$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.mft File: 8EZlk8K2zqnL8C4mqua_eQ9Sfqg.mft (raw, json) Hash identifier: oY4j/9N+c0FkxnmKPsOr1onr5iv0A42Q0srEKNKRTrs= Subject key identifier: 4C:7A:7B:B2:A9:11:81:DB:FF:1B:77:EF:B8:5B:4C:2B:B9:12:3D:92 Authority key identifier: F0:46:65:93:C2:B6:CE:A9:CB:F0:2E:26:AA:E6:BF:79:0F:52:7E:A8 Certificate issuer: /CN=A91BF8D1/serialNumber=F0466593C2B6CEA9CBF02E26AAE6BF790F527EA8 Certificate serial: 0A71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.mft Manifest number: 0A69 Signing time: Sun 20 Jul 2025 19:45:43 +0000 Manifest this update: Sun 20 Jul 2025 19:45:42 +0000 Manifest next update: Sun 27 Jul 2025 19:45:42 +0000 Files and hashes: 1: 8EZlk8K2zqnL8C4mqua_eQ9Sfqg.crl (hash: AabIob6YQdQJOCwAbV4KWhyb9JhFiefoD4gAV16mEdI=) 2: 19250B84675711EAA928E22DC4F9AE02.roa (hash: bm4J9Gs8kg53MtutKeTvvvRSq0MtCTJcSE5YLit7Dts=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.crl rsync://rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 19:22:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2673 (0xa71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF8D1, serialNumber=F0466593C2B6CEA9CBF02E26AAE6BF790F527EA8 Validity Not Before: Jul 20 19:45:42 2025 GMT Not After : Jul 27 19:45:42 2025 GMT Subject: CN=687d4766-9247 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:96:0d:32:0b:e0:4f:e9:c3:a2:ab:96:51:5a: 6c:f0:e7:18:d1:0d:b1:8c:a7:aa:c5:2c:86:a7:6c: 97:71:ad:ee:04:61:d4:09:68:f7:94:30:a1:c9:ed: 1f:b6:b8:bf:38:3b:f4:01:bc:93:31:26:e3:96:f3: 75:17:7a:fd:35:18:2b:49:af:d7:ea:0c:ae:71:2f: 7c:54:e4:c3:07:b3:7b:1d:77:2e:f0:5b:96:93:1e: 3e:61:f5:3a:6d:04:92:a7:5e:28:ae:f5:38:56:3b: 8f:b5:b4:7a:c9:71:41:8d:a2:d0:46:7f:78:59:06: 06:e8:0e:f7:99:39:94:01:d9:bc:a6:cc:2b:0d:29: 74:76:c6:09:87:7b:8e:8a:70:bd:ce:34:a6:df:d3: 76:3d:34:bb:91:cb:95:86:5f:de:33:c8:95:db:18: ae:dc:0e:bd:97:d0:bb:5a:41:ec:15:ea:34:28:52: f5:08:03:98:c6:b5:0e:16:ac:ff:c4:73:24:f6:f4: 16:42:60:3f:f9:71:81:05:7c:8f:40:86:91:17:e0: 70:c5:15:32:e7:1b:41:7a:ca:00:61:a3:6c:fa:4c: 44:3a:a3:a9:1d:93:3e:e2:dc:f1:38:b2:05:b1:90: 32:d8:e5:84:f5:8a:8a:a5:7a:56:16:ba:55:58:d5: c3:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:7A:7B:B2:A9:11:81:DB:FF:1B:77:EF:B8:5B:4C:2B:B9:12:3D:92 X509v3 Authority Key Identifier: keyid:F0:46:65:93:C2:B6:CE:A9:CB:F0:2E:26:AA:E6:BF:79:0F:52:7E:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:88:bb:ad:bd:0c:b6:d4:79:33:77:1d:d1:63:55:f6:28:e9: 2f:aa:82:2d:43:df:71:af:bb:8a:60:5d:1e:78:cb:b4:ab:0b: ea:17:ac:c5:a1:da:8e:5c:e2:d4:e9:1d:b7:90:dc:43:b5:40: 38:7c:b7:9c:ab:f1:f5:4d:bd:0f:0c:a9:b1:54:7d:29:f7:3f: 55:57:27:28:8c:72:fc:57:ce:4f:7f:dc:ef:36:ac:db:4c:cb: a1:50:8d:94:cd:96:1d:44:19:b1:e1:d3:9b:57:5d:1d:1c:71: e3:21:4f:b7:56:54:06:6b:25:a1:b3:2c:51:c1:85:8e:a4:61: 99:41:28:58:f2:96:f7:ae:d5:02:89:7b:b3:7d:ef:90:b4:e2: 4b:29:cd:f8:0b:50:41:48:3d:29:60:13:f9:7c:b4:86:76:52: 79:c9:ba:17:3c:d8:0e:ca:00:d3:1a:1e:5c:6e:d0:a2:67:29: 4b:dc:43:d3:9a:2b:91:fd:f5:09:f9:31:cc:fe:ed:27:ab:63: 51:f2:84:97:ad:94:ec:3e:cd:ce:ff:31:2b:58:30:99:27:2b: 46:09:e0:bb:3f:40:f3:75:2e:85:ed:c8:bb:ff:e0:52:0d:0d: 3d:8b:d0:83:b4:3b:c4:94:e9:66:e8:23:74:f5:a2:14:74:39: 58:cb:15:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCnEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkY4RDExMTAvBgNVBAUTKEYwNDY2NTkzQzJCNkNFQTlDQkYwMkUyNkFBRTZCRjc5 MEY1MjdFQTgwHhcNMjUwNzIwMTk0NTQyWhcNMjUwNzI3MTk0NTQyWjAYMRYwFAYD VQQDEw02ODdkNDc2Ni05MjQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4JYNMgvgT+nDoquWUVps8OcY0Q2xjKeqxSyGp2yXca3uBGHUCWj3lDChye0f tri/ODv0AbyTMSbjlvN1F3r9NRgrSa/X6gyucS98VOTDB7N7HXcu8FuWkx4+YfU6 bQSSp14orvU4VjuPtbR6yXFBjaLQRn94WQYG6A73mTmUAdm8pswrDSl0dsYJh3uO inC9zjSm39N2PTS7kcuVhl/eM8iV2xiu3A69l9C7WkHsFeo0KFL1CAOYxrUOFqz/ xHMk9vQWQmA/+XGBBXyPQIaRF+BwxRUy5xtBesoAYaNs+kxEOqOpHZM+4tzxOLIF sZAy2OWE9YqKpXpWFrpVWNXDcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEx6e7Kp EYHb/xt377hbTCu5Ej2SMB8GA1UdIwQYMBaAFPBGZZPCts6py/AuJqrmv3kPUn6o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjhEMS83QzRFMzRCQzY3 NTUxMUVBQTA4NzMwMkJDNEY5QUUwMi84RVpsazhLMnpxbkw4QzRtcXVhX2VROVNm cWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhFWmxrOEsyenFuTDhDNG1xdWFfZVE5U2ZxZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjhEMS83QzRFMzRCQzY3NTUxMUVBQTA4NzMwMkJDNEY5QUUwMi84RVpsazhLMnpx bkw4QzRtcXVhX2VROVNmcWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoiLutvQy21Hkzdx3RY1X2KOkvqoItQ99xr7uKYF0eeMu0qwvqF6zF odqOXOLU6R23kNxDtUA4fLecq/H1Tb0PDKmxVH0p9z9VVycojHL8V85Pf9zvNqzb TMuhUI2UzZYdRBmx4dObV10dHHHjIU+3VlQGayWhsyxRwYWOpGGZQShY8pb3rtUC iXuzfe+QtOJLKc34C1BBSD0pYBP5fLSGdlJ5yboXPNgOygDTGh5cbtCiZylL3EPT miuR/fUJ+THM/u0nq2NR8oSXrZTsPs3O/zErWDCZJytGCeC7P0DzdS6F7ci7/+BS DQ09i9CDtDvElOlm6CN09aIUdDlYyxUo -----END CERTIFICATE-----Generated at Sun Jul 20 23:29:31 2025 by rpki-client