$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE9F6/8F23CE841D5F11EFB8374D3DC4F9AE02/sejBHBQOD6dR6L-mWlnHFd1-HFM.mft File: sejBHBQOD6dR6L-mWlnHFd1-HFM.mft (raw, json) Hash identifier: UK5bLyXk4xgUuT5T/eV01QBPzDFXIjWp20xCfW3TaL8= Subject key identifier: 05:78:B7:27:7B:02:01:9D:9A:A6:E7:C6:70:26:9A:89:E5:49:43:3D Authority key identifier: B1:E8:C1:1C:14:0E:0F:A7:51:E8:BF:A6:5A:59:C7:15:DD:7E:1C:53 Certificate issuer: /CN=A91AE9F6/serialNumber=B1E8C11C140E0FA751E8BFA65A59C715DD7E1C53 Certificate serial: EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sejBHBQOD6dR6L-mWlnHFd1-HFM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE9F6/8F23CE841D5F11EFB8374D3DC4F9AE02/sejBHBQOD6dR6L-mWlnHFd1-HFM.mft Manifest number: E9 Signing time: Sat 23 Aug 2025 05:30:31 +0000 Manifest this update: Sat 23 Aug 2025 05:30:30 +0000 Manifest next update: Sat 30 Aug 2025 05:30:30 +0000 Files and hashes: 1: sejBHBQOD6dR6L-mWlnHFd1-HFM.crl (hash: 4JXzP2zD/Y96MxPTgQx7C5g7xO0EsuGMMEY4i7Bxs/o=) 2: 4D45F08C1E3B11EFB02B0184C4F9AE02.roa (hash: +50v3mlEKF+ZCfC1CHUDd+fzqudaC4LTsu2ANTG7KU4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE9F6/8F23CE841D5F11EFB8374D3DC4F9AE02/sejBHBQOD6dR6L-mWlnHFd1-HFM.crl rsync://rpki.apnic.net/member_repository/A91AE9F6/8F23CE841D5F11EFB8374D3DC4F9AE02/sejBHBQOD6dR6L-mWlnHFd1-HFM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sejBHBQOD6dR6L-mWlnHFd1-HFM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:30:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 235 (0xeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE9F6, serialNumber=B1E8C11C140E0FA751E8BFA65A59C715DD7E1C53 Validity Not Before: Aug 23 05:30:30 2025 GMT Not After : Aug 30 05:30:30 2025 GMT Subject: CN=68a951f6-3898 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a6:56:47:6d:2a:65:38:df:7f:bf:5a:66:7d: de:19:59:f1:f8:15:66:a9:e1:ce:47:8f:e4:3b:71: d5:99:5e:11:de:f9:3d:d2:24:e7:d3:10:41:73:fe: f9:b9:4e:50:ba:e3:04:af:ce:04:e0:6f:90:84:e4: 0d:39:4c:27:ef:23:60:72:6a:30:30:a9:18:5c:88: 0f:9c:97:c3:ab:71:08:5c:b5:aa:78:5b:15:95:4e: ad:a2:7d:c3:71:c5:0d:4f:4d:13:1d:09:6d:42:4d: 8e:df:95:29:b0:c9:fa:cf:69:d2:a1:e5:70:af:59: e7:b6:ce:b9:13:be:b3:ff:87:b1:60:ef:56:77:7f: 9b:12:74:41:b3:eb:3c:3c:53:1f:ad:65:82:de:27: 86:25:31:a3:12:59:1c:ad:d9:6a:7a:66:cc:78:e7: 71:3b:76:69:46:5c:7f:30:43:bb:8e:80:66:23:e0: 15:32:44:d0:b7:75:54:02:e9:96:2c:06:02:03:54: 0f:45:43:83:3e:d6:22:69:69:01:0c:d5:57:aa:2c: da:e1:b2:fb:7d:1e:79:cd:80:c3:74:10:12:9d:f2: c8:84:09:19:57:a3:b2:85:58:f5:a8:cb:b5:89:f3: c6:b7:39:fa:d7:22:12:bd:ef:ca:46:3a:1e:28:27: c2:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:78:B7:27:7B:02:01:9D:9A:A6:E7:C6:70:26:9A:89:E5:49:43:3D X509v3 Authority Key Identifier: keyid:B1:E8:C1:1C:14:0E:0F:A7:51:E8:BF:A6:5A:59:C7:15:DD:7E:1C:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE9F6/8F23CE841D5F11EFB8374D3DC4F9AE02/sejBHBQOD6dR6L-mWlnHFd1-HFM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sejBHBQOD6dR6L-mWlnHFd1-HFM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE9F6/8F23CE841D5F11EFB8374D3DC4F9AE02/sejBHBQOD6dR6L-mWlnHFd1-HFM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:87:d7:75:c4:38:2e:13:92:d5:8a:2a:a1:7f:5d:79:b3:52: b8:d0:d8:01:14:bd:25:cc:23:dd:3b:b2:3a:bf:f8:f9:33:28: dd:e6:12:2f:28:2a:87:62:cc:46:33:65:e8:8a:8b:62:0e:20: c0:ab:d3:f3:78:96:41:13:7a:74:12:14:0d:16:e7:26:73:f5: 78:a7:ed:46:63:09:c6:23:57:e2:84:51:ba:a9:1e:e8:d0:25: 8c:81:d3:38:54:58:8e:9b:b3:49:f6:68:36:80:ad:1c:fc:3f: b4:64:df:2f:94:5b:1e:23:1f:dd:d6:0c:d7:16:5f:78:59:e1: b0:5f:13:b5:28:f2:0f:4e:a4:55:7f:03:d4:84:36:15:5a:81: c4:02:38:4a:bd:9e:c5:62:0b:b8:be:f2:a7:c8:14:66:13:e6: 40:03:6f:8a:0e:7f:40:26:8f:5b:a2:ed:34:c8:f9:93:e9:db: e1:7f:22:f4:37:7e:56:bf:7d:55:1d:8b:2e:74:1d:aa:fe:47: bc:a5:90:2a:91:1e:71:e8:ee:09:3d:a5:2c:11:53:2c:8f:b1: 3f:73:24:e4:a9:c2:55:83:26:fd:b2:89:31:ca:ac:45:4a:ef: 67:5e:e9:8f:55:3a:79:13:d6:5d:6b:39:f5:cb:36:29:ee:44: 7c:1b:2f:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUU5RjYxMTAvBgNVBAUTKEIxRThDMTFDMTQwRTBGQTc1MUU4QkZBNjVBNTlDNzE1 REQ3RTFDNTMwHhcNMjUwODIzMDUzMDMwWhcNMjUwODMwMDUzMDMwWjAYMRYwFAYD VQQDEw02OGE5NTFmNi0zODk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtKZWR20qZTjff79aZn3eGVnx+BVmqeHOR4/kO3HVmV4R3vk90iTn0xBBc/75 uU5QuuMEr84E4G+QhOQNOUwn7yNgcmowMKkYXIgPnJfDq3EIXLWqeFsVlU6ton3D ccUNT00THQltQk2O35UpsMn6z2nSoeVwr1nnts65E76z/4exYO9Wd3+bEnRBs+s8 PFMfrWWC3ieGJTGjElkcrdlqembMeOdxO3ZpRlx/MEO7joBmI+AVMkTQt3VUAumW LAYCA1QPRUODPtYiaWkBDNVXqiza4bL7fR55zYDDdBASnfLIhAkZV6OyhVj1qMu1 ifPGtzn61yISve/KRjoeKCfCPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAV4tyd7 AgGdmqbnxnAmmonlSUM9MB8GA1UdIwQYMBaAFLHowRwUDg+nUei/plpZxxXdfhxT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTlGNi84RjIzQ0U4NDFE NUYxMUVGQjgzNzREM0RDNEY5QUUwMi9zZWpCSEJRT0Q2ZFI2TC1tV2xuSEZkMS1I Rk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NlakJIQlFPRDZkUjZMLW1XbG5IRmQxLUhGTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTlGNi84RjIzQ0U4NDFENUYxMUVGQjgzNzREM0RDNEY5QUUwMi9zZWpCSEJRT0Q2 ZFI2TC1tV2xuSEZkMS1IRk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsh9d1xDguE5LViiqhf115s1K40NgBFL0lzCPdO7I6v/j5Myjd5hIv KCqHYsxGM2XoiotiDiDAq9PzeJZBE3p0EhQNFucmc/V4p+1GYwnGI1fihFG6qR7o 0CWMgdM4VFiOm7NJ9mg2gK0c/D+0ZN8vlFseIx/d1gzXFl94WeGwXxO1KPIPTqRV fwPUhDYVWoHEAjhKvZ7FYgu4vvKnyBRmE+ZAA2+KDn9AJo9bou00yPmT6dvhfyL0 N35Wv31VHYsudB2q/ke8pZAqkR5x6O4JPaUsEVMsj7E/cyTkqcJVgyb9sokxyqxF Su9nXumPVTp5E9Zdazn1yzYp7kR8Gy+F -----END CERTIFICATE-----Generated at Sat Aug 23 16:20:37 2025 by rpki-client