$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD844/78769474165211EE914B7B56C4F9AE02/EWTaYENN7l6xS7U9S1lOZl3yb_Y.mft File: EWTaYENN7l6xS7U9S1lOZl3yb_Y.mft (raw, json) Hash identifier: e8DhHjICD99YVKbPN9904zQZOq8sOW2O4oJ9SSacTaU= Subject key identifier: 68:4E:71:6E:CF:B0:93:46:FB:9C:9B:BE:63:C6:F0:BB:59:E4:53:D2 Authority key identifier: 11:64:DA:60:43:4D:EE:5E:B1:4B:B5:3D:4B:59:4E:66:5D:F2:6F:F6 Certificate issuer: /CN=A91BD844/serialNumber=1164DA60434DEE5EB14BB53D4B594E665DF26FF6 Certificate serial: 01A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EWTaYENN7l6xS7U9S1lOZl3yb_Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD844/78769474165211EE914B7B56C4F9AE02/EWTaYENN7l6xS7U9S1lOZl3yb_Y.mft Manifest number: 019A Signing time: Sat 23 Aug 2025 03:33:01 +0000 Manifest this update: Sat 23 Aug 2025 03:33:00 +0000 Manifest next update: Sat 30 Aug 2025 03:33:00 +0000 Files and hashes: 1: EWTaYENN7l6xS7U9S1lOZl3yb_Y.crl (hash: h6azP7vOuWZFXpSToNnzIZByBPmZYZSbId8dMC4Ijoo=) 2: 32D39C06224511EE81776175C4F9AE02.roa (hash: IpE3dRMtn4VIH+WF4zXN3kMbPGJfB4KqDmJ+7Dw6ktA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD844/78769474165211EE914B7B56C4F9AE02/EWTaYENN7l6xS7U9S1lOZl3yb_Y.crl rsync://rpki.apnic.net/member_repository/A91BD844/78769474165211EE914B7B56C4F9AE02/EWTaYENN7l6xS7U9S1lOZl3yb_Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EWTaYENN7l6xS7U9S1lOZl3yb_Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:33:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 418 (0x1a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD844, serialNumber=1164DA60434DEE5EB14BB53D4B594E665DF26FF6 Validity Not Before: Aug 23 03:33:00 2025 GMT Not After : Aug 30 03:33:00 2025 GMT Subject: CN=68a9366c-3535 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:85:78:31:3b:53:c8:31:6e:de:99:96:e5:23: 5b:e6:b9:a3:31:80:4e:5e:be:76:b2:5e:9e:eb:a1: fc:57:a1:c2:4b:04:77:39:9e:b8:11:3c:4c:53:41: 7c:50:a2:7f:cb:31:5e:81:0d:e4:01:a6:64:c6:a3: f8:24:48:ab:fe:14:e3:2f:9b:96:7d:8d:40:f5:24: 71:8d:2e:32:66:c7:cf:aa:a8:86:3f:12:e5:72:18: 7a:9a:e3:ee:4d:1c:fe:ac:85:f7:6c:42:52:46:48: 12:fb:ee:1d:42:61:f5:61:a3:7c:8f:c2:87:e7:1e: 80:1b:ce:6a:01:40:e3:c5:df:85:0d:33:65:c1:d6: bb:2e:05:1d:14:c7:f2:fb:68:ea:88:c8:d2:44:47: 2b:18:f2:4e:4f:3a:b3:8d:00:b2:06:6c:37:fe:87: 4a:23:f5:d2:f4:ee:40:70:4e:29:bb:d8:90:dd:fd: b2:da:b0:04:74:3d:96:10:6d:63:75:0a:1c:2c:be: 5a:b8:c8:70:b1:16:f5:6f:85:65:d3:35:ef:d2:3d: 1c:33:9d:69:a8:ff:57:2f:aa:0b:26:c6:f0:9e:95: f2:07:80:62:8d:fd:c0:78:17:d2:b1:59:70:7c:d5: 86:66:ff:9d:db:87:04:b6:10:46:6d:b5:2b:b1:0d: b7:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:4E:71:6E:CF:B0:93:46:FB:9C:9B:BE:63:C6:F0:BB:59:E4:53:D2 X509v3 Authority Key Identifier: keyid:11:64:DA:60:43:4D:EE:5E:B1:4B:B5:3D:4B:59:4E:66:5D:F2:6F:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD844/78769474165211EE914B7B56C4F9AE02/EWTaYENN7l6xS7U9S1lOZl3yb_Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EWTaYENN7l6xS7U9S1lOZl3yb_Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD844/78769474165211EE914B7B56C4F9AE02/EWTaYENN7l6xS7U9S1lOZl3yb_Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:7d:a7:0e:6c:e2:0b:5d:e7:2d:ca:07:9c:a7:af:53:f8:2e: d8:b1:45:b5:a6:b0:e1:25:70:26:57:08:8a:83:cc:17:25:b0: 68:94:c4:a3:1c:d2:e6:d5:b9:d8:44:9b:45:3d:07:cc:33:6a: 90:63:45:51:31:20:ed:85:4c:93:cb:b2:0c:c0:11:55:69:43: 7d:20:dd:91:7b:56:3d:ee:c1:a0:03:4c:09:a3:9b:ee:fb:7c: 47:73:0b:4d:b5:0d:68:ab:d4:bf:26:e9:0d:fe:d2:ba:f6:93: 56:4e:f1:6c:81:86:4a:ad:cb:22:96:df:9e:b8:f9:b7:19:58: 2b:1e:00:53:9a:a7:28:34:e2:78:86:34:ec:a2:b7:cc:8c:fb: ab:5a:86:8a:f3:de:ee:df:be:f4:14:d1:73:06:43:37:43:f3: ed:1b:91:73:f9:ea:1e:e2:f7:8a:8d:8c:73:f0:b1:ea:13:07: bb:f5:55:c5:9f:c5:50:fe:e9:b1:9b:80:37:40:9d:6b:92:20: 76:5b:88:00:75:98:b8:69:bf:00:4c:68:f6:db:d4:99:44:c5: 5f:70:42:e8:9f:e7:ce:2e:ab:e8:38:24:b2:ed:b1:9a:94:ed: ba:e8:d4:25:bb:55:26:38:93:4c:4a:f5:16:fd:3b:28:80:60: 11:50:8e:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkQ4NDQxMTAvBgNVBAUTKDExNjREQTYwNDM0REVFNUVCMTRCQjUzRDRCNTk0RTY2 NURGMjZGRjYwHhcNMjUwODIzMDMzMzAwWhcNMjUwODMwMDMzMzAwWjAYMRYwFAYD VQQDEw02OGE5MzY2Yy0zNTM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnIV4MTtTyDFu3pmW5SNb5rmjMYBOXr52sl6e66H8V6HCSwR3OZ64ETxMU0F8 UKJ/yzFegQ3kAaZkxqP4JEir/hTjL5uWfY1A9SRxjS4yZsfPqqiGPxLlchh6muPu TRz+rIX3bEJSRkgS++4dQmH1YaN8j8KH5x6AG85qAUDjxd+FDTNlwda7LgUdFMfy +2jqiMjSREcrGPJOTzqzjQCyBmw3/odKI/XS9O5AcE4pu9iQ3f2y2rAEdD2WEG1j dQocLL5auMhwsRb1b4Vl0zXv0j0cM51pqP9XL6oLJsbwnpXyB4Bijf3AeBfSsVlw fNWGZv+d24cEthBGbbUrsQ23DQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGhOcW7P sJNG+5ybvmPG8LtZ5FPSMB8GA1UdIwQYMBaAFBFk2mBDTe5esUu1PUtZTmZd8m/2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRDg0NC83ODc2OTQ3NDE2 NTIxMUVFOTE0QjdCNTZDNEY5QUUwMi9FV1RhWUVOTjdsNnhTN1U5UzFsT1psM3li X1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VXVGFZRU5ON2w2eFM3VTlTMWxPWmwzeWJfWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RDg0NC83ODc2OTQ3NDE2NTIxMUVFOTE0QjdCNTZDNEY5QUUwMi9FV1RhWUVOTjds NnhTN1U5UzFsT1psM3liX1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3facObOILXectygecp69T+C7YsUW1prDhJXAmVwiKg8wXJbBolMSj HNLm1bnYRJtFPQfMM2qQY0VRMSDthUyTy7IMwBFVaUN9IN2Re1Y97sGgA0wJo5vu +3xHcwtNtQ1oq9S/JukN/tK69pNWTvFsgYZKrcsilt+euPm3GVgrHgBTmqcoNOJ4 hjTsorfMjPurWoaK897u3770FNFzBkM3Q/PtG5Fz+eoe4veKjYxz8LHqEwe79VXF n8VQ/umxm4A3QJ1rkiB2W4gAdZi4ab8ATGj229SZRMVfcELon+fOLqvoOCSy7bGa lO266NQlu1UmOJNMSvUW/TsogGARUI6x -----END CERTIFICATE-----Generated at Sat Aug 23 21:27:29 2025 by rpki-client