$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.mft File: eKfTXvnEd150y6PRZrYbdZAkFSM.mft (raw, json) Hash identifier: Sac4CNHAZFij863wS4kj97pYbQjHnBGm9ypT35sVFzI= Subject key identifier: 63:E7:AF:D5:E0:B4:DE:CC:17:D7:19:71:2A:7F:CE:1D:47:42:C4:ED Authority key identifier: 78:A7:D3:5E:F9:C4:77:5E:74:CB:A3:D1:66:B6:1B:75:90:24:15:23 Certificate issuer: /CN=A91D2C38/serialNumber=78A7D35EF9C4775E74CBA3D166B61B7590241523 Certificate serial: 7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eKfTXvnEd150y6PRZrYbdZAkFSM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.mft Manifest number: 7D Signing time: Fri 25 Jul 2025 07:04:05 +0000 Manifest this update: Fri 25 Jul 2025 07:04:05 +0000 Manifest next update: Fri 01 Aug 2025 07:04:05 +0000 Files and hashes: 1: eKfTXvnEd150y6PRZrYbdZAkFSM.crl (hash: 0cQVnyOfPbMTJGOnZaEwczVbHvoOUH0NHgWMRQ55fRc=) 2: 8DDD0D56A98C11EFAAC0F364C4F9AE02.roa (hash: yg1U4JyDYBAoLLqLQFnhNTd+uuZ0oKhea1PeFahobmY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.crl rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eKfTXvnEd150y6PRZrYbdZAkFSM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 01 Aug 2025 07:04:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 126 (0x7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2C38, serialNumber=78A7D35EF9C4775E74CBA3D166B61B7590241523 Validity Not Before: Jul 25 07:04:05 2025 GMT Not After : Aug 1 07:04:05 2025 GMT Subject: CN=68832c65-4bf7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:26:4f:e6:45:4a:c2:7d:e1:1e:47:08:cd:7f: d1:dd:50:db:20:65:90:83:94:46:e9:62:11:e5:29: c6:1f:7f:92:71:78:86:2c:4a:3f:b8:65:62:e5:04: 6a:7d:5d:ce:ce:55:f7:87:61:0d:87:14:5b:d7:fa: 46:75:3a:13:3e:68:4c:2a:b4:08:68:46:07:11:46: 51:fe:e0:e2:b1:31:07:bb:ef:c2:f5:82:64:b0:ab: 46:77:e0:0f:66:6c:3c:1c:5d:38:31:a7:5d:a4:d6: bf:d5:d1:5d:10:e3:4a:5a:b4:e6:99:e2:20:11:f5: c9:cb:75:18:57:76:a6:8d:89:c6:b2:b6:f4:4a:5a: 07:7d:91:78:90:6f:ee:eb:57:5e:f3:5e:a6:ba:38: 97:0b:07:44:90:07:eb:7d:6a:a9:4a:59:f5:47:fb: 59:83:aa:31:14:5e:bd:9a:40:b9:53:92:1a:f1:97: 03:e6:bb:5d:e0:5f:f9:b2:69:b1:1f:db:48:93:2b: cb:64:3b:6d:c5:b3:d6:7e:76:52:09:eb:00:bb:98: ac:2d:40:68:0f:16:64:59:48:4b:25:a3:4a:88:c0: 03:3f:8d:4f:09:32:76:1e:bd:0b:7d:0a:24:1a:a6: fe:2f:7e:c0:fd:92:77:e5:31:4e:6e:9f:39:45:28: 29:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:E7:AF:D5:E0:B4:DE:CC:17:D7:19:71:2A:7F:CE:1D:47:42:C4:ED X509v3 Authority Key Identifier: keyid:78:A7:D3:5E:F9:C4:77:5E:74:CB:A3:D1:66:B6:1B:75:90:24:15:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eKfTXvnEd150y6PRZrYbdZAkFSM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:ae:ac:46:de:c7:8e:c5:72:76:69:45:19:54:56:91:27:d1: 1a:28:74:41:10:a1:b8:0d:46:6b:92:bb:56:d8:1d:72:a8:54: 43:f3:37:cc:34:8b:46:bd:75:be:4c:b7:fc:2f:32:7d:79:44: 5b:97:16:7b:60:15:17:0b:f7:0d:6e:4a:f9:87:42:9b:a8:5e: eb:be:d1:b4:4e:7c:bd:be:8e:52:d1:5e:14:12:6c:52:22:5a: e5:b4:ef:eb:03:17:ed:92:e3:10:fb:11:dd:b1:44:74:1b:96: 4b:4f:16:8f:6a:24:95:30:03:d5:74:5e:12:44:d7:14:13:2c: e5:aa:af:a6:ff:44:f8:da:f8:81:34:64:12:b9:df:9b:d6:69: b4:6c:59:ed:ac:83:70:31:d3:e4:17:e1:58:06:8d:59:4c:e0: b9:35:a3:3f:6e:43:e2:70:9c:04:f5:2d:b2:ff:a7:e9:d8:84: 84:6a:ab:7a:d2:00:e2:ff:96:0d:c7:31:3f:84:cb:57:ea:8b: af:1b:b4:0b:95:31:a9:9f:71:c3:87:35:26:2f:3b:11:fe:d7: 5f:ae:b1:d3:17:13:23:f6:5d:0d:04:c2:10:b0:3b:30:d5:19: 55:40:c0:54:d6:ec:b4:21:f3:d8:b1:7d:03:68:cb:af:84:92: 72:9b:ac:b2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MkMzODExMC8GA1UEBRMoNzhBN0QzNUVGOUM0Nzc1RTc0Q0JBM0QxNjZCNjFCNzU5 MDI0MTUyMzAeFw0yNTA3MjUwNzA0MDVaFw0yNTA4MDEwNzA0MDVaMBgxFjAUBgNV BAMTDTY4ODMyYzY1LTRiZjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDZJk/mRUrCfeEeRwjNf9HdUNsgZZCDlEbpYhHlKcYff5JxeIYsSj+4ZWLlBGp9 Xc7OVfeHYQ2HFFvX+kZ1OhM+aEwqtAhoRgcRRlH+4OKxMQe778L1gmSwq0Z34A9m bDwcXTgxp12k1r/V0V0Q40patOaZ4iAR9cnLdRhXdqaNicaytvRKWgd9kXiQb+7r V17zXqa6OJcLB0SQB+t9aqlKWfVH+1mDqjEUXr2aQLlTkhrxlwPmu13gX/myabEf 20iTK8tkO23Fs9Z+dlIJ6wC7mKwtQGgPFmRZSEslo0qIwAM/jU8JMnYevQt9CiQa pv4vfsD9knflMU5unzlFKCnrAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUY+ev1eC0 3swX1xlxKn/OHUdCxO0wHwYDVR0jBBgwFoAUeKfTXvnEd150y6PRZrYbdZAkFSMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQyQzM4LzBERTg5MzQwQTk4 QzExRUY5MzUwRkI2M0M0RjlBRTAyL2VLZlRYdm5FZDE1MHk2UFJaclliZFpBa0ZT TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZUtmVFh2bkVkMTUweTZQUlpyWWJkWkFrRlNNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQy QzM4LzBERTg5MzQwQTk4QzExRUY5MzUwRkI2M0M0RjlBRTAyL2VLZlRYdm5FZDE1 MHk2UFJaclliZFpBa0ZTTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACOurEbex47FcnZpRRlUVpEn0RoodEEQobgNRmuSu1bYHXKoVEPzN8w0 i0a9db5Mt/wvMn15RFuXFntgFRcL9w1uSvmHQpuoXuu+0bROfL2+jlLRXhQSbFIi WuW07+sDF+2S4xD7Ed2xRHQblktPFo9qJJUwA9V0XhJE1xQTLOWqr6b/RPja+IE0 ZBK535vWabRsWe2sg3Ax0+QX4VgGjVlM4Lk1oz9uQ+JwnAT1LbL/p+nYhIRqq3rS AOL/lg3HMT+Ey1fqi68btAuVMamfccOHNSYvOxH+11+usdMXEyP2XQ0EwhCwOzDV GVVAwFTW7LQh89ixfQNoy6+EknKbrLI= -----END CERTIFICATE-----Generated at Sat Jul 26 00:38:21 2025 by rpki-client