$ rpki-client -vvf rpki.apnic.net/member_repository/A918E269/393BA8CE2B6F11F086ADE54EC4F9AE02/S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.mft File: S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.mft (raw, json) Hash identifier: EMZfatc4tX0IvsNpWp0ji9EJOTCM01JmcgvgCM9a8Ts= Subject key identifier: C0:CD:09:2F:7C:4D:1B:33:17:97:9E:2E:8A:A9:7F:44:6E:58:D2:79 Authority key identifier: 4B:E1:07:39:36:25:2E:3C:F0:72:F9:89:D7:FD:C4:E7:E7:C6:62:74 Certificate issuer: /CN=A918E269/serialNumber=4BE1073936252E3CF072F989D7FDC4E7E7C66274 Certificate serial: 5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E269/393BA8CE2B6F11F086ADE54EC4F9AE02/S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.mft Manifest number: 5A Signing time: Sun 19 Oct 2025 10:35:49 +0000 Manifest this update: Sun 19 Oct 2025 10:35:48 +0000 Manifest next update: Sun 26 Oct 2025 10:35:48 +0000 Files and hashes: 1: S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.crl (hash: nD6lrosOLCmN+TCsaNgtCeaMNwl22130JgHGoMZDuPA=) 2: 2B1A3764302A11F0B211AD0BC4F9AE02.roa (hash: NkhW5FW4JP+LMlscQaQBvoaph79aDkou+LpFxXsX7js=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E269/393BA8CE2B6F11F086ADE54EC4F9AE02/S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.crl rsync://rpki.apnic.net/member_repository/A918E269/393BA8CE2B6F11F086ADE54EC4F9AE02/S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:35:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 94 (0x5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E269, serialNumber=4BE1073936252E3CF072F989D7FDC4E7E7C66274 Validity Not Before: Oct 19 10:35:48 2025 GMT Not After : Oct 26 10:35:48 2025 GMT Subject: CN=68f4bf04-ce41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:56:5c:18:67:b7:77:37:06:4b:10:9c:99:8e: 4e:9b:99:ac:26:45:32:11:12:a6:a6:68:d7:36:41: ee:24:5b:44:ed:68:1b:0b:2c:4d:fd:ef:51:14:b3: ca:01:e0:c0:4d:25:23:12:62:de:ee:4c:04:ff:0c: 6e:77:18:ce:14:ab:3d:1d:1c:73:8c:da:32:9e:f0: 50:f4:db:1f:ee:15:89:62:7e:04:5f:78:80:69:73: 2c:a2:90:85:29:6f:56:17:80:b2:4d:4a:1a:a1:80: 42:9f:a1:41:b3:3c:93:ac:1f:6b:3a:77:3d:85:4d: cd:30:91:39:e6:b5:55:9c:af:61:df:47:f2:67:de: 46:76:9a:40:af:a4:30:f9:49:1f:69:0c:55:4f:97: b0:04:3d:61:04:91:e0:95:30:4c:78:09:4a:02:c7: ae:2f:5b:d6:32:73:73:41:67:b9:53:41:81:26:d0: dc:6d:1c:4a:af:94:5b:bb:73:5c:cc:0d:a0:03:d5: 70:4e:e8:79:d3:98:b2:ad:45:7b:a6:20:77:f4:f0: 24:80:c3:ef:84:32:5b:92:68:4d:a4:3d:04:8d:87: 36:b8:66:89:d1:6c:13:07:ce:f7:f1:7e:8d:a9:d8: 41:c1:96:fe:84:46:26:f8:03:f9:5a:37:64:ce:45: f6:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:CD:09:2F:7C:4D:1B:33:17:97:9E:2E:8A:A9:7F:44:6E:58:D2:79 X509v3 Authority Key Identifier: keyid:4B:E1:07:39:36:25:2E:3C:F0:72:F9:89:D7:FD:C4:E7:E7:C6:62:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E269/393BA8CE2B6F11F086ADE54EC4F9AE02/S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E269/393BA8CE2B6F11F086ADE54EC4F9AE02/S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:14:18:4c:ce:d6:eb:de:a1:03:f1:17:94:aa:55:a1:b4:e9: e0:63:90:1e:c7:53:e8:b9:39:46:70:33:f9:c3:42:85:43:9e: 39:02:fb:74:0d:e7:a1:58:00:75:74:30:e9:da:75:79:dd:10: 87:7e:50:27:da:96:2e:0c:56:79:89:78:0d:48:4a:38:83:56: 70:6c:44:d3:04:eb:00:0f:b2:53:2f:d0:04:1c:98:9d:35:1e: 31:df:e8:d2:6f:9d:c8:c1:48:56:e3:27:41:8d:c1:38:e1:d1: 51:2c:44:74:90:9d:af:59:4d:e3:5c:d1:56:27:a0:62:80:eb: 22:c4:6f:81:87:3e:28:d6:c5:14:87:84:59:ce:4f:86:33:2a: e8:62:fe:a9:97:85:88:aa:4f:1d:27:81:dd:f6:95:56:c7:54: e8:d9:cc:df:57:94:bb:f2:9d:7c:55:3d:7f:44:99:c5:dc:3c: 07:d8:4f:cf:a5:b3:ec:6a:b8:93:ac:13:69:61:95:63:2c:08: a3:03:3b:a2:aa:89:63:56:57:d1:c1:16:6a:30:b0:81:e1:69: 9b:c5:13:9e:a3:34:cc:37:48:e4:59:4c:bf:52:c1:db:74:56: a6:3f:57:ec:4a:47:a1:88:b8:86:14:1c:7b:78:27:ee:33:89: 8b:d3:95:6e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RTI2OTExMC8GA1UEBRMoNEJFMTA3MzkzNjI1MkUzQ0YwNzJGOTg5RDdGREM0RTdF N0M2NjI3NDAeFw0yNTEwMTkxMDM1NDhaFw0yNTEwMjYxMDM1NDhaMBgxFjAUBgNV BAMTDTY4ZjRiZjA0LWNlNDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDQVlwYZ7d3NwZLEJyZjk6bmawmRTIREqamaNc2Qe4kW0TtaBsLLE3971EUs8oB 4MBNJSMSYt7uTAT/DG53GM4Uqz0dHHOM2jKe8FD02x/uFYlifgRfeIBpcyyikIUp b1YXgLJNShqhgEKfoUGzPJOsH2s6dz2FTc0wkTnmtVWcr2HfR/Jn3kZ2mkCvpDD5 SR9pDFVPl7AEPWEEkeCVMEx4CUoCx64vW9Yyc3NBZ7lTQYEm0NxtHEqvlFu7c1zM DaAD1XBO6HnTmLKtRXumIHf08CSAw++EMluSaE2kPQSNhza4ZonRbBMHzvfxfo2p 2EHBlv6ERib4A/laN2TORfYzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUwM0JL3xN GzMXl54uiql/RG5Y0nkwHwYDVR0jBBgwFoAUS+EHOTYlLjzwcvmJ1/3E5+fGYnQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThFMjY5LzM5M0JBOENFMkI2 RjExRjA4NkFERTU0RUM0RjlBRTAyL1MtRUhPVFlsTGp6d2N2bUoxXzNFNS1mR1lu US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUy1FSE9UWWxManp3Y3ZtSjFfM0U1LWZHWW5RLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThF MjY5LzM5M0JBOENFMkI2RjExRjA4NkFERTU0RUM0RjlBRTAyL1MtRUhPVFlsTGp6 d2N2bUoxXzNFNS1mR1luUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAD8UGEzO1uveoQPxF5SqVaG06eBjkB7HU+i5OUZwM/nDQoVDnjkC+3QN 56FYAHV0MOnadXndEId+UCfali4MVnmJeA1ISjiDVnBsRNME6wAPslMv0AQcmJ01 HjHf6NJvncjBSFbjJ0GNwTjh0VEsRHSQna9ZTeNc0VYnoGKA6yLEb4GHPijWxRSH hFnOT4YzKuhi/qmXhYiqTx0ngd32lVbHVOjZzN9XlLvynXxVPX9EmcXcPAfYT8+l s+xquJOsE2lhlWMsCKMDO6KqiWNWV9HBFmowsIHhaZvFE56jNMw3SORZTL9Swdt0 VqY/V+xKR6GIuIYUHHt4J+4ziYvTlW4= -----END CERTIFICATE-----Generated at Mon Oct 20 09:26:13 2025 by rpki-client