$ rpki-client -vvf rpki.apnic.net/member_repository/A9154AA5/830E2694A0A911EAAF2EF211C4F9AE02/evqYcujQ_5IpleWJO1nDIUdnsfw.mft File: evqYcujQ_5IpleWJO1nDIUdnsfw.mft (raw, json) Hash identifier: m6CtpffWsgy+xSdGMQfVS8YMmHEfc0uaA4DB/Mw0Uck= Subject key identifier: 7D:9C:E8:39:55:2A:E7:34:59:A9:15:30:3A:39:EE:6A:54:4E:D5:0A Authority key identifier: 7A:FA:98:72:E8:D0:FF:92:29:95:E5:89:3B:59:C3:21:47:67:B1:FC Certificate issuer: /CN=A9154AA5/serialNumber=7AFA9872E8D0FF922995E5893B59C3214767B1FC Certificate serial: 095C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/evqYcujQ_5IpleWJO1nDIUdnsfw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154AA5/830E2694A0A911EAAF2EF211C4F9AE02/evqYcujQ_5IpleWJO1nDIUdnsfw.mft Manifest number: 0954 Signing time: Sun 24 Aug 2025 20:12:09 +0000 Manifest this update: Sun 24 Aug 2025 20:12:08 +0000 Manifest next update: Sun 31 Aug 2025 20:12:08 +0000 Files and hashes: 1: evqYcujQ_5IpleWJO1nDIUdnsfw.crl (hash: AhqENMrNFdy9ZsMeA9ZrFarLWo9+lS6VR6bSf7ENvKg=) 2: 8F1FBA54B0AA11EA9603E729C4F9AE02.roa (hash: +iwTzs5m/T4DUW8LNJ7XuCxYejcTHo86TwNrQogD1C4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154AA5/830E2694A0A911EAAF2EF211C4F9AE02/evqYcujQ_5IpleWJO1nDIUdnsfw.crl rsync://rpki.apnic.net/member_repository/A9154AA5/830E2694A0A911EAAF2EF211C4F9AE02/evqYcujQ_5IpleWJO1nDIUdnsfw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/evqYcujQ_5IpleWJO1nDIUdnsfw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 19:03:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2396 (0x95c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154AA5, serialNumber=7AFA9872E8D0FF922995E5893B59C3214767B1FC Validity Not Before: Aug 24 20:12:08 2025 GMT Not After : Aug 31 20:12:08 2025 GMT Subject: CN=68ab7219-15a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:fb:27:5b:9d:56:f1:c8:16:00:43:ac:3c:23: 61:d9:e7:08:f5:d6:ca:bf:6a:33:fc:44:a2:35:26: 10:ba:0b:e7:e4:f9:21:e4:aa:31:df:01:a9:9b:f6: 44:35:5b:db:eb:c3:77:4d:96:5c:0e:63:25:f6:d5: a7:f1:8f:02:2a:b8:10:9a:ae:2b:00:53:66:fb:49: 86:dd:4e:e6:58:22:b2:57:dc:6d:81:42:09:3f:8d: a8:7b:42:f0:96:a9:bc:0d:ae:e5:e0:5f:a2:d9:06: 20:cc:03:8f:14:23:16:34:c7:77:24:92:ba:7b:42: 28:7b:11:5d:90:34:a9:86:54:41:45:03:6c:a0:a9: 18:61:f2:6b:0a:f8:8d:c0:50:ca:8d:f2:c6:02:d5: 78:23:60:9f:2d:fd:d7:d4:4f:0c:cb:7b:bc:0c:29: 80:0e:74:79:25:46:8e:81:6e:ca:c2:96:28:c6:c5: fa:10:6f:01:dd:56:23:d2:28:44:25:98:79:a9:8f: e3:95:1f:22:d7:47:a2:70:22:b6:21:f9:f6:27:cf: 3c:ae:84:c3:17:c3:6c:f1:ea:cd:28:e0:39:4c:32: 65:ff:1f:6f:e2:4f:73:d2:aa:9a:39:28:4b:55:e5: 7f:f4:1a:66:77:6c:d7:50:7b:72:61:aa:45:07:d7: 67:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:9C:E8:39:55:2A:E7:34:59:A9:15:30:3A:39:EE:6A:54:4E:D5:0A X509v3 Authority Key Identifier: keyid:7A:FA:98:72:E8:D0:FF:92:29:95:E5:89:3B:59:C3:21:47:67:B1:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154AA5/830E2694A0A911EAAF2EF211C4F9AE02/evqYcujQ_5IpleWJO1nDIUdnsfw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/evqYcujQ_5IpleWJO1nDIUdnsfw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154AA5/830E2694A0A911EAAF2EF211C4F9AE02/evqYcujQ_5IpleWJO1nDIUdnsfw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:18:02:aa:a2:07:c9:03:58:5b:b1:c7:54:5c:e1:b4:2c:1c: d2:db:c5:5c:62:62:00:0d:78:63:4b:d4:3f:56:b2:86:87:0b: 7a:60:e8:70:7a:de:b4:c6:4b:69:7d:e9:9d:4d:64:67:f0:a3: a9:e1:be:55:d4:3b:63:2c:f7:54:5e:b1:0e:16:c2:08:fc:c0: c7:8c:5a:94:63:3c:b9:48:d6:1a:ec:cf:88:6f:90:65:66:ed: 6f:20:48:b8:66:e3:d9:f2:02:ab:b1:a5:b3:d3:a8:2f:aa:4a: d3:68:f5:50:70:60:cf:03:56:c3:20:f4:7a:f3:d9:1a:e3:25: 15:67:d2:4b:2e:9e:33:26:f7:62:18:67:71:28:e9:68:69:e7: 71:b1:04:c7:9d:87:18:94:a7:a1:71:df:78:ab:7c:37:1c:26: 14:57:ae:57:ec:13:da:9b:c0:61:3b:6f:b1:c5:24:a6:19:4a: 8c:ca:69:1a:15:77:f9:17:c5:17:8e:9d:1f:55:07:7a:84:33: 59:38:b4:cf:3c:6e:ef:14:61:c4:e1:07:48:76:6d:48:44:b1: 1e:55:bb:68:ba:c2:12:c9:82:69:68:d1:6d:cb:f2:8e:89:09: 29:97:b4:c3:d5:86:4a:51:f9:df:48:d0:3a:9f:98:69:06:dc: a0:80:d4:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRBQTUxMTAvBgNVBAUTKDdBRkE5ODcyRThEMEZGOTIyOTk1RTU4OTNCNTlDMzIx NDc2N0IxRkMwHhcNMjUwODI0MjAxMjA4WhcNMjUwODMxMjAxMjA4WjAYMRYwFAYD VQQDEw02OGFiNzIxOS0xNWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz/snW51W8cgWAEOsPCNh2ecI9dbKv2oz/ESiNSYQugvn5Pkh5Kox3wGpm/ZE NVvb68N3TZZcDmMl9tWn8Y8CKrgQmq4rAFNm+0mG3U7mWCKyV9xtgUIJP42oe0Lw lqm8Da7l4F+i2QYgzAOPFCMWNMd3JJK6e0IoexFdkDSphlRBRQNsoKkYYfJrCviN wFDKjfLGAtV4I2CfLf3X1E8My3u8DCmADnR5JUaOgW7KwpYoxsX6EG8B3VYj0ihE JZh5qY/jlR8i10eicCK2Ifn2J888roTDF8Ns8erNKOA5TDJl/x9v4k9z0qqaOShL VeV/9Bpmd2zXUHtyYapFB9dn+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH2c6DlV Kuc0WakVMDo57mpUTtUKMB8GA1UdIwQYMBaAFHr6mHLo0P+SKZXliTtZwyFHZ7H8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEFBNS84MzBFMjY5NEEw QTkxMUVBQUYyRUYyMTFDNEY5QUUwMi9ldnFZY3VqUV81SXBsZVdKTzFuRElVZG5z ZncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V2cVljdWpRXzVJcGxlV0pPMW5ESVVkbnNmdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEFBNS84MzBFMjY5NEEwQTkxMUVBQUYyRUYyMTFDNEY5QUUwMi9ldnFZY3VqUV81 SXBsZVdKTzFuRElVZG5zZncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqGAKqogfJA1hbscdUXOG0LBzS28VcYmIADXhjS9Q/VrKGhwt6YOhw et60xktpfemdTWRn8KOp4b5V1DtjLPdUXrEOFsII/MDHjFqUYzy5SNYa7M+Ib5Bl Zu1vIEi4ZuPZ8gKrsaWz06gvqkrTaPVQcGDPA1bDIPR689ka4yUVZ9JLLp4zJvdi GGdxKOloaedxsQTHnYcYlKehcd94q3w3HCYUV65X7BPam8BhO2+xxSSmGUqMymka FXf5F8UXjp0fVQd6hDNZOLTPPG7vFGHE4QdIdm1IRLEeVbtousISyYJpaNFty/KO iQkpl7TD1YZKUfnfSNA6n5hpBtyggNRW -----END CERTIFICATE-----Generated at Sun Aug 24 22:23:11 2025 by rpki-client