$ rpki-client -vvf rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft File: 5igiDz_QD0F7mXLh1KD2QWlueZk.mft (raw, json) Hash identifier: 0ndFHUgaFLfMSleeligQlV9D39xfYYm3c50wvYskOfQ= Subject key identifier: 1A:10:4E:6F:2C:CF:11:1E:66:12:47:D1:63:33:D9:EC:27:67:D0:CA Authority key identifier: E6:28:22:0F:3F:D0:0F:41:7B:99:72:E1:D4:A0:F6:41:69:6E:79:99 Certificate issuer: /CN=A912E31D/serialNumber=E628220F3FD00F417B9972E1D4A0F641696E7999 Certificate serial: 5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5igiDz_QD0F7mXLh1KD2QWlueZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft Manifest number: 5B Signing time: Sat 23 Aug 2025 07:24:30 +0000 Manifest this update: Sat 23 Aug 2025 07:24:29 +0000 Manifest next update: Sat 30 Aug 2025 07:24:29 +0000 Files and hashes: 1: 5igiDz_QD0F7mXLh1KD2QWlueZk.crl (hash: 4Ou4TYTjjvwOFmvaju97Dzsq71Cokork2HY16dQZkZ0=) 2: 9CDF0C0CFA4311EFAEC6A81AC4F9AE02.roa (hash: A659tR0soBiQRXoeD1FPvGrYfSs+v9kVVN6MSoHXtyU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.crl rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5igiDz_QD0F7mXLh1KD2QWlueZk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:24:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 93 (0x5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E31D, serialNumber=E628220F3FD00F417B9972E1D4A0F641696E7999 Validity Not Before: Aug 23 07:24:29 2025 GMT Not After : Aug 30 07:24:29 2025 GMT Subject: CN=68a96cae-117b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:8f:f5:fa:17:ba:fb:82:dd:64:6b:d7:24:22: 5e:36:ca:53:d3:5f:27:c2:71:5c:4d:e4:83:9b:73: b1:f8:d5:35:6b:0c:54:79:0f:fb:30:f4:28:8e:1f: 58:47:08:16:c7:a6:7e:2d:7b:d8:58:7b:88:13:1f: c4:b9:c2:91:5d:e4:41:29:81:3d:39:13:d9:13:d7: c5:9c:84:86:25:49:9c:bf:11:7f:c3:7f:c4:4d:31: 76:f9:4a:42:e7:24:f6:32:b5:2a:fc:d6:54:6a:53: bd:b0:fd:1d:75:c8:88:b2:02:ab:f3:b5:a9:d5:2e: f4:d4:98:32:dc:60:29:a4:b9:cb:48:9d:81:4c:ec: 87:38:09:33:8d:e0:57:80:fd:f9:1b:e8:94:92:b6: b6:8c:0c:9a:05:08:c5:52:95:67:b2:a8:a8:28:46: 9f:cd:66:b7:40:b6:61:9f:e6:6b:13:63:56:cd:05: cd:c1:f3:3d:a2:77:71:cd:4d:ec:c5:0f:e4:32:ec: 29:f8:8a:7b:04:4a:e8:c7:74:74:28:1b:e5:3d:0c: 71:e9:a9:2e:40:01:b8:a2:22:94:96:be:9b:38:8e: 09:20:c6:09:f6:47:b7:3d:ec:5e:d5:14:13:26:26: 16:89:cd:76:96:aa:30:eb:9f:dd:fe:0f:1b:e0:1a: d4:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:10:4E:6F:2C:CF:11:1E:66:12:47:D1:63:33:D9:EC:27:67:D0:CA X509v3 Authority Key Identifier: keyid:E6:28:22:0F:3F:D0:0F:41:7B:99:72:E1:D4:A0:F6:41:69:6E:79:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5igiDz_QD0F7mXLh1KD2QWlueZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:df:50:e8:15:54:1d:5f:a8:c3:c8:b0:8c:0f:1d:7c:64:a1: 93:2f:35:63:36:c9:a4:8b:e8:9d:8b:91:4b:a8:66:91:91:52: 39:78:94:f7:fd:b6:05:38:36:de:b1:d2:ca:8a:d6:c5:58:6a: b6:79:b9:6e:dc:cc:56:6b:d7:7f:40:41:be:95:00:b8:06:7e: 12:ef:5d:f7:db:92:78:05:53:79:67:89:03:1e:cb:55:2e:0a: 68:01:bf:1e:a7:ca:81:45:61:96:fa:78:04:5d:38:d9:cd:81: 4e:8b:8c:42:59:65:4a:de:d9:61:a5:7c:40:81:e3:22:c6:2f: 60:71:67:7d:14:92:c7:79:7d:fb:a5:99:ee:7f:a6:ce:20:f8: be:fc:65:0e:fc:a9:bb:bf:5a:54:31:bd:27:31:d1:68:be:2b: 9e:f9:1e:ad:fd:db:43:4c:5c:f9:f4:c2:67:9a:bd:f9:b8:5c: bb:e4:23:68:2e:63:fd:27:97:5b:21:9e:8e:4f:87:2d:21:02: 49:f4:6e:f1:9e:f8:a9:af:47:23:2e:21:21:ee:d6:b3:83:05: f1:2e:f2:43:53:dc:7d:d6:2f:ab:82:37:3f:40:1c:f1:24:b9: 33:59:e1:1f:d9:50:ff:82:78:ab:26:aa:35:d7:13:31:34:ef: 16:d0:be:04 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy RTMxRDExMC8GA1UEBRMoRTYyODIyMEYzRkQwMEY0MTdCOTk3MkUxRDRBMEY2NDE2 OTZFNzk5OTAeFw0yNTA4MjMwNzI0MjlaFw0yNTA4MzAwNzI0MjlaMBgxFjAUBgNV BAMTDTY4YTk2Y2FlLTExN2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCj/X6F7r7gt1ka9ckIl42ylPTXyfCcVxN5IObc7H41TVrDFR5D/sw9CiOH1hH CBbHpn4te9hYe4gTH8S5wpFd5EEpgT05E9kT18WchIYlSZy/EX/Df8RNMXb5SkLn JPYytSr81lRqU72w/R11yIiyAqvztanVLvTUmDLcYCmkuctInYFM7Ic4CTON4FeA /fkb6JSStraMDJoFCMVSlWeyqKgoRp/NZrdAtmGf5msTY1bNBc3B8z2id3HNTezF D+Qy7Cn4insESujHdHQoG+U9DHHpqS5AAbiiIpSWvps4jgkgxgn2R7c97F7VFBMm JhaJzXaWqjDrn93+DxvgGtTVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUGhBObyzP ER5mEkfRYzPZ7Cdn0MowHwYDVR0jBBgwFoAU5igiDz/QD0F7mXLh1KD2QWlueZkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJFMzFELzJDRjZCOEIwRjlD OTExRUZBNTRGNzYyQUM0RjlBRTAyLzVpZ2lEel9RRDBGN21YTGgxS0QyUVdsdWVa ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNWlnaUR6X1FEMEY3bVhMaDFLRDJRV2x1ZVprLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJF MzFELzJDRjZCOEIwRjlDOTExRUZBNTRGNzYyQUM0RjlBRTAyLzVpZ2lEel9RRDBG N21YTGgxS0QyUVdsdWVaay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAA/fUOgVVB1fqMPIsIwPHXxkoZMvNWM2yaSL6J2LkUuoZpGRUjl4lPf9 tgU4Nt6x0sqK1sVYarZ5uW7czFZr139AQb6VALgGfhLvXffbkngFU3lniQMey1Uu CmgBvx6nyoFFYZb6eARdONnNgU6LjEJZZUre2WGlfECB4yLGL2BxZ30Uksd5fful me5/ps4g+L78ZQ78qbu/WlQxvScx0Wi+K575Hq3920NMXPn0wmeavfm4XLvkI2gu Y/0nl1shno5Phy0hAkn0bvGe+KmvRyMuISHu1rODBfEu8kNT3H3WL6uCNz9AHPEk uTNZ4R/ZUP+CeKsmqjXXEzE07xbQvgQ= -----END CERTIFICATE-----Generated at Sun Aug 24 03:36:43 2025 by rpki-client