrPhPb7FK/NZrtkYM+Uj3ivY+uQx5gvQdnsVc54VC2/+OJQezT5/CDe83 qDq3SJ9ScM4FcI53ZMTCK4ipAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUvq20XHla lU7bkN0vt2Y++6DlI3owHwYDVR0jBBgwFoAUez9hV+mX7xfKUH5mEH/Ino4+ORMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU3QjkzLzc3M0RGQjcyMjlG RDExRjBCRDU1MjAzM0M0RjlBRTAyL2V6OWhWLW1YN3hmS1VINW1FSF9Jbm80LU9S TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZXo5aFYtbVg3eGZLVUg1bUVIX0lubzQtT1JNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU3 QjkzLzc3M0RGQjcyMjlGRDExRjBCRDU1MjAzM0M0RjlBRTAyL2V6OWhWLW1YN3hm S1VINW1FSF9Jbm80LU9STS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE7JoTrVMlRJt5xjqK2U+T4iHostGOVsCnlmuNPZTi3OIboPCWK9pleQ BJozzlZmEUAH/GaGnaFTsVbaGHFaZ2RjjnOPAOFnvs+QLECyri3kFQ//f5XyW5/b k/JanKvhAp7i5Glg9mK8OINth/pQUnhJqM9lYUZGSiqwEmG8e+fnh1jfXg+hJepk k62humLzkxzU/75wgD8b6hH2W5S7TRvcN54/OgtrIo+BFBH4LwlEk1+uop3V+V8Q TLzePleMS2JBUKXdkwz4KXBB7xCte6lxkJMYxd+NFEUAJF9CCBrOSoCBm8Fe9WoA loWOzVnLPGLfCcko7rJ3MBqfbI/vZtM= -----END CERTIFICATE-----Generated at Sat Aug 23 16:46:17 2025 by rpki-client