$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.mft File: eKfTXvnEd150y6PRZrYbdZAkFSM.mft (raw, json) Hash identifier: mATBpBKczxZkHC1g5hHUfMm9L3xLW7wIigrUdLi8Hzc= Subject key identifier: 9F:37:13:48:76:A1:23:91:B5:83:FE:1C:1E:B7:44:5C:8E:19:52:A8 Authority key identifier: 78:A7:D3:5E:F9:C4:77:5E:74:CB:A3:D1:66:B6:1B:75:90:24:15:23 Certificate issuer: /CN=A91D2C38/serialNumber=78A7D35EF9C4775E74CBA3D166B61B7590241523 Certificate serial: 8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eKfTXvnEd150y6PRZrYbdZAkFSM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.mft Manifest number: 8C Signing time: Sat 23 Aug 2025 06:45:57 +0000 Manifest this update: Sat 23 Aug 2025 06:45:56 +0000 Manifest next update: Sat 30 Aug 2025 06:45:56 +0000 Files and hashes: 1: eKfTXvnEd150y6PRZrYbdZAkFSM.crl (hash: nLKgH4m10W3l4HEfSN2SrVkAH2JsOfybdXCOZ7TyZSA=) 2: 8DDD0D56A98C11EFAAC0F364C4F9AE02.roa (hash: yg1U4JyDYBAoLLqLQFnhNTd+uuZ0oKhea1PeFahobmY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.crl rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eKfTXvnEd150y6PRZrYbdZAkFSM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:45:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 141 (0x8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2C38, serialNumber=78A7D35EF9C4775E74CBA3D166B61B7590241523 Validity Not Before: Aug 23 06:45:56 2025 GMT Not After : Aug 30 06:45:56 2025 GMT Subject: CN=68a963a4-72a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:58:3d:ee:3e:f0:6c:78:d8:e5:47:bf:2a:5d: 0a:83:c1:bd:d9:73:5a:84:45:aa:c3:47:36:df:5b: ce:df:19:79:fd:51:11:82:4f:dc:fc:27:f9:84:9b: c6:ec:5c:a4:c0:77:53:24:0d:e5:dc:cd:52:34:90: 78:cb:a3:28:a3:28:0f:5c:85:ba:5e:fa:5a:bc:63: c8:b0:37:fe:13:18:6c:d7:a5:02:94:7f:78:a3:88: a6:90:06:d2:1f:07:cf:c9:f6:6a:c4:1e:19:d6:31: 72:26:22:f7:2f:4d:d1:bc:d4:89:d4:4d:ea:e8:e4: f9:44:eb:e6:72:39:5e:85:93:1d:46:e2:52:c3:11: 5f:f6:f2:a9:63:c5:64:70:79:1b:d3:58:13:2d:29: 13:d9:9d:1c:16:9a:c6:99:51:39:18:2e:2f:69:b7: d8:e8:36:61:a5:05:4e:f6:53:dc:3a:e9:91:95:ae: 86:9f:c3:93:6d:7e:63:cd:cf:15:01:9f:54:9a:b9: 1f:a6:3c:60:88:a9:b7:60:0c:6b:77:01:ea:fd:74: ba:72:73:03:80:ed:c3:f5:d4:8b:83:c7:12:75:50: 8a:60:c4:89:e4:32:bf:0b:9e:0d:2f:1c:84:b1:d6: 47:8f:5b:ae:af:fd:d8:80:8f:bd:2a:48:c0:9d:68: 39:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:37:13:48:76:A1:23:91:B5:83:FE:1C:1E:B7:44:5C:8E:19:52:A8 X509v3 Authority Key Identifier: keyid:78:A7:D3:5E:F9:C4:77:5E:74:CB:A3:D1:66:B6:1B:75:90:24:15:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eKfTXvnEd150y6PRZrYbdZAkFSM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:77:50:2f:7a:49:d9:2a:70:4b:dc:56:4c:dc:01:77:f8:fa: d7:94:ba:51:91:aa:95:db:4d:57:43:51:29:53:2a:96:82:cd: aa:cc:a8:9b:c0:64:2c:dc:37:77:63:e6:21:45:62:33:4f:09: 93:b3:c1:61:24:7b:75:69:f1:a3:b1:76:a8:39:bb:e0:8a:9e: 1a:fe:5e:02:a8:55:31:16:83:79:23:e9:2d:31:af:d9:45:92: c4:53:46:39:14:0b:51:df:ec:34:e6:cf:b0:c6:ff:83:2f:ef: 3c:24:b9:8a:22:b7:de:0f:c8:c0:30:e1:57:be:67:d7:98:f8: 3a:39:48:50:e3:af:ab:74:83:d8:da:57:8b:2b:8c:0a:3a:1a: c3:f4:33:74:01:77:3c:02:ba:88:fb:10:3e:cf:dc:91:a3:a3: 2f:c8:0e:17:18:7e:8d:fa:75:69:b7:91:a3:17:cc:71:0f:fd: ef:1b:82:98:f5:8d:0b:d9:70:77:99:e5:0b:27:2d:fa:36:14: d4:36:c0:9d:73:24:3d:37:10:fa:9b:e7:1d:85:26:9d:00:9a: ee:4b:bf:89:bf:3e:42:d9:b8:22:68:55:f3:55:ed:7b:86:e8: ac:f0:f8:58:fb:66:71:50:33:d9:51:18:cf:79:7a:3c:bf:5d: d0:ad:35:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJDMzgxMTAvBgNVBAUTKDc4QTdEMzVFRjlDNDc3NUU3NENCQTNEMTY2QjYxQjc1 OTAyNDE1MjMwHhcNMjUwODIzMDY0NTU2WhcNMjUwODMwMDY0NTU2WjAYMRYwFAYD VQQDEw02OGE5NjNhNC03MmEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Fg97j7wbHjY5Ue/Kl0Kg8G92XNahEWqw0c231vO3xl5/VERgk/c/Cf5hJvG 7FykwHdTJA3l3M1SNJB4y6MooygPXIW6XvpavGPIsDf+Exhs16UClH94o4imkAbS HwfPyfZqxB4Z1jFyJiL3L03RvNSJ1E3q6OT5ROvmcjlehZMdRuJSwxFf9vKpY8Vk cHkb01gTLSkT2Z0cFprGmVE5GC4vabfY6DZhpQVO9lPcOumRla6Gn8OTbX5jzc8V AZ9UmrkfpjxgiKm3YAxrdwHq/XS6cnMDgO3D9dSLg8cSdVCKYMSJ5DK/C54NLxyE sdZHj1uur/3YgI+9KkjAnWg5SwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ83E0h2 oSORtYP+HB63RFyOGVKoMB8GA1UdIwQYMBaAFHin0175xHdedMuj0Wa2G3WQJBUj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkMzOC8wREU4OTM0MEE5 OEMxMUVGOTM1MEZCNjNDNEY5QUUwMi9lS2ZUWHZuRWQxNTB5NlBSWnJZYmRaQWtG U00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VLZlRYdm5FZDE1MHk2UFJaclliZFpBa0ZTTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MkMzOC8wREU4OTM0MEE5OEMxMUVGOTM1MEZCNjNDNEY5QUUwMi9lS2ZUWHZuRWQx NTB5NlBSWnJZYmRaQWtGU00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYd1AveknZKnBL3FZM3AF3+PrXlLpRkaqV201XQ1EpUyqWgs2qzKib wGQs3Dd3Y+YhRWIzTwmTs8FhJHt1afGjsXaoObvgip4a/l4CqFUxFoN5I+ktMa/Z RZLEU0Y5FAtR3+w05s+wxv+DL+88JLmKIrfeD8jAMOFXvmfXmPg6OUhQ46+rdIPY 2leLK4wKOhrD9DN0AXc8ArqI+xA+z9yRo6MvyA4XGH6N+nVpt5GjF8xxD/3vG4KY 9Y0L2XB3meULJy36NhTUNsCdcyQ9NxD6m+cdhSadAJruS7+Jvz5C2bgiaFXzVe17 huis8PhY+2ZxUDPZURjPeXo8v13QrTVL -----END CERTIFICATE-----Generated at Sun Aug 24 07:02:24 2025 by rpki-client