$ rpki-client -vvf rpki.apnic.net/member_repository/A918E269/393BA8CE2B6F11F086ADE54EC4F9AE02/S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.mft File: S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.mft (raw, json) Hash identifier: fPkMYbPD2YQbwfEKKQw9TtEBsmaHnF1xfKi9uXv+73Q= Subject key identifier: 19:6B:B5:B3:D0:FD:CD:AC:BD:74:31:F0:14:0B:62:12:FC:02:44:79 Authority key identifier: 4B:E1:07:39:36:25:2E:3C:F0:72:F9:89:D7:FD:C4:E7:E7:C6:62:74 Certificate issuer: /CN=A918E269/serialNumber=4BE1073936252E3CF072F989D7FDC4E7E7C66274 Certificate serial: 2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E269/393BA8CE2B6F11F086ADE54EC4F9AE02/S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.mft Manifest number: 28 Signing time: Sat 19 Jul 2025 08:03:11 +0000 Manifest this update: Sat 19 Jul 2025 08:03:11 +0000 Manifest next update: Sat 26 Jul 2025 08:03:11 +0000 Files and hashes: 1: S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.crl (hash: iNwF0bJd4vdNzIuB0FDfy/mvDIbpHVL6q4U2nI0nHBw=) 2: 2B1A3764302A11F0B211AD0BC4F9AE02.roa (hash: 5PpNOEZEUrmc1vn5FvjeokwBWv9BOPfyJY3ybR1sQKs=) 3: F56C1CCC2B6F11F0B921B80EC4F9AE02.roa (hash: xE6bIhdn++6m4++H8g25LIhLe1MxCe3PRzQyPVY78VA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E269/393BA8CE2B6F11F086ADE54EC4F9AE02/S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.crl rsync://rpki.apnic.net/member_repository/A918E269/393BA8CE2B6F11F086ADE54EC4F9AE02/S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 08:03:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E269, serialNumber=4BE1073936252E3CF072F989D7FDC4E7E7C66274 Validity Not Before: Jul 19 08:03:11 2025 GMT Not After : Jul 26 08:03:11 2025 GMT Subject: CN=687b513f-d3cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:87:24:39:d7:f6:63:09:9c:bf:2c:a5:0c:67: e9:d4:5c:51:73:61:30:ad:af:2b:06:55:72:68:57: 30:eb:46:68:b9:d2:3f:1c:cc:5e:61:c9:0f:34:b7: 17:7b:04:88:c2:71:25:e0:5e:dd:92:1e:82:91:d7: 09:fd:71:e7:c1:fc:0d:d3:13:b0:0e:d8:8a:13:72: 9d:f4:ee:f6:f8:92:db:79:48:61:1b:59:e1:20:2c: 5e:50:af:68:19:79:86:6b:ab:56:34:9f:a1:21:81: 5d:40:4e:29:34:a5:e0:b7:1c:64:9b:01:ec:ab:f1: f9:70:ce:b4:45:eb:83:a0:1a:d3:0c:04:65:b9:45: 61:42:d0:9a:f2:eb:2e:ec:ab:f1:7d:fe:d6:f4:54: 56:92:41:fc:41:48:d0:65:56:f0:79:f2:97:91:1d: 36:15:57:a2:db:67:79:67:bc:16:26:02:49:44:58: b8:e5:9a:76:a0:eb:7c:1e:13:21:2d:52:94:5f:3c: 2b:c0:cb:ea:cf:e3:f2:63:10:e5:94:f1:4d:c0:aa: c2:d5:1b:91:26:52:68:3e:eb:de:73:cf:9f:c8:c1: c8:2e:cd:7a:60:59:e3:5d:af:d3:6b:7d:ca:4d:3f: 43:78:5d:0d:27:09:26:97:3b:4f:3e:1d:66:be:cc: 45:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:6B:B5:B3:D0:FD:CD:AC:BD:74:31:F0:14:0B:62:12:FC:02:44:79 X509v3 Authority Key Identifier: keyid:4B:E1:07:39:36:25:2E:3C:F0:72:F9:89:D7:FD:C4:E7:E7:C6:62:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E269/393BA8CE2B6F11F086ADE54EC4F9AE02/S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E269/393BA8CE2B6F11F086ADE54EC4F9AE02/S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:ad:81:2e:d7:0a:6f:56:da:8a:3b:fb:48:87:35:bf:92:50: c6:f7:46:c6:4e:7c:e1:37:ee:d9:7a:66:8d:0e:c8:9e:42:c7: b9:fa:18:45:b9:d4:2c:22:80:b5:da:43:5f:56:56:70:69:d0: 47:77:fb:e7:c9:ae:a3:11:8c:c0:80:44:5e:74:de:93:44:55: 6f:05:5a:48:e6:ee:2e:77:1c:dc:8a:ce:21:6a:f1:55:d4:b6: b7:8a:d4:0b:00:3f:fe:47:71:14:8f:f6:79:a2:8c:2d:5a:45: bb:b6:36:e7:df:b9:b1:b8:75:36:1c:d3:ad:88:6c:90:d6:2e: 4b:a1:36:33:f5:72:78:d8:ec:ed:93:80:3c:32:24:1f:c9:f5: 0d:85:bf:3e:f5:83:7c:59:41:e3:ee:6c:11:15:ab:3a:84:2b: d3:99:20:10:22:8b:a0:c7:45:9b:bc:b4:e5:2e:a7:2a:c6:01: 32:87:dc:e8:f5:69:d1:f4:4d:97:6e:fe:fa:ae:ca:e5:be:ec: 4b:a8:18:98:89:86:c6:55:87:2c:0c:1a:ad:c5:c3:dd:bf:3d: cf:58:fb:b7:b7:2f:3f:26:ab:1c:07:3c:7b:37:c2:70:72:40: 7a:dc:72:f3:83:1a:44:af:08:b5:db:14:b9:80:1c:bb:74:2d: 80:92:64:df -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RTI2OTExMC8GA1UEBRMoNEJFMTA3MzkzNjI1MkUzQ0YwNzJGOTg5RDdGREM0RTdF N0M2NjI3NDAeFw0yNTA3MTkwODAzMTFaFw0yNTA3MjYwODAzMTFaMBgxFjAUBgNV BAMTDTY4N2I1MTNmLWQzY2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9hyQ51/ZjCZy/LKUMZ+nUXFFzYTCtrysGVXJoVzDrRmi50j8czF5hyQ80txd7 BIjCcSXgXt2SHoKR1wn9cefB/A3TE7AO2IoTcp307vb4ktt5SGEbWeEgLF5Qr2gZ eYZrq1Y0n6EhgV1ATik0peC3HGSbAeyr8flwzrRF64OgGtMMBGW5RWFC0Jry6y7s q/F9/tb0VFaSQfxBSNBlVvB58peRHTYVV6LbZ3lnvBYmAklEWLjlmnag63weEyEt UpRfPCvAy+rP4/JjEOWU8U3AqsLVG5EmUmg+695zz5/IwcguzXpgWeNdr9NrfcpN P0N4XQ0nCSaXO08+HWa+zEWRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUGWu1s9D9 zay9dDHwFAtiEvwCRHkwHwYDVR0jBBgwFoAUS+EHOTYlLjzwcvmJ1/3E5+fGYnQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThFMjY5LzM5M0JBOENFMkI2 RjExRjA4NkFERTU0RUM0RjlBRTAyL1MtRUhPVFlsTGp6d2N2bUoxXzNFNS1mR1lu US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUy1FSE9UWWxManp3Y3ZtSjFfM0U1LWZHWW5RLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThF MjY5LzM5M0JBOENFMkI2RjExRjA4NkFERTU0RUM0RjlBRTAyL1MtRUhPVFlsTGp6 d2N2bUoxXzNFNS1mR1luUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIqtgS7XCm9W2oo7+0iHNb+SUMb3RsZOfOE37tl6Zo0OyJ5Cx7n6GEW5 1CwigLXaQ19WVnBp0Ed3++fJrqMRjMCARF503pNEVW8FWkjm7i53HNyKziFq8VXU treK1AsAP/5HcRSP9nmijC1aRbu2NuffubG4dTYc062IbJDWLkuhNjP1cnjY7O2T gDwyJB/J9Q2Fvz71g3xZQePubBEVqzqEK9OZIBAii6DHRZu8tOUupyrGATKH3Oj1 adH0TZdu/vquyuW+7EuoGJiJhsZVhywMGq3Fw92/Pc9Y+7e3Lz8mqxwHPHs3wnBy QHrccvODGkSvCLXbFLmAHLt0LYCSZN8= -----END CERTIFICATE-----Generated at Mon Jul 21 07:24:45 2025 by rpki-client