$ rpki-client -vvf rpki.apnic.net/member_repository/A919FDC0/2954D62A69E911F081B65B67C4F9AE02/0ewZe9sNlRk40e71SWoRrMoCiO8.mft File: 0ewZe9sNlRk40e71SWoRrMoCiO8.mft (raw, json) Hash identifier: JTsXydwg0g+7oeX0mVTwQC0TUic3zAUabZJDU+t4zlw= Subject key identifier: C7:FB:27:A6:BC:30:03:E8:5E:E2:D8:65:90:F2:97:A6:D3:0F:6C:7D Authority key identifier: D1:EC:19:7B:DB:0D:95:19:38:D1:EE:F5:49:6A:11:AC:CA:02:88:EF Certificate issuer: /CN=A919FDC0/serialNumber=D1EC197BDB0D951938D1EEF5496A11ACCA0288EF Certificate serial: 18 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ewZe9sNlRk40e71SWoRrMoCiO8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919FDC0/2954D62A69E911F081B65B67C4F9AE02/0ewZe9sNlRk40e71SWoRrMoCiO8.mft Manifest number: 17 Signing time: Wed 03 Sep 2025 08:42:29 +0000 Manifest this update: Wed 03 Sep 2025 08:42:28 +0000 Manifest next update: Wed 10 Sep 2025 08:42:28 +0000 Files and hashes: 1: 0ewZe9sNlRk40e71SWoRrMoCiO8.crl (hash: ubIHGwWBP/o+amq3gj+Ig2YpjmOe0x8OBtlebp8W7iM=) 2: ACFE803469E911F0A7D42F68C4F9AE02.roa (hash: hVcLQOQnj8t+4j/b6kUDlk5JAqcOolfdhy262nXQ91E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919FDC0/2954D62A69E911F081B65B67C4F9AE02/0ewZe9sNlRk40e71SWoRrMoCiO8.crl rsync://rpki.apnic.net/member_repository/A919FDC0/2954D62A69E911F081B65B67C4F9AE02/0ewZe9sNlRk40e71SWoRrMoCiO8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ewZe9sNlRk40e71SWoRrMoCiO8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 08:42:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24 (0x18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919FDC0, serialNumber=D1EC197BDB0D951938D1EEF5496A11ACCA0288EF Validity Not Before: Sep 3 08:42:28 2025 GMT Not After : Sep 10 08:42:28 2025 GMT Subject: CN=68b7ff75-746f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:bb:3e:34:52:b7:85:63:03:b5:f1:16:4c:ae: 19:ea:90:52:80:57:ed:21:18:18:6b:d1:f1:52:8b: 13:7d:06:97:45:b7:65:41:56:b8:ea:79:06:25:c6: 36:a8:a9:ca:2f:fc:3a:45:89:da:33:51:ef:50:c2: 48:23:bd:cd:1d:cb:1a:2e:c8:08:50:28:a3:09:96: 12:49:c2:22:fa:a8:55:81:c6:65:40:25:99:7b:c5: 79:f6:c0:d0:79:06:c9:a6:43:5e:9e:85:eb:eb:9c: fd:22:8a:b3:61:5d:c8:de:52:80:ab:4b:96:3d:b4: e3:c8:b0:2c:98:ee:f0:ba:5e:97:51:0c:a0:8c:60: 30:4d:8c:36:08:a4:e4:f2:bc:3d:de:3b:ec:3e:d8: 62:fa:bc:46:36:80:a0:bf:cc:57:18:89:ce:16:b2: 12:45:91:56:eb:8c:b6:68:d3:c9:e1:5e:cc:5d:46: a6:24:05:e8:e0:9c:69:90:b6:7c:a2:f3:86:18:3a: a4:da:25:5e:d4:a0:57:fb:97:bc:25:91:e4:a5:0f: 1d:68:28:b8:1a:1b:05:e5:f9:ba:91:c2:07:09:df: fc:8f:7c:82:a5:30:72:77:81:0f:eb:87:74:b0:d3: bd:c7:fc:59:79:6d:aa:a4:f3:34:ca:60:0a:87:b4: 7e:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:FB:27:A6:BC:30:03:E8:5E:E2:D8:65:90:F2:97:A6:D3:0F:6C:7D X509v3 Authority Key Identifier: keyid:D1:EC:19:7B:DB:0D:95:19:38:D1:EE:F5:49:6A:11:AC:CA:02:88:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919FDC0/2954D62A69E911F081B65B67C4F9AE02/0ewZe9sNlRk40e71SWoRrMoCiO8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ewZe9sNlRk40e71SWoRrMoCiO8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919FDC0/2954D62A69E911F081B65B67C4F9AE02/0ewZe9sNlRk40e71SWoRrMoCiO8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:fb:48:ce:6b:d1:df:23:47:a7:8c:ca:86:45:ec:a1:b4:b5: 92:72:6c:99:fb:95:79:55:ae:71:d3:47:cf:3f:a3:d6:08:15: 3d:a2:01:9b:e2:29:d5:93:ed:86:0b:a0:9d:cc:a6:73:de:06: 2e:a3:c6:cd:92:f2:0e:30:45:44:af:b2:4b:e8:94:f4:16:37: d9:a2:66:62:bf:3a:47:e1:a6:22:9e:20:84:11:fe:18:99:4b: 1c:a3:0e:d9:6a:c6:f6:a4:53:ff:d3:c1:1e:fe:68:7f:6a:9b: dc:c7:d4:37:62:77:47:62:34:32:04:30:9a:41:c9:e5:07:a3: 72:44:f9:31:01:43:73:b7:1a:c3:ea:12:96:e3:44:65:fb:72: 66:e6:06:48:16:7b:f0:aa:74:e3:b9:81:11:74:f6:8e:30:9a: a1:fd:09:43:98:53:d2:6c:bf:f7:04:c9:68:30:95:b3:2f:35: ff:85:99:64:b2:ae:4a:f5:df:61:24:4b:51:bc:4a:e0:dd:3f: b5:c5:af:94:cc:dd:b2:67:be:a5:af:ee:30:e6:1d:95:5f:6c: f5:2f:19:c0:b0:19:c8:59:71:37:75:a8:b4:f7:31:36:04:a8: 91:9f:f6:67:7d:3d:f0:6f:6b:8d:b1:4e:e3:b4:da:2e:4b:cb: cf:bc:f1:2f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RkRDMDExMC8GA1UEBRMoRDFFQzE5N0JEQjBEOTUxOTM4RDFFRUY1NDk2QTExQUND QTAyODhFRjAeFw0yNTA5MDMwODQyMjhaFw0yNTA5MTAwODQyMjhaMBgxFjAUBgNV BAMTDTY4YjdmZjc1LTc0NmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDFuz40UreFYwO18RZMrhnqkFKAV+0hGBhr0fFSixN9BpdFt2VBVrjqeQYlxjao qcov/DpFidozUe9Qwkgjvc0dyxouyAhQKKMJlhJJwiL6qFWBxmVAJZl7xXn2wNB5 BsmmQ16ehevrnP0iirNhXcjeUoCrS5Y9tOPIsCyY7vC6XpdRDKCMYDBNjDYIpOTy vD3eO+w+2GL6vEY2gKC/zFcYic4WshJFkVbrjLZo08nhXsxdRqYkBejgnGmQtnyi 84YYOqTaJV7UoFf7l7wlkeSlDx1oKLgaGwXl+bqRwgcJ3/yPfIKlMHJ3gQ/rh3Sw 073H/Fl5baqk8zTKYAqHtH5lAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUx/snprww A+he4thlkPKXptMPbH0wHwYDVR0jBBgwFoAU0ewZe9sNlRk40e71SWoRrMoCiO8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlGREMwLzI5NTRENjJBNjlF OTExRjA4MUI2NUI2N0M0RjlBRTAyLzBld1plOXNObFJrNDBlNzFTV29Sck1vQ2lP OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMGV3WmU5c05sUms0MGU3MVNXb1JyTW9DaU84LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlG REMwLzI5NTRENjJBNjlFOTExRjA4MUI2NUI2N0M0RjlBRTAyLzBld1plOXNObFJr NDBlNzFTV29Sck1vQ2lPOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAz7SM5r0d8jR6eMyoZF7KG0tZJybJn7lXlVrnHTR88/o9YIFT2iAZvi KdWT7YYLoJ3MpnPeBi6jxs2S8g4wRUSvskvolPQWN9miZmK/OkfhpiKeIIQR/hiZ SxyjDtlqxvakU//TwR7+aH9qm9zH1Ddid0diNDIEMJpByeUHo3JE+TEBQ3O3GsPq EpbjRGX7cmbmBkgWe/CqdOO5gRF09o4wmqH9CUOYU9Jsv/cEyWgwlbMvNf+FmWSy rkr132EkS1G8SuDdP7XFr5TM3bJnvqWv7jDmHZVfbPUvGcCwGchZcTd1qLT3MTYE qJGf9md9PfBva42xTuO02i5Ly8+88S8= -----END CERTIFICATE-----Generated at Thu Sep 4 14:01:35 2025 by rpki-client