$ rpki-client -vvf rpki.apnic.net/member_repository/A9165FF3/CEABB4E61D9D11E28EAF4D8D08B02CD2/emYQUZRc4uj7SubeY7KEeLDO014.mft File: emYQUZRc4uj7SubeY7KEeLDO014.mft (raw, json) Hash identifier: zmCqCC/Ocd2VOZrwiah8fskftvn81Pj5V6bpqAlRG0o= Subject key identifier: DA:10:82:B7:93:58:1B:9B:0E:07:7E:DB:CA:85:88:62:16:B6:6F:AE Authority key identifier: 7A:66:10:51:94:5C:E2:E8:FB:4A:E6:DE:63:B2:84:78:B0:CE:D3:5E Certificate issuer: /CN=A9165FF3/serialNumber=7A661051945CE2E8FB4AE6DE63B28478B0CED35E Certificate serial: 34BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/emYQUZRc4uj7SubeY7KEeLDO014.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165FF3/CEABB4E61D9D11E28EAF4D8D08B02CD2/emYQUZRc4uj7SubeY7KEeLDO014.mft Manifest number: 34B5 Signing time: Sun 24 Aug 2025 14:59:36 +0000 Manifest this update: Sun 24 Aug 2025 14:59:35 +0000 Manifest next update: Sun 31 Aug 2025 14:59:35 +0000 Files and hashes: 1: emYQUZRc4uj7SubeY7KEeLDO014.crl (hash: UEOjZJpqj8gXWN8aF5+YfhowTTb8wJ0O/aqJ/SBumlA=) 2: 5FBB084EAE6A11ECAA9D756AC4F9AE02.roa (hash: wwzdt+29bN5sRkpJd/eidoVjChYLuUnZj02CyiHrUiQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165FF3/CEABB4E61D9D11E28EAF4D8D08B02CD2/emYQUZRc4uj7SubeY7KEeLDO014.crl rsync://rpki.apnic.net/member_repository/A9165FF3/CEABB4E61D9D11E28EAF4D8D08B02CD2/emYQUZRc4uj7SubeY7KEeLDO014.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/emYQUZRc4uj7SubeY7KEeLDO014.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 14:59:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13498 (0x34ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165FF3, serialNumber=7A661051945CE2E8FB4AE6DE63B28478B0CED35E Validity Not Before: Aug 24 14:59:35 2025 GMT Not After : Aug 31 14:59:35 2025 GMT Subject: CN=68ab28d8-eec4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ae:cd:71:f8:94:2b:39:98:07:5d:11:e4:3c: 29:8c:f4:ae:6c:06:6e:06:13:cb:bd:89:5c:30:5e: 94:c8:fc:ac:65:48:94:00:49:be:7c:53:cd:c9:23: 3b:db:5c:d7:26:12:2b:5b:e0:35:9f:1a:6c:d0:82: 03:ff:4c:f1:1f:fe:b7:be:71:47:a6:04:b7:d1:f9: 0b:40:03:44:c8:68:3f:df:db:ca:38:40:bc:55:d0: 66:8d:79:8c:63:09:ff:0b:81:5e:23:7f:6f:bc:f1: eb:02:e8:14:74:54:e5:bb:bc:5b:af:70:2b:a7:ad: 3f:70:5d:9c:aa:01:08:7b:a8:40:ce:88:cd:04:29: f3:f9:bf:2a:e3:62:b9:0f:cc:a0:df:f1:cd:f9:ff: 81:e7:2b:43:e8:80:3d:50:40:ca:86:b8:3c:e4:96: 95:16:1a:a8:2d:b8:75:f4:3d:ef:33:5e:2f:e1:81: 56:a6:66:df:cb:78:9b:53:98:da:5e:a0:53:7e:37: 38:16:3f:ab:7a:ff:8d:91:da:e8:54:8b:fd:de:72: e2:d5:ec:f9:5a:4f:01:dc:9b:b3:87:dc:4e:66:7b: 63:f4:a5:7f:3c:e4:18:7e:82:23:d7:b4:81:71:7d: a5:18:a4:0a:f2:1e:6f:80:04:67:c5:6f:6f:2f:c4: d8:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:10:82:B7:93:58:1B:9B:0E:07:7E:DB:CA:85:88:62:16:B6:6F:AE X509v3 Authority Key Identifier: keyid:7A:66:10:51:94:5C:E2:E8:FB:4A:E6:DE:63:B2:84:78:B0:CE:D3:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165FF3/CEABB4E61D9D11E28EAF4D8D08B02CD2/emYQUZRc4uj7SubeY7KEeLDO014.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/emYQUZRc4uj7SubeY7KEeLDO014.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165FF3/CEABB4E61D9D11E28EAF4D8D08B02CD2/emYQUZRc4uj7SubeY7KEeLDO014.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:29:fb:f7:07:ad:bd:51:1f:4c:14:f3:07:42:36:a4:f8:af: 2a:a3:47:a4:b2:92:ca:2c:aa:c3:7a:4c:fa:20:31:67:5a:43: f9:8a:e2:6c:5f:6e:b2:ea:2f:97:d6:e2:90:c3:a4:02:35:be: 3c:ee:85:e5:13:2d:0f:90:95:d7:bf:77:3b:ee:d6:dd:1b:71: 39:39:64:86:00:93:9a:c9:a7:c8:af:67:51:17:f9:c1:ef:c9: f0:26:b1:56:fb:12:d2:dd:4d:a0:49:1b:50:a2:db:a6:29:7d: 10:46:75:0e:9e:d1:68:18:78:2e:da:5c:64:f0:34:5f:c6:f1: ba:d4:4b:cc:2a:f9:e8:73:73:ac:a3:58:a6:4b:af:cf:bb:ae: 90:5b:c6:2c:d6:f9:1c:a9:4d:dd:90:c1:e8:57:27:bf:ab:12: e8:56:db:c5:15:a7:39:a4:19:bc:64:fc:94:fd:a1:fa:b0:8a: 22:62:f5:b7:46:11:b3:1d:29:65:60:d6:a1:9f:a8:8a:75:5c: 38:33:7c:8c:b5:cc:ad:e5:58:2f:35:90:fc:76:6c:7b:99:ab: 8d:a4:8f:5e:64:1c:b9:fd:ed:b1:65:eb:cb:5c:86:e2:85:98: 06:f2:be:12:ab:7b:35:e2:b5:3e:d9:3f:78:1d:32:e7:67:57: 57:eb:d4:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVGRjMxMTAvBgNVBAUTKDdBNjYxMDUxOTQ1Q0UyRThGQjRBRTZERTYzQjI4NDc4 QjBDRUQzNUUwHhcNMjUwODI0MTQ1OTM1WhcNMjUwODMxMTQ1OTM1WjAYMRYwFAYD VQQDEw02OGFiMjhkOC1lZWM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApa7NcfiUKzmYB10R5DwpjPSubAZuBhPLvYlcMF6UyPysZUiUAEm+fFPNySM7 21zXJhIrW+A1nxps0IID/0zxH/63vnFHpgS30fkLQANEyGg/39vKOEC8VdBmjXmM Ywn/C4FeI39vvPHrAugUdFTlu7xbr3Arp60/cF2cqgEIe6hAzojNBCnz+b8q42K5 D8yg3/HN+f+B5ytD6IA9UEDKhrg85JaVFhqoLbh19D3vM14v4YFWpmbfy3ibU5ja XqBTfjc4Fj+rev+NkdroVIv93nLi1ez5Wk8B3Juzh9xOZntj9KV/POQYfoIj17SB cX2lGKQK8h5vgARnxW9vL8TYLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNoQgreT WBubDgd+28qFiGIWtm+uMB8GA1UdIwQYMBaAFHpmEFGUXOLo+0rm3mOyhHiwztNe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUZGMy9DRUFCQjRFNjFE OUQxMUUyOEVBRjREOEQwOEIwMkNEMi9lbVlRVVpSYzR1ajdTdWJlWTdLRWVMRE8w MTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VtWVFVWlJjNHVqN1N1YmVZN0tFZUxETzAxNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUZGMy9DRUFCQjRFNjFEOUQxMUUyOEVBRjREOEQwOEIwMkNEMi9lbVlRVVpSYzR1 ajdTdWJlWTdLRWVMRE8wMTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnKfv3B629UR9MFPMHQjak+K8qo0ekspLKLKrDekz6IDFnWkP5iuJs X26y6i+X1uKQw6QCNb487oXlEy0PkJXXv3c77tbdG3E5OWSGAJOayafIr2dRF/nB 78nwJrFW+xLS3U2gSRtQotumKX0QRnUOntFoGHgu2lxk8DRfxvG61EvMKvnoc3Os o1imS6/Pu66QW8Ys1vkcqU3dkMHoVye/qxLoVtvFFac5pBm8ZPyU/aH6sIoiYvW3 RhGzHSllYNahn6iKdVw4M3yMtcyt5VgvNZD8dmx7mauNpI9eZBy5/e2xZevLXIbi hZgG8r4Sq3s14rU+2T94HTLnZ1dX69R/ -----END CERTIFICATE-----Generated at Sun Aug 24 22:02:52 2025 by rpki-client