$ rpki-client -vvf rpki.apnic.net/member_repository/A9160DEB/A331F474726911EEA3F8E757C4F9AE02/Epbn674wET_h0_KXMDOkyzEUSB0.mft File: Epbn674wET_h0_KXMDOkyzEUSB0.mft (raw, json) Hash identifier: kA650I6Ckrcm7/bjZUPpFi1YrKfCW9B2Yz6p/iEfjTg= Subject key identifier: 6A:B4:22:65:79:C1:78:78:10:BB:F2:CE:1E:4E:F0:15:0F:69:1F:3B Authority key identifier: 12:96:E7:EB:BE:30:11:3F:E1:D3:F2:97:30:33:A4:CB:31:14:48:1D Certificate issuer: /CN=A9160DEB/serialNumber=1296E7EBBE30113FE1D3F2973033A4CB3114481D Certificate serial: 014A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Epbn674wET_h0_KXMDOkyzEUSB0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160DEB/A331F474726911EEA3F8E757C4F9AE02/Epbn674wET_h0_KXMDOkyzEUSB0.mft Manifest number: 0147 Signing time: Mon 21 Jul 2025 04:22:50 +0000 Manifest this update: Mon 21 Jul 2025 04:22:50 +0000 Manifest next update: Mon 28 Jul 2025 04:22:50 +0000 Files and hashes: 1: Epbn674wET_h0_KXMDOkyzEUSB0.crl (hash: Ris/gg2ewvmbMIS3TAvcttaAin7Lz1WrYh1tEQSdsMA=) 2: F0E06498748B11EE92D55F6AC4F9AE02.roa (hash: NDSD+KkV1yB3rzPC/NhFv9JI1zaXTY8fuhw8gPA8DhQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160DEB/A331F474726911EEA3F8E757C4F9AE02/Epbn674wET_h0_KXMDOkyzEUSB0.crl rsync://rpki.apnic.net/member_repository/A9160DEB/A331F474726911EEA3F8E757C4F9AE02/Epbn674wET_h0_KXMDOkyzEUSB0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Epbn674wET_h0_KXMDOkyzEUSB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 04:22:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 330 (0x14a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160DEB, serialNumber=1296E7EBBE30113FE1D3F2973033A4CB3114481D Validity Not Before: Jul 21 04:22:50 2025 GMT Not After : Jul 28 04:22:50 2025 GMT Subject: CN=687dc09a-459b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:47:16:7a:56:79:d6:ce:b6:a7:a8:09:97:a5: ae:ab:cc:7d:74:96:3f:f1:61:5b:32:1b:f4:20:1b: f5:d1:ae:08:cb:f4:98:e1:33:f7:e6:c2:1f:4e:cc: 0d:24:c7:1f:22:b8:6a:be:bb:a5:a4:8d:a2:a4:99: 96:7a:ea:ac:af:4d:cd:e3:28:8d:58:39:e5:05:43: 80:ba:2a:8f:84:5a:31:e6:5e:96:04:d8:2f:8c:8e: 77:88:51:7b:ef:41:7a:68:e2:4f:8b:d4:0f:91:80: 51:8a:af:e6:72:b7:d6:71:1a:cb:4d:7b:58:f3:2b: 3c:57:9d:5e:42:25:79:2f:18:e3:e1:07:b8:95:35: f6:a5:4e:57:ef:e2:27:f5:1d:ea:e3:c7:f7:cd:f2: 92:7e:1c:87:2a:71:45:72:9d:9e:4f:f2:91:01:e9: 80:c3:ed:96:1f:c3:e1:f0:76:3e:9a:35:ed:73:51: 2f:1d:f6:86:3c:b9:58:b7:d0:ea:c8:d7:01:4e:ba: 99:ce:51:aa:50:ba:ad:43:27:7c:a9:b5:80:67:3d: 6c:fe:2a:16:13:e6:e2:68:a4:91:32:28:52:9c:d0: 5a:aa:5d:7b:6e:a2:ee:b0:59:e9:04:d2:58:62:1a: 94:0c:6f:ac:59:7d:93:a8:5f:6f:9a:ba:c6:22:a5: 0b:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:B4:22:65:79:C1:78:78:10:BB:F2:CE:1E:4E:F0:15:0F:69:1F:3B X509v3 Authority Key Identifier: keyid:12:96:E7:EB:BE:30:11:3F:E1:D3:F2:97:30:33:A4:CB:31:14:48:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160DEB/A331F474726911EEA3F8E757C4F9AE02/Epbn674wET_h0_KXMDOkyzEUSB0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Epbn674wET_h0_KXMDOkyzEUSB0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160DEB/A331F474726911EEA3F8E757C4F9AE02/Epbn674wET_h0_KXMDOkyzEUSB0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:ca:9e:31:38:41:1b:cd:3f:b6:9f:7f:c5:bd:35:01:29:e7: a7:dc:2b:fd:54:f9:5b:b1:5b:de:d9:8a:fd:b7:3d:c8:68:f3: 3f:24:0c:15:0a:b9:e5:09:1b:b0:b4:28:03:91:d1:96:ab:9a: 6c:b2:31:41:3c:3e:ea:5b:46:b6:6c:2e:95:82:56:b8:7d:b2: a6:3d:3a:2b:fe:0e:a5:56:a8:6b:20:69:b9:f8:0d:a2:d0:34: 5d:57:36:97:59:e2:2a:b5:67:5a:87:43:e4:05:4f:db:c6:bb: 6a:ad:27:c0:2f:8b:9a:62:4c:2d:71:23:6f:0a:b1:9a:d9:4c: 72:43:94:83:ce:cc:73:cd:96:d0:ba:0c:ea:f5:9c:8f:59:2f: a5:98:2f:e2:cf:d0:41:75:10:79:89:e7:09:b4:f7:04:13:33: e8:26:ab:2d:c5:47:0d:48:33:d6:c4:c9:82:de:43:c9:ab:0d: 44:0b:ee:85:dc:6e:8b:5c:d3:ae:54:0b:59:cc:c6:91:f8:12: f1:f6:e0:d9:b0:95:19:5d:ce:00:3e:c2:f2:e9:bf:04:db:3f: 17:af:cf:f4:8c:16:db:9e:83:19:b6:bc:33:5a:4c:0c:78:b1: d6:01:c6:c8:2c:78:08:f0:ea:78:7e:a2:21:db:2f:a1:de:ca: 4a:b1:61:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjBERUIxMTAvBgNVBAUTKDEyOTZFN0VCQkUzMDExM0ZFMUQzRjI5NzMwMzNBNENC MzExNDQ4MUQwHhcNMjUwNzIxMDQyMjUwWhcNMjUwNzI4MDQyMjUwWjAYMRYwFAYD VQQDEw02ODdkYzA5YS00NTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvkcWelZ51s62p6gJl6Wuq8x9dJY/8WFbMhv0IBv10a4Iy/SY4TP35sIfTswN JMcfIrhqvrulpI2ipJmWeuqsr03N4yiNWDnlBUOAuiqPhFox5l6WBNgvjI53iFF7 70F6aOJPi9QPkYBRiq/mcrfWcRrLTXtY8ys8V51eQiV5Lxjj4Qe4lTX2pU5X7+In 9R3q48f3zfKSfhyHKnFFcp2eT/KRAemAw+2WH8Ph8HY+mjXtc1EvHfaGPLlYt9Dq yNcBTrqZzlGqULqtQyd8qbWAZz1s/ioWE+biaKSRMihSnNBaql17bqLusFnpBNJY YhqUDG+sWX2TqF9vmrrGIqULJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGq0ImV5 wXh4ELvyzh5O8BUPaR87MB8GA1UdIwQYMBaAFBKW5+u+MBE/4dPylzAzpMsxFEgd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MERFQi9BMzMxRjQ3NDcy NjkxMUVFQTNGOEU3NTdDNEY5QUUwMi9FcGJuNjc0d0VUX2gwX0tYTURPa3l6RVVT QjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VwYm42NzR3RVRfaDBfS1hNRE9reXpFVVNCMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MERFQi9BMzMxRjQ3NDcyNjkxMUVFQTNGOEU3NTdDNEY5QUUwMi9FcGJuNjc0d0VU X2gwX0tYTURPa3l6RVVTQjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmyp4xOEEbzT+2n3/FvTUBKeen3Cv9VPlbsVve2Yr9tz3IaPM/JAwV CrnlCRuwtCgDkdGWq5pssjFBPD7qW0a2bC6Vgla4fbKmPTor/g6lVqhrIGm5+A2i 0DRdVzaXWeIqtWdah0PkBU/bxrtqrSfAL4uaYkwtcSNvCrGa2UxyQ5SDzsxzzZbQ ugzq9ZyPWS+lmC/iz9BBdRB5iecJtPcEEzPoJqstxUcNSDPWxMmC3kPJqw1EC+6F 3G6LXNOuVAtZzMaR+BLx9uDZsJUZXc4APsLy6b8E2z8Xr8/0jBbbnoMZtrwzWkwM eLHWAcbILHgI8Op4fqIh2y+h3spKsWH5 -----END CERTIFICATE-----Generated at Mon Jul 21 13:24:15 2025 by rpki-client