$ rpki-client -vvf rpki.apnic.net/member_repository/A913A7E7/6B923544E6EA11EC99942667C4F9AE02/5luo-mVwW4879u3NnQ2xD9rcuRY.mft File: 5luo-mVwW4879u3NnQ2xD9rcuRY.mft (raw, json) Hash identifier: wNi4mi2xy010AEkUb7KiJPUc3hFxypPf+JcGvMpyl8E= Subject key identifier: F6:A8:87:73:A4:4D:B0:5D:FD:C6:CE:D8:54:3C:CD:8A:AD:D7:CA:57 Authority key identifier: E6:5B:A8:FA:65:70:5B:8F:3B:F6:ED:CD:9D:0D:B1:0F:DA:DC:B9:16 Certificate issuer: /CN=A913A7E7/serialNumber=E65BA8FA65705B8F3BF6EDCD9D0DB10FDADCB916 Certificate serial: 030D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5luo-mVwW4879u3NnQ2xD9rcuRY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A7E7/6B923544E6EA11EC99942667C4F9AE02/5luo-mVwW4879u3NnQ2xD9rcuRY.mft Manifest number: 0308 Signing time: Sat 23 Aug 2025 01:27:36 +0000 Manifest this update: Sat 23 Aug 2025 01:27:36 +0000 Manifest next update: Sat 30 Aug 2025 01:27:36 +0000 Files and hashes: 1: 5luo-mVwW4879u3NnQ2xD9rcuRY.crl (hash: hGgZm5cjrGhzrHOiGvIntNvKRm1Uo177fyJ/il1ZXoc=) 2: 35C2303AE6FA11EC87D3034DC4F9AE02.roa (hash: xwFfQ62VDe7rBIlaeVRpIKtxnY1xzIwaQ+FoK7Z2AtU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A7E7/6B923544E6EA11EC99942667C4F9AE02/5luo-mVwW4879u3NnQ2xD9rcuRY.crl rsync://rpki.apnic.net/member_repository/A913A7E7/6B923544E6EA11EC99942667C4F9AE02/5luo-mVwW4879u3NnQ2xD9rcuRY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5luo-mVwW4879u3NnQ2xD9rcuRY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:27:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 781 (0x30d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A7E7, serialNumber=E65BA8FA65705B8F3BF6EDCD9D0DB10FDADCB916 Validity Not Before: Aug 23 01:27:36 2025 GMT Not After : Aug 30 01:27:36 2025 GMT Subject: CN=68a91908-eb59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ae:8d:81:44:a7:af:51:82:ee:5c:91:01:a3: 47:a1:07:25:03:c9:e2:fe:be:8f:52:5f:94:a7:14: c8:e0:c8:30:76:61:18:de:b7:0b:d8:6e:7f:b3:91: 1f:48:ac:d9:4c:bb:93:f7:d9:c4:5d:0e:df:41:20: d6:e2:9b:1b:20:5a:26:bb:cf:5a:92:60:86:55:dc: 68:0a:85:f9:09:22:95:73:07:3a:83:e6:4a:93:80: 38:f3:5d:b6:67:2b:7d:2d:69:19:2a:5e:85:ec:50: 1c:a4:9c:29:11:dc:57:0c:2b:58:5b:ec:a2:68:02: b1:87:29:e7:e0:93:8c:6b:54:73:1e:ca:14:4d:19: 85:95:34:15:51:c9:ea:9e:10:31:52:d3:fd:7e:97: 01:83:c7:22:83:23:62:0e:17:53:ce:84:75:fd:86: 1b:bd:17:6a:da:f2:52:f8:8d:e6:eb:1a:bc:65:36: 84:23:9e:c2:99:9b:76:6d:03:a3:c2:87:a9:2d:6d: 63:1e:93:1f:fe:75:20:28:c3:be:75:51:6b:b5:aa: a2:03:2a:f5:bd:4d:ea:8d:3d:64:29:f8:9a:ae:ab: a6:e1:29:42:d8:55:c8:a9:c6:2a:86:df:71:dc:e1: d8:f6:ae:7d:47:52:5e:ca:c8:ac:71:ae:10:39:f4: e1:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:A8:87:73:A4:4D:B0:5D:FD:C6:CE:D8:54:3C:CD:8A:AD:D7:CA:57 X509v3 Authority Key Identifier: keyid:E6:5B:A8:FA:65:70:5B:8F:3B:F6:ED:CD:9D:0D:B1:0F:DA:DC:B9:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A7E7/6B923544E6EA11EC99942667C4F9AE02/5luo-mVwW4879u3NnQ2xD9rcuRY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5luo-mVwW4879u3NnQ2xD9rcuRY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A7E7/6B923544E6EA11EC99942667C4F9AE02/5luo-mVwW4879u3NnQ2xD9rcuRY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:37:5b:67:a0:2a:2f:58:c0:81:55:b9:bd:90:d8:0c:0e:c9: 8c:fb:c3:a6:e9:7f:40:c4:63:13:d4:84:22:d7:52:6b:1f:d3: b2:95:72:04:a9:73:fc:8e:13:67:b1:fa:67:42:b0:5a:5d:cc: e2:e6:50:c0:b0:fb:6a:18:a7:82:ae:c8:e7:96:ca:41:a8:be: 0f:e4:19:0b:a2:89:02:80:74:9a:1c:94:37:4a:8e:35:0e:75: c1:e6:b5:a5:78:17:4c:09:ff:6c:1e:dc:d4:2d:8d:c4:44:2b: c1:a0:1b:14:16:44:94:76:03:67:1d:0b:67:72:0d:db:ef:18: d3:5a:d6:c3:c9:a3:6a:c0:24:d7:1e:de:f4:b9:c5:e3:d6:1e: 64:81:d6:ce:d0:0c:bc:1b:21:2e:54:95:a6:f7:ba:0a:2a:3c: 5f:77:5e:83:eb:9c:8b:33:1f:b1:fb:58:d3:31:d8:b5:05:cc: a4:51:5a:b6:f0:7b:28:58:64:62:9d:f0:8b:3f:e8:28:9b:3a: 73:9e:8a:48:b9:bc:de:64:9c:cc:de:86:2e:3c:71:64:74:2d: cf:b7:4f:e4:14:e3:d4:23:1f:e0:99:04:c8:b4:f5:ab:a9:59: 23:db:1a:ff:3a:aa:da:fb:2b:88:b4:20:f7:6e:54:94:be:ff: 0a:da:5e:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAw0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E3RTcxMTAvBgNVBAUTKEU2NUJBOEZBNjU3MDVCOEYzQkY2RURDRDlEMERCMTBG REFEQ0I5MTYwHhcNMjUwODIzMDEyNzM2WhcNMjUwODMwMDEyNzM2WjAYMRYwFAYD VQQDEw02OGE5MTkwOC1lYjU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuq6NgUSnr1GC7lyRAaNHoQclA8ni/r6PUl+UpxTI4MgwdmEY3rcL2G5/s5Ef SKzZTLuT99nEXQ7fQSDW4psbIFomu89akmCGVdxoCoX5CSKVcwc6g+ZKk4A48122 Zyt9LWkZKl6F7FAcpJwpEdxXDCtYW+yiaAKxhynn4JOMa1RzHsoUTRmFlTQVUcnq nhAxUtP9fpcBg8cigyNiDhdTzoR1/YYbvRdq2vJS+I3m6xq8ZTaEI57CmZt2bQOj woepLW1jHpMf/nUgKMO+dVFrtaqiAyr1vU3qjT1kKfiarqum4SlC2FXIqcYqht9x 3OHY9q59R1Jeysisca4QOfTh6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPaoh3Ok TbBd/cbO2FQ8zYqt18pXMB8GA1UdIwQYMBaAFOZbqPplcFuPO/btzZ0NsQ/a3LkW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTdFNy82QjkyMzU0NEU2 RUExMUVDOTk5NDI2NjdDNEY5QUUwMi81bHVvLW1Wd1c0ODc5dTNOblEyeEQ5cmN1 UlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVsdW8tbVZ3VzQ4Nzl1M05uUTJ4RDlyY3VSWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTdFNy82QjkyMzU0NEU2RUExMUVDOTk5NDI2NjdDNEY5QUUwMi81bHVvLW1Wd1c0 ODc5dTNOblEyeEQ5cmN1UlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCzN1tnoCovWMCBVbm9kNgMDsmM+8Om6X9AxGMT1IQi11JrH9OylXIE qXP8jhNnsfpnQrBaXczi5lDAsPtqGKeCrsjnlspBqL4P5BkLookCgHSaHJQ3So41 DnXB5rWleBdMCf9sHtzULY3ERCvBoBsUFkSUdgNnHQtncg3b7xjTWtbDyaNqwCTX Ht70ucXj1h5kgdbO0Ay8GyEuVJWm97oKKjxfd16D65yLMx+x+1jTMdi1BcykUVq2 8HsoWGRinfCLP+gomzpznopIubzeZJzM3oYuPHFkdC3Pt0/kFOPUIx/gmQTItPWr qVkj2xr/Oqra+yuItCD3blSUvv8K2l5v -----END CERTIFICATE-----Generated at Sat Aug 23 15:59:43 2025 by rpki-client