$ rpki-client -vvf rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.mft File: EK5_oM-c-qh-uthEzYxCasHDpec.mft (raw, json) Hash identifier: JQiOEnJGP7qabFkCsGlcr3XigbdELMtS6RFhqC+M7Og= Subject key identifier: 11:B1:78:27:53:8E:79:24:65:57:F8:DB:F1:2F:11:EF:8F:9A:B4:8D Authority key identifier: 10:AE:7F:A0:CF:9C:FA:A8:7E:BA:D8:44:CD:8C:42:6A:C1:C3:A5:E7 Certificate issuer: /CN=A9123BFF/serialNumber=10AE7FA0CF9CFAA87EBAD844CD8C426AC1C3A5E7 Certificate serial: 20A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EK5_oM-c-qh-uthEzYxCasHDpec.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.mft Manifest number: 20A1 Signing time: Mon 08 Sep 2025 15:57:10 +0000 Manifest this update: Mon 08 Sep 2025 15:57:10 +0000 Manifest next update: Mon 15 Sep 2025 15:57:10 +0000 Files and hashes: 1: EK5_oM-c-qh-uthEzYxCasHDpec.crl (hash: KrdSXLgO0CXMTpHjWvlLkhYtg9/rTghfeorqGq4GFhA=) 2: 449C08948D1211EBB9548186C4F9AE02.roa (hash: 4cmAc73Ya3K4uXCXYcHrxMilUHhYgfgcQY7RcTrdD4o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.crl rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EK5_oM-c-qh-uthEzYxCasHDpec.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 15:57:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8361 (0x20a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123BFF, serialNumber=10AE7FA0CF9CFAA87EBAD844CD8C426AC1C3A5E7 Validity Not Before: Sep 8 15:57:10 2025 GMT Not After : Sep 15 15:57:10 2025 GMT Subject: CN=68befcd6-bff2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:bc:cd:8a:ff:33:d8:07:3a:66:8b:14:69:29: 50:a8:9b:b1:95:e7:99:82:e5:11:9a:0f:c7:04:f9: 7d:bb:b3:1e:6e:e7:b5:47:7e:56:2e:ee:44:6b:b2: 7c:a5:a7:65:ae:57:30:63:63:f4:fa:e7:c4:85:ee: 1c:69:61:a8:05:e1:df:ea:26:a1:87:cb:e9:2c:59: 7d:52:9e:fb:54:59:79:73:9f:a2:ed:ee:5c:ea:9d: d8:58:cd:c5:73:c4:1b:e9:e2:52:55:75:69:96:8f: df:55:f7:af:d5:d0:00:71:e0:a6:0d:6b:e1:f3:f5: a3:5a:21:83:59:27:46:de:7d:3c:d6:8e:4f:23:96: 8e:77:be:89:bb:3f:1f:ab:d1:5a:d8:4e:c7:bf:59: 45:d4:82:39:4f:17:57:0e:8b:c2:30:d3:eb:35:09: b7:59:c9:f8:85:19:20:da:1c:11:8f:28:64:9e:bc: 64:01:d1:39:f1:87:6a:ac:63:f6:19:b1:8d:51:b9: 29:d0:61:1c:a7:1c:ae:82:f3:01:61:df:a4:49:bf: 3b:67:0e:48:be:a4:44:55:ea:e1:94:37:32:b4:dc: bd:1e:c5:2a:55:ea:5c:c2:6a:36:73:86:96:98:02: d2:bf:5e:cd:09:5a:41:ec:08:e3:2e:5b:e7:34:76: 2b:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:B1:78:27:53:8E:79:24:65:57:F8:DB:F1:2F:11:EF:8F:9A:B4:8D X509v3 Authority Key Identifier: keyid:10:AE:7F:A0:CF:9C:FA:A8:7E:BA:D8:44:CD:8C:42:6A:C1:C3:A5:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EK5_oM-c-qh-uthEzYxCasHDpec.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:e3:08:1e:50:92:53:3f:42:e0:69:e5:b6:63:6a:e4:d5:0e: 37:20:9e:e2:4a:cd:a5:b3:8a:80:9d:26:86:f2:b9:e9:6c:43: 43:3b:b0:f3:06:ba:bc:aa:77:77:fe:2a:50:af:bd:d1:5a:2b: f5:d1:c2:05:7a:b5:f1:7f:a5:8e:11:7f:f7:3b:a2:88:06:d4: 7b:e9:7f:b8:13:90:99:09:86:82:c1:14:f6:1a:3c:04:a0:1f: b4:80:3b:7c:21:16:ee:09:58:b5:a4:ad:78:44:4f:5d:59:21: 65:96:a4:b7:38:3b:d8:90:d6:aa:a9:a1:d9:a2:69:17:33:e2: 3a:40:b3:a6:9e:8b:aa:f1:4a:4a:07:27:3f:4b:9f:6f:e5:d1: 16:aa:40:a1:37:30:dc:16:a3:7b:fc:14:50:1a:1e:06:76:3e: 48:3b:bb:7d:f5:e4:dd:e9:fc:66:98:f5:bf:85:5a:be:3c:99: 19:00:98:e9:17:34:0b:a0:00:c2:4f:21:52:29:a2:f6:c4:e2: 60:cc:24:b4:43:99:0d:8f:48:da:27:38:36:18:d6:9a:a2:f6: fb:c5:ac:5f:ab:7b:52:5b:50:98:89:4f:92:f7:c4:22:28:44: 2e:8c:8a:01:05:99:94:08:26:59:2a:5f:e0:d8:30:aa:c6:c9: da:e7:30:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNCRkYxMTAvBgNVBAUTKDEwQUU3RkEwQ0Y5Q0ZBQTg3RUJBRDg0NENEOEM0MjZB QzFDM0E1RTcwHhcNMjUwOTA4MTU1NzEwWhcNMjUwOTE1MTU1NzEwWjAYMRYwFAYD VQQDEw02OGJlZmNkNi1iZmYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu7zNiv8z2Ac6ZosUaSlQqJuxleeZguURmg/HBPl9u7Mebue1R35WLu5Ea7J8 padlrlcwY2P0+ufEhe4caWGoBeHf6iahh8vpLFl9Up77VFl5c5+i7e5c6p3YWM3F c8Qb6eJSVXVplo/fVfev1dAAceCmDWvh8/WjWiGDWSdG3n081o5PI5aOd76Juz8f q9Fa2E7Hv1lF1II5TxdXDovCMNPrNQm3Wcn4hRkg2hwRjyhknrxkAdE58YdqrGP2 GbGNUbkp0GEcpxyugvMBYd+kSb87Zw5IvqREVerhlDcytNy9HsUqVepcwmo2c4aW mALSv17NCVpB7AjjLlvnNHYrQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBGxeCdT jnkkZVf42/EvEe+PmrSNMB8GA1UdIwQYMBaAFBCuf6DPnPqofrrYRM2MQmrBw6Xn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0JGRi9GMjkwODI5QTEw REExMUU2ODVDNEJCM0RDNEY5QUUwMi9FSzVfb00tYy1xaC11dGhFell4Q2FzSERw ZWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VLNV9vTS1jLXFoLXV0aEV6WXhDYXNIRHBlYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0JGRi9GMjkwODI5QTEwREExMUU2ODVDNEJCM0RDNEY5QUUwMi9FSzVfb00tYy1x aC11dGhFell4Q2FzSERwZWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA34wgeUJJTP0LgaeW2Y2rk1Q43IJ7iSs2ls4qAnSaG8rnpbENDO7Dz Brq8qnd3/ipQr73RWiv10cIFerXxf6WOEX/3O6KIBtR76X+4E5CZCYaCwRT2GjwE oB+0gDt8IRbuCVi1pK14RE9dWSFllqS3ODvYkNaqqaHZomkXM+I6QLOmnouq8UpK Byc/S59v5dEWqkChNzDcFqN7/BRQGh4Gdj5IO7t99eTd6fxmmPW/hVq+PJkZAJjp FzQLoADCTyFSKaL2xOJgzCS0Q5kNj0jaJzg2GNaaovb7xaxfq3tSW1CYiU+S98Qi KEQujIoBBZmUCCZZKl/g2DCqxsna5zD6 -----END CERTIFICATE-----Generated at Tue Sep 9 19:26:20 2025 by rpki-client