$ rpki-client -vvf rpki.apnic.net/member_repository/A91E782F/764CA2D0407011EFBDA9D66FC4F9AE02/ep_4ZMUDGAZxMFiObbqSi6HAOl0.mft File: ep_4ZMUDGAZxMFiObbqSi6HAOl0.mft (raw, json) Hash identifier: aQHtbMe6nQTsOq2DzuyQlcx42ltCTiaadt/kOrx66J0= Subject key identifier: 88:AF:1C:B1:B1:31:83:4C:15:37:8C:7F:72:9A:82:12:BF:B8:E0:91 Authority key identifier: 7A:9F:F8:64:C5:03:18:06:71:30:58:8E:6D:BA:92:8B:A1:C0:3A:5D Certificate issuer: /CN=A91E782F/serialNumber=7A9FF864C50318067130588E6DBA928BA1C03A5D Certificate serial: DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ep_4ZMUDGAZxMFiObbqSi6HAOl0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E782F/764CA2D0407011EFBDA9D66FC4F9AE02/ep_4ZMUDGAZxMFiObbqSi6HAOl0.mft Manifest number: DF Signing time: Fri 19 Sep 2025 06:05:58 +0000 Manifest this update: Fri 19 Sep 2025 06:05:57 +0000 Manifest next update: Fri 26 Sep 2025 06:05:57 +0000 Files and hashes: 1: ep_4ZMUDGAZxMFiObbqSi6HAOl0.crl (hash: YQjfEfa/pt75Cc8WJVFFQAttTk6+k9UG3kpYOv2IFhM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E782F/764CA2D0407011EFBDA9D66FC4F9AE02/ep_4ZMUDGAZxMFiObbqSi6HAOl0.crl rsync://rpki.apnic.net/member_repository/A91E782F/764CA2D0407011EFBDA9D66FC4F9AE02/ep_4ZMUDGAZxMFiObbqSi6HAOl0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ep_4ZMUDGAZxMFiObbqSi6HAOl0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 06:05:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 223 (0xdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E782F, serialNumber=7A9FF864C50318067130588E6DBA928BA1C03A5D Validity Not Before: Sep 19 06:05:57 2025 GMT Not After : Sep 26 06:05:57 2025 GMT Subject: CN=68ccf2c5-6921 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:75:a2:58:31:66:87:20:71:4f:b3:6a:10:bc: bf:33:d6:f7:a4:f2:9f:3d:70:48:7d:c3:e5:77:8d: 2e:dd:b2:24:11:c4:74:39:31:42:a2:83:f2:71:ec: 14:93:1c:80:92:e6:62:a4:86:f5:68:c6:ab:01:54: a2:a4:75:8b:c7:84:a7:78:c4:fc:a0:87:19:d7:b4: 57:29:9d:a5:92:b3:bd:ad:97:b7:8b:7d:12:80:0a: 74:7c:05:8e:98:21:c2:80:a1:47:2a:34:8c:36:db: 25:73:02:6f:23:c2:56:be:06:c2:ab:a3:67:54:28: a8:73:1b:13:84:f3:58:8f:a7:36:22:de:63:2f:3b: 70:b0:c8:97:48:ed:48:07:4a:38:f0:11:09:1d:39: 69:b9:fb:f1:fc:e9:6b:4f:72:b2:17:a5:ff:68:f2: d3:a8:ea:a4:e5:0e:6a:93:50:89:8e:4a:be:46:46: fd:0e:54:6e:c9:62:c9:c5:e6:26:9a:dc:1e:17:91: 37:d6:f8:d1:08:ab:71:c5:95:1e:c0:c2:07:d2:e1: 4d:6b:e1:7c:ae:c3:f1:0c:42:a2:64:73:63:3a:82: 59:42:48:21:95:f5:1e:6b:a2:27:43:27:74:f5:92: 82:74:2e:e7:5d:9c:56:02:e2:10:af:5c:ca:d0:10: 7f:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:AF:1C:B1:B1:31:83:4C:15:37:8C:7F:72:9A:82:12:BF:B8:E0:91 X509v3 Authority Key Identifier: keyid:7A:9F:F8:64:C5:03:18:06:71:30:58:8E:6D:BA:92:8B:A1:C0:3A:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E782F/764CA2D0407011EFBDA9D66FC4F9AE02/ep_4ZMUDGAZxMFiObbqSi6HAOl0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ep_4ZMUDGAZxMFiObbqSi6HAOl0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E782F/764CA2D0407011EFBDA9D66FC4F9AE02/ep_4ZMUDGAZxMFiObbqSi6HAOl0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:17:e3:ea:ae:79:c4:ff:e3:17:e2:df:f2:34:5e:4a:56:09: a3:62:f2:1e:86:db:a5:be:00:db:8d:04:4f:7f:3d:12:92:8c: 8a:26:3e:6b:9d:1d:38:81:09:a2:36:44:7a:ad:2f:44:ac:32: 99:db:83:d6:df:99:76:41:1e:2b:7a:f9:cb:c8:47:be:67:37: e7:3b:79:77:99:a9:23:c4:ff:4d:3f:be:9f:17:cc:6a:83:a9: c6:0a:81:c6:1d:66:f1:0e:fa:18:bc:f5:78:00:34:20:e9:9f: da:aa:37:cf:4a:18:d5:77:a8:ea:ef:6c:0e:f7:1a:38:bf:bd: fb:69:51:5b:b9:5a:06:b9:d6:a0:d7:bb:45:da:1e:90:b4:01: ed:36:db:c6:9c:a8:20:84:54:35:17:b7:1c:63:07:f8:07:97: c2:fd:59:0e:06:46:86:bc:bb:9d:d2:61:0b:e7:4e:f0:7d:c2: bb:ce:bb:a8:f3:2d:0c:a2:d0:61:81:82:c3:fb:2a:47:cf:f6: 38:86:28:15:06:a9:af:6e:df:2f:6a:8b:51:3e:60:1e:4e:e0: 71:49:f7:8c:f0:b7:12:40:b7:a3:1f:b4:6f:83:e3:4f:27:05: 83:18:37:8a:42:1b:ed:38:40:ca:77:a2:54:f5:fc:57:31:8c: 37:c3:cf:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTc4MkYxMTAvBgNVBAUTKDdBOUZGODY0QzUwMzE4MDY3MTMwNTg4RTZEQkE5MjhC QTFDMDNBNUQwHhcNMjUwOTE5MDYwNTU3WhcNMjUwOTI2MDYwNTU3WjAYMRYwFAYD VQQDEw02OGNjZjJjNS02OTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0XWiWDFmhyBxT7NqELy/M9b3pPKfPXBIfcPld40u3bIkEcR0OTFCooPycewU kxyAkuZipIb1aMarAVSipHWLx4SneMT8oIcZ17RXKZ2lkrO9rZe3i30SgAp0fAWO mCHCgKFHKjSMNtslcwJvI8JWvgbCq6NnVCiocxsThPNYj6c2It5jLztwsMiXSO1I B0o48BEJHTlpufvx/OlrT3KyF6X/aPLTqOqk5Q5qk1CJjkq+Rkb9DlRuyWLJxeYm mtweF5E31vjRCKtxxZUewMIH0uFNa+F8rsPxDEKiZHNjOoJZQkghlfUea6InQyd0 9ZKCdC7nXZxWAuIQr1zK0BB/LQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIivHLGx MYNMFTeMf3KaghK/uOCRMB8GA1UdIwQYMBaAFHqf+GTFAxgGcTBYjm26kouhwDpd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzgyRi83NjRDQTJEMDQw NzAxMUVGQkRBOUQ2NkZDNEY5QUUwMi9lcF80Wk1VREdBWnhNRmlPYmJxU2k2SEFP bDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VwXzRaTVVER0FaeE1GaU9iYnFTaTZIQU9sMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzgyRi83NjRDQTJEMDQwNzAxMUVGQkRBOUQ2NkZDNEY5QUUwMi9lcF80Wk1VREdB WnhNRmlPYmJxU2k2SEFPbDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgF+PqrnnE/+MX4t/yNF5KVgmjYvIehtulvgDbjQRPfz0SkoyKJj5r nR04gQmiNkR6rS9ErDKZ24PW35l2QR4revnLyEe+ZzfnO3l3makjxP9NP76fF8xq g6nGCoHGHWbxDvoYvPV4ADQg6Z/aqjfPShjVd6jq72wO9xo4v737aVFbuVoGudag 17tF2h6QtAHtNtvGnKgghFQ1F7ccYwf4B5fC/VkOBkaGvLud0mEL507wfcK7zruo 8y0MotBhgYLD+ypHz/Y4higVBqmvbt8vaotRPmAeTuBxSfeM8LcSQLejH7Rvg+NP JwWDGDeKQhvtOEDKd6JU9fxXMYw3w8+N -----END CERTIFICATE-----Generated at Fri Sep 19 10:40:11 2025 by rpki-client