$ rpki-client -vvf rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.mft File: EW-SD4cwZnR6jO3a_-hLz72wNRo.mft (raw, json) Hash identifier: gDDajButB2Vq9wW+ZL3ksssdWJVojoBGJoFIPEmC6Wk= Subject key identifier: 6F:01:A6:D1:21:17:B3:86:22:FA:B5:F1:54:0B:86:23:D8:8F:E9:DA Authority key identifier: 11:6F:92:0F:87:30:66:74:7A:8C:ED:DA:FF:E8:4B:CF:BD:B0:35:1A Certificate issuer: /CN=A9120CDE/serialNumber=116F920F873066747A8CEDDAFFE84BCFBDB0351A Certificate serial: 11B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EW-SD4cwZnR6jO3a_-hLz72wNRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.mft Manifest number: 11A5 Signing time: Sun 20 Jul 2025 17:13:35 +0000 Manifest this update: Sun 20 Jul 2025 17:13:34 +0000 Manifest next update: Sun 27 Jul 2025 17:13:34 +0000 Files and hashes: 1: EW-SD4cwZnR6jO3a_-hLz72wNRo.crl (hash: o+CJbNXCXp9aH5oQdQTIwEZf/ycoYanV0cT6P6KBUq0=) 2: D8D63660B9A811ECB7EE5A71C4F9AE02.roa (hash: DIX09IMqDwhYz9qe1Nv5iQBk3kT+S7TLOQSBMI/PtT0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.crl rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EW-SD4cwZnR6jO3a_-hLz72wNRo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 17:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4529 (0x11b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120CDE, serialNumber=116F920F873066747A8CEDDAFFE84BCFBDB0351A Validity Not Before: Jul 20 17:13:34 2025 GMT Not After : Jul 27 17:13:34 2025 GMT Subject: CN=687d23be-9f1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:d4:18:cf:33:03:72:39:2c:b5:24:92:3c:06: 54:72:c4:8c:35:dc:e9:09:11:3e:ba:10:20:01:68: 8a:72:18:1d:95:8e:37:14:94:a5:8c:ff:cf:1e:aa: be:cc:f7:00:8b:36:ef:39:1c:0d:c5:1d:56:98:fe: 78:01:d8:39:75:f7:8d:6d:48:fa:d4:54:69:93:63: 5e:81:0e:3a:4e:46:af:cb:2a:bf:39:39:08:9c:6c: d4:ce:3a:6f:6c:f8:45:67:86:a9:00:b9:90:6a:fa: 22:a3:16:0a:d9:43:6e:cf:53:b8:97:ec:cf:0f:fe: 34:ab:be:77:20:7e:20:d3:56:f1:cf:ab:ed:f1:bf: 68:0d:96:e7:c7:03:1a:77:29:ff:f5:42:25:28:e4: f2:e3:b6:58:56:b0:a6:63:4e:c7:e0:48:6f:ec:d1: bb:10:68:d6:85:b0:19:89:72:10:f4:17:aa:4c:04: bd:e1:6e:1c:11:0d:56:5f:9d:90:14:91:86:7b:87: 4a:75:2c:c0:2f:0e:90:01:f8:20:e5:fd:fc:a8:86: b1:52:af:2c:82:ec:f7:c9:8e:99:28:c4:07:af:77: 27:5f:29:01:2a:d9:f2:d9:63:39:6e:06:f0:37:b6: a4:24:26:ea:3d:90:b2:72:a0:96:62:4d:17:e1:c0: 68:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:01:A6:D1:21:17:B3:86:22:FA:B5:F1:54:0B:86:23:D8:8F:E9:DA X509v3 Authority Key Identifier: keyid:11:6F:92:0F:87:30:66:74:7A:8C:ED:DA:FF:E8:4B:CF:BD:B0:35:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EW-SD4cwZnR6jO3a_-hLz72wNRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:a3:55:69:f4:93:fa:22:7d:26:bf:6a:47:74:e5:25:bf:a3: db:d5:5c:f0:50:34:ae:c1:bc:23:43:10:8c:eb:83:90:09:7e: 9a:10:7b:ba:1e:53:ad:72:9d:95:44:9d:aa:2f:6d:ea:f1:72: dc:1b:bf:4d:eb:16:b6:6f:c6:c5:c3:30:a9:3b:a0:89:4a:80: 2c:02:3b:f7:61:45:20:5f:4a:fe:09:60:c8:2d:cd:cd:ac:6e: 19:36:e2:41:46:50:68:29:54:b6:7b:93:29:19:12:6f:ce:3c: dc:a8:bf:0f:77:3f:a9:71:fe:cb:0e:c7:32:4d:8a:03:8b:3c: c1:00:79:bf:f0:a9:5c:e5:21:24:16:a2:95:b2:73:c7:d4:05: ac:c4:e6:ab:51:f4:47:24:f3:ac:65:55:d1:f2:54:a7:e5:09: d3:4b:ea:11:79:d9:99:a3:54:27:42:4b:2a:50:6f:37:1f:87: 7b:4b:2f:10:c0:c4:03:dd:9f:67:7b:4f:2d:95:52:16:96:11: c3:cf:e4:c4:ec:b3:f2:91:c7:ff:aa:c0:d5:97:37:62:07:00: ea:8c:9b:cc:03:7b:ce:9f:1c:7d:b7:16:2e:1a:41:aa:f5:f6: 82:2c:bd:d5:db:f6:40:04:79:0d:17:87:17:ee:a4:1e:11:aa: 51:6e:ef:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEbEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBDREUxMTAvBgNVBAUTKDExNkY5MjBGODczMDY2NzQ3QThDRUREQUZGRTg0QkNG QkRCMDM1MUEwHhcNMjUwNzIwMTcxMzM0WhcNMjUwNzI3MTcxMzM0WjAYMRYwFAYD VQQDEw02ODdkMjNiZS05ZjFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmtQYzzMDcjkstSSSPAZUcsSMNdzpCRE+uhAgAWiKchgdlY43FJSljP/PHqq+ zPcAizbvORwNxR1WmP54Adg5dfeNbUj61FRpk2NegQ46Tkavyyq/OTkInGzUzjpv bPhFZ4apALmQavoioxYK2UNuz1O4l+zPD/40q753IH4g01bxz6vt8b9oDZbnxwMa dyn/9UIlKOTy47ZYVrCmY07H4Ehv7NG7EGjWhbAZiXIQ9BeqTAS94W4cEQ1WX52Q FJGGe4dKdSzALw6QAfgg5f38qIaxUq8sguz3yY6ZKMQHr3cnXykBKtny2WM5bgbw N7akJCbqPZCycqCWYk0X4cBoowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG8BptEh F7OGIvq18VQLhiPYj+naMB8GA1UdIwQYMBaAFBFvkg+HMGZ0eozt2v/oS8+9sDUa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMENERS8yM0Q4NTY2RUZC REIxMUU4OTIwQ0IwNDRDNEY5QUUwMi9FVy1TRDRjd1puUjZqTzNhXy1oTHo3MndO Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VXLVNENGN3Wm5SNmpPM2FfLWhMejcyd05Sby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MENERS8yM0Q4NTY2RUZCREIxMUU4OTIwQ0IwNDRDNEY5QUUwMi9FVy1TRDRjd1pu UjZqTzNhXy1oTHo3MndOUm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpo1Vp9JP6In0mv2pHdOUlv6Pb1VzwUDSuwbwjQxCM64OQCX6aEHu6 HlOtcp2VRJ2qL23q8XLcG79N6xa2b8bFwzCpO6CJSoAsAjv3YUUgX0r+CWDILc3N rG4ZNuJBRlBoKVS2e5MpGRJvzjzcqL8Pdz+pcf7LDscyTYoDizzBAHm/8Klc5SEk FqKVsnPH1AWsxOarUfRHJPOsZVXR8lSn5QnTS+oRedmZo1QnQksqUG83H4d7Sy8Q wMQD3Z9ne08tlVIWlhHDz+TE7LPykcf/qsDVlzdiBwDqjJvMA3vOnxx9txYuGkGq 9faCLL3V2/ZABHkNF4cX7qQeEapRbu+u -----END CERTIFICATE-----Generated at Mon Jul 21 18:25:47 2025 by rpki-client