$ rpki-client -vvf rpki.apnic.net/member_repository/A91F79A2/B8C0B0A026A011EFB9A37E39C4F9AE02/EdT02sf7qLXBIiQwBTm9xhVEXeU.mft File: EdT02sf7qLXBIiQwBTm9xhVEXeU.mft (raw, json) Hash identifier: e+WLy1/oRzxATp4t31gTCJqDVxaV0dSS3s43HLElrsg= Subject key identifier: 54:7B:8A:02:BC:FF:BC:60:D0:00:1D:F2:82:19:31:DF:17:E9:E2:72 Authority key identifier: 11:D4:F4:DA:C7:FB:A8:B5:C1:22:24:30:05:39:BD:C6:15:44:5D:E5 Certificate issuer: /CN=A91F79A2/serialNumber=11D4F4DAC7FBA8B5C12224300539BDC615445DE5 Certificate serial: F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EdT02sf7qLXBIiQwBTm9xhVEXeU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F79A2/B8C0B0A026A011EFB9A37E39C4F9AE02/EdT02sf7qLXBIiQwBTm9xhVEXeU.mft Manifest number: F1 Signing time: Tue 09 Sep 2025 05:25:31 +0000 Manifest this update: Tue 09 Sep 2025 05:25:31 +0000 Manifest next update: Tue 16 Sep 2025 05:25:31 +0000 Files and hashes: 1: EdT02sf7qLXBIiQwBTm9xhVEXeU.crl (hash: RNDpDwWGeN/HsJ8icUNS39cZgdOG0KdpdzmoSOGIIqI=) 2: 6B10AF52379A11F0B3AC7740C4F9AE02.roa (hash: rykf5EiwJxMbaGGZx16BKp2POKraZb9uuOUjLdA5j+M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F79A2/B8C0B0A026A011EFB9A37E39C4F9AE02/EdT02sf7qLXBIiQwBTm9xhVEXeU.crl rsync://rpki.apnic.net/member_repository/A91F79A2/B8C0B0A026A011EFB9A37E39C4F9AE02/EdT02sf7qLXBIiQwBTm9xhVEXeU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EdT02sf7qLXBIiQwBTm9xhVEXeU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 05:25:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 243 (0xf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F79A2, serialNumber=11D4F4DAC7FBA8B5C12224300539BDC615445DE5 Validity Not Before: Sep 9 05:25:31 2025 GMT Not After : Sep 16 05:25:31 2025 GMT Subject: CN=68bfba4b-8e47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:6e:d0:1b:df:47:a4:d7:83:41:33:4d:fd:e1: d3:e7:f1:4d:89:6a:67:6e:03:7e:26:86:ba:1d:bd: 5d:e1:9d:61:b2:b7:7c:26:5d:66:66:5e:9c:3d:5a: 29:f0:a2:8d:86:c8:7f:de:68:4b:21:3d:31:72:43: 26:ac:8f:52:75:c7:9a:21:5d:65:ac:02:25:fa:0d: 1f:34:a9:08:7b:a2:27:41:49:7f:1d:7d:d4:82:c8: 18:46:dc:98:5a:25:16:eb:5f:28:05:0a:64:50:15: f0:3b:ca:a9:1a:40:b5:f7:12:6e:cb:8e:82:23:87: 09:4c:c6:3c:0f:f9:6a:d8:22:ae:44:94:8b:f2:9d: fc:56:9e:bb:c2:f7:29:2f:aa:16:fc:49:a4:64:06: 65:59:74:20:d7:1b:d4:6b:60:b0:a3:c0:01:96:1e: af:47:b4:72:ef:e8:79:f4:ef:8c:d3:01:c5:c4:fe: 2b:3c:d6:f0:e6:e5:3e:c4:7d:64:db:d7:b9:42:e3: ff:7d:09:bc:47:f3:1b:18:e7:ec:19:ac:f0:40:b4: d5:ea:89:53:34:e3:a1:d1:ed:38:24:8e:33:b2:5e: 9a:cc:c1:14:1b:09:b7:af:6f:2c:eb:20:05:32:1d: f7:ae:2f:21:1d:88:5d:85:b8:f4:04:d0:4c:02:16: a9:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:7B:8A:02:BC:FF:BC:60:D0:00:1D:F2:82:19:31:DF:17:E9:E2:72 X509v3 Authority Key Identifier: keyid:11:D4:F4:DA:C7:FB:A8:B5:C1:22:24:30:05:39:BD:C6:15:44:5D:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F79A2/B8C0B0A026A011EFB9A37E39C4F9AE02/EdT02sf7qLXBIiQwBTm9xhVEXeU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EdT02sf7qLXBIiQwBTm9xhVEXeU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F79A2/B8C0B0A026A011EFB9A37E39C4F9AE02/EdT02sf7qLXBIiQwBTm9xhVEXeU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:6b:49:e3:ae:00:4d:63:cc:e7:cb:33:29:c5:85:4f:57:19: 77:97:20:1e:a7:07:c1:cb:27:83:1b:3c:55:08:04:00:ff:40: af:32:8e:60:32:2c:45:87:4a:61:4c:07:3f:20:a3:e6:f9:7c: 7c:fd:cc:8f:c3:40:06:d4:94:aa:fa:8c:a2:58:0f:de:2f:9b: 08:89:f7:a2:a3:e4:44:c3:c6:e4:ce:7a:6c:e7:77:82:12:cb: e2:da:8d:bf:e7:df:18:02:d5:44:a8:1c:36:15:1e:2d:97:00: 5f:40:89:55:b9:a5:f4:30:92:b2:96:aa:c4:65:27:17:ac:8c: 1c:95:34:8c:92:3b:57:48:79:e0:7d:48:18:74:b3:e6:0e:66: 0f:16:25:5c:e0:ba:83:d7:46:6b:ee:6c:55:1f:d9:eb:49:73: 37:82:b7:b7:d5:e7:43:59:c1:f1:82:3a:bd:c7:0e:90:a3:26: 7c:95:85:b9:28:bf:d1:3c:c8:3b:7c:76:ba:38:72:1e:14:5a: a7:6d:10:a2:bc:2c:d1:2d:b9:ab:c7:65:a9:5f:1d:43:05:92: 62:68:9a:55:20:33:13:f5:7c:c2:5a:20:71:0c:06:24:16:c7: df:bc:3f:f3:09:a6:a9:64:81:7c:01:3c:2a:ac:48:09:44:b1: c0:e3:66:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjc5QTIxMTAvBgNVBAUTKDExRDRGNERBQzdGQkE4QjVDMTIyMjQzMDA1MzlCREM2 MTU0NDVERTUwHhcNMjUwOTA5MDUyNTMxWhcNMjUwOTE2MDUyNTMxWjAYMRYwFAYD VQQDEw02OGJmYmE0Yi04ZTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnm7QG99HpNeDQTNN/eHT5/FNiWpnbgN+Joa6Hb1d4Z1hsrd8Jl1mZl6cPVop 8KKNhsh/3mhLIT0xckMmrI9SdceaIV1lrAIl+g0fNKkIe6InQUl/HX3UgsgYRtyY WiUW618oBQpkUBXwO8qpGkC19xJuy46CI4cJTMY8D/lq2CKuRJSL8p38Vp67wvcp L6oW/EmkZAZlWXQg1xvUa2Cwo8ABlh6vR7Ry7+h59O+M0wHFxP4rPNbw5uU+xH1k 29e5QuP/fQm8R/MbGOfsGazwQLTV6olTNOOh0e04JI4zsl6azMEUGwm3r28s6yAF Mh33ri8hHYhdhbj0BNBMAhapBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFR7igK8 /7xg0AAd8oIZMd8X6eJyMB8GA1UdIwQYMBaAFBHU9NrH+6i1wSIkMAU5vcYVRF3l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzlBMi9COEMwQjBBMDI2 QTAxMUVGQjlBMzdFMzlDNEY5QUUwMi9FZFQwMnNmN3FMWEJJaVF3QlRtOXhoVkVY ZVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VkVDAyc2Y3cUxYQklpUXdCVG05eGhWRVhlVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzlBMi9COEMwQjBBMDI2QTAxMUVGQjlBMzdFMzlDNEY5QUUwMi9FZFQwMnNmN3FM WEJJaVF3QlRtOXhoVkVYZVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCca0njrgBNY8znyzMpxYVPVxl3lyAepwfByyeDGzxVCAQA/0CvMo5g MixFh0phTAc/IKPm+Xx8/cyPw0AG1JSq+oyiWA/eL5sIifeio+REw8bkznps53eC Esvi2o2/598YAtVEqBw2FR4tlwBfQIlVuaX0MJKylqrEZScXrIwclTSMkjtXSHng fUgYdLPmDmYPFiVc4LqD10Zr7mxVH9nrSXM3gre31edDWcHxgjq9xw6QoyZ8lYW5 KL/RPMg7fHa6OHIeFFqnbRCivCzRLbmrx2WpXx1DBZJiaJpVIDMT9XzCWiBxDAYk FsffvD/zCaapZIF8ATwqrEgJRLHA42Yf -----END CERTIFICATE-----Generated at Tue Sep 9 13:35:04 2025 by rpki-client