$ rpki-client -vvf rpki.apnic.net/member_repository/A918E269/393BA8CE2B6F11F086ADE54EC4F9AE02/S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.mft File: S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.mft (raw, json) Hash identifier: +V7Bf9Vw5L7q412dDEd3jzts8B/kdIOkGIcqx3BLaD0= Subject key identifier: D8:D4:99:87:FE:1C:C1:E7:C1:8E:E3:A8:67:AB:1E:22:BF:64:AA:B9 Authority key identifier: 4B:E1:07:39:36:25:2E:3C:F0:72:F9:89:D7:FD:C4:E7:E7:C6:62:74 Certificate issuer: /CN=A918E269/serialNumber=4BE1073936252E3CF072F989D7FDC4E7E7C66274 Certificate serial: 41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E269/393BA8CE2B6F11F086ADE54EC4F9AE02/S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.mft Manifest number: 3D Signing time: Sat 23 Aug 2025 07:48:06 +0000 Manifest this update: Sat 23 Aug 2025 07:48:06 +0000 Manifest next update: Sat 30 Aug 2025 07:48:06 +0000 Files and hashes: 1: S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.crl (hash: NAIChvpMLGlTK1nBehwl0bjGvudOtH/wTpM+uVh50QQ=) 2: 2B1A3764302A11F0B211AD0BC4F9AE02.roa (hash: NkhW5FW4JP+LMlscQaQBvoaph79aDkou+LpFxXsX7js=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E269/393BA8CE2B6F11F086ADE54EC4F9AE02/S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.crl rsync://rpki.apnic.net/member_repository/A918E269/393BA8CE2B6F11F086ADE54EC4F9AE02/S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:48:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65 (0x41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E269, serialNumber=4BE1073936252E3CF072F989D7FDC4E7E7C66274 Validity Not Before: Aug 23 07:48:06 2025 GMT Not After : Aug 30 07:48:06 2025 GMT Subject: CN=68a97236-b04b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:25:f0:ee:c3:61:c8:2d:84:67:48:5e:c9:13: aa:9d:69:d7:27:f6:58:1b:da:b3:cb:1b:58:97:6a: 8d:ad:ee:63:44:53:4b:88:88:1b:4c:d8:f8:85:cd: 04:79:44:36:20:a7:f0:8d:91:ae:2b:47:91:f7:a0: a5:c1:1f:df:72:8b:3b:2b:8a:39:eb:60:83:7b:49: b4:2e:5f:d7:24:79:18:10:30:5a:11:9a:eb:8f:ce: fe:e1:f3:bf:3d:de:2a:11:79:cd:18:a3:a8:58:96: fc:d2:99:64:45:b2:68:c7:ec:9b:1b:81:d9:d2:64: 83:90:21:3d:f5:50:39:20:05:b7:38:dd:88:a4:5d: 21:06:2c:55:b0:24:cb:13:a2:b6:6c:6a:78:44:a5: 91:e0:18:31:a2:fd:69:c7:dc:a8:0d:10:8c:af:19: 58:e1:43:d9:ba:71:6c:ba:75:37:b4:54:75:93:1a: da:3a:37:ea:2c:80:e1:d4:45:fa:42:52:2b:ce:ad: 56:ad:1e:e1:0a:7c:99:be:8f:d2:5e:a8:27:85:aa: 22:f2:44:89:cd:d4:b6:7c:b7:7c:a8:09:63:dc:66: bb:7a:d0:8d:e9:b0:0b:b0:9a:cd:06:89:ba:0f:4f: 9a:96:fc:3c:9b:53:f1:ad:9f:ac:cd:d3:a8:66:f4: c9:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:D4:99:87:FE:1C:C1:E7:C1:8E:E3:A8:67:AB:1E:22:BF:64:AA:B9 X509v3 Authority Key Identifier: keyid:4B:E1:07:39:36:25:2E:3C:F0:72:F9:89:D7:FD:C4:E7:E7:C6:62:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E269/393BA8CE2B6F11F086ADE54EC4F9AE02/S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E269/393BA8CE2B6F11F086ADE54EC4F9AE02/S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:49:b8:d3:1f:fc:63:91:91:73:e1:b2:47:84:f3:b6:6a:55: 71:a3:48:31:2e:ed:cd:0c:da:6b:e5:02:82:f0:00:9f:45:3f: 27:ae:4c:6e:cd:4f:29:35:1e:f2:42:80:7d:56:36:d0:59:fd: 67:96:21:7a:2d:4d:bf:7c:e6:55:dc:2d:49:bb:63:04:40:0a: af:9c:cf:a6:3d:df:2b:6a:2c:bb:72:f9:cb:40:21:fc:fb:e8: fc:bb:2d:e6:5c:55:c2:40:d1:de:aa:7f:1d:55:31:f9:de:2a: 99:34:93:e5:b6:25:47:24:e9:92:0b:56:b1:14:33:9b:f2:55: c7:5a:d9:ac:e9:fc:89:be:91:90:c5:1b:45:7b:ce:91:48:b7: 51:73:81:a4:2d:e2:fc:08:7e:08:75:05:b7:05:e5:dd:5a:90: dc:17:2a:17:8e:d1:be:3e:e3:b5:99:4c:c2:08:08:06:06:40: a0:af:ec:15:62:06:e8:44:97:26:23:d9:b3:91:2d:50:44:75: 54:9a:e1:42:93:ff:c3:c7:35:ac:a2:16:94:2a:c4:e0:f5:b8: 7b:eb:60:d1:5f:b4:97:95:90:7d:a4:02:37:a4:1c:48:29:2d: d1:38:5f:63:c0:76:03:c6:7d:38:dc:91:ef:84:35:bf:68:c8: fb:a7:6b:4e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RTI2OTExMC8GA1UEBRMoNEJFMTA3MzkzNjI1MkUzQ0YwNzJGOTg5RDdGREM0RTdF N0M2NjI3NDAeFw0yNTA4MjMwNzQ4MDZaFw0yNTA4MzAwNzQ4MDZaMBgxFjAUBgNV BAMTDTY4YTk3MjM2LWIwNGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLJfDuw2HILYRnSF7JE6qdadcn9lgb2rPLG1iXao2t7mNEU0uIiBtM2PiFzQR5 RDYgp/CNka4rR5H3oKXBH99yizsrijnrYIN7SbQuX9ckeRgQMFoRmuuPzv7h8789 3ioRec0Yo6hYlvzSmWRFsmjH7JsbgdnSZIOQIT31UDkgBbc43YikXSEGLFWwJMsT orZsanhEpZHgGDGi/WnH3KgNEIyvGVjhQ9m6cWy6dTe0VHWTGto6N+osgOHURfpC UivOrVatHuEKfJm+j9JeqCeFqiLyRInN1LZ8t3yoCWPcZrt60I3psAuwms0GiboP T5qW/DybU/Gtn6zN06hm9MklAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU2NSZh/4c wefBjuOoZ6seIr9kqrkwHwYDVR0jBBgwFoAUS+EHOTYlLjzwcvmJ1/3E5+fGYnQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThFMjY5LzM5M0JBOENFMkI2 RjExRjA4NkFERTU0RUM0RjlBRTAyL1MtRUhPVFlsTGp6d2N2bUoxXzNFNS1mR1lu US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUy1FSE9UWWxManp3Y3ZtSjFfM0U1LWZHWW5RLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThF MjY5LzM5M0JBOENFMkI2RjExRjA4NkFERTU0RUM0RjlBRTAyL1MtRUhPVFlsTGp6 d2N2bUoxXzNFNS1mR1luUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKNJuNMf/GORkXPhskeE87ZqVXGjSDEu7c0M2mvlAoLwAJ9FPyeuTG7N Tyk1HvJCgH1WNtBZ/WeWIXotTb985lXcLUm7YwRACq+cz6Y93ytqLLty+ctAIfz7 6Py7LeZcVcJA0d6qfx1VMfneKpk0k+W2JUck6ZILVrEUM5vyVcda2azp/Im+kZDF G0V7zpFIt1FzgaQt4vwIfgh1BbcF5d1akNwXKheO0b4+47WZTMIICAYGQKCv7BVi BuhElyYj2bORLVBEdVSa4UKT/8PHNayiFpQqxOD1uHvrYNFftJeVkH2kAjekHEgp LdE4X2PAdgPGfTjcke+ENb9oyPuna04= -----END CERTIFICATE-----Generated at Sat Aug 23 22:06:39 2025 by rpki-client