$ rpki-client -vvf rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft File: epYXaVSeCq0Km_mSVoO673M6Lxo.mft (raw, json) Hash identifier: EYfeTqfyPg+l0hI9LslFhhCO2spyj0EUYaTr/C5Ce78= Subject key identifier: E2:C8:47:71:53:23:74:02:76:C4:EA:5B:74:03:8D:BF:F5:8B:10:F0 Authority key identifier: 7A:96:17:69:54:9E:0A:AD:0A:9B:F9:92:56:83:BA:EF:73:3A:2F:1A Certificate issuer: /CN=A911C5B0/serialNumber=7A961769549E0AAD0A9BF9925683BAEF733A2F1A Certificate serial: 3526 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft Manifest number: 34EE Signing time: Mon 08 Sep 2025 14:21:59 +0000 Manifest this update: Mon 08 Sep 2025 14:21:58 +0000 Manifest next update: Mon 15 Sep 2025 14:21:58 +0000 Files and hashes: 1: epYXaVSeCq0Km_mSVoO673M6Lxo.crl (hash: cI/WhMWiLSsTwrd8ordb2ch88fUIpQKBrrHm9VgxXy0=) 2: A9B6556E064311F0BA61C549C4F9AE02.roa (hash: 3e60GR3MoJvujbyYCoktl4OQNQ+AEpGhTuH3AGAwszA=) 3: 1F5CD892C35111EE9D744F36C4F9AE02.roa (hash: 1gkTF4crGWzpTEQnLV3friPjpJHknrP6i19dnfTKZhs=) 4: 1A83389CC35211EE8CE04C38C4F9AE02.roa (hash: wP5Do/J+7GR346S2KVvf1dpQZtkQwT1BPnhQO5L+JJ4=) 5: DA202262C34F11EE93BC8317C4F9AE02.roa (hash: dcDioS0VFo6S9vVwz+paS1zd6YFHx5bsZVN3a7QsfW4=) 6: 61A65BF2C35011EE95366E18C4F9AE02.roa (hash: Q61bbCPssNF62XMkq5QJdqkEtUeKQLsoUnsJMBUa8ZI=) 7: 1EEE3E0AC35111EE9D744F36C4F9AE02.roa (hash: 5YdHJezTTAq6NbRIi4l4/6Fihe+icCcCreH0PZW2XgQ=) 8: A50EE218C34D11EEBC95A913C4F9AE02.roa (hash: 5q/2MUPjpxwhlN6OCcanacRv9yZj3jDJtQjCybC3W8U=) 9: 8C9959CE060A11F08CBBE511C4F9AE02.roa (hash: wBMnE1ikTeOfmThio4waRUY3j+LFozimFFQdqFnWb8Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.crl rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 14:21:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13606 (0x3526) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C5B0, serialNumber=7A961769549E0AAD0A9BF9925683BAEF733A2F1A Validity Not Before: Sep 8 14:21:58 2025 GMT Not After : Sep 15 14:21:58 2025 GMT Subject: CN=68bee687-eb74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:cb:f2:2b:f8:c0:a1:53:76:27:94:2e:16:05: 06:9a:73:31:22:2b:73:50:19:d0:b4:c7:e2:15:57: 9e:5a:b6:46:35:cf:f0:63:32:1a:a6:4f:fb:d5:79: 76:5f:18:44:0a:ac:25:3d:92:82:70:a4:91:60:e7: 2a:d6:45:3a:dd:f3:b6:48:3d:92:84:ea:f8:65:37: 5f:c7:51:92:fb:fb:3f:e8:6f:6f:cf:20:63:c5:1a: df:6c:92:54:cd:85:b9:30:c2:9c:6c:be:c3:cc:4a: 23:85:b7:25:4c:7c:7e:0d:9d:74:e1:ad:d9:40:b3: 72:49:3e:91:a2:16:32:66:ce:d8:8b:69:1e:08:db: 46:63:51:59:c8:26:59:9a:36:25:22:0c:80:cb:e3: de:64:9c:80:8d:0e:4d:e5:91:67:48:7d:44:54:15: 3b:af:09:d8:76:00:44:f6:0d:c9:60:2a:b1:b4:3c: d6:33:cf:6f:a8:a2:fd:a9:c4:7a:b0:f4:2d:82:a5: b7:b4:84:67:bd:ef:7e:82:79:b9:c7:b0:d3:11:1e: b4:78:67:9e:55:df:73:6d:b9:a7:17:2b:2c:8d:ad: 9c:a1:f4:7c:36:b1:9b:5b:d0:9c:3c:c4:48:d6:c1: 10:2d:a4:a9:9c:1a:4e:c5:87:01:aa:f5:38:b6:70: 13:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:C8:47:71:53:23:74:02:76:C4:EA:5B:74:03:8D:BF:F5:8B:10:F0 X509v3 Authority Key Identifier: keyid:7A:96:17:69:54:9E:0A:AD:0A:9B:F9:92:56:83:BA:EF:73:3A:2F:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:3d:bc:6a:bd:99:6e:b8:28:fc:cc:75:e2:c8:57:47:db:9e: 42:c1:37:55:68:a0:50:ca:c4:59:e5:84:37:4d:91:17:73:43: 10:b1:de:bf:14:a7:d9:37:af:95:63:cd:a6:47:f7:1a:bc:04: e7:b6:f0:8f:6f:2c:b5:24:f3:04:b3:56:e8:30:5a:4f:27:b8: f4:da:e3:71:c9:45:dc:45:dd:be:b9:4d:81:f0:6c:c3:1e:04: cd:5c:54:53:22:4d:91:0a:2f:79:e2:4c:77:e1:9e:75:5d:58: d3:ed:a4:85:2b:92:9f:21:57:93:10:fd:74:1c:b8:c6:d0:96: 67:61:2c:71:57:ba:d5:32:ff:2b:02:31:27:bd:55:4b:c5:43: 70:80:da:39:a5:9f:6c:2c:20:09:5b:cd:b8:18:98:2e:b8:37: 4b:08:47:29:d6:2b:08:24:9a:ef:8a:c2:d9:11:ea:5a:d4:b9: 70:b8:29:d2:81:d0:4a:17:3e:ea:82:83:f3:37:ae:16:23:ab: a9:1b:28:c4:f2:37:a1:a2:c2:49:e7:c0:65:73:47:90:9b:4a: a8:94:da:3d:c7:10:19:e4:6a:d6:68:80:93:95:43:89:d0:f7: 23:eb:1d:07:be:20:2e:0a:5a:41:8b:cb:8e:15:a5:e8:3a:74: 0f:75:a9:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNSYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM1QjAxMTAvBgNVBAUTKDdBOTYxNzY5NTQ5RTBBQUQwQTlCRjk5MjU2ODNCQUVG NzMzQTJGMUEwHhcNMjUwOTA4MTQyMTU4WhcNMjUwOTE1MTQyMTU4WjAYMRYwFAYD VQQDEw02OGJlZTY4Ny1lYjc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArsvyK/jAoVN2J5QuFgUGmnMxIitzUBnQtMfiFVeeWrZGNc/wYzIapk/71Xl2 XxhECqwlPZKCcKSRYOcq1kU63fO2SD2ShOr4ZTdfx1GS+/s/6G9vzyBjxRrfbJJU zYW5MMKcbL7DzEojhbclTHx+DZ104a3ZQLNyST6RohYyZs7Yi2keCNtGY1FZyCZZ mjYlIgyAy+PeZJyAjQ5N5ZFnSH1EVBU7rwnYdgBE9g3JYCqxtDzWM89vqKL9qcR6 sPQtgqW3tIRnve9+gnm5x7DTER60eGeeVd9zbbmnFyssja2cofR8NrGbW9CcPMRI 1sEQLaSpnBpOxYcBqvU4tnATqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOLIR3FT I3QCdsTqW3QDjb/1ixDwMB8GA1UdIwQYMBaAFHqWF2lUngqtCpv5klaDuu9zOi8a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzVCMC80MEM4RDVBNjFE ODMxMUUyODIzQTVGRDgwOEIwMkNEMi9lcFlYYVZTZUNxMEttX21TVm9PNjczTTZM eG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VwWVhhVlNlQ3EwS21fbVNWb082NzNNNkx4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzVCMC80MEM4RDVBNjFEODMxMUUyODIzQTVGRDgwOEIwMkNEMi9lcFlYYVZTZUNx MEttX21TVm9PNjczTTZMeG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxPbxqvZluuCj8zHXiyFdH255CwTdVaKBQysRZ5YQ3TZEXc0MQsd6/ FKfZN6+VY82mR/cavATntvCPbyy1JPMEs1boMFpPJ7j02uNxyUXcRd2+uU2B8GzD HgTNXFRTIk2RCi954kx34Z51XVjT7aSFK5KfIVeTEP10HLjG0JZnYSxxV7rVMv8r AjEnvVVLxUNwgNo5pZ9sLCAJW824GJguuDdLCEcp1isIJJrvisLZEepa1LlwuCnS gdBKFz7qgoPzN64WI6upGyjE8jehosJJ58Blc0eQm0qolNo9xxAZ5GrWaICTlUOJ 0Pcj6x0HviAuClpBi8uOFaXoOnQPdalJ -----END CERTIFICATE-----Generated at Wed Sep 10 03:14:40 2025 by rpki-client