$ rpki-client -vvf rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.mft File: 5YjHPmy0_bOLhO5A-Pm2TFC-S3M.mft (raw, json) Hash identifier: md/fZ9/53PXUtmvt5CrJCN3yLT3vHDTILIAcU3MuW4w= Subject key identifier: B0:27:64:99:9B:7C:68:83:EF:CA:B0:CB:F6:F8:17:9E:A3:E4:CE:F0 Authority key identifier: E5:88:C7:3E:6C:B4:FD:B3:8B:84:EE:40:F8:F9:B6:4C:50:BE:4B:73 Certificate issuer: /CN=A913ABFE/serialNumber=E588C73E6CB4FDB38B84EE40F8F9B64C50BE4B73 Certificate serial: 01A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.mft Manifest number: 019B Signing time: Sat 23 Aug 2025 03:38:55 +0000 Manifest this update: Sat 23 Aug 2025 03:38:55 +0000 Manifest next update: Sat 30 Aug 2025 03:38:55 +0000 Files and hashes: 1: 5YjHPmy0_bOLhO5A-Pm2TFC-S3M.crl (hash: 3TRUiTvr5zrwJu2AB2jtJaypiuHD6+0aKw/X6alhAHg=) 2: F4C13F18066811F0B521BF2FC4F9AE02.roa (hash: 3QKkD65qHOB5c8IaweySFDogSMcVT6Hz9Y4s2qa90So=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.crl rsync://rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:38:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 425 (0x1a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913ABFE, serialNumber=E588C73E6CB4FDB38B84EE40F8F9B64C50BE4B73 Validity Not Before: Aug 23 03:38:55 2025 GMT Not After : Aug 30 03:38:55 2025 GMT Subject: CN=68a937cf-a29c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:f1:75:2d:31:6d:9a:43:03:0c:8b:f5:5d:3f: dd:df:66:fc:6c:5c:f0:00:34:96:41:70:87:00:73: bb:87:dc:2b:81:c8:1a:de:ae:d1:93:87:f6:19:f8: 19:7c:0d:54:80:c1:b6:44:e5:00:28:cb:38:af:8d: c9:73:c7:57:fb:65:cb:07:61:ea:c2:34:7e:f1:b2: 07:49:9b:05:bc:1e:25:6c:6d:e1:32:13:e2:a8:93: 37:19:31:f3:94:ac:2d:a7:70:18:7d:50:9d:84:03: 8d:7a:53:4d:e1:25:42:a7:33:7b:44:45:29:9a:f2: 36:81:21:17:2b:71:e9:82:51:9e:0f:df:f6:2b:63: 49:9e:00:51:06:e4:6a:ae:0f:2a:23:7e:93:d8:64: 68:e5:a0:23:cc:69:01:a4:66:2e:80:6c:24:7e:53: 1a:c5:97:75:27:f7:86:61:ed:89:e7:7d:81:78:4a: 05:bd:c7:d7:32:6b:bc:cd:29:31:b0:ec:00:f0:94: 06:b9:02:4f:3c:6c:a4:28:5c:d5:ca:2a:ff:e1:38: bd:95:65:b9:c1:61:b7:4d:03:6d:5b:c8:34:fa:b5: c9:58:d9:f4:1d:96:d2:9e:c2:bf:19:55:07:1a:93: e0:05:aa:82:17:dd:45:82:08:18:79:b9:93:03:7a: cf:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:27:64:99:9B:7C:68:83:EF:CA:B0:CB:F6:F8:17:9E:A3:E4:CE:F0 X509v3 Authority Key Identifier: keyid:E5:88:C7:3E:6C:B4:FD:B3:8B:84:EE:40:F8:F9:B6:4C:50:BE:4B:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:bb:7c:6c:d4:b4:75:76:24:60:78:ff:f1:b8:11:2f:45:2c: e5:f5:2d:7e:81:17:8b:da:c7:ae:a6:b2:bd:73:b0:c3:ff:d1: 65:83:92:7c:47:aa:7b:13:83:1a:03:dc:38:67:cd:80:05:85: 2c:7f:74:de:d4:f2:6e:99:bb:93:4d:09:a0:bc:b4:ae:a7:82: 17:d9:e2:93:18:53:74:37:81:bb:7c:a0:63:6e:80:de:aa:f8: 51:ad:f6:03:8d:2f:d1:9e:b0:6a:ad:68:60:63:63:83:f5:38: 41:e9:03:31:a7:49:3d:2c:df:3c:de:8c:33:91:c6:ea:d3:52: 44:00:a4:8c:93:81:e2:dc:41:1b:95:60:f8:d9:76:82:6f:4c: 9c:b1:d3:96:2c:de:be:c2:c9:3f:37:b6:12:1e:3b:8c:17:56: 53:97:98:f9:f0:bb:c5:8e:96:8c:14:ac:99:45:01:0f:51:86: 53:e1:51:9d:6e:31:fe:81:08:8f:5b:c2:2c:7e:10:af:90:60: c8:0a:fe:0e:d0:a4:17:3c:01:33:99:85:cb:7c:07:e7:fd:d7: de:d4:15:95:f9:29:dc:07:71:92:2c:5d:aa:f6:4a:a5:c7:1b: b8:32:79:78:fe:dc:9f:d5:1b:b0:fb:76:b4:d7:3b:03:aa:1c: d1:cd:de:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAakwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FCRkUxMTAvBgNVBAUTKEU1ODhDNzNFNkNCNEZEQjM4Qjg0RUU0MEY4RjlCNjRD NTBCRTRCNzMwHhcNMjUwODIzMDMzODU1WhcNMjUwODMwMDMzODU1WjAYMRYwFAYD VQQDEw02OGE5MzdjZi1hMjljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+vF1LTFtmkMDDIv1XT/d32b8bFzwADSWQXCHAHO7h9wrgcga3q7Rk4f2GfgZ fA1UgMG2ROUAKMs4r43Jc8dX+2XLB2HqwjR+8bIHSZsFvB4lbG3hMhPiqJM3GTHz lKwtp3AYfVCdhAONelNN4SVCpzN7REUpmvI2gSEXK3HpglGeD9/2K2NJngBRBuRq rg8qI36T2GRo5aAjzGkBpGYugGwkflMaxZd1J/eGYe2J532BeEoFvcfXMmu8zSkx sOwA8JQGuQJPPGykKFzVyir/4Ti9lWW5wWG3TQNtW8g0+rXJWNn0HZbSnsK/GVUH GpPgBaqCF91FgggYebmTA3rP3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLAnZJmb fGiD78qwy/b4F56j5M7wMB8GA1UdIwQYMBaAFOWIxz5stP2zi4TuQPj5tkxQvktz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUJGRS9GMUQ1NTg3RTI1 RjExMUVFQjdCNDgwNThDNEY5QUUwMi81WWpIUG15MF9iT0xoTzVBLVBtMlRGQy1T M00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVZakhQbXkwX2JPTGhPNUEtUG0yVEZDLVMzTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUJGRS9GMUQ1NTg3RTI1RjExMUVFQjdCNDgwNThDNEY5QUUwMi81WWpIUG15MF9i T0xoTzVBLVBtMlRGQy1TM00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFu3xs1LR1diRgeP/xuBEvRSzl9S1+gReL2seuprK9c7DD/9Flg5J8 R6p7E4MaA9w4Z82ABYUsf3Te1PJumbuTTQmgvLSup4IX2eKTGFN0N4G7fKBjboDe qvhRrfYDjS/RnrBqrWhgY2OD9ThB6QMxp0k9LN883owzkcbq01JEAKSMk4Hi3EEb lWD42XaCb0ycsdOWLN6+wsk/N7YSHjuMF1ZTl5j58LvFjpaMFKyZRQEPUYZT4VGd bjH+gQiPW8IsfhCvkGDICv4O0KQXPAEzmYXLfAfn/dfe1BWV+SncB3GSLF2q9kql xxu4Mnl4/tyf1Ruw+3a01zsDqhzRzd5c -----END CERTIFICATE-----Generated at Sun Aug 24 03:08:01 2025 by rpki-client