$ rpki-client -vvf rpki.apnic.net/member_repository/A914DA3F/469B176AA6CA11ED8D109978C4F9AE02/EY5vss8Va51aJq7AUfscX37-AeM.mft File: EY5vss8Va51aJq7AUfscX37-AeM.mft (raw, json) Hash identifier: LtIFF1PW0yfCIA4EoOrxT68+mcUdyJx43I/yxDO7oik= Subject key identifier: A4:BD:70:EB:36:06:23:EA:30:E0:DA:41:A0:A5:A6:CA:E3:35:9E:EC Authority key identifier: 11:8E:6F:B2:CF:15:6B:9D:5A:26:AE:C0:51:FB:1C:5F:7E:FE:01:E3 Certificate issuer: /CN=A914DA3F/serialNumber=118E6FB2CF156B9D5A26AEC051FB1C5F7EFE01E3 Certificate serial: 01EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EY5vss8Va51aJq7AUfscX37-AeM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DA3F/469B176AA6CA11ED8D109978C4F9AE02/EY5vss8Va51aJq7AUfscX37-AeM.mft Manifest number: 01E9 Signing time: Tue 09 Sep 2025 02:39:42 +0000 Manifest this update: Tue 09 Sep 2025 02:39:42 +0000 Manifest next update: Tue 16 Sep 2025 02:39:42 +0000 Files and hashes: 1: EY5vss8Va51aJq7AUfscX37-AeM.crl (hash: uvYCyQ1WmXxlJJ5P4uyjK3wrJFBv0JAVVsfhlXlCJw0=) 2: 612568D2A6D011ED8FBD0A82C4F9AE02.roa (hash: nm2zg9mKvyo9+lsb6e1TLrNeopFW/UoV47vdvbrHk8c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DA3F/469B176AA6CA11ED8D109978C4F9AE02/EY5vss8Va51aJq7AUfscX37-AeM.crl rsync://rpki.apnic.net/member_repository/A914DA3F/469B176AA6CA11ED8D109978C4F9AE02/EY5vss8Va51aJq7AUfscX37-AeM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EY5vss8Va51aJq7AUfscX37-AeM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 02:39:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 494 (0x1ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DA3F, serialNumber=118E6FB2CF156B9D5A26AEC051FB1C5F7EFE01E3 Validity Not Before: Sep 9 02:39:42 2025 GMT Not After : Sep 16 02:39:42 2025 GMT Subject: CN=68bf936e-f4d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:9b:a2:12:b5:ee:c0:68:09:30:31:c9:01:63: 2c:b7:d6:27:08:72:5d:36:41:38:cb:de:70:49:21: 86:b9:90:2c:56:92:8d:18:48:77:4e:f6:11:f4:43: 5e:a2:a6:bb:e2:fb:61:a3:22:9a:f3:de:7f:e7:6e: ff:6f:6e:fd:46:3c:6d:33:72:8f:ed:ff:bf:4c:6b: b4:7b:32:64:a3:df:49:5b:de:79:8f:ab:a8:92:b3: e3:f8:02:87:d2:d6:a3:d1:68:a7:02:a1:d8:e6:45: 2e:b1:57:1f:0a:d5:ab:ea:ea:f6:b5:32:eb:70:06: d9:a1:97:29:28:22:62:e9:dd:36:d3:da:ce:06:54: e5:4c:67:a4:66:71:b8:d8:ff:5a:01:9f:80:80:6c: 07:34:1b:e6:d1:6b:12:4e:b4:d6:78:0c:d4:df:1b: b9:2a:7e:7c:0e:23:c8:d1:ed:a6:d7:2f:d5:37:e0: 9d:c5:37:82:cd:f4:3f:dc:ce:12:48:cb:e7:97:d5: 55:8c:d6:c9:72:b8:85:09:28:9b:4b:e6:b5:4a:3a: 07:5e:e3:a3:2d:8b:d4:f9:fd:6f:4e:4e:31:7c:7e: 76:31:65:1e:3a:01:29:8f:d3:54:18:54:8a:4d:ce: 14:3f:74:c8:0f:16:15:6d:f6:32:84:fa:f6:26:33: 35:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:BD:70:EB:36:06:23:EA:30:E0:DA:41:A0:A5:A6:CA:E3:35:9E:EC X509v3 Authority Key Identifier: keyid:11:8E:6F:B2:CF:15:6B:9D:5A:26:AE:C0:51:FB:1C:5F:7E:FE:01:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DA3F/469B176AA6CA11ED8D109978C4F9AE02/EY5vss8Va51aJq7AUfscX37-AeM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EY5vss8Va51aJq7AUfscX37-AeM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DA3F/469B176AA6CA11ED8D109978C4F9AE02/EY5vss8Va51aJq7AUfscX37-AeM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:0e:90:af:93:9d:53:81:b1:03:3a:d3:32:44:3a:2a:da:63: ba:2e:f4:3b:50:02:93:fd:f5:b3:9a:1c:d7:bf:a7:a3:51:50: b0:8f:f1:e5:92:a9:cc:83:b6:a6:05:30:5f:df:5e:2a:51:0d: bc:ac:fa:0c:05:d1:71:cc:9e:18:25:61:7b:2f:37:e2:f5:47: 77:5d:28:a4:f6:96:11:09:4d:8d:e6:2b:bd:c9:90:4e:60:9d: 32:04:10:80:34:43:b4:e1:d4:34:b4:89:bc:98:b8:9c:f3:e8: 2d:75:ef:77:54:19:cb:5d:a7:b1:58:44:ab:8d:f5:70:24:15: 10:6f:20:ab:e8:1d:fb:ca:f3:93:59:b4:7f:36:21:c1:b5:73: a1:ec:ef:c2:a9:38:45:d8:67:7d:7e:c6:65:0c:24:be:6f:c5: 61:89:c8:0c:1c:28:9b:9d:1f:e4:5f:b8:f4:2a:18:2d:7d:b4: 52:2e:96:72:1e:10:7f:b8:d9:88:45:97:8b:c7:94:f7:3d:0d: 71:c3:7d:4f:e3:68:f5:aa:a1:75:7d:e4:b1:f9:a3:48:78:20: 58:76:54:14:83:3c:9c:b4:4b:2f:c2:4b:ac:31:69:7d:27:5c: 85:f1:cd:63:8f:4c:d8:c6:8b:6a:df:bc:72:06:44:46:68:da: e1:9f:52:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAe4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERBM0YxMTAvBgNVBAUTKDExOEU2RkIyQ0YxNTZCOUQ1QTI2QUVDMDUxRkIxQzVG N0VGRTAxRTMwHhcNMjUwOTA5MDIzOTQyWhcNMjUwOTE2MDIzOTQyWjAYMRYwFAYD VQQDEw02OGJmOTM2ZS1mNGQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3JuiErXuwGgJMDHJAWMst9YnCHJdNkE4y95wSSGGuZAsVpKNGEh3TvYR9ENe oqa74vthoyKa895/527/b279RjxtM3KP7f+/TGu0ezJko99JW955j6uokrPj+AKH 0taj0WinAqHY5kUusVcfCtWr6ur2tTLrcAbZoZcpKCJi6d0209rOBlTlTGekZnG4 2P9aAZ+AgGwHNBvm0WsSTrTWeAzU3xu5Kn58DiPI0e2m1y/VN+CdxTeCzfQ/3M4S SMvnl9VVjNbJcriFCSibS+a1SjoHXuOjLYvU+f1vTk4xfH52MWUeOgEpj9NUGFSK Tc4UP3TIDxYVbfYyhPr2JjM1DQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKS9cOs2 BiPqMODaQaClpsrjNZ7sMB8GA1UdIwQYMBaAFBGOb7LPFWudWiauwFH7HF9+/gHj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REEzRi80NjlCMTc2QUE2 Q0ExMUVEOEQxMDk5NzhDNEY5QUUwMi9FWTV2c3M4VmE1MWFKcTdBVWZzY1gzNy1B ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VZNXZzczhWYTUxYUpxN0FVZnNjWDM3LUFlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 REEzRi80NjlCMTc2QUE2Q0ExMUVEOEQxMDk5NzhDNEY5QUUwMi9FWTV2c3M4VmE1 MWFKcTdBVWZzY1gzNy1BZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlDpCvk51TgbEDOtMyRDoq2mO6LvQ7UAKT/fWzmhzXv6ejUVCwj/Hl kqnMg7amBTBf314qUQ28rPoMBdFxzJ4YJWF7Lzfi9Ud3XSik9pYRCU2N5iu9yZBO YJ0yBBCANEO04dQ0tIm8mLic8+gtde93VBnLXaexWESrjfVwJBUQbyCr6B37yvOT WbR/NiHBtXOh7O/CqThF2Gd9fsZlDCS+b8VhicgMHCibnR/kX7j0KhgtfbRSLpZy HhB/uNmIRZeLx5T3PQ1xw31P42j1qqF1feSx+aNIeCBYdlQUgzyctEsvwkusMWl9 J1yF8c1jj0zYxotq37xyBkRGaNrhn1K5 -----END CERTIFICATE-----Generated at Thu Sep 11 01:11:05 2025 by rpki-client