$ rpki-client -vvf rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft File: eHDyQLxFFuOanCWVjPl7GUvnZWc.mft (raw, json) Hash identifier: UYCfy4vbGw39R5BYHS50KcB5UqpEsZORaM1zW/uTF90= Subject key identifier: 35:7E:13:F1:B2:9C:5A:04:EF:C9:C3:BE:F5:3C:DF:C0:4D:D2:2D:68 Authority key identifier: 78:70:F2:40:BC:45:16:E3:9A:9C:25:95:8C:F9:7B:19:4B:E7:65:67 Certificate issuer: /CN=A91A09BF/serialNumber=7870F240BC4516E39A9C25958CF97B194BE76567 Certificate serial: 0BCF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHDyQLxFFuOanCWVjPl7GUvnZWc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft Manifest number: 0BB2 Signing time: Fri 22 Aug 2025 19:06:45 +0000 Manifest this update: Fri 22 Aug 2025 19:06:44 +0000 Manifest next update: Fri 29 Aug 2025 19:06:44 +0000 Files and hashes: 1: eHDyQLxFFuOanCWVjPl7GUvnZWc.crl (hash: iT+xBrpotmjytjkU6W9VojVitr6DG9pOz+080hHTEJI=) 2: CEFDECF850B011F0B9262D4FC4F9AE02.roa (hash: WtUGGPBORu2ELV1J85b8AQ+2CLGSrU7TTTxiEKhsYHc=) 3: EC4AB04AAA5511EABCEBDE19C4F9AE02.roa (hash: xCXQqgm7s0yqcl5rlXb69u+J291yS3/BUfkPMKe4WIs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.crl rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHDyQLxFFuOanCWVjPl7GUvnZWc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:06:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3023 (0xbcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A09BF, serialNumber=7870F240BC4516E39A9C25958CF97B194BE76567 Validity Not Before: Aug 22 19:06:44 2025 GMT Not After : Aug 29 19:06:44 2025 GMT Subject: CN=68a8bfc4-401e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:60:7a:8a:a4:7b:12:04:59:cb:c2:89:59:74: 5b:92:20:6f:a5:68:19:f2:f6:ae:b1:f0:94:24:c1: 53:b8:33:c1:74:1b:06:fd:90:c2:a1:13:e3:c2:24: 42:c8:ef:19:b9:03:a4:ed:6b:15:22:e9:3a:b3:85: 52:ae:5e:bc:35:42:89:31:b7:23:f0:d7:15:87:f7: 5e:21:c0:d1:f9:33:19:c9:bc:af:8b:ee:95:22:1a: 8c:6a:be:38:cd:93:02:e1:b3:cd:d7:1a:40:f0:ef: 1b:b2:dc:b9:1b:d7:7e:b1:ab:83:d3:3f:87:1a:3c: 7e:72:c9:47:1d:07:1a:fd:ed:79:78:07:75:38:71: 8f:e8:04:c0:dd:a5:58:2d:59:6f:a6:e5:52:85:b9: 46:03:2d:20:66:fa:05:76:f4:91:26:84:ab:68:2a: 97:0c:03:50:11:bf:bc:e4:37:56:d7:16:47:a7:7e: f7:46:fc:d2:94:10:5d:ef:62:c2:49:bd:09:ea:42: 78:f6:2e:28:71:94:5e:72:af:44:b9:79:ce:0f:96: e0:a9:23:60:7c:19:ff:15:37:1e:e5:17:f1:d5:61: ab:8f:00:40:d2:40:4a:8d:cb:9d:bd:5a:cc:1a:c3: d4:be:ae:fa:25:d9:95:b3:5f:58:86:e1:9c:4a:05: 92:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:7E:13:F1:B2:9C:5A:04:EF:C9:C3:BE:F5:3C:DF:C0:4D:D2:2D:68 X509v3 Authority Key Identifier: keyid:78:70:F2:40:BC:45:16:E3:9A:9C:25:95:8C:F9:7B:19:4B:E7:65:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHDyQLxFFuOanCWVjPl7GUvnZWc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:8c:c6:ef:75:0c:1d:67:cb:eb:57:61:c5:ef:a4:fd:4d:08: 66:58:78:02:2e:99:18:81:af:7f:2f:08:48:65:a9:73:33:76: 44:59:81:3f:a8:08:a8:28:79:fe:1e:14:76:f3:f6:89:c9:56: 7f:ea:eb:37:16:7c:84:7f:27:e7:25:83:a2:a0:9f:fe:d7:ea: 06:d2:35:0a:24:79:69:52:b6:59:00:e5:b9:cc:be:58:2a:9e: c7:97:27:d6:42:d3:4e:47:25:d6:6f:e1:21:fe:cc:fc:45:38: 16:69:47:a4:45:e7:25:eb:79:1d:ce:63:aa:94:2b:f3:f1:6e: c8:38:aa:8a:b1:6c:f7:e7:9b:b6:2e:50:9d:36:e0:b9:f8:59: e3:37:b6:83:10:1b:9e:b5:8a:02:95:bb:35:d5:69:6a:b7:9d: 43:fb:2a:54:d8:76:4c:a9:8a:aa:da:e3:2a:aa:6a:5c:8a:23: c1:05:94:68:13:d4:e4:10:d6:14:c2:38:f2:23:30:c8:d5:8e: 07:54:5a:60:d8:6b:4a:eb:75:d5:9d:14:1c:40:a2:0f:cb:45: f2:8e:d9:56:f0:a4:f7:ab:38:f8:f2:b5:ff:69:1e:de:c4:5c: 95:3b:df:6b:a3:dc:05:2a:e6:4c:7e:f1:89:16:0b:92:ab:d7: 23:73:1b:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC88wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA5QkYxMTAvBgNVBAUTKDc4NzBGMjQwQkM0NTE2RTM5QTlDMjU5NThDRjk3QjE5 NEJFNzY1NjcwHhcNMjUwODIyMTkwNjQ0WhcNMjUwODI5MTkwNjQ0WjAYMRYwFAYD VQQDEw02OGE4YmZjNC00MDFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1GB6iqR7EgRZy8KJWXRbkiBvpWgZ8vausfCUJMFTuDPBdBsG/ZDCoRPjwiRC yO8ZuQOk7WsVIuk6s4VSrl68NUKJMbcj8NcVh/deIcDR+TMZybyvi+6VIhqMar44 zZMC4bPN1xpA8O8bsty5G9d+sauD0z+HGjx+cslHHQca/e15eAd1OHGP6ATA3aVY LVlvpuVShblGAy0gZvoFdvSRJoSraCqXDANQEb+85DdW1xZHp373RvzSlBBd72LC Sb0J6kJ49i4ocZRecq9EuXnOD5bgqSNgfBn/FTce5Rfx1WGrjwBA0kBKjcudvVrM GsPUvq76JdmVs19YhuGcSgWSIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDV+E/Gy nFoE78nDvvU838BN0i1oMB8GA1UdIwQYMBaAFHhw8kC8RRbjmpwllYz5exlL52Vn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDlCRi9EMTNEQTFENDJE RkMxMUVBQkMxQjZCODJDNEY5QUUwMi9lSER5UUx4RkZ1T2FuQ1dWalBsN0dVdm5a V2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VIRHlRTHhGRnVPYW5DV1ZqUGw3R1V2blpXYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDlCRi9EMTNEQTFENDJERkMxMUVBQkMxQjZCODJDNEY5QUUwMi9lSER5UUx4RkZ1 T2FuQ1dWalBsN0dVdm5aV2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjjMbvdQwdZ8vrV2HF76T9TQhmWHgCLpkYga9/LwhIZalzM3ZEWYE/ qAioKHn+HhR28/aJyVZ/6us3FnyEfyfnJYOioJ/+1+oG0jUKJHlpUrZZAOW5zL5Y Kp7HlyfWQtNORyXWb+Eh/sz8RTgWaUekRecl63kdzmOqlCvz8W7IOKqKsWz355u2 LlCdNuC5+FnjN7aDEBuetYoClbs11Wlqt51D+ypU2HZMqYqq2uMqqmpciiPBBZRo E9TkENYUwjjyIzDI1Y4HVFpg2GtK63XVnRQcQKIPy0XyjtlW8KT3qzj48rX/aR7e xFyVO99ro9wFKuZMfvGJFguSq9cjcxsi -----END CERTIFICATE-----Generated at Sat Aug 23 18:27:26 2025 by rpki-client