$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2CE9/87106D3E270011E9A77B6E2CC4F9AE02/eFqwsi3OWhJmUAwQZrT2sF91ysA.mft File: eFqwsi3OWhJmUAwQZrT2sF91ysA.mft (raw, json) Hash identifier: MJ9v8CvZt2jHCshyL7IlPm4t0JJSoqSAvOIrJPZuOEw= Subject key identifier: 25:5E:84:8E:F2:41:55:1F:65:A3:96:5A:79:C9:32:FB:CE:15:52:1C Authority key identifier: 78:5A:B0:B2:2D:CE:5A:12:66:50:0C:10:66:B4:F6:B0:5F:75:CA:C0 Certificate issuer: /CN=A91C2CE9/serialNumber=785AB0B22DCE5A1266500C1066B4F6B05F75CAC0 Certificate serial: 10E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eFqwsi3OWhJmUAwQZrT2sF91ysA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2CE9/87106D3E270011E9A77B6E2CC4F9AE02/eFqwsi3OWhJmUAwQZrT2sF91ysA.mft Manifest number: 10DC Signing time: Sun 24 Aug 2025 17:16:08 +0000 Manifest this update: Sun 24 Aug 2025 17:16:08 +0000 Manifest next update: Sun 31 Aug 2025 17:16:08 +0000 Files and hashes: 1: eFqwsi3OWhJmUAwQZrT2sF91ysA.crl (hash: tyL4IseG5Chy5PFppGFUD71HG6O8fqFEDrITJHL9c9g=) 2: B3250BC6307B11E989188B3BC4F9AE02.roa (hash: i5f3IsLQcqkFQbLcTMdHVFZRfy5na+MUmyuuokwDYXo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2CE9/87106D3E270011E9A77B6E2CC4F9AE02/eFqwsi3OWhJmUAwQZrT2sF91ysA.crl rsync://rpki.apnic.net/member_repository/A91C2CE9/87106D3E270011E9A77B6E2CC4F9AE02/eFqwsi3OWhJmUAwQZrT2sF91ysA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eFqwsi3OWhJmUAwQZrT2sF91ysA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 17:16:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4327 (0x10e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2CE9, serialNumber=785AB0B22DCE5A1266500C1066B4F6B05F75CAC0 Validity Not Before: Aug 24 17:16:08 2025 GMT Not After : Aug 31 17:16:08 2025 GMT Subject: CN=68ab48d8-11fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:d6:1e:07:72:41:20:f5:7e:36:0b:1a:eb:d0: 97:98:9c:14:af:3a:a3:b0:76:43:2e:4f:ea:9b:62: 13:25:9c:49:ae:ec:ae:2e:26:6a:71:61:96:28:70: 2b:ea:f0:12:b3:69:17:79:e9:77:b2:4f:e7:cf:43: c2:67:c3:e7:c8:76:52:4a:73:dd:3e:63:a7:38:1c: 98:27:62:79:1b:88:64:72:69:25:8e:d1:cd:6f:92: 51:70:e0:10:8b:65:df:b5:5b:59:6d:79:00:0e:a9: 0f:74:3b:a6:20:91:2e:c5:10:ab:b2:85:21:5f:11: 33:81:6b:34:fb:8d:82:50:9d:e4:78:6f:84:e6:98: f6:be:ec:ba:75:af:ed:4b:1a:63:22:35:c4:d2:25: 70:f5:9c:e0:c7:d0:61:9f:c9:e3:dd:2c:0c:86:83: a6:14:ef:b6:ce:27:0d:a0:9e:50:f2:03:46:fb:e4: d5:63:8d:94:7e:ad:2e:c0:25:22:4b:4b:c9:ec:e0: fa:84:3f:87:ec:c3:a7:b3:ae:3d:f2:93:c1:71:08: f9:cc:4f:83:fd:e9:fd:69:6e:fe:60:cf:7f:a3:62: 94:97:04:80:10:88:1a:ba:ac:fc:fa:dd:2c:b3:1b: 28:f4:94:d1:b5:83:ec:3f:ea:3d:a4:e1:84:eb:a5: 3b:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:5E:84:8E:F2:41:55:1F:65:A3:96:5A:79:C9:32:FB:CE:15:52:1C X509v3 Authority Key Identifier: keyid:78:5A:B0:B2:2D:CE:5A:12:66:50:0C:10:66:B4:F6:B0:5F:75:CA:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2CE9/87106D3E270011E9A77B6E2CC4F9AE02/eFqwsi3OWhJmUAwQZrT2sF91ysA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eFqwsi3OWhJmUAwQZrT2sF91ysA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2CE9/87106D3E270011E9A77B6E2CC4F9AE02/eFqwsi3OWhJmUAwQZrT2sF91ysA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:60:a4:5e:81:75:4e:b8:bc:48:79:1d:f6:14:8f:2f:99:f5: d5:65:df:d6:11:46:df:32:37:e3:a7:8f:89:53:d3:4f:53:29: b3:61:f4:5b:6c:f7:cb:3f:0f:5d:b1:68:10:5a:de:de:f0:14: 80:76:f6:a2:b5:74:b5:a1:e5:14:f3:ef:91:37:a3:64:44:7e: 4c:fb:16:57:a7:57:fe:38:3a:e2:89:81:90:b3:99:80:64:83: 5f:10:33:d5:2d:90:78:7e:28:83:43:f9:6f:14:18:2c:84:d1: 64:ce:9e:25:04:9d:97:98:9f:be:77:f2:2f:14:1d:31:07:56: 4c:91:36:b9:9d:1f:9e:7d:21:d0:80:3b:74:58:b4:51:54:bb: 72:db:c9:82:75:d7:26:a0:82:d3:31:ff:55:51:31:53:06:f5: ca:0b:fd:ec:a9:ae:26:f4:a8:a2:6b:bf:7f:c9:1c:90:8d:c3: cd:29:e3:da:57:1a:1c:41:f9:06:f5:be:f3:11:f9:4a:26:d0: 70:8e:20:22:3b:9a:e2:af:ed:20:77:d1:ce:a8:cd:b1:8e:c0: 3e:32:98:2c:48:89:ac:cb:c2:13:2a:be:6e:14:f7:a2:41:e7: 48:b9:56:94:3f:e6:dc:04:eb:5f:81:4f:7d:85:94:4b:bc:84: f9:18:e3:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJDRTkxMTAvBgNVBAUTKDc4NUFCMEIyMkRDRTVBMTI2NjUwMEMxMDY2QjRGNkIw NUY3NUNBQzAwHhcNMjUwODI0MTcxNjA4WhcNMjUwODMxMTcxNjA4WjAYMRYwFAYD VQQDEw02OGFiNDhkOC0xMWZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy9YeB3JBIPV+Ngsa69CXmJwUrzqjsHZDLk/qm2ITJZxJruyuLiZqcWGWKHAr 6vASs2kXeel3sk/nz0PCZ8PnyHZSSnPdPmOnOByYJ2J5G4hkcmkljtHNb5JRcOAQ i2XftVtZbXkADqkPdDumIJEuxRCrsoUhXxEzgWs0+42CUJ3keG+E5pj2vuy6da/t SxpjIjXE0iVw9Zzgx9Bhn8nj3SwMhoOmFO+2zicNoJ5Q8gNG++TVY42Ufq0uwCUi S0vJ7OD6hD+H7MOns6498pPBcQj5zE+D/en9aW7+YM9/o2KUlwSAEIgauqz8+t0s sxso9JTRtYPsP+o9pOGE66U7uwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCVehI7y QVUfZaOWWnnJMvvOFVIcMB8GA1UdIwQYMBaAFHhasLItzloSZlAMEGa09rBfdcrA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkNFOS84NzEwNkQzRTI3 MDAxMUU5QTc3QjZFMkNDNEY5QUUwMi9lRnF3c2kzT1doSm1VQXdRWnJUMnNGOTF5 c0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VGcXdzaTNPV2hKbVVBd1FaclQyc0Y5MXlzQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkNFOS84NzEwNkQzRTI3MDAxMUU5QTc3QjZFMkNDNEY5QUUwMi9lRnF3c2kzT1do Sm1VQXdRWnJUMnNGOTF5c0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEYKRegXVOuLxIeR32FI8vmfXVZd/WEUbfMjfjp4+JU9NPUymzYfRb bPfLPw9dsWgQWt7e8BSAdvaitXS1oeUU8++RN6NkRH5M+xZXp1f+ODriiYGQs5mA ZINfEDPVLZB4fiiDQ/lvFBgshNFkzp4lBJ2XmJ++d/IvFB0xB1ZMkTa5nR+efSHQ gDt0WLRRVLty28mCddcmoILTMf9VUTFTBvXKC/3sqa4m9Kiia79/yRyQjcPNKePa VxocQfkG9b7zEflKJtBwjiAiO5rir+0gd9HOqM2xjsA+MpgsSImsy8ITKr5uFPei QedIuVaUP+bcBOtfgU99hZRLvIT5GOMe -----END CERTIFICATE-----Generated at Sun Aug 24 22:00:39 2025 by rpki-client