$ rpki-client -vvf rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft File: ehMEShEYWGwP2hOLs-vdSEiRTjc.mft (raw, json) Hash identifier: Cs/MdrqmpN6aXDg4b+gKIbU1qzjZKMZcoES2KkclKc0= Subject key identifier: 47:7B:9E:78:DA:8D:EF:F6:F1:0B:22:D7:D5:FA:50:FF:29:FC:7F:BB Authority key identifier: 7A:13:04:4A:11:18:58:6C:0F:DA:13:8B:B3:EB:DD:48:48:91:4E:37 Certificate issuer: /CN=A9154EAF/serialNumber=7A13044A1118586C0FDA138BB3EBDD4848914E37 Certificate serial: 0297 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ehMEShEYWGwP2hOLs-vdSEiRTjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft Manifest number: 0293 Signing time: Sun 07 Sep 2025 02:03:16 +0000 Manifest this update: Sun 07 Sep 2025 02:03:15 +0000 Manifest next update: Sun 14 Sep 2025 02:03:15 +0000 Files and hashes: 1: ehMEShEYWGwP2hOLs-vdSEiRTjc.crl (hash: einu0L4XfQ8U8r9ZU9tChAVhb3TEiEgglXaCFJSQoFQ=) 2: 62A0C17A16C511ED91E80F56C4F9AE02.roa (hash: JJX6OI5aam7BC0uvlTdjVV9SQAAwhFakRzY5oiIX9Uk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.crl rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ehMEShEYWGwP2hOLs-vdSEiRTjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 02:03:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 663 (0x297) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154EAF, serialNumber=7A13044A1118586C0FDA138BB3EBDD4848914E37 Validity Not Before: Sep 7 02:03:15 2025 GMT Not After : Sep 14 02:03:15 2025 GMT Subject: CN=68bce7e4-e3e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ea:7b:10:9c:b9:fd:51:5e:1b:31:a6:7e:65: f8:37:8b:13:ba:70:23:d5:62:5e:f5:4e:26:af:1a: db:14:1a:3d:df:7e:24:a9:2a:8e:3e:ef:db:52:99: b6:f5:d7:4d:50:2f:58:9d:25:36:7a:18:df:b5:d3: 8c:c4:d9:41:71:6e:02:3a:3c:91:cb:71:3b:e0:a4: d6:50:23:ad:2c:fb:67:8a:6f:d1:d3:fa:d1:05:da: 0c:f6:75:c9:bc:4c:26:fe:b4:ee:69:d1:d8:ba:29: 43:4c:18:c4:43:b0:f1:c8:e2:79:83:83:28:d0:b2: 1e:98:72:7a:83:a1:9b:5c:82:42:13:b5:24:9c:a3: 80:99:d8:c6:6e:b6:47:1a:30:23:b2:95:b7:4a:34: 3c:49:b1:59:3b:32:e5:dd:ef:8e:c5:9d:bf:3e:18: 0d:99:e6:02:42:67:e2:2b:54:74:a4:fb:50:bb:9e: 78:9f:83:f3:69:15:3c:ab:c2:6f:86:95:3e:ce:93: 40:32:e4:4a:11:85:bb:8e:c9:1c:63:19:12:50:30: b7:84:60:6a:06:47:d9:d0:c2:8b:3d:5c:fa:49:b7: 65:a5:5c:05:25:6e:33:91:b4:20:ca:dd:67:1c:f0: 41:d9:38:8c:f6:86:35:b8:43:d7:80:8c:21:f7:c6: 85:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:7B:9E:78:DA:8D:EF:F6:F1:0B:22:D7:D5:FA:50:FF:29:FC:7F:BB X509v3 Authority Key Identifier: keyid:7A:13:04:4A:11:18:58:6C:0F:DA:13:8B:B3:EB:DD:48:48:91:4E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ehMEShEYWGwP2hOLs-vdSEiRTjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:44:a7:c3:12:57:25:5d:83:ab:b2:5b:ef:ac:f1:f7:55:51: 80:9f:4d:52:5a:32:e5:d9:f7:b5:70:72:4f:04:80:72:8f:e8: f5:74:57:7f:c7:34:fa:18:85:b2:12:50:ba:21:22:4d:40:4a: da:2a:37:4d:87:03:b4:56:88:29:29:1a:4b:42:19:bc:2e:8a: 38:c2:25:b5:ae:01:16:d7:ad:60:e7:7e:20:1d:35:48:17:66: 31:1a:06:ca:93:fb:04:d0:f1:32:50:ae:1b:92:55:58:6d:82: 34:f4:d2:50:05:f9:83:96:01:f6:b2:0e:f5:f9:92:39:3b:4f: 0c:de:ee:3c:fa:4e:48:5e:c7:84:37:b6:1e:82:5e:42:43:44: 46:bc:a5:44:ac:fd:20:48:97:31:f3:97:bf:39:b7:4a:b1:d9: 6f:f9:6c:77:e5:07:d3:1a:a7:80:84:38:dd:23:65:1c:bd:4e: 66:6b:59:34:39:bb:5b:fb:59:75:64:75:35:52:f0:9e:4b:26: d2:be:9a:10:6b:04:d1:11:04:19:09:32:f3:03:68:8b:fd:28: 45:96:44:e1:d5:0f:dd:b4:2a:82:f7:0d:d3:5e:42:4e:7b:59: 11:c6:8e:12:3a:d5:bb:0e:6c:a1:03:44:3e:c9:cd:e7:46:b6: bb:93:54:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRFQUYxMTAvBgNVBAUTKDdBMTMwNDRBMTExODU4NkMwRkRBMTM4QkIzRUJERDQ4 NDg5MTRFMzcwHhcNMjUwOTA3MDIwMzE1WhcNMjUwOTE0MDIwMzE1WjAYMRYwFAYD VQQDEw02OGJjZTdlNC1lM2UzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz+p7EJy5/VFeGzGmfmX4N4sTunAj1WJe9U4mrxrbFBo9334kqSqOPu/bUpm2 9ddNUC9YnSU2ehjftdOMxNlBcW4COjyRy3E74KTWUCOtLPtnim/R0/rRBdoM9nXJ vEwm/rTuadHYuilDTBjEQ7DxyOJ5g4Mo0LIemHJ6g6GbXIJCE7UknKOAmdjGbrZH GjAjspW3SjQ8SbFZOzLl3e+OxZ2/PhgNmeYCQmfiK1R0pPtQu554n4PzaRU8q8Jv hpU+zpNAMuRKEYW7jskcYxkSUDC3hGBqBkfZ0MKLPVz6SbdlpVwFJW4zkbQgyt1n HPBB2TiM9oY1uEPXgIwh98aFXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEd7nnja je/28Qsi19X6UP8p/H+7MB8GA1UdIwQYMBaAFHoTBEoRGFhsD9oTi7Pr3UhIkU43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEVBRi80N0Q1QTdFMDE2 QzMxMUVEQUU3RUI5NTVDNEY5QUUwMi9laE1FU2hFWVdHd1AyaE9Mcy12ZFNFaVJU amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VoTUVTaEVZV0d3UDJoT0xzLXZkU0VpUlRqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEVBRi80N0Q1QTdFMDE2QzMxMUVEQUU3RUI5NTVDNEY5QUUwMi9laE1FU2hFWVdH d1AyaE9Mcy12ZFNFaVJUamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYRKfDElclXYOrslvvrPH3VVGAn01SWjLl2fe1cHJPBIByj+j1dFd/ xzT6GIWyElC6ISJNQEraKjdNhwO0VogpKRpLQhm8Loo4wiW1rgEW161g534gHTVI F2YxGgbKk/sE0PEyUK4bklVYbYI09NJQBfmDlgH2sg71+ZI5O08M3u48+k5IXseE N7Yegl5CQ0RGvKVErP0gSJcx85e/ObdKsdlv+Wx35QfTGqeAhDjdI2UcvU5ma1k0 Obtb+1l1ZHU1UvCeSybSvpoQawTREQQZCTLzA2iL/ShFlkTh1Q/dtCqC9w3TXkJO e1kRxo4SOtW7DmyhA0Q+yc3nRra7k1TG -----END CERTIFICATE-----Generated at Sun Sep 7 14:22:27 2025 by rpki-client