$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFBDA/6AD374AAE65D11EEB6123E41C4F9AE02/EHo5wcwE8nzHJmPb97rm2SqVA4A.mft File: EHo5wcwE8nzHJmPb97rm2SqVA4A.mft (raw, json) Hash identifier: 7nZBJgteJX00XZDLphYW6qJIUYttLUDB/L2olHgIKy4= Subject key identifier: 3E:6B:8E:E3:8E:32:1C:66:BE:D8:EC:6C:1B:90:CB:AC:E6:CB:10:BE Authority key identifier: 10:7A:39:C1:CC:04:F2:7C:C7:26:63:DB:F7:BA:E6:D9:2A:95:03:80 Certificate issuer: /CN=A91AFBDA/serialNumber=107A39C1CC04F27CC72663DBF7BAE6D92A950380 Certificate serial: 0112 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EHo5wcwE8nzHJmPb97rm2SqVA4A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFBDA/6AD374AAE65D11EEB6123E41C4F9AE02/EHo5wcwE8nzHJmPb97rm2SqVA4A.mft Manifest number: 010E Signing time: Sat 23 Aug 2025 05:07:42 +0000 Manifest this update: Sat 23 Aug 2025 05:07:42 +0000 Manifest next update: Sat 30 Aug 2025 05:07:42 +0000 Files and hashes: 1: EHo5wcwE8nzHJmPb97rm2SqVA4A.crl (hash: NclBwx+urKuCqxkVE+r6CmQKsbd9Lf1bg/3uzYMJ/E0=) 2: 62246EC4E67E11EEAD030482C4F9AE02.roa (hash: J5vtQMTwpL/xmHDO4Uy4YqCD/INA3rpqnN+ZrH/2hAs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFBDA/6AD374AAE65D11EEB6123E41C4F9AE02/EHo5wcwE8nzHJmPb97rm2SqVA4A.crl rsync://rpki.apnic.net/member_repository/A91AFBDA/6AD374AAE65D11EEB6123E41C4F9AE02/EHo5wcwE8nzHJmPb97rm2SqVA4A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EHo5wcwE8nzHJmPb97rm2SqVA4A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:07:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 274 (0x112) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFBDA, serialNumber=107A39C1CC04F27CC72663DBF7BAE6D92A950380 Validity Not Before: Aug 23 05:07:42 2025 GMT Not After : Aug 30 05:07:42 2025 GMT Subject: CN=68a94c9e-71d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:07:b8:0e:af:5a:57:1b:b7:7e:12:82:8b:4a: f5:65:27:7f:13:25:7f:0f:0a:47:38:6b:03:25:78: 85:79:63:d7:f4:a2:74:fb:60:ab:ca:40:07:9a:e9: cf:1e:bf:dd:ae:73:59:ad:25:e2:4a:4b:35:f0:d2: f7:7c:de:ad:38:5c:3e:ed:fe:94:b7:1d:e0:38:e0: f1:e3:37:60:d3:b9:69:89:37:97:8f:4e:64:a6:68: bb:ba:ea:91:92:02:b3:0c:11:db:00:95:74:54:16: a5:e5:6c:03:91:a9:27:d2:7e:26:ea:88:89:76:b4: 7d:8c:64:02:39:23:7c:d6:81:f3:7b:b2:90:2d:d3: c5:b9:7e:ea:a1:6c:d7:6f:1e:3f:a6:00:75:ad:f0: 29:3d:41:35:00:9f:fc:cc:0e:4e:00:b3:e9:8d:4a: 93:25:47:51:c7:57:e5:d4:ee:65:11:54:e6:66:d7: b1:4a:cb:14:09:3b:75:dd:f7:ce:d8:9c:0b:bc:0d: 10:df:55:e8:ef:50:19:44:f6:2a:5b:32:40:0a:ad: 42:ca:9f:13:81:ae:0b:f7:49:a2:91:e9:70:2a:06: ff:6f:c7:79:4a:c9:92:ce:12:d3:4b:cb:20:17:66: 0e:f5:2b:26:0b:19:30:8e:05:78:59:d4:4f:94:00: ef:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:6B:8E:E3:8E:32:1C:66:BE:D8:EC:6C:1B:90:CB:AC:E6:CB:10:BE X509v3 Authority Key Identifier: keyid:10:7A:39:C1:CC:04:F2:7C:C7:26:63:DB:F7:BA:E6:D9:2A:95:03:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFBDA/6AD374AAE65D11EEB6123E41C4F9AE02/EHo5wcwE8nzHJmPb97rm2SqVA4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EHo5wcwE8nzHJmPb97rm2SqVA4A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFBDA/6AD374AAE65D11EEB6123E41C4F9AE02/EHo5wcwE8nzHJmPb97rm2SqVA4A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:53:35:ac:46:10:24:1f:97:ee:3d:d8:e4:04:4b:f6:9a:90: 6b:c6:c0:81:59:98:b9:7a:60:fb:e3:60:50:9e:a1:0c:11:18: 97:40:f4:4d:42:1f:56:e4:76:f2:e9:eb:3a:c9:91:27:e3:c4: 48:e4:33:0f:55:db:28:fd:eb:59:86:8a:72:bd:ac:f4:49:14: bc:9a:e3:d1:0b:7a:27:d4:e4:52:4d:b9:a8:c0:87:64:cf:27: 68:e6:72:f2:47:07:5e:d7:59:a5:35:00:4c:53:47:39:9e:8d: f5:30:bf:e0:d8:a3:57:36:ab:7e:66:c2:f5:bc:35:cd:58:c5: cf:c7:ba:8a:69:ee:be:1e:9d:d0:23:05:67:f8:32:ec:4b:5a: 21:c4:24:01:dd:0f:bc:72:bf:84:e2:fd:38:c2:ca:ca:b4:d6: e1:16:d9:58:f6:0f:72:79:9d:fb:01:90:aa:6f:18:e3:42:1b: 37:98:bc:56:d7:64:b7:02:77:9a:c1:65:51:86:73:52:f4:e3: 75:96:1e:9a:cd:65:14:0e:a3:f6:4b:ec:4d:68:f8:80:25:05: 8e:c7:8f:a5:55:1e:7e:99:66:66:35:76:be:8c:ff:53:57:02: cf:2a:e7:d5:71:db:8c:93:0e:a8:fe:16:7e:e6:d4:8b:b9:3e: 39:17:ee:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUZCREExMTAvBgNVBAUTKDEwN0EzOUMxQ0MwNEYyN0NDNzI2NjNEQkY3QkFFNkQ5 MkE5NTAzODAwHhcNMjUwODIzMDUwNzQyWhcNMjUwODMwMDUwNzQyWjAYMRYwFAYD VQQDEw02OGE5NGM5ZS03MWQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoge4Dq9aVxu3fhKCi0r1ZSd/EyV/DwpHOGsDJXiFeWPX9KJ0+2CrykAHmunP Hr/drnNZrSXiSks18NL3fN6tOFw+7f6Utx3gOODx4zdg07lpiTeXj05kpmi7uuqR kgKzDBHbAJV0VBal5WwDkakn0n4m6oiJdrR9jGQCOSN81oHze7KQLdPFuX7qoWzX bx4/pgB1rfApPUE1AJ/8zA5OALPpjUqTJUdRx1fl1O5lEVTmZtexSssUCTt13ffO 2JwLvA0Q31Xo71AZRPYqWzJACq1Cyp8Tga4L90mikelwKgb/b8d5SsmSzhLTS8sg F2YO9SsmCxkwjgV4WdRPlADvfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD5rjuOO MhxmvtjsbBuQy6zmyxC+MB8GA1UdIwQYMBaAFBB6OcHMBPJ8xyZj2/e65tkqlQOA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRkJEQS82QUQzNzRBQUU2 NUQxMUVFQjYxMjNFNDFDNEY5QUUwMi9FSG81d2N3RThuekhKbVBiOTdybTJTcVZB NEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VIbzV3Y3dFOG56SEptUGI5N3JtMlNxVkE0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RkJEQS82QUQzNzRBQUU2NUQxMUVFQjYxMjNFNDFDNEY5QUUwMi9FSG81d2N3RThu ekhKbVBiOTdybTJTcVZBNEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCUzWsRhAkH5fuPdjkBEv2mpBrxsCBWZi5emD742BQnqEMERiXQPRN Qh9W5Hby6es6yZEn48RI5DMPVdso/etZhopyvaz0SRS8muPRC3on1ORSTbmowIdk zydo5nLyRwde11mlNQBMU0c5no31ML/g2KNXNqt+ZsL1vDXNWMXPx7qKae6+Hp3Q IwVn+DLsS1ohxCQB3Q+8cr+E4v04wsrKtNbhFtlY9g9yeZ37AZCqbxjjQhs3mLxW 12S3AneawWVRhnNS9ON1lh6azWUUDqP2S+xNaPiAJQWOx4+lVR5+mWZmNXa+jP9T VwLPKufVcduMkw6o/hZ+5tSLuT45F+6g -----END CERTIFICATE-----Generated at Sat Aug 23 18:41:55 2025 by rpki-client