$ rpki-client -vvf rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.mft File: ejHVc5eYsGSmAHEzqj5bnNDu1F8.mft (raw, json) Hash identifier: +jQazyHkgD8uT9XbbKHtdjr2+vWXoigqFaACN3R7Bn8= Subject key identifier: 3E:7E:EF:11:1B:FD:B7:AB:CC:F6:F0:50:9C:8C:91:A8:46:28:53:03 Authority key identifier: 7A:31:D5:73:97:98:B0:64:A6:00:71:33:AA:3E:5B:9C:D0:EE:D4:5F Certificate issuer: /CN=A919A285/serialNumber=7A31D5739798B064A6007133AA3E5B9CD0EED45F Certificate serial: 08A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ejHVc5eYsGSmAHEzqj5bnNDu1F8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.mft Manifest number: 089F Signing time: Thu 18 Sep 2025 20:47:41 +0000 Manifest this update: Thu 18 Sep 2025 20:47:41 +0000 Manifest next update: Thu 25 Sep 2025 20:47:41 +0000 Files and hashes: 1: ejHVc5eYsGSmAHEzqj5bnNDu1F8.crl (hash: 5m8P9kNXh2wejiNAb3Vm6jKtoKOPLjzChanz+BhXfV4=) 2: 1DCABC72C57811EA950A8643C4F9AE02.roa (hash: 3y+P8Wjw2NbNvaqBtjPXBVu0eGWr6eeBTOCTDHgw4uI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.crl rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ejHVc5eYsGSmAHEzqj5bnNDu1F8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 20:47:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2214 (0x8a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A285, serialNumber=7A31D5739798B064A6007133AA3E5B9CD0EED45F Validity Not Before: Sep 18 20:47:41 2025 GMT Not After : Sep 25 20:47:41 2025 GMT Subject: CN=68cc6fed-ff53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:8d:a1:bd:84:09:a8:a0:eb:a5:ca:1c:c0:4f: ac:bd:a0:9d:8e:73:37:76:5b:5d:0b:c4:44:e0:51: 28:45:2a:6e:51:a1:39:22:1f:33:db:c0:bf:25:f8: bf:a4:43:a1:fb:12:52:87:2f:0f:62:78:8a:97:09: b3:2b:70:c9:38:5a:72:db:f6:eb:c2:79:6e:6f:b1: 52:53:31:de:6d:29:28:05:f1:25:12:87:ea:21:00: 23:f3:b9:01:0e:bf:56:45:ce:8a:78:88:b5:73:a1: d2:81:41:e9:a5:33:06:81:46:40:66:26:2d:79:96: 78:22:63:a6:2a:0b:2e:b0:60:4c:9b:19:02:4c:1f: e3:26:18:2c:62:cd:b4:94:ac:8f:f4:c2:2c:62:87: 20:7a:84:78:3c:2a:c0:02:90:77:bc:6a:2a:e5:20: 78:71:8a:a4:44:98:ad:95:04:91:0c:6a:01:60:79: cc:13:c2:5c:b8:6b:55:30:eb:a9:cf:c4:53:1b:ab: 7f:26:8b:71:2c:bd:cb:cb:ba:6f:40:22:ed:ed:0b: 4e:82:f0:67:1d:b8:c4:03:38:c0:c0:05:2d:c3:e9: a1:9b:dc:90:bc:33:b0:87:b0:a7:21:80:8a:b8:e6: 72:24:25:85:bf:5a:98:ea:ec:46:31:0c:49:2f:cf: 69:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:7E:EF:11:1B:FD:B7:AB:CC:F6:F0:50:9C:8C:91:A8:46:28:53:03 X509v3 Authority Key Identifier: keyid:7A:31:D5:73:97:98:B0:64:A6:00:71:33:AA:3E:5B:9C:D0:EE:D4:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ejHVc5eYsGSmAHEzqj5bnNDu1F8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:71:7a:07:9c:96:cb:85:58:2e:56:fc:59:82:87:80:9d:85: c6:a7:82:1a:09:29:f6:89:79:08:6b:c8:72:f7:7f:a4:83:e8: 07:ad:bf:a5:00:43:cc:e3:db:c3:f5:5d:15:bd:79:24:70:c2: 3a:84:9e:64:35:0b:ce:e8:df:f6:e1:1f:b6:1a:af:fd:9d:cf: 63:5e:22:f6:54:fd:af:73:6c:05:94:7e:17:c7:07:ed:a9:6c: 48:ca:b6:5e:72:d3:f8:4b:bc:8d:a1:5d:13:98:2a:b7:21:e2: cd:59:17:a7:a3:f6:7c:01:ff:30:a3:cc:bc:9e:8e:06:02:e4: 7c:48:33:51:35:1f:d9:95:17:e4:6d:6f:db:d2:60:33:86:62: 77:4d:52:21:19:6a:aa:8a:eb:78:0a:17:5e:91:f8:32:05:6a: 3a:a8:5d:a5:2d:c8:6c:15:50:aa:e3:63:50:99:58:12:3e:3d: 45:36:53:4e:e6:75:cd:1a:f0:0e:91:9f:8e:37:98:4e:67:72: f6:64:14:27:01:8d:b6:5d:b2:56:bc:b3:58:1b:ca:9c:42:51: 44:c9:42:af:a6:bb:a8:6b:62:4a:df:b9:c9:98:c8:2d:19:ce: b7:84:76:df:22:a1:38:4e:22:cd:a5:af:32:48:03:80:bc:69: cb:0d:93:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUEyODUxMTAvBgNVBAUTKDdBMzFENTczOTc5OEIwNjRBNjAwNzEzM0FBM0U1QjlD RDBFRUQ0NUYwHhcNMjUwOTE4MjA0NzQxWhcNMjUwOTI1MjA0NzQxWjAYMRYwFAYD VQQDEw02OGNjNmZlZC1mZjUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAno2hvYQJqKDrpcocwE+svaCdjnM3dltdC8RE4FEoRSpuUaE5Ih8z28C/Jfi/ pEOh+xJShy8PYniKlwmzK3DJOFpy2/brwnlub7FSUzHebSkoBfElEofqIQAj87kB Dr9WRc6KeIi1c6HSgUHppTMGgUZAZiYteZZ4ImOmKgsusGBMmxkCTB/jJhgsYs20 lKyP9MIsYocgeoR4PCrAApB3vGoq5SB4cYqkRJitlQSRDGoBYHnME8JcuGtVMOup z8RTG6t/JotxLL3Ly7pvQCLt7QtOgvBnHbjEAzjAwAUtw+mhm9yQvDOwh7CnIYCK uOZyJCWFv1qY6uxGMQxJL89psQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD5+7xEb /berzPbwUJyMkahGKFMDMB8GA1UdIwQYMBaAFHox1XOXmLBkpgBxM6o+W5zQ7tRf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTI4NS9ERDYyODlBQUM1 NzUxMUVBQTU1ODFDNDBDNEY5QUUwMi9lakhWYzVlWXNHU21BSEV6cWo1Ym5ORHUx RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VqSFZjNWVZc0dTbUFIRXpxajVibk5EdTFGOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTI4NS9ERDYyODlBQUM1NzUxMUVBQTU1ODFDNDBDNEY5QUUwMi9lakhWYzVlWXNH U21BSEV6cWo1Ym5ORHUxRjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7cXoHnJbLhVguVvxZgoeAnYXGp4IaCSn2iXkIa8hy93+kg+gHrb+l AEPM49vD9V0VvXkkcMI6hJ5kNQvO6N/24R+2Gq/9nc9jXiL2VP2vc2wFlH4Xxwft qWxIyrZectP4S7yNoV0TmCq3IeLNWReno/Z8Af8wo8y8no4GAuR8SDNRNR/ZlRfk bW/b0mAzhmJ3TVIhGWqqiut4ChdekfgyBWo6qF2lLchsFVCq42NQmVgSPj1FNlNO 5nXNGvAOkZ+ON5hOZ3L2ZBQnAY22XbJWvLNYG8qcQlFEyUKvpruoa2JK37nJmMgt Gc63hHbfIqE4TiLNpa8ySAOAvGnLDZNn -----END CERTIFICATE-----Generated at Fri Sep 19 01:00:49 2025 by rpki-client