$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft File: -oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft (raw, json) Hash identifier: BPPVnuDnZ0IFdFR6YctJib+AdfsAmd1vIWYPX4va8ro= Subject key identifier: 39:64:E1:EB:5A:7F:EC:10:BC:EF:F1:C4:0A:85:25:BF:F7:5A:DD:2A Authority key identifier: FA:81:1F:52:E5:19:5A:42:9D:70:6D:19:C0:03:23:7C:32:09:AA:37 Certificate issuer: /CN=A9167CB5/serialNumber=FA811F52E5195A429D706D19C003237C3209AA37 Certificate serial: E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft Manifest number: E5 Signing time: Sat 23 Aug 2025 05:33:40 +0000 Manifest this update: Sat 23 Aug 2025 05:33:40 +0000 Manifest next update: Sat 30 Aug 2025 05:33:40 +0000 Files and hashes: 1: -oEfUuUZWkKdcG0ZwAMjfDIJqjc.crl (hash: AC0+AZwXNCjurXMlgnje+eoIhf89bvE/fp9qqbRZC5o=) 2: D16A1B5C225711EF975F6747C4F9AE02.roa (hash: Oq3D4ezYunPFGiMcUlxoGy2jtufjcwOjdtjOKgqjtFk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.crl rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:33:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 231 (0xe7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167CB5, serialNumber=FA811F52E5195A429D706D19C003237C3209AA37 Validity Not Before: Aug 23 05:33:40 2025 GMT Not After : Aug 30 05:33:40 2025 GMT Subject: CN=68a952b4-4046 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:e1:85:99:cc:e6:38:89:b4:78:17:4a:82:71: 44:a4:be:ca:69:b0:cb:9c:f3:29:b2:c0:27:a9:30: ae:26:80:1a:a0:19:6d:e6:64:72:9f:71:fe:63:0e: de:e5:f1:54:ce:14:48:82:5d:9d:a6:df:3e:a9:82: 9a:17:d7:da:ca:3d:71:c8:e6:ad:25:fe:65:3d:a8: 6b:a5:36:6d:d0:92:d2:40:61:f0:f6:7c:04:57:78: ed:67:5d:f4:14:6b:84:54:16:77:c6:16:fc:70:e4: 0a:9d:1f:a3:15:b5:f0:bc:4e:ac:a7:ec:64:ef:73: 81:55:1a:91:78:70:b8:fd:2c:0c:ca:8d:df:07:7d: 23:95:5c:c0:2d:40:d8:8a:29:c3:88:e4:f6:06:c6: fc:ae:91:da:8f:4a:c9:25:33:cb:52:7d:94:2d:c4: 41:72:6e:b1:cd:b2:31:4d:2a:9f:d9:6b:96:52:71: 2a:00:2c:c6:b9:c9:b4:78:17:24:61:d2:d4:28:5d: c5:31:e1:da:9e:83:b3:e7:7c:49:58:90:b2:de:d4: ca:ed:29:ff:3f:d8:e3:0e:36:27:b5:5a:16:ad:fc: 47:9b:58:ae:ab:a0:40:09:9b:c1:50:b2:51:75:fa: c0:44:50:79:44:6d:33:f6:e1:13:35:e1:ca:38:de: f7:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:64:E1:EB:5A:7F:EC:10:BC:EF:F1:C4:0A:85:25:BF:F7:5A:DD:2A X509v3 Authority Key Identifier: keyid:FA:81:1F:52:E5:19:5A:42:9D:70:6D:19:C0:03:23:7C:32:09:AA:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:a6:69:28:42:a7:81:38:45:80:65:46:43:05:0d:cd:ef:c2: fe:1e:78:ec:0d:46:6b:67:40:64:16:a3:9c:ee:aa:4d:a5:42: cc:a3:a3:a7:5b:7b:90:d9:f8:03:70:b3:f4:a8:33:d7:0c:e8: 9b:a1:58:4c:4b:65:e9:03:9e:d5:6d:e9:af:f6:83:45:18:67: 3a:e0:e3:54:7d:8a:dc:4b:1a:e2:93:79:51:fe:82:d1:51:01: c0:6b:07:12:95:6c:15:17:cc:73:59:17:43:08:23:3a:ed:14: fc:fb:5c:d4:f4:11:36:67:1a:f3:92:e8:b6:42:90:c1:31:95: fe:a0:a9:dd:aa:d3:b7:c6:ff:af:89:fc:cf:c9:95:c3:ed:25: 68:39:b2:c9:33:12:9c:3a:28:75:ab:dd:45:78:60:58:90:6a: 68:c2:3a:7b:96:06:06:d0:c1:35:03:4f:b8:b4:f2:54:86:94: 60:bf:0d:e3:f8:c6:ca:97:a6:c1:e4:76:d6:b9:1a:e7:a3:ff: 18:42:ab:5a:8d:13:75:ed:35:32:13:f4:f3:00:ac:e6:c5:c7: 18:6a:59:cd:5c:7c:0e:81:d6:b7:89:37:a4:0c:60:7f:a1:89: 62:52:de:cf:94:dc:fa:ef:e8:57:18:dd:a5:64:e6:37:b9:82: 92:1b:31:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDQjUxMTAvBgNVBAUTKEZBODExRjUyRTUxOTVBNDI5RDcwNkQxOUMwMDMyMzdD MzIwOUFBMzcwHhcNMjUwODIzMDUzMzQwWhcNMjUwODMwMDUzMzQwWjAYMRYwFAYD VQQDEw02OGE5NTJiNC00MDQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5uGFmczmOIm0eBdKgnFEpL7KabDLnPMpssAnqTCuJoAaoBlt5mRyn3H+Yw7e 5fFUzhRIgl2dpt8+qYKaF9fayj1xyOatJf5lPahrpTZt0JLSQGHw9nwEV3jtZ130 FGuEVBZ3xhb8cOQKnR+jFbXwvE6sp+xk73OBVRqReHC4/SwMyo3fB30jlVzALUDY iinDiOT2Bsb8rpHaj0rJJTPLUn2ULcRBcm6xzbIxTSqf2WuWUnEqACzGucm0eBck YdLUKF3FMeHanoOz53xJWJCy3tTK7Sn/P9jjDjYntVoWrfxHm1iuq6BACZvBULJR dfrARFB5RG0z9uETNeHKON738QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDlk4eta f+wQvO/xxAqFJb/3Wt0qMB8GA1UdIwQYMBaAFPqBH1LlGVpCnXBtGcADI3wyCao3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0NCNS9GQTM3QzYzRTIy NTYxMUVGQjc1NjFGNDZDNEY5QUUwMi8tb0VmVXVVWldrS2RjRzBad0FNamZESUpx amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1vRWZVdVVaV2tLZGNHMFp3QU1qZkRJSnFqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0NCNS9GQTM3QzYzRTIyNTYxMUVGQjc1NjFGNDZDNEY5QUUwMi8tb0VmVXVVWldr S2RjRzBad0FNamZESUpxamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvpmkoQqeBOEWAZUZDBQ3N78L+HnjsDUZrZ0BkFqOc7qpNpULMo6On W3uQ2fgDcLP0qDPXDOiboVhMS2XpA57Vbemv9oNFGGc64ONUfYrcSxrik3lR/oLR UQHAawcSlWwVF8xzWRdDCCM67RT8+1zU9BE2Zxrzkui2QpDBMZX+oKndqtO3xv+v ifzPyZXD7SVoObLJMxKcOih1q91FeGBYkGpowjp7lgYG0ME1A0+4tPJUhpRgvw3j +MbKl6bB5HbWuRrno/8YQqtajRN17TUyE/TzAKzmxccYalnNXHwOgda3iTekDGB/ oYliUt7PlNz67+hXGN2lZOY3uYKSGzFa -----END CERTIFICATE-----Generated at Sun Aug 24 00:47:29 2025 by rpki-client