$ rpki-client -vvf rpki.apnic.net/member_repository/A9111FFD/42EB0534DD3811EF9C346745C4F9AE02/EEz4cGO16r803k4l_s6ata9zbBQ.mft File: EEz4cGO16r803k4l_s6ata9zbBQ.mft (raw, json) Hash identifier: V4lkKS/2cGjSailBsaORPRPSpm/zZKJ9PDN+VT22BLY= Subject key identifier: 36:B9:0C:DB:33:E1:65:A6:11:35:49:6E:76:32:16:C6:3A:29:AA:2F Authority key identifier: 10:4C:F8:70:63:B5:EA:BF:34:DE:4E:25:FE:CE:9A:B5:AF:73:6C:14 Certificate issuer: /CN=A9111FFD/serialNumber=104CF87063B5EABF34DE4E25FECE9AB5AF736C14 Certificate serial: 73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EEz4cGO16r803k4l_s6ata9zbBQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111FFD/42EB0534DD3811EF9C346745C4F9AE02/EEz4cGO16r803k4l_s6ata9zbBQ.mft Manifest number: 70 Signing time: Sat 23 Aug 2025 07:10:48 +0000 Manifest this update: Sat 23 Aug 2025 07:10:48 +0000 Manifest next update: Sat 30 Aug 2025 07:10:48 +0000 Files and hashes: 1: EEz4cGO16r803k4l_s6ata9zbBQ.crl (hash: XkcIOFMmgYKxzV7o9iKRRPtpZxc311IPcebY6uuRGMA=) 2: 7BF6BA42E91A11EF804C4B57C4F9AE02.roa (hash: HNlYiglg+bBDY8hf2XbMc61T9NCbbnRV5gfydPimiu8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111FFD/42EB0534DD3811EF9C346745C4F9AE02/EEz4cGO16r803k4l_s6ata9zbBQ.crl rsync://rpki.apnic.net/member_repository/A9111FFD/42EB0534DD3811EF9C346745C4F9AE02/EEz4cGO16r803k4l_s6ata9zbBQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EEz4cGO16r803k4l_s6ata9zbBQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:10:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 115 (0x73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111FFD, serialNumber=104CF87063B5EABF34DE4E25FECE9AB5AF736C14 Validity Not Before: Aug 23 07:10:48 2025 GMT Not After : Aug 30 07:10:48 2025 GMT Subject: CN=68a96978-c9de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:b4:2d:af:fa:b6:99:9e:9f:0d:8b:66:fc:a3: 35:6c:7c:48:37:85:1a:13:34:a3:98:59:d1:d0:ee: 6f:68:ad:ea:3d:3e:15:7f:28:da:51:e3:c1:b4:0d: 89:2b:a5:ae:0a:ee:9a:34:6f:2b:54:f6:a7:c4:36: 89:48:2a:58:41:07:04:8e:8f:70:6f:3f:70:5a:de: db:ae:0c:19:25:82:d6:35:6f:12:27:09:f3:17:f0: 7c:59:4f:7a:62:84:7a:1d:9a:e5:99:7a:2b:4c:2d: f1:1f:6a:d7:46:e6:4b:cf:38:7c:e7:27:f6:25:80: 0a:d9:e8:5b:82:fa:94:12:ce:e8:a3:6c:f8:5e:a4: eb:4a:41:9c:17:71:28:7b:e8:79:4c:c7:41:6a:04: 38:5e:d0:38:bb:bc:34:80:5d:85:b2:a4:b0:66:4b: f5:3d:86:fe:15:59:8c:e3:6f:df:a1:9c:41:4d:d6: 8d:a8:b2:93:47:58:20:21:01:10:48:87:80:ad:19: ac:13:1a:b5:b9:53:ad:96:0c:2f:6a:3f:b5:07:d9: 18:58:00:d9:40:d1:62:c1:9f:cf:3f:9f:9c:64:0e: fc:12:5e:fd:cd:45:2d:5b:97:b9:c5:9f:ce:5e:d7: 8a:89:30:1e:93:1f:1d:c9:7e:1e:8d:f2:ba:99:73: 67:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:B9:0C:DB:33:E1:65:A6:11:35:49:6E:76:32:16:C6:3A:29:AA:2F X509v3 Authority Key Identifier: keyid:10:4C:F8:70:63:B5:EA:BF:34:DE:4E:25:FE:CE:9A:B5:AF:73:6C:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111FFD/42EB0534DD3811EF9C346745C4F9AE02/EEz4cGO16r803k4l_s6ata9zbBQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EEz4cGO16r803k4l_s6ata9zbBQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111FFD/42EB0534DD3811EF9C346745C4F9AE02/EEz4cGO16r803k4l_s6ata9zbBQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:67:36:50:32:db:a9:2c:25:a4:50:fb:3d:14:12:a7:27:e7: 56:18:37:b3:d1:1f:06:3e:d8:3c:42:19:86:5a:8c:d5:3a:6a: 09:f7:36:e6:92:c3:3e:24:e5:65:d5:f0:61:e7:35:e0:8d:94: 2f:a1:f5:1e:f1:f5:95:7f:a1:ba:85:d3:7a:01:39:5d:0c:cd: 61:a6:ea:c4:4a:c8:66:31:b2:5b:31:b3:d8:96:e4:11:65:dd: af:f5:4c:de:7d:5d:d6:7d:81:5e:6e:2c:82:b3:7d:52:3c:cb: ae:cf:46:05:79:71:26:3c:90:e6:2a:d4:3e:ad:bf:2d:bf:1c: 8c:48:3a:7d:43:2b:1c:67:2b:53:55:cd:91:34:6d:21:eb:98: be:0e:ed:46:24:ab:87:28:4d:c6:20:e1:24:ee:3c:26:55:4d: 4f:d8:69:c5:32:20:a3:c4:67:94:c0:be:6b:e3:79:50:29:be: e1:66:c4:e3:cf:83:5a:a7:f2:59:3e:a8:19:d8:0b:54:32:8b: 5b:d9:5b:fe:c4:ee:ab:be:a1:2b:52:98:7d:8e:6c:95:ac:44: 50:c9:2b:16:eb:a0:28:f2:b9:54:00:ff:6c:c4:22:a6:72:92: ac:a8:45:5f:61:52:41:9e:bf:ff:de:af:1a:cb:39:36:82:97: 9d:ad:28:1b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBczANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx MUZGRDExMC8GA1UEBRMoMTA0Q0Y4NzA2M0I1RUFCRjM0REU0RTI1RkVDRTlBQjVB RjczNkMxNDAeFw0yNTA4MjMwNzEwNDhaFw0yNTA4MzAwNzEwNDhaMBgxFjAUBgNV BAMTDTY4YTk2OTc4LWM5ZGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDqtC2v+raZnp8Ni2b8ozVsfEg3hRoTNKOYWdHQ7m9oreo9PhV/KNpR48G0DYkr pa4K7po0bytU9qfENolIKlhBBwSOj3BvP3Ba3tuuDBklgtY1bxInCfMX8HxZT3pi hHodmuWZeitMLfEfatdG5kvPOHznJ/YlgArZ6FuC+pQSzuijbPhepOtKQZwXcSh7 6HlMx0FqBDhe0Di7vDSAXYWypLBmS/U9hv4VWYzjb9+hnEFN1o2ospNHWCAhARBI h4CtGawTGrW5U62WDC9qP7UH2RhYANlA0WLBn88/n5xkDvwSXv3NRS1bl7nFn85e 14qJMB6THx3Jfh6N8rqZc2ePAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUNrkM2zPh ZaYRNUludjIWxjopqi8wHwYDVR0jBBgwFoAUEEz4cGO16r803k4l/s6ata9zbBQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTExRkZELzQyRUIwNTM0REQz ODExRUY5QzM0Njc0NUM0RjlBRTAyL0VFejRjR08xNnI4MDNrNGxfczZhdGE5emJC US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRUV6NGNHTzE2cjgwM2s0bF9zNmF0YTl6YkJRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEx RkZELzQyRUIwNTM0REQzODExRUY5QzM0Njc0NUM0RjlBRTAyL0VFejRjR08xNnI4 MDNrNGxfczZhdGE5emJCUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGRnNlAy26ksJaRQ+z0UEqcn51YYN7PRHwY+2DxCGYZajNU6agn3NuaS wz4k5WXV8GHnNeCNlC+h9R7x9ZV/obqF03oBOV0MzWGm6sRKyGYxslsxs9iW5BFl 3a/1TN59XdZ9gV5uLIKzfVI8y67PRgV5cSY8kOYq1D6tvy2/HIxIOn1DKxxnK1NV zZE0bSHrmL4O7UYkq4coTcYg4STuPCZVTU/YacUyIKPEZ5TAvmvjeVApvuFmxOPP g1qn8lk+qBnYC1Qyi1vZW/7E7qu+oStSmH2ObJWsRFDJKxbroCjyuVQA/2zEIqZy kqyoRV9hUkGev//erxrLOTaCl52tKBs= -----END CERTIFICATE-----Generated at Sun Aug 24 21:48:17 2025 by rpki-client