$ rpki-client -vvf rpki.apnic.net/member_repository/A91B38F5/E802819E025B11F09ACFD910C4F9AE02/eVaKOOzbYX5njAimzEPE1lAs7GI.mft File: eVaKOOzbYX5njAimzEPE1lAs7GI.mft (raw, json) Hash identifier: pV+o/GeVMPJpYuEEhFRe7KjDOnZbH4I6xwetnRqWRxA= Subject key identifier: 1D:2A:80:B4:8B:E0:5B:F1:1E:42:DF:CA:CB:59:0B:E4:95:32:8E:53 Authority key identifier: 79:56:8A:38:EC:DB:61:7E:67:8C:08:A6:CC:43:C4:D6:50:2C:EC:62 Certificate issuer: /CN=A91B38F5/serialNumber=79568A38ECDB617E678C08A6CC43C4D6502CEC62 Certificate serial: 5B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/eVaKOOzbYX5njAimzEPE1lAs7GI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B38F5/E802819E025B11F09ACFD910C4F9AE02/eVaKOOzbYX5njAimzEPE1lAs7GI.mft Manifest number: 5A Signing time: Fri 05 Sep 2025 07:39:53 +0000 Manifest this update: Fri 05 Sep 2025 07:39:52 +0000 Manifest next update: Fri 12 Sep 2025 07:39:52 +0000 Files and hashes: 1: eVaKOOzbYX5njAimzEPE1lAs7GI.crl (hash: wWpj2PL2oIytCfDwbABM+1ezuUSpuuF8hHQ5xGOwrJI=) 2: B5E94296025C11F0BDF41912C4F9AE02.roa (hash: vF2hPrjWnGE1wVLs/Ml1OeBVYR8W6IECJw4qVwfrJO0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B38F5/E802819E025B11F09ACFD910C4F9AE02/eVaKOOzbYX5njAimzEPE1lAs7GI.crl rsync://rpki.apnic.net/member_repository/A91B38F5/E802819E025B11F09ACFD910C4F9AE02/eVaKOOzbYX5njAimzEPE1lAs7GI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/eVaKOOzbYX5njAimzEPE1lAs7GI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 07:39:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 91 (0x5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B38F5, serialNumber=79568A38ECDB617E678C08A6CC43C4D6502CEC62 Validity Not Before: Sep 5 07:39:52 2025 GMT Not After : Sep 12 07:39:52 2025 GMT Subject: CN=68ba93c8-c65b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:e3:55:84:7b:a4:21:3e:5b:a0:1c:92:2b:da: 98:da:6f:40:58:e2:30:be:d5:06:3f:14:5c:e9:7f: 3e:59:e6:3a:89:c3:b4:77:16:0d:11:5d:27:26:e6: ce:7c:77:88:5a:fd:ff:d8:ba:72:c7:dc:cf:46:28: 95:a3:8f:e1:d8:64:e2:92:b9:8b:57:88:51:1c:3f: 0e:5d:a2:ee:9c:07:53:c8:74:f1:7a:44:a1:3c:e5: 8f:ca:f1:43:2f:3f:4e:ab:9d:1b:1a:fe:27:54:e5: 25:b9:37:32:5a:b7:47:48:75:58:fe:28:2c:e1:08: 0b:b3:45:b0:0d:74:bb:e2:c0:1c:8a:64:db:6f:b8: e3:f8:48:d7:a6:73:f9:88:b6:40:b7:7e:52:2b:17: 62:dd:82:0f:38:66:d6:3b:0c:ef:69:a3:08:95:d0: c7:62:05:ce:fc:3f:60:25:a2:25:b2:fa:30:1c:50: df:5f:c7:55:73:1a:ce:28:70:c0:1b:90:26:3b:45: da:9b:b7:79:4c:55:8a:21:43:27:2a:86:62:67:67: 61:33:d3:0d:d4:52:f8:e7:a7:be:a9:97:da:24:b1: cd:c4:7e:98:0b:a2:d9:97:29:10:82:fc:a6:d1:8c: 7f:6f:63:55:1f:d6:fe:02:bd:c3:3b:a7:bb:10:66: bc:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:2A:80:B4:8B:E0:5B:F1:1E:42:DF:CA:CB:59:0B:E4:95:32:8E:53 X509v3 Authority Key Identifier: keyid:79:56:8A:38:EC:DB:61:7E:67:8C:08:A6:CC:43:C4:D6:50:2C:EC:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B38F5/E802819E025B11F09ACFD910C4F9AE02/eVaKOOzbYX5njAimzEPE1lAs7GI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/eVaKOOzbYX5njAimzEPE1lAs7GI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B38F5/E802819E025B11F09ACFD910C4F9AE02/eVaKOOzbYX5njAimzEPE1lAs7GI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:e5:61:cd:6e:23:1f:67:18:02:bd:23:8d:0c:49:dd:c0:fb: 0c:92:cf:03:38:30:d5:d8:df:6e:a2:dd:5b:21:c6:e9:cc:33: fe:0a:25:56:6f:6e:bd:1b:f6:ca:41:a9:9d:f7:7f:dd:8b:44: b7:fd:4f:95:a0:64:17:17:d7:10:0a:b9:7d:37:ae:11:78:5c: e2:1a:0a:97:9b:92:cb:b5:1d:b3:e2:3d:b7:ca:71:fe:f3:8a: 19:19:22:b8:5e:5f:a5:87:f8:8d:c0:29:80:d4:50:38:5a:3d: b9:fc:76:6f:12:69:1b:5e:00:bd:19:86:44:ea:08:b7:85:64: f7:c6:0a:07:5b:4f:48:d3:92:18:bf:1c:7c:2e:d0:1d:c2:d5: 44:86:50:6c:ee:41:1c:58:2d:0f:76:da:04:9e:48:96:d7:71: e5:e7:3f:80:0f:54:a7:8c:10:9f:31:73:0a:bc:da:d1:9f:00: b2:d3:15:71:9d:80:f4:3a:ea:12:bb:6e:71:b1:08:28:c5:81: bb:17:ad:58:e2:d9:66:41:3e:ac:d9:73:91:82:3e:c7:be:8b: 7d:03:12:09:13:12:8f:82:89:98:9d:8e:b5:7d:96:6e:e5:3c: 2b:99:e9:8b:12:77:ec:0f:04:96:b3:96:ab:47:2d:4a:32:9b: 7e:97:1d:53 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MzhGNTExMC8GA1UEBRMoNzk1NjhBMzhFQ0RCNjE3RTY3OEMwOEE2Q0M0M0M0RDY1 MDJDRUM2MjAeFw0yNTA5MDUwNzM5NTJaFw0yNTA5MTIwNzM5NTJaMBgxFjAUBgNV BAMTDTY4YmE5M2M4LWM2NWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCf41WEe6QhPlugHJIr2pjab0BY4jC+1QY/FFzpfz5Z5jqJw7R3Fg0RXScm5s58 d4ha/f/YunLH3M9GKJWjj+HYZOKSuYtXiFEcPw5dou6cB1PIdPF6RKE85Y/K8UMv P06rnRsa/idU5SW5NzJat0dIdVj+KCzhCAuzRbANdLviwByKZNtvuOP4SNemc/mI tkC3flIrF2Ldgg84ZtY7DO9powiV0MdiBc78P2AloiWy+jAcUN9fx1VzGs4ocMAb kCY7Rdqbt3lMVYohQycqhmJnZ2Ez0w3UUvjnp76pl9oksc3EfpgLotmXKRCC/KbR jH9vY1Uf1v4CvcM7p7sQZrwxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUHSqAtIvg W/EeQt/Ky1kL5JUyjlMwHwYDVR0jBBgwFoAUeVaKOOzbYX5njAimzEPE1lAs7GIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIzOEY1L0U4MDI4MTlFMDI1 QjExRjA5QUNGRDkxMEM0RjlBRTAyL2VWYUtPT3piWVg1bmpBaW16RVBFMWxBczdH SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZVZhS09PemJZWDVuakFpbXpFUEUxbEFzN0dJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIz OEY1L0U4MDI4MTlFMDI1QjExRjA5QUNGRDkxMEM0RjlBRTAyL2VWYUtPT3piWVg1 bmpBaW16RVBFMWxBczdHSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAjlYc1uIx9nGAK9I40MSd3A+wySzwM4MNXY326i3VshxunMM/4KJVZv br0b9spBqZ33f92LRLf9T5WgZBcX1xAKuX03rhF4XOIaCpebksu1HbPiPbfKcf7z ihkZIrheX6WH+I3AKYDUUDhaPbn8dm8SaRteAL0ZhkTqCLeFZPfGCgdbT0jTkhi/ HHwu0B3C1USGUGzuQRxYLQ922gSeSJbXceXnP4APVKeMEJ8xcwq82tGfALLTFXGd gPQ66hK7bnGxCCjFgbsXrVji2WZBPqzZc5GCPse+i30DEgkTEo+CiZidjrV9lm7l PCuZ6YsSd+wPBJazlqtHLUoym36XHVM= -----END CERTIFICATE-----Generated at Sat Sep 6 15:21:33 2025 by rpki-client