$ rpki-client -vvf rpki.apnic.net/member_repository/A91306B2/321FDD3E4D8311ED87FB1E6FC4F9AE02/EMpiwqdJv5H1YirewPGWGEk8u6k.mft File: EMpiwqdJv5H1YirewPGWGEk8u6k.mft (raw, json) Hash identifier: db2ooEq802I9sbGF6lCU3uf5X0YIkLNXW6j2x3Mu7v0= Subject key identifier: 95:77:16:13:64:9F:67:C0:EA:41:97:5E:41:B4:60:86:98:0D:56:15 Authority key identifier: 10:CA:62:C2:A7:49:BF:91:F5:62:2A:DE:C0:F1:96:18:49:3C:BB:A9 Certificate issuer: /CN=A91306B2/serialNumber=10CA62C2A749BF91F5622ADEC0F19618493CBBA9 Certificate serial: 0222 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EMpiwqdJv5H1YirewPGWGEk8u6k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91306B2/321FDD3E4D8311ED87FB1E6FC4F9AE02/EMpiwqdJv5H1YirewPGWGEk8u6k.mft Manifest number: 021D Signing time: Tue 09 Sep 2025 02:04:29 +0000 Manifest this update: Tue 09 Sep 2025 02:04:29 +0000 Manifest next update: Tue 16 Sep 2025 02:04:29 +0000 Files and hashes: 1: EMpiwqdJv5H1YirewPGWGEk8u6k.crl (hash: nuEBu2lZbnoHiblh5EvjxGOxZXRdZ8AndvlIuW+YfV8=) 2: 695CA6D414BF11EEB8B95B7FC4F9AE02.roa (hash: y8u3ZZNWwXMV6EsCoReGtHsNbMX1mb+g+HfYKyQ+Y/Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91306B2/321FDD3E4D8311ED87FB1E6FC4F9AE02/EMpiwqdJv5H1YirewPGWGEk8u6k.crl rsync://rpki.apnic.net/member_repository/A91306B2/321FDD3E4D8311ED87FB1E6FC4F9AE02/EMpiwqdJv5H1YirewPGWGEk8u6k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EMpiwqdJv5H1YirewPGWGEk8u6k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 02:04:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 546 (0x222) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91306B2, serialNumber=10CA62C2A749BF91F5622ADEC0F19618493CBBA9 Validity Not Before: Sep 9 02:04:29 2025 GMT Not After : Sep 16 02:04:29 2025 GMT Subject: CN=68bf8b2d-349c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:0a:02:a1:8c:99:43:c8:f1:56:b7:1a:82:39: d4:61:32:b9:85:d2:ea:c3:c9:2c:4f:62:ef:cf:04: 01:fe:97:68:79:45:35:c6:48:73:97:dc:f2:8c:7d: 42:04:05:ff:67:5c:ea:56:da:a6:59:d3:da:70:14: 2a:57:b3:0f:96:f9:7d:a8:70:4b:93:be:38:1d:74: 1d:90:44:40:33:15:4b:20:e4:ef:7c:08:dc:79:07: dd:07:cd:82:5d:4a:8f:3a:51:ba:ea:bc:2d:b0:01: f5:3b:94:58:85:fe:78:37:e1:09:2c:4f:93:43:9a: 82:cd:32:37:bf:bd:83:85:90:87:9c:e8:b4:89:03: 3c:20:91:07:d5:20:46:1a:fd:4f:37:bb:5b:2b:86: 47:26:77:71:db:e1:29:94:a7:2c:87:fe:2a:f6:16: 7b:3a:71:91:4a:3e:d6:10:2b:1c:7e:85:c2:a6:93: bf:3b:d5:7b:9c:b6:5b:a7:4c:98:ec:5e:41:90:ed: 2d:bc:75:95:c5:1b:c9:fd:51:ce:a5:91:28:08:ea: 80:40:03:ad:ec:65:ac:63:d5:fa:05:a5:1b:37:e9: 4d:77:e8:a2:9b:2a:46:fc:8e:2f:a2:ba:d1:88:3c: 27:c9:a0:9d:3e:95:cc:05:35:e9:56:7c:73:29:12: f9:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:77:16:13:64:9F:67:C0:EA:41:97:5E:41:B4:60:86:98:0D:56:15 X509v3 Authority Key Identifier: keyid:10:CA:62:C2:A7:49:BF:91:F5:62:2A:DE:C0:F1:96:18:49:3C:BB:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91306B2/321FDD3E4D8311ED87FB1E6FC4F9AE02/EMpiwqdJv5H1YirewPGWGEk8u6k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EMpiwqdJv5H1YirewPGWGEk8u6k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91306B2/321FDD3E4D8311ED87FB1E6FC4F9AE02/EMpiwqdJv5H1YirewPGWGEk8u6k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:c5:6e:f6:92:50:ff:e0:32:90:bc:46:a1:8f:04:8d:0c:ba: 69:2f:f7:35:9b:30:0a:91:f1:9b:23:6c:9f:ab:70:be:e3:d8: c1:3a:b6:6c:02:38:ee:80:58:c3:6a:cf:1f:11:78:2e:18:72: dc:a3:92:df:e8:56:b1:ef:f2:0e:bc:f0:6d:2d:c0:5e:68:cf: 1e:06:b4:b1:23:0c:3f:61:9b:87:f8:92:1c:71:d4:10:f3:cc: 76:1f:2f:75:e5:36:77:50:ab:da:aa:ae:f4:4d:87:b9:a4:74: 71:db:94:69:60:a5:2a:9c:51:53:98:97:5a:b2:35:ab:1e:e3: 3d:5f:cf:5c:53:e7:63:c1:48:39:a3:c4:8b:d1:32:10:4d:c7: bc:5d:38:d4:5c:5a:e2:b9:f5:c7:c8:94:81:d9:b2:3c:6a:56: 08:c6:06:5f:40:8b:ca:38:26:2d:a4:51:a7:7d:bb:3f:a9:6b: 80:f5:f0:b0:fa:03:57:09:ed:8c:04:cc:f4:cc:15:aa:8d:5c: c1:26:a9:43:b9:38:f8:c6:41:35:f7:65:50:dc:ba:cd:a7:ee: 15:7c:53:dd:d9:2c:64:c5:33:95:06:6d:46:c9:97:35:4d:56: 8c:53:8e:95:67:e0:91:d6:f0:d4:85:eb:48:f4:46:f5:7e:27: aa:39:7e:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzA2QjIxMTAvBgNVBAUTKDEwQ0E2MkMyQTc0OUJGOTFGNTYyMkFERUMwRjE5NjE4 NDkzQ0JCQTkwHhcNMjUwOTA5MDIwNDI5WhcNMjUwOTE2MDIwNDI5WjAYMRYwFAYD VQQDEw02OGJmOGIyZC0zNDljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtwoCoYyZQ8jxVrcagjnUYTK5hdLqw8ksT2LvzwQB/pdoeUU1xkhzl9zyjH1C BAX/Z1zqVtqmWdPacBQqV7MPlvl9qHBLk744HXQdkERAMxVLIOTvfAjceQfdB82C XUqPOlG66rwtsAH1O5RYhf54N+EJLE+TQ5qCzTI3v72DhZCHnOi0iQM8IJEH1SBG Gv1PN7tbK4ZHJndx2+EplKcsh/4q9hZ7OnGRSj7WECscfoXCppO/O9V7nLZbp0yY 7F5BkO0tvHWVxRvJ/VHOpZEoCOqAQAOt7GWsY9X6BaUbN+lNd+iimypG/I4vorrR iDwnyaCdPpXMBTXpVnxzKRL5dQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJV3FhNk n2fA6kGXXkG0YIaYDVYVMB8GA1UdIwQYMBaAFBDKYsKnSb+R9WIq3sDxlhhJPLup MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDZCMi8zMjFGREQzRTRE ODMxMUVEODdGQjFFNkZDNEY5QUUwMi9FTXBpd3FkSnY1SDFZaXJld1BHV0dFazh1 NmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VNcGl3cWRKdjVIMVlpcmV3UEdXR0VrOHU2ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDZCMi8zMjFGREQzRTREODMxMUVEODdGQjFFNkZDNEY5QUUwMi9FTXBpd3FkSnY1 SDFZaXJld1BHV0dFazh1NmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDxW72klD/4DKQvEahjwSNDLppL/c1mzAKkfGbI2yfq3C+49jBOrZs AjjugFjDas8fEXguGHLco5Lf6Fax7/IOvPBtLcBeaM8eBrSxIww/YZuH+JIccdQQ 88x2Hy915TZ3UKvaqq70TYe5pHRx25RpYKUqnFFTmJdasjWrHuM9X89cU+djwUg5 o8SL0TIQTce8XTjUXFriufXHyJSB2bI8alYIxgZfQIvKOCYtpFGnfbs/qWuA9fCw +gNXCe2MBMz0zBWqjVzBJqlDuTj4xkE192VQ3LrNp+4VfFPd2SxkxTOVBm1GyZc1 TVaMU46VZ+CR1vDUhetI9Eb1fieqOX73 -----END CERTIFICATE-----Generated at Tue Sep 9 13:35:03 2025 by rpki-client