$ rpki-client -vvf rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.mft File: ejHVc5eYsGSmAHEzqj5bnNDu1F8.mft (raw, json) Hash identifier: mGb9eim2XtHAAXJsSzPCIDxIuhUckTOHUjZl5tAX1OM= Subject key identifier: E0:66:14:89:7E:A5:B9:8F:8A:25:EE:BC:BB:00:9B:65:37:94:C1:06 Authority key identifier: 7A:31:D5:73:97:98:B0:64:A6:00:71:33:AA:3E:5B:9C:D0:EE:D4:5F Certificate issuer: /CN=A919A285/serialNumber=7A31D5739798B064A6007133AA3E5B9CD0EED45F Certificate serial: 0888 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ejHVc5eYsGSmAHEzqj5bnNDu1F8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.mft Manifest number: 0881 Signing time: Tue 22 Jul 2025 20:51:23 +0000 Manifest this update: Tue 22 Jul 2025 20:51:23 +0000 Manifest next update: Tue 29 Jul 2025 20:51:23 +0000 Files and hashes: 1: ejHVc5eYsGSmAHEzqj5bnNDu1F8.crl (hash: A6JX99mYLj95dxmwM7UJ5wKN58CxzrsjpENliqGL6+4=) 2: 1DCABC72C57811EA950A8643C4F9AE02.roa (hash: 3y+P8Wjw2NbNvaqBtjPXBVu0eGWr6eeBTOCTDHgw4uI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.crl rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ejHVc5eYsGSmAHEzqj5bnNDu1F8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 20:51:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2184 (0x888) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A285, serialNumber=7A31D5739798B064A6007133AA3E5B9CD0EED45F Validity Not Before: Jul 22 20:51:23 2025 GMT Not After : Jul 29 20:51:23 2025 GMT Subject: CN=687ff9cb-4418 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c4:c8:04:9e:5d:a6:e0:be:f3:32:38:29:a9: eb:14:7b:fe:05:91:2d:81:b9:0f:18:ff:96:83:26: 63:8d:f5:c2:fb:f7:ac:c2:8d:aa:30:f8:2d:35:a1: 15:46:16:96:ac:30:01:9f:3c:12:6f:25:04:f7:98: c8:cc:d8:06:5b:8b:c8:2a:5e:6d:d5:d8:a0:a8:c7: c4:13:af:59:bc:fe:a2:e6:a8:9f:79:0b:d5:45:54: f8:be:fa:de:45:e5:aa:2a:b2:a8:9b:9a:9b:af:03: 20:9e:bd:d5:8f:cb:ae:0b:06:e4:ba:c1:92:df:3d: 23:9b:2a:98:16:bf:6e:d4:94:d3:3d:82:2e:3a:77: 5a:ea:0d:50:f5:94:fb:6e:ab:1d:16:59:fc:a9:12: 34:b2:c0:9d:3f:f4:a0:3d:c8:9a:4c:ec:23:0c:b5: f7:62:37:d2:e4:73:f5:d5:7b:40:03:cb:01:56:d6: 8b:63:00:98:ec:8d:cb:5b:fd:0a:1b:54:78:c2:c8: a7:53:51:f1:75:a0:e2:6c:a2:1a:2f:bd:75:f2:b3: db:fa:f3:f7:f5:91:08:ca:7e:2f:0f:64:15:2c:49: de:1a:6c:da:00:4f:0d:52:ce:57:7f:d6:53:8f:70: cb:b0:f8:7b:bb:c9:26:bd:40:ac:98:20:71:ba:6d: fe:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:66:14:89:7E:A5:B9:8F:8A:25:EE:BC:BB:00:9B:65:37:94:C1:06 X509v3 Authority Key Identifier: keyid:7A:31:D5:73:97:98:B0:64:A6:00:71:33:AA:3E:5B:9C:D0:EE:D4:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ejHVc5eYsGSmAHEzqj5bnNDu1F8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:53:23:d4:bb:71:a7:ad:1d:a5:c6:7e:3b:30:72:cf:2e:39: 36:a0:25:b4:fa:03:5a:4c:af:ae:34:14:86:fa:81:8b:12:4e: 92:62:1f:0f:67:a3:1c:77:52:25:d5:86:c2:da:a7:3f:12:0e: 8b:ae:1c:22:27:bf:2b:1c:ba:85:1f:6b:3e:71:d4:be:4a:8a: 96:c3:3a:36:a7:ad:5b:13:e5:dc:21:b6:e4:37:bd:a2:10:8f: 62:66:59:84:37:8d:96:12:de:a3:85:21:ef:01:99:d8:47:ee: 42:6b:9f:a3:ff:6e:d1:55:f0:aa:5a:4d:7b:71:74:1f:24:35: 74:71:00:01:11:86:4f:a1:24:cb:27:37:b1:10:b3:17:f3:cc: bf:e6:78:74:4e:39:cf:75:02:bd:f4:1e:e8:e0:ce:f6:1d:33: d4:99:0b:95:f8:99:8d:94:95:97:e9:c4:fa:e5:f5:87:a1:07: e2:bf:99:b5:5d:03:55:2a:43:9c:f0:79:1b:4d:88:4d:16:e8: 17:2b:ad:fe:9c:2e:05:03:cc:7e:ec:6f:87:a6:bc:30:e2:a4: 3e:27:9f:90:34:59:2f:07:da:52:42:c8:b8:11:28:67:ab:80: f6:5d:ba:8c:1d:3e:51:bc:68:1d:f8:18:1d:1c:25:6b:d8:09: 93:85:0c:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUEyODUxMTAvBgNVBAUTKDdBMzFENTczOTc5OEIwNjRBNjAwNzEzM0FBM0U1QjlD RDBFRUQ0NUYwHhcNMjUwNzIyMjA1MTIzWhcNMjUwNzI5MjA1MTIzWjAYMRYwFAYD VQQDEw02ODdmZjljYi00NDE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw8TIBJ5dpuC+8zI4KanrFHv+BZEtgbkPGP+WgyZjjfXC+/eswo2qMPgtNaEV RhaWrDABnzwSbyUE95jIzNgGW4vIKl5t1digqMfEE69ZvP6i5qifeQvVRVT4vvre ReWqKrKom5qbrwMgnr3Vj8uuCwbkusGS3z0jmyqYFr9u1JTTPYIuOnda6g1Q9ZT7 bqsdFln8qRI0ssCdP/SgPciaTOwjDLX3YjfS5HP11XtAA8sBVtaLYwCY7I3LW/0K G1R4wsinU1HxdaDibKIaL7118rPb+vP39ZEIyn4vD2QVLEneGmzaAE8NUs5Xf9ZT j3DLsPh7u8kmvUCsmCBxum3+sQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOBmFIl+ pbmPiiXuvLsAm2U3lMEGMB8GA1UdIwQYMBaAFHox1XOXmLBkpgBxM6o+W5zQ7tRf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTI4NS9ERDYyODlBQUM1 NzUxMUVBQTU1ODFDNDBDNEY5QUUwMi9lakhWYzVlWXNHU21BSEV6cWo1Ym5ORHUx RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VqSFZjNWVZc0dTbUFIRXpxajVibk5EdTFGOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTI4NS9ERDYyODlBQUM1NzUxMUVBQTU1ODFDNDBDNEY5QUUwMi9lakhWYzVlWXNH U21BSEV6cWo1Ym5ORHUxRjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0UyPUu3GnrR2lxn47MHLPLjk2oCW0+gNaTK+uNBSG+oGLEk6SYh8P Z6Mcd1Il1YbC2qc/Eg6LrhwiJ78rHLqFH2s+cdS+SoqWwzo2p61bE+XcIbbkN72i EI9iZlmEN42WEt6jhSHvAZnYR+5Ca5+j/27RVfCqWk17cXQfJDV0cQABEYZPoSTL JzexELMX88y/5nh0TjnPdQK99B7o4M72HTPUmQuV+JmNlJWX6cT65fWHoQfiv5m1 XQNVKkOc8HkbTYhNFugXK63+nC4FA8x+7G+Hprww4qQ+J5+QNFkvB9pSQsi4EShn q4D2XbqMHT5RvGgd+BgdHCVr2AmThQxx -----END CERTIFICATE-----Generated at Thu Jul 24 05:06:59 2025 by rpki-client