$ rpki-client -vvf rpki.apnic.net/member_repository/A9175964/F531EDE45B1411EFAC974461C4F9AE02/EW8KKmpLkkLXeiULcXAIFdKY3bk.mft File: EW8KKmpLkkLXeiULcXAIFdKY3bk.mft (raw, json) Hash identifier: HJBUUNcgm1FydbRv6/ZPaf9kQANkoti9QHTjwsgIaNo= Subject key identifier: 6E:D1:F9:45:93:1F:1D:80:88:12:86:D5:B2:74:9A:52:0F:F4:AB:F3 Authority key identifier: 11:6F:0A:2A:6A:4B:92:42:D7:7A:25:0B:71:70:08:15:D2:98:DD:B9 Certificate issuer: /CN=A9175964/serialNumber=116F0A2A6A4B9242D77A250B71700815D298DDB9 Certificate serial: CB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EW8KKmpLkkLXeiULcXAIFdKY3bk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175964/F531EDE45B1411EFAC974461C4F9AE02/EW8KKmpLkkLXeiULcXAIFdKY3bk.mft Manifest number: C9 Signing time: Fri 05 Sep 2025 06:10:17 +0000 Manifest this update: Fri 05 Sep 2025 06:10:16 +0000 Manifest next update: Fri 12 Sep 2025 06:10:16 +0000 Files and hashes: 1: EW8KKmpLkkLXeiULcXAIFdKY3bk.crl (hash: xvNasqta4jadtLZQzRQR3O2gOxAqCQLbdinVuR0ygPM=) 2: 426E71C25B1511EF95122A62C4F9AE02.roa (hash: UXnC/XoVUkLq/3kEuo54UNzjcpY8CVmcAHE/kWC3Jds=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175964/F531EDE45B1411EFAC974461C4F9AE02/EW8KKmpLkkLXeiULcXAIFdKY3bk.crl rsync://rpki.apnic.net/member_repository/A9175964/F531EDE45B1411EFAC974461C4F9AE02/EW8KKmpLkkLXeiULcXAIFdKY3bk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EW8KKmpLkkLXeiULcXAIFdKY3bk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 06:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 203 (0xcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175964, serialNumber=116F0A2A6A4B9242D77A250B71700815D298DDB9 Validity Not Before: Sep 5 06:10:16 2025 GMT Not After : Sep 12 06:10:16 2025 GMT Subject: CN=68ba7ec9-e8b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:74:3a:e6:90:be:cd:e4:f2:b5:79:ea:50:e8: 66:4f:3a:8b:4a:a0:b4:9f:6a:01:e4:8f:fe:29:b9: 24:36:8e:c0:16:ff:fc:f1:2d:67:87:4b:7a:87:c2: 7d:dc:b1:82:f0:12:5b:a0:25:66:07:cf:db:07:3e: f2:b4:04:cb:12:17:a8:e6:d5:18:76:ad:83:39:20: f9:8b:5d:71:8b:63:da:9b:f4:56:f0:fd:43:2b:1c: 25:51:26:f9:19:8e:0f:2d:3d:74:c9:e2:1a:ca:cd: eb:63:fa:b4:03:2e:ab:ff:71:27:59:fc:05:07:eb: 1c:36:ec:81:c2:5d:ec:df:bc:56:ad:c3:0c:40:d6: 7f:e4:27:9b:4b:98:3f:08:56:c3:86:5d:fc:84:b1: 59:76:e0:d9:ea:c6:eb:5a:08:90:98:8f:5e:48:e2: 2d:f8:73:f8:b1:cc:df:db:d8:7f:1f:9a:dc:1f:f4: 09:61:74:09:0b:ec:5a:ad:28:db:1f:4e:5b:6c:0f: 89:3b:b5:94:64:94:25:f4:cf:55:17:a5:2e:12:43: c9:51:50:59:75:09:16:4d:ca:7d:91:9f:1a:30:d7: ae:27:2d:47:24:57:b7:fe:0e:32:b6:1c:e6:80:ca: 98:90:1e:a6:d5:d4:98:84:dd:99:52:fe:ab:41:03: fe:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:D1:F9:45:93:1F:1D:80:88:12:86:D5:B2:74:9A:52:0F:F4:AB:F3 X509v3 Authority Key Identifier: keyid:11:6F:0A:2A:6A:4B:92:42:D7:7A:25:0B:71:70:08:15:D2:98:DD:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175964/F531EDE45B1411EFAC974461C4F9AE02/EW8KKmpLkkLXeiULcXAIFdKY3bk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EW8KKmpLkkLXeiULcXAIFdKY3bk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175964/F531EDE45B1411EFAC974461C4F9AE02/EW8KKmpLkkLXeiULcXAIFdKY3bk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:8e:52:68:7a:59:45:36:84:b6:54:59:a0:fc:28:ba:46:3b: 2a:a2:4c:c5:be:e0:3b:b0:ed:8b:f9:8b:ae:1e:95:f0:04:19: 04:51:0c:ae:2a:c6:56:a6:99:15:d9:39:5a:e3:8e:22:02:ad: 69:b4:5e:42:8c:e5:cd:1f:51:62:4d:0e:a4:4c:d8:0f:ff:88: fb:8e:8f:ed:ed:5b:38:48:96:7f:d8:ea:d5:64:1b:2d:50:55: 52:cb:50:ac:2f:4b:97:99:69:d7:af:df:2e:45:40:67:a6:3b: 53:93:37:67:28:5b:51:b1:90:6f:3d:9b:d4:55:4b:a6:e9:d1: 27:7e:a0:5f:d0:c9:1a:74:9a:bf:94:dc:c2:35:64:2a:5c:d5: 6c:d0:3e:b3:7c:90:6d:00:ea:f4:83:a0:f5:ed:ea:52:38:48: fa:15:dc:f6:bf:22:61:54:9e:7d:38:21:5c:03:f2:a7:0f:76: 37:84:7b:c4:5a:0b:fe:e6:21:39:16:a1:b9:68:24:a3:59:1a: 38:0c:5e:10:b2:ed:5e:1d:32:d8:5d:20:1f:07:59:e3:63:24: e3:9b:b2:f4:da:2a:ad:f7:ff:78:0a:ce:60:09:df:53:70:bf: 26:cc:10:31:24:e7:68:36:c3:43:fc:b8:11:ea:91:27:78:bb: 49:ff:fd:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU5NjQxMTAvBgNVBAUTKDExNkYwQTJBNkE0QjkyNDJENzdBMjUwQjcxNzAwODE1 RDI5OEREQjkwHhcNMjUwOTA1MDYxMDE2WhcNMjUwOTEyMDYxMDE2WjAYMRYwFAYD VQQDEw02OGJhN2VjOS1lOGI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6XQ65pC+zeTytXnqUOhmTzqLSqC0n2oB5I/+KbkkNo7AFv/88S1nh0t6h8J9 3LGC8BJboCVmB8/bBz7ytATLEheo5tUYdq2DOSD5i11xi2Pam/RW8P1DKxwlUSb5 GY4PLT10yeIays3rY/q0Ay6r/3EnWfwFB+scNuyBwl3s37xWrcMMQNZ/5CebS5g/ CFbDhl38hLFZduDZ6sbrWgiQmI9eSOIt+HP4sczf29h/H5rcH/QJYXQJC+xarSjb H05bbA+JO7WUZJQl9M9VF6UuEkPJUVBZdQkWTcp9kZ8aMNeuJy1HJFe3/g4ythzm gMqYkB6m1dSYhN2ZUv6rQQP+6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG7R+UWT Hx2AiBKG1bJ0mlIP9KvzMB8GA1UdIwQYMBaAFBFvCipqS5JC13olC3FwCBXSmN25 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTk2NC9GNTMxRURFNDVC MTQxMUVGQUM5NzQ0NjFDNEY5QUUwMi9FVzhLS21wTGtrTFhlaVVMY1hBSUZkS1kz YmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0VXOEtLbXBMa2tMWGVpVUxjWEFJRmRLWTNiay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTk2NC9GNTMxRURFNDVCMTQxMUVGQUM5NzQ0NjFDNEY5QUUwMi9FVzhLS21wTGtr TFhlaVVMY1hBSUZkS1kzYmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkjlJoellFNoS2VFmg/Ci6RjsqokzFvuA7sO2L+YuuHpXwBBkEUQyu KsZWppkV2Tla444iAq1ptF5CjOXNH1FiTQ6kTNgP/4j7jo/t7Vs4SJZ/2OrVZBst UFVSy1CsL0uXmWnXr98uRUBnpjtTkzdnKFtRsZBvPZvUVUum6dEnfqBf0MkadJq/ lNzCNWQqXNVs0D6zfJBtAOr0g6D17epSOEj6Fdz2vyJhVJ59OCFcA/KnD3Y3hHvE Wgv+5iE5FqG5aCSjWRo4DF4Qsu1eHTLYXSAfB1njYyTjm7L02iqt9/94Cs5gCd9T cL8mzBAxJOdoNsND/LgR6pEneLtJ//0L -----END CERTIFICATE-----Generated at Sat Sep 6 20:53:00 2025 by rpki-client