$ rpki-client -vvf rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.mft File: ejHVc5eYsGSmAHEzqj5bnNDu1F8.mft (raw, json) Hash identifier: F2Ms+9hG145flckRxNd7a5JxGDGmadSuS7axXDofnb0= Subject key identifier: F1:C4:E2:93:4B:B2:FD:7A:8F:AC:D5:B9:EA:BC:6C:F7:C7:35:4E:3C Authority key identifier: 7A:31:D5:73:97:98:B0:64:A6:00:71:33:AA:3E:5B:9C:D0:EE:D4:5F Certificate issuer: /CN=A919A285/serialNumber=7A31D5739798B064A6007133AA3E5B9CD0EED45F Certificate serial: 0889 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ejHVc5eYsGSmAHEzqj5bnNDu1F8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.mft Manifest number: 0882 Signing time: Thu 24 Jul 2025 20:47:45 +0000 Manifest this update: Thu 24 Jul 2025 20:47:44 +0000 Manifest next update: Thu 31 Jul 2025 20:47:44 +0000 Files and hashes: 1: ejHVc5eYsGSmAHEzqj5bnNDu1F8.crl (hash: XWJRmscU9JlqEgjGerkd0/MG5JKjU+gTc1/YCnPhKpk=) 2: 1DCABC72C57811EA950A8643C4F9AE02.roa (hash: 3y+P8Wjw2NbNvaqBtjPXBVu0eGWr6eeBTOCTDHgw4uI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.crl rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ejHVc5eYsGSmAHEzqj5bnNDu1F8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 20:47:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2185 (0x889) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A285, serialNumber=7A31D5739798B064A6007133AA3E5B9CD0EED45F Validity Not Before: Jul 24 20:47:44 2025 GMT Not After : Jul 31 20:47:44 2025 GMT Subject: CN=68829bf0-937f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:47:84:43:db:0a:5c:cb:da:34:36:76:34:95: 04:74:3c:28:cb:bf:ae:06:c0:84:15:1c:c6:41:42: 89:68:44:50:f1:f3:0b:b2:0a:e8:a6:fa:85:f6:78: ee:39:d2:8a:cc:03:93:31:14:96:40:11:fa:94:da: c7:d2:7e:e4:f1:fd:77:74:20:6e:28:ba:a4:49:f0: 66:53:e8:53:bf:74:a0:72:f0:9b:8f:7c:c0:20:66: f2:29:a9:dd:96:51:53:ab:f4:d8:2c:c4:f8:42:5d: 62:d1:2a:41:ae:99:1c:6a:b5:32:dd:a9:fd:82:91: 94:8a:e2:20:31:f2:33:52:f7:66:d5:25:e4:56:b4: 7a:cd:52:44:5b:2a:29:b9:0d:91:e4:83:79:cd:a6: f2:26:fe:7c:19:06:37:08:45:46:95:f2:d5:c4:ab: 04:8f:87:21:91:98:00:fc:c9:50:01:74:3c:14:64: 02:39:7e:b5:a9:3d:48:d6:84:1b:7f:3b:66:0d:df: d8:ae:06:46:0a:bf:1a:7f:33:52:42:e4:47:7b:76: 9f:f3:cb:a1:82:de:11:c0:8b:74:1e:02:c0:0d:8e: 53:56:64:dd:1d:2f:19:00:94:00:02:a1:a5:e7:9e: 5b:6a:2d:aa:f1:ea:f9:38:21:b2:a0:20:6c:4c:87: 73:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:C4:E2:93:4B:B2:FD:7A:8F:AC:D5:B9:EA:BC:6C:F7:C7:35:4E:3C X509v3 Authority Key Identifier: keyid:7A:31:D5:73:97:98:B0:64:A6:00:71:33:AA:3E:5B:9C:D0:EE:D4:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ejHVc5eYsGSmAHEzqj5bnNDu1F8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:f0:2a:72:c4:c5:02:f9:9b:b2:fb:51:87:96:5f:39:5c:d5: 44:02:37:2d:ab:4d:ab:99:9e:97:aa:0a:b4:e7:07:4a:99:da: 18:0b:2d:a9:66:dc:fd:33:75:d3:95:b9:87:62:87:80:9a:f4: 8c:da:f9:1f:42:b9:e8:02:7e:51:38:4b:47:07:cb:4b:68:bd: 62:1d:94:1e:b5:7c:34:05:0b:34:3c:99:2c:0f:b6:13:7e:01: 86:aa:d5:f1:24:60:e5:69:96:5a:31:ca:42:34:c3:b2:33:41: b6:6c:16:a8:6a:66:42:31:35:1b:ac:05:68:97:92:2f:c0:3f: ad:7f:48:4c:78:a9:55:4c:31:ce:29:dd:f8:af:44:64:7f:b8: c2:4d:b3:e9:a5:09:b3:0f:a9:01:ce:b5:37:9a:58:f1:38:92: d3:ee:a8:57:a5:ab:af:eb:22:86:76:9e:cf:28:f4:7e:99:c9: eb:39:76:b1:02:b0:17:86:77:f1:c1:2a:27:4f:2b:49:22:55: 57:9a:c5:cc:0f:93:74:46:ff:3f:bb:3d:f7:7c:c4:5a:af:5f: f6:3f:c6:0f:e8:26:89:c4:42:6b:ef:bd:0a:4b:f6:1b:c7:54: 11:2e:1e:8e:4e:5a:f1:e1:cc:1c:e7:3a:fe:ba:41:b7:da:d7: e2:44:01:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUEyODUxMTAvBgNVBAUTKDdBMzFENTczOTc5OEIwNjRBNjAwNzEzM0FBM0U1QjlD RDBFRUQ0NUYwHhcNMjUwNzI0MjA0NzQ0WhcNMjUwNzMxMjA0NzQ0WjAYMRYwFAYD VQQDEw02ODgyOWJmMC05MzdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu0eEQ9sKXMvaNDZ2NJUEdDwoy7+uBsCEFRzGQUKJaERQ8fMLsgropvqF9nju OdKKzAOTMRSWQBH6lNrH0n7k8f13dCBuKLqkSfBmU+hTv3SgcvCbj3zAIGbyKand llFTq/TYLMT4Ql1i0SpBrpkcarUy3an9gpGUiuIgMfIzUvdm1SXkVrR6zVJEWyop uQ2R5IN5zabyJv58GQY3CEVGlfLVxKsEj4chkZgA/MlQAXQ8FGQCOX61qT1I1oQb fztmDd/YrgZGCr8afzNSQuRHe3af88uhgt4RwIt0HgLADY5TVmTdHS8ZAJQAAqGl 555bai2q8er5OCGyoCBsTIdzpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPHE4pNL sv16j6zVueq8bPfHNU48MB8GA1UdIwQYMBaAFHox1XOXmLBkpgBxM6o+W5zQ7tRf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTI4NS9ERDYyODlBQUM1 NzUxMUVBQTU1ODFDNDBDNEY5QUUwMi9lakhWYzVlWXNHU21BSEV6cWo1Ym5ORHUx RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VqSFZjNWVZc0dTbUFIRXpxajVibk5EdTFGOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTI4NS9ERDYyODlBQUM1NzUxMUVBQTU1ODFDNDBDNEY5QUUwMi9lakhWYzVlWXNH U21BSEV6cWo1Ym5ORHUxRjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQ8CpyxMUC+Zuy+1GHll85XNVEAjctq02rmZ6Xqgq05wdKmdoYCy2p Ztz9M3XTlbmHYoeAmvSM2vkfQrnoAn5ROEtHB8tLaL1iHZQetXw0BQs0PJksD7YT fgGGqtXxJGDlaZZaMcpCNMOyM0G2bBaoamZCMTUbrAVol5IvwD+tf0hMeKlVTDHO Kd34r0Rkf7jCTbPppQmzD6kBzrU3mljxOJLT7qhXpauv6yKGdp7PKPR+mcnrOXax ArAXhnfxwSonTytJIlVXmsXMD5N0Rv8/uz33fMRar1/2P8YP6CaJxEJr770KS/Yb x1QRLh6OTlrx4cwc5zr+ukG32tfiRAGi -----END CERTIFICATE-----Generated at Sat Jul 26 02:06:13 2025 by rpki-client