$ rpki-client -vvf rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.mft File: EpTEi8aWr-ggvRWC80NnutqwJDI.mft (raw, json) Hash identifier: gYDHAICGPM4lDoLz/qgvmSgdZH7Pkc0eRjhl9ueSjlM= Subject key identifier: 20:1B:6F:B4:6B:B0:F0:20:AE:64:2F:C8:79:88:CA:58:F7:DB:66:68 Authority key identifier: 12:94:C4:8B:C6:96:AF:E8:20:BD:15:82:F3:43:67:BA:DA:B0:24:32 Certificate issuer: /CN=A9117817/serialNumber=1294C48BC696AFE820BD1582F34367BADAB02432 Certificate serial: 0487 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EpTEi8aWr-ggvRWC80NnutqwJDI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.mft Manifest number: 047F Signing time: Sat 19 Jul 2025 00:27:22 +0000 Manifest this update: Sat 19 Jul 2025 00:27:22 +0000 Manifest next update: Sat 26 Jul 2025 00:27:22 +0000 Files and hashes: 1: EpTEi8aWr-ggvRWC80NnutqwJDI.crl (hash: dgtXHQ5R6/uDnTBW5FCf4EaT+C2HoRROSbZcHs1Ky8c=) 2: 2A84118CE0A311EC9CF2B738C4F9AE02.roa (hash: d5/NJRnIjibSymNbNk/lOaJ1Q3nAQoqs/MS6HVTtaFE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.crl rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EpTEi8aWr-ggvRWC80NnutqwJDI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 00:27:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1159 (0x487) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117817, serialNumber=1294C48BC696AFE820BD1582F34367BADAB02432 Validity Not Before: Jul 19 00:27:22 2025 GMT Not After : Jul 26 00:27:22 2025 GMT Subject: CN=687ae66a-c9c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:78:5a:d3:4f:d0:f1:db:1e:26:13:80:28:6d: 7b:2a:9a:c2:3e:2e:0d:6c:2f:ab:09:f8:1f:65:1e: ef:c8:51:f7:55:e8:03:98:bd:d9:63:41:7d:ea:7e: 08:84:4c:2e:ee:73:a2:4a:1f:32:32:4e:a1:8d:e3: fa:18:4c:00:7d:d7:b9:28:9b:f5:67:2e:51:a7:92: 06:50:ff:cb:d2:3d:fc:cf:e0:b4:13:dd:07:8b:98: 86:32:2f:e1:6a:7b:33:0a:4c:c6:00:bc:a0:c3:4d: ee:78:e7:e1:0c:13:06:06:2d:84:90:59:18:57:46: e9:0c:db:25:17:ef:b3:a5:bd:03:fe:74:ba:96:d2: 98:ec:3b:ce:ff:01:b2:e5:22:3d:aa:77:2e:e2:a7: 43:f2:18:c2:0c:27:cc:b4:51:b6:e1:dd:88:97:00: 6c:3a:08:41:b9:ac:88:ba:f6:c1:c5:23:d5:32:05: 67:ba:08:bc:98:ca:5e:69:e2:0f:d0:c0:86:7f:44: 86:2a:b0:44:02:b0:13:f1:fb:0b:7c:b7:ba:3a:f6: 65:22:a5:07:10:60:aa:38:6e:73:d4:77:0a:87:62: 2c:e7:3a:ca:e3:11:8c:35:f3:4a:a6:9a:8c:0d:c1: b6:6a:2a:d9:ca:7f:30:4f:b7:9a:66:15:cf:c1:db: 61:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:1B:6F:B4:6B:B0:F0:20:AE:64:2F:C8:79:88:CA:58:F7:DB:66:68 X509v3 Authority Key Identifier: keyid:12:94:C4:8B:C6:96:AF:E8:20:BD:15:82:F3:43:67:BA:DA:B0:24:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EpTEi8aWr-ggvRWC80NnutqwJDI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:cf:4f:78:05:f9:c8:99:0b:ca:54:db:c7:cf:de:df:2e:6e: 95:ab:42:c7:7b:04:23:0b:4d:6b:40:58:1d:a5:17:18:ef:74: eb:b8:3f:ef:16:2d:02:d7:40:09:cd:0a:62:2b:4e:25:d3:08: b0:e6:1f:81:bb:c2:ad:16:aa:22:28:c3:e1:ba:74:2f:23:e3: 25:b5:59:3a:7c:45:e7:98:e0:60:5e:14:6e:e0:f4:a9:86:8a: 58:f8:21:90:94:9c:88:d5:d0:c0:95:04:cb:92:b2:92:8f:4b: 4f:3a:41:03:fc:49:d7:34:d9:61:1c:31:1b:47:0c:54:e7:1d: 88:b2:90:1a:2d:11:8c:0c:ca:6c:20:2c:2a:c6:36:2a:96:11: b0:9b:8b:be:d4:02:f8:c6:1e:3b:7e:22:fd:28:13:3c:37:56: 07:cf:04:e2:8a:48:c8:a4:bb:d7:8c:76:07:f9:74:ce:f6:6d: e6:69:90:d9:db:d6:d5:76:f2:c5:55:63:de:d1:53:30:e2:04: fd:be:96:d1:73:98:7f:4d:94:5a:e1:8f:1e:48:54:bf:76:af: ad:d7:ce:30:7d:b6:86:6f:6c:64:e9:3d:33:0d:15:92:1f:3f: 62:5c:d5:c3:d2:ea:60:89:39:b2:7a:e7:e8:12:ba:e3:7a:5e: 7e:5b:e5:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc4MTcxMTAvBgNVBAUTKDEyOTRDNDhCQzY5NkFGRTgyMEJEMTU4MkYzNDM2N0JB REFCMDI0MzIwHhcNMjUwNzE5MDAyNzIyWhcNMjUwNzI2MDAyNzIyWjAYMRYwFAYD VQQDEw02ODdhZTY2YS1jOWM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsXha00/Q8dseJhOAKG17KprCPi4NbC+rCfgfZR7vyFH3VegDmL3ZY0F96n4I hEwu7nOiSh8yMk6hjeP6GEwAfde5KJv1Zy5Rp5IGUP/L0j38z+C0E90Hi5iGMi/h anszCkzGALygw03ueOfhDBMGBi2EkFkYV0bpDNslF++zpb0D/nS6ltKY7DvO/wGy 5SI9qncu4qdD8hjCDCfMtFG24d2IlwBsOghBuayIuvbBxSPVMgVnugi8mMpeaeIP 0MCGf0SGKrBEArAT8fsLfLe6OvZlIqUHEGCqOG5z1HcKh2Is5zrK4xGMNfNKppqM DcG2airZyn8wT7eaZhXPwdth3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCAbb7Rr sPAgrmQvyHmIylj322ZoMB8GA1UdIwQYMBaAFBKUxIvGlq/oIL0VgvNDZ7rasCQy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzgxNy8wNjgzRUI3MDRE QUMxMUVDODU3MTYwMjNDNEY5QUUwMi9FcFRFaThhV3ItZ2d2UldDODBObnV0cXdK REkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VwVEVpOGFXci1nZ3ZSV0M4ME5udXRxd0pESS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzgxNy8wNjgzRUI3MDREQUMxMUVDODU3MTYwMjNDNEY5QUUwMi9FcFRFaThhV3It Z2d2UldDODBObnV0cXdKREkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWz094BfnImQvKVNvHz97fLm6Vq0LHewQjC01rQFgdpRcY73TruD/v Fi0C10AJzQpiK04l0wiw5h+Bu8KtFqoiKMPhunQvI+MltVk6fEXnmOBgXhRu4PSp hopY+CGQlJyI1dDAlQTLkrKSj0tPOkED/EnXNNlhHDEbRwxU5x2IspAaLRGMDMps ICwqxjYqlhGwm4u+1AL4xh47fiL9KBM8N1YHzwTiikjIpLvXjHYH+XTO9m3maZDZ 29bVdvLFVWPe0VMw4gT9vpbRc5h/TZRa4Y8eSFS/dq+t184wfbaGb2xk6T0zDRWS Hz9iXNXD0upgiTmyeufoErrjel5+W+Xa -----END CERTIFICATE-----Generated at Sun Jul 20 10:38:09 2025 by rpki-client