$ rpki-client -vvf rpki.apnic.net/member_repository/A919FDC0/2954D62A69E911F081B65B67C4F9AE02/0ewZe9sNlRk40e71SWoRrMoCiO8.mft File: 0ewZe9sNlRk40e71SWoRrMoCiO8.mft (raw, json) Hash identifier: GjdfTihCTyXWnO6+UFvfjC1/bdElU7ZrA3/LVzD+40k= Subject key identifier: A1:A3:0B:68:F7:45:76:C3:4E:C7:17:0E:74:B4:FD:08:88:24:B6:8F Authority key identifier: D1:EC:19:7B:DB:0D:95:19:38:D1:EE:F5:49:6A:11:AC:CA:02:88:EF Certificate issuer: /CN=A919FDC0/serialNumber=D1EC197BDB0D951938D1EEF5496A11ACCA0288EF Certificate serial: 12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ewZe9sNlRk40e71SWoRrMoCiO8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919FDC0/2954D62A69E911F081B65B67C4F9AE02/0ewZe9sNlRk40e71SWoRrMoCiO8.mft Manifest number: 11 Signing time: Sat 23 Aug 2025 08:18:39 +0000 Manifest this update: Sat 23 Aug 2025 08:18:39 +0000 Manifest next update: Sat 30 Aug 2025 08:18:39 +0000 Files and hashes: 1: 0ewZe9sNlRk40e71SWoRrMoCiO8.crl (hash: bgeuLDoiu+HCLGjgNd4Y1j6rWohDnSfY6qwAOWxjvuI=) 2: ACFE803469E911F0A7D42F68C4F9AE02.roa (hash: hVcLQOQnj8t+4j/b6kUDlk5JAqcOolfdhy262nXQ91E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919FDC0/2954D62A69E911F081B65B67C4F9AE02/0ewZe9sNlRk40e71SWoRrMoCiO8.crl rsync://rpki.apnic.net/member_repository/A919FDC0/2954D62A69E911F081B65B67C4F9AE02/0ewZe9sNlRk40e71SWoRrMoCiO8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ewZe9sNlRk40e71SWoRrMoCiO8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 08:18:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18 (0x12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919FDC0, serialNumber=D1EC197BDB0D951938D1EEF5496A11ACCA0288EF Validity Not Before: Aug 23 08:18:39 2025 GMT Not After : Aug 30 08:18:39 2025 GMT Subject: CN=68a9795f-1f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:cc:9a:e8:ec:d8:07:23:55:cc:a6:20:83:b4: b6:4e:2a:b6:62:d1:10:9f:00:1c:70:3a:ec:2e:53: df:c7:32:8b:cb:ab:f9:fd:31:6d:63:6d:7f:4b:57: b6:1c:14:8c:93:ff:a9:fb:4d:6a:70:01:2a:ce:c7: 67:a8:e9:42:8a:9b:82:96:59:86:d0:7b:89:b0:e6: 2b:c6:6d:29:2a:04:cf:a1:14:3c:2e:cc:92:5f:03: 06:97:7b:e9:d5:6f:8c:db:17:57:c0:a2:46:74:c4: b8:8b:17:e6:79:8c:6e:58:cf:72:be:e8:4d:e7:7c: 4c:a3:39:f5:11:f8:c4:8f:9d:ea:2b:2f:3d:45:16: 13:99:28:b6:2d:8d:ab:39:b6:c0:0f:78:34:64:22: fa:18:f4:fa:6d:e2:cb:28:69:2c:bb:43:b9:86:aa: 74:a3:0b:8f:fb:82:67:70:c8:71:c2:f3:a3:59:1e: 52:e5:82:9b:ac:27:e2:d3:ed:91:23:0b:30:88:39: 72:94:3b:ea:80:67:de:8e:ff:f1:a1:d3:75:e5:a4: 2d:16:9b:18:78:80:2c:be:f4:22:1a:fd:d3:48:69: 0f:a8:e1:a1:33:19:58:1c:51:17:df:7c:74:ed:7a: 2b:3c:8e:79:61:76:77:33:22:75:8f:03:50:f6:53: 1b:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:A3:0B:68:F7:45:76:C3:4E:C7:17:0E:74:B4:FD:08:88:24:B6:8F X509v3 Authority Key Identifier: keyid:D1:EC:19:7B:DB:0D:95:19:38:D1:EE:F5:49:6A:11:AC:CA:02:88:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919FDC0/2954D62A69E911F081B65B67C4F9AE02/0ewZe9sNlRk40e71SWoRrMoCiO8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ewZe9sNlRk40e71SWoRrMoCiO8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919FDC0/2954D62A69E911F081B65B67C4F9AE02/0ewZe9sNlRk40e71SWoRrMoCiO8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:30:bc:f9:e9:1d:41:80:83:95:28:98:12:67:0a:93:75:3f: cf:95:5a:e8:a8:d1:45:b3:16:97:dd:ad:5e:f4:fb:14:20:21: 86:f7:c3:04:1b:05:da:3f:7c:99:20:e7:08:f3:ec:57:31:6f: b1:54:40:55:1d:36:0a:3e:ec:13:69:b2:38:69:12:bf:ff:98: fa:09:f4:75:e1:12:d7:7f:13:3b:3c:a0:5f:f9:3c:f1:14:55: f3:b7:65:dc:46:fc:d0:ae:ff:77:90:ed:36:17:32:ad:db:67: bb:c7:e3:eb:76:65:be:d7:90:b0:e4:dc:24:f0:14:dd:79:04: ea:60:8f:d1:6d:f7:48:43:f8:f4:b0:9e:8d:90:1a:88:f8:2b: e5:c4:28:38:0d:37:d7:55:e0:c2:84:cc:0c:8c:48:5f:97:95: 98:ef:82:ac:79:31:e4:4c:b8:2c:ba:f0:6f:ce:96:f2:0b:15: 29:19:54:d6:fa:cd:59:30:26:29:b0:95:e7:e8:f4:d1:86:1c: 6f:18:06:05:86:40:00:a9:18:a4:b6:e1:da:5b:75:78:6b:a6: 15:b1:bb:c5:ab:6a:78:9b:4a:37:d1:55:a0:36:61:ee:21:fc: d4:58:17:9f:52:7c:98:f5:6c:e8:86:37:22:9b:a6:89:b8:b2: ea:be:cd:05 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RkRDMDExMC8GA1UEBRMoRDFFQzE5N0JEQjBEOTUxOTM4RDFFRUY1NDk2QTExQUND QTAyODhFRjAeFw0yNTA4MjMwODE4MzlaFw0yNTA4MzAwODE4MzlaMBgxFjAUBgNV BAMTDTY4YTk3OTVmLTFmNWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDgzJro7NgHI1XMpiCDtLZOKrZi0RCfABxwOuwuU9/HMovLq/n9MW1jbX9LV7Yc FIyT/6n7TWpwASrOx2eo6UKKm4KWWYbQe4mw5ivGbSkqBM+hFDwuzJJfAwaXe+nV b4zbF1fAokZ0xLiLF+Z5jG5Yz3K+6E3nfEyjOfUR+MSPneorLz1FFhOZKLYtjas5 tsAPeDRkIvoY9Ppt4ssoaSy7Q7mGqnSjC4/7gmdwyHHC86NZHlLlgpusJ+LT7ZEj CzCIOXKUO+qAZ96O//Gh03XlpC0Wmxh4gCy+9CIa/dNIaQ+o4aEzGVgcURfffHTt eis8jnlhdnczInWPA1D2Uxv9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUoaMLaPdF dsNOxxcOdLT9CIgkto8wHwYDVR0jBBgwFoAU0ewZe9sNlRk40e71SWoRrMoCiO8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlGREMwLzI5NTRENjJBNjlF OTExRjA4MUI2NUI2N0M0RjlBRTAyLzBld1plOXNObFJrNDBlNzFTV29Sck1vQ2lP OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMGV3WmU5c05sUms0MGU3MVNXb1JyTW9DaU84LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlG REMwLzI5NTRENjJBNjlFOTExRjA4MUI2NUI2N0M0RjlBRTAyLzBld1plOXNObFJr NDBlNzFTV29Sck1vQ2lPOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAEwvPnpHUGAg5UomBJnCpN1P8+VWuio0UWzFpfdrV70+xQgIYb3wwQb Bdo/fJkg5wjz7Fcxb7FUQFUdNgo+7BNpsjhpEr//mPoJ9HXhEtd/Ezs8oF/5PPEU VfO3ZdxG/NCu/3eQ7TYXMq3bZ7vH4+t2Zb7XkLDk3CTwFN15BOpgj9Ft90hD+PSw no2QGoj4K+XEKDgNN9dV4MKEzAyMSF+XlZjvgqx5MeRMuCy68G/OlvILFSkZVNb6 zVkwJimwlefo9NGGHG8YBgWGQACpGKS24dpbdXhrphWxu8WranibSjfRVaA2Ye4h /NRYF59SfJj1bOiGNyKbpom4suq+zQU= -----END CERTIFICATE-----Generated at Sat Aug 23 17:19:03 2025 by rpki-client