$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.mft File: eKfTXvnEd150y6PRZrYbdZAkFSM.mft (raw, json) Hash identifier: BAbC77Y3jOYhhavui50/gY8VOJpzNobvRG6xtxXjdUA= Subject key identifier: 5E:FF:F8:2B:8E:E5:DE:45:AD:21:6B:93:BD:93:2C:EF:E0:95:42:3E Authority key identifier: 78:A7:D3:5E:F9:C4:77:5E:74:CB:A3:D1:66:B6:1B:75:90:24:15:23 Certificate issuer: /CN=A91D2C38/serialNumber=78A7D35EF9C4775E74CBA3D166B61B7590241523 Certificate serial: 96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eKfTXvnEd150y6PRZrYbdZAkFSM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.mft Manifest number: 95 Signing time: Tue 09 Sep 2025 06:32:53 +0000 Manifest this update: Tue 09 Sep 2025 06:32:52 +0000 Manifest next update: Tue 16 Sep 2025 06:32:52 +0000 Files and hashes: 1: eKfTXvnEd150y6PRZrYbdZAkFSM.crl (hash: qqiedmeHWSynYS+sh0r96JQOf1K9rOJ7+4qvNAor8Us=) 2: 8DDD0D56A98C11EFAAC0F364C4F9AE02.roa (hash: yg1U4JyDYBAoLLqLQFnhNTd+uuZ0oKhea1PeFahobmY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.crl rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eKfTXvnEd150y6PRZrYbdZAkFSM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 06:32:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 150 (0x96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2C38, serialNumber=78A7D35EF9C4775E74CBA3D166B61B7590241523 Validity Not Before: Sep 9 06:32:52 2025 GMT Not After : Sep 16 06:32:52 2025 GMT Subject: CN=68bfca15-5ecb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:2c:64:e9:d1:ff:fa:6f:24:c6:3d:de:46:ff: 23:60:ca:5e:fc:97:92:a0:68:4b:68:1f:64:bc:ab: 37:ff:d2:ba:ca:88:aa:f4:fc:dc:c7:1a:4f:72:45: e0:d0:17:f7:39:1e:69:a6:93:4d:6e:9d:dc:7d:db: 39:cd:59:b0:6e:a0:09:bf:1d:90:76:ba:bb:b4:f5: b6:03:e7:40:d0:45:84:02:e6:bd:ae:82:cb:6b:da: 41:fa:65:81:2c:64:f8:0f:93:2f:e3:e5:5d:c7:43: 55:b2:15:14:a1:9c:7d:60:9a:a7:f4:0b:8a:9f:96: f4:3f:84:29:f1:b1:09:31:d3:5e:9f:fb:bd:ec:a9: 04:50:3b:75:f4:45:46:bd:eb:06:3e:0c:56:a5:aa: 64:7b:f3:67:d9:7f:9f:1b:fa:ab:6a:ea:f5:e3:42: 41:c9:19:ef:b5:1e:2d:f0:25:64:f4:3f:d2:88:33: ef:37:b4:17:4b:01:d8:b3:7f:8a:99:a5:1b:72:09: 21:67:aa:14:2b:7b:21:06:06:25:f2:08:e4:6f:82: 31:b9:d2:18:ad:fc:88:46:ed:c1:03:08:c7:30:cd: 6f:5f:db:2f:51:42:c2:22:6a:90:5f:c3:78:8d:da: bb:f0:ae:f6:83:c3:7c:4d:f7:2d:dd:58:05:ba:f9: eb:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:FF:F8:2B:8E:E5:DE:45:AD:21:6B:93:BD:93:2C:EF:E0:95:42:3E X509v3 Authority Key Identifier: keyid:78:A7:D3:5E:F9:C4:77:5E:74:CB:A3:D1:66:B6:1B:75:90:24:15:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eKfTXvnEd150y6PRZrYbdZAkFSM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:10:5a:33:13:01:ab:06:9f:92:18:16:fd:3e:e3:4a:86:ba: 30:a8:e0:db:97:fa:3f:7e:34:20:09:c1:9e:42:3d:a8:e6:75: ee:90:60:7f:82:72:59:74:84:bb:54:0a:35:08:a1:cf:17:ca: c7:e8:95:c4:5b:4f:48:86:f5:f2:ba:6a:e4:08:0a:dc:6b:20: c4:74:07:03:9e:fb:be:17:6e:a1:5c:f6:3a:c4:84:a4:70:bb: 16:6d:bb:b5:72:13:60:55:7a:c2:31:a9:fc:0f:d0:09:47:1e: d1:c3:73:81:f1:2e:d1:93:56:8f:6c:9e:07:75:9f:cb:1a:c9: b6:82:e5:f9:ed:ee:26:dd:22:24:a5:b7:9a:64:e6:cd:5d:20: ff:4f:4d:9f:cf:8f:9f:a2:81:5a:1a:e5:15:1d:38:d5:1a:a0: 51:21:ec:7c:ec:b6:d5:97:39:dd:97:97:40:67:e1:41:7e:56: b8:ca:3c:52:4b:37:0e:86:81:b2:41:21:2d:84:49:74:42:89: 80:77:3e:f0:cb:71:05:55:48:35:87:b3:06:f8:70:69:ef:94: 08:b1:8d:36:f9:c6:b1:72:2b:a6:b0:e0:d8:8f:09:c7:04:c3: 5c:eb:77:b3:43:79:79:b3:3d:ef:5f:b4:a2:bf:0c:38:c4:39: 08:cf:16:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJDMzgxMTAvBgNVBAUTKDc4QTdEMzVFRjlDNDc3NUU3NENCQTNEMTY2QjYxQjc1 OTAyNDE1MjMwHhcNMjUwOTA5MDYzMjUyWhcNMjUwOTE2MDYzMjUyWjAYMRYwFAYD VQQDEw02OGJmY2ExNS01ZWNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Cxk6dH/+m8kxj3eRv8jYMpe/JeSoGhLaB9kvKs3/9K6yoiq9PzcxxpPckXg 0Bf3OR5pppNNbp3cfds5zVmwbqAJvx2Qdrq7tPW2A+dA0EWEAua9roLLa9pB+mWB LGT4D5Mv4+Vdx0NVshUUoZx9YJqn9AuKn5b0P4Qp8bEJMdNen/u97KkEUDt19EVG vesGPgxWpapke/Nn2X+fG/qraur140JByRnvtR4t8CVk9D/SiDPvN7QXSwHYs3+K maUbcgkhZ6oUK3shBgYl8gjkb4IxudIYrfyIRu3BAwjHMM1vX9svUULCImqQX8N4 jdq78K72g8N8Tfct3VgFuvnrvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF7/+CuO 5d5FrSFrk72TLO/glUI+MB8GA1UdIwQYMBaAFHin0175xHdedMuj0Wa2G3WQJBUj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkMzOC8wREU4OTM0MEE5 OEMxMUVGOTM1MEZCNjNDNEY5QUUwMi9lS2ZUWHZuRWQxNTB5NlBSWnJZYmRaQWtG U00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VLZlRYdm5FZDE1MHk2UFJaclliZFpBa0ZTTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MkMzOC8wREU4OTM0MEE5OEMxMUVGOTM1MEZCNjNDNEY5QUUwMi9lS2ZUWHZuRWQx NTB5NlBSWnJZYmRaQWtGU00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHEFozEwGrBp+SGBb9PuNKhrowqODbl/o/fjQgCcGeQj2o5nXukGB/ gnJZdIS7VAo1CKHPF8rH6JXEW09IhvXyumrkCArcayDEdAcDnvu+F26hXPY6xISk cLsWbbu1chNgVXrCMan8D9AJRx7Rw3OB8S7Rk1aPbJ4HdZ/LGsm2guX57e4m3SIk pbeaZObNXSD/T02fz4+fooFaGuUVHTjVGqBRIex87LbVlzndl5dAZ+FBfla4yjxS SzcOhoGyQSEthEl0QomAdz7wy3EFVUg1h7MG+HBp75QIsY02+caxciumsODYjwnH BMNc63ezQ3l5sz3vX7Sivww4xDkIzxZX -----END CERTIFICATE-----Generated at Tue Sep 9 21:04:37 2025 by rpki-client