$ rpki-client -vvf rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.mft File: EpTEi8aWr-ggvRWC80NnutqwJDI.mft (raw, json) Hash identifier: LNxmCqOvdSvZCf36L1LhSUYCB1or1PyT96/TXcr4J6g= Subject key identifier: E2:EF:FD:14:3E:10:EB:C5:58:5A:10:93:2A:C4:A1:1B:23:55:BB:6F Authority key identifier: 12:94:C4:8B:C6:96:AF:E8:20:BD:15:82:F3:43:67:BA:DA:B0:24:32 Certificate issuer: /CN=A9117817/serialNumber=1294C48BC696AFE820BD1582F34367BADAB02432 Certificate serial: 04A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EpTEi8aWr-ggvRWC80NnutqwJDI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.mft Manifest number: 049E Signing time: Wed 17 Sep 2025 00:23:14 +0000 Manifest this update: Wed 17 Sep 2025 00:23:13 +0000 Manifest next update: Wed 24 Sep 2025 00:23:13 +0000 Files and hashes: 1: EpTEi8aWr-ggvRWC80NnutqwJDI.crl (hash: /Z9JTuZd991p1Yx4Hz1nWrN8APWrpTWqh/3kGsl4Ri0=) 2: 2A84118CE0A311EC9CF2B738C4F9AE02.roa (hash: d5/NJRnIjibSymNbNk/lOaJ1Q3nAQoqs/MS6HVTtaFE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.crl rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EpTEi8aWr-ggvRWC80NnutqwJDI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 00:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1190 (0x4a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117817, serialNumber=1294C48BC696AFE820BD1582F34367BADAB02432 Validity Not Before: Sep 17 00:23:13 2025 GMT Not After : Sep 24 00:23:13 2025 GMT Subject: CN=68c9ff72-cea6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:eb:59:7c:9b:32:5e:e7:b8:7a:36:3f:46:87: 7b:1f:3c:86:f5:e3:8f:56:98:16:57:32:b1:07:8b: 7f:54:86:c1:f9:a9:8b:8f:0a:51:d6:27:2d:da:b2: 0c:2b:c9:2c:ee:ff:a0:93:3d:ad:4e:b9:11:14:24: 5f:f0:b1:6c:1c:fb:f9:ea:8e:45:59:b8:8c:d2:0a: 7d:7d:ff:b0:29:6e:5c:5c:b2:69:63:d7:0f:06:66: 43:16:d4:af:2a:0b:c4:ae:59:3d:45:be:38:a5:0e: cb:4f:20:40:e1:70:42:e5:f1:a6:e0:aa:04:31:66: 7b:be:ed:65:b5:e0:a7:9c:e1:c5:bf:84:af:e4:9a: 5e:80:e7:40:29:7c:72:80:b6:f4:26:b5:0c:10:51: 3c:56:a8:aa:e0:bc:c3:a0:ea:7f:ee:34:bc:47:1f: 70:b2:6d:be:da:88:6f:7c:f7:57:d4:1a:29:f1:bb: df:5a:2f:0e:ad:44:0b:57:5c:ef:62:4b:27:62:3f: 4f:e8:42:b5:5f:7a:66:04:a9:d2:5d:33:b7:f3:22: af:44:99:83:84:a7:74:7f:48:95:63:0b:22:3d:b9: 18:be:19:e7:d7:b5:73:27:f6:55:61:d8:8a:0d:51: ba:3e:35:17:94:05:8b:af:0e:82:0a:49:7e:79:b7: eb:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:EF:FD:14:3E:10:EB:C5:58:5A:10:93:2A:C4:A1:1B:23:55:BB:6F X509v3 Authority Key Identifier: keyid:12:94:C4:8B:C6:96:AF:E8:20:BD:15:82:F3:43:67:BA:DA:B0:24:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EpTEi8aWr-ggvRWC80NnutqwJDI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:c4:58:a1:f7:7c:2d:cf:35:4d:86:73:62:6f:e0:bc:79:0d: d0:fd:f0:4a:03:7f:b6:2b:33:a4:d5:ba:ee:c3:8b:d2:cf:74: 9e:51:18:cb:69:00:63:d6:6c:6d:88:50:64:5c:ea:1d:d9:d7: e5:1f:01:b1:34:ad:43:0b:a8:93:12:2e:dd:d3:7b:09:c4:e4: 28:00:7f:ff:94:70:fe:30:74:03:b4:aa:d5:e9:a8:30:1a:39: 64:07:30:df:13:40:67:4b:1e:81:07:05:37:e0:cc:c4:52:0c: 1b:b2:14:70:8b:3c:f0:ac:bd:02:c7:1c:f9:c0:75:67:65:0c: 4c:91:68:d0:ab:1c:c3:29:d0:2c:6d:39:a0:61:6f:ba:c6:25: 7f:e0:ab:cb:bc:35:f2:1b:52:5e:58:0f:10:5f:2c:24:44:9d: 11:66:86:4f:c3:b2:d0:79:95:e4:d3:c4:38:e3:c9:13:75:d2: 47:6e:88:6f:a4:84:e0:ff:d7:f7:8a:53:84:0d:89:13:74:d9: 74:1a:22:2c:ce:f3:fa:a7:c2:3f:a2:eb:85:ff:d9:c9:f6:1b: ad:16:99:f5:67:b6:19:e9:64:bd:f5:14:b9:42:c8:9a:09:64: 49:91:31:d0:2b:a0:d2:b5:eb:06:78:17:a9:c3:15:4e:fa:11: ce:96:31:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc4MTcxMTAvBgNVBAUTKDEyOTRDNDhCQzY5NkFGRTgyMEJEMTU4MkYzNDM2N0JB REFCMDI0MzIwHhcNMjUwOTE3MDAyMzEzWhcNMjUwOTI0MDAyMzEzWjAYMRYwFAYD VQQDEw02OGM5ZmY3Mi1jZWE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw+tZfJsyXue4ejY/Rod7HzyG9eOPVpgWVzKxB4t/VIbB+amLjwpR1ict2rIM K8ks7v+gkz2tTrkRFCRf8LFsHPv56o5FWbiM0gp9ff+wKW5cXLJpY9cPBmZDFtSv KgvErlk9Rb44pQ7LTyBA4XBC5fGm4KoEMWZ7vu1lteCnnOHFv4Sv5JpegOdAKXxy gLb0JrUMEFE8Vqiq4LzDoOp/7jS8Rx9wsm2+2ohvfPdX1Bop8bvfWi8OrUQLV1zv YksnYj9P6EK1X3pmBKnSXTO38yKvRJmDhKd0f0iVYwsiPbkYvhnn17VzJ/ZVYdiK DVG6PjUXlAWLrw6CCkl+ebfrgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOLv/RQ+ EOvFWFoQkyrEoRsjVbtvMB8GA1UdIwQYMBaAFBKUxIvGlq/oIL0VgvNDZ7rasCQy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzgxNy8wNjgzRUI3MDRE QUMxMUVDODU3MTYwMjNDNEY5QUUwMi9FcFRFaThhV3ItZ2d2UldDODBObnV0cXdK REkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VwVEVpOGFXci1nZ3ZSV0M4ME5udXRxd0pESS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzgxNy8wNjgzRUI3MDREQUMxMUVDODU3MTYwMjNDNEY5QUUwMi9FcFRFaThhV3It Z2d2UldDODBObnV0cXdKREkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8xFih93wtzzVNhnNib+C8eQ3Q/fBKA3+2KzOk1bruw4vSz3SeURjL aQBj1mxtiFBkXOod2dflHwGxNK1DC6iTEi7d03sJxOQoAH//lHD+MHQDtKrV6agw GjlkBzDfE0BnSx6BBwU34MzEUgwbshRwizzwrL0Cxxz5wHVnZQxMkWjQqxzDKdAs bTmgYW+6xiV/4KvLvDXyG1JeWA8QXywkRJ0RZoZPw7LQeZXk08Q448kTddJHbohv pITg/9f3ilOEDYkTdNl0GiIszvP6p8I/ouuF/9nJ9hutFpn1Z7YZ6WS99RS5Qsia CWRJkTHQK6DStesGeBepwxVO+hHOljEf -----END CERTIFICATE-----Generated at Thu Sep 18 19:10:41 2025 by rpki-client