$ rpki-client -vvf rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.mft File: 42kpD9cZ4-SYfXGac7Hsd6qvSbY.mft (raw, json) Hash identifier: ECKSkH7jM+p73kgANtkbJlqZyEqokqDb+/HCv28sHVs= Subject key identifier: E9:90:A3:04:61:4C:91:EC:5E:5F:3D:45:50:4E:28:0B:7C:13:15:22 Authority key identifier: E3:69:29:0F:D7:19:E3:E4:98:7D:71:9A:73:B1:EC:77:AA:AF:49:B6 Certificate issuer: /CN=A91418C7/serialNumber=E369290FD719E3E4987D719A73B1EC77AAAF49B6 Certificate serial: 60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/42kpD9cZ4-SYfXGac7Hsd6qvSbY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.mft Manifest number: 5E Signing time: Sat 23 Aug 2025 07:23:32 +0000 Manifest this update: Sat 23 Aug 2025 07:23:31 +0000 Manifest next update: Sat 30 Aug 2025 07:23:31 +0000 Files and hashes: 1: 42kpD9cZ4-SYfXGac7Hsd6qvSbY.crl (hash: uhWeZFumakXfHabf48iMk5al3zVn6eBmT9JSZqZ9/nU=) 2: CDD0BE9EF99111EF945B6751C4F9AE02.roa (hash: 5D2jjmxRmYaXjLCMnBDCQ4uD7aGag4RBTpQpYik03Wk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.crl rsync://rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/42kpD9cZ4-SYfXGac7Hsd6qvSbY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:23:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 96 (0x60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91418C7, serialNumber=E369290FD719E3E4987D719A73B1EC77AAAF49B6 Validity Not Before: Aug 23 07:23:31 2025 GMT Not After : Aug 30 07:23:31 2025 GMT Subject: CN=68a96c74-de5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:62:84:4b:37:72:f6:cd:06:ab:b7:a9:58:35: 58:c8:0a:e6:ec:c9:71:1d:26:4c:51:aa:27:b0:a4: ff:36:0c:fd:e6:d6:95:ca:e3:7b:c8:f1:7a:90:a6: 71:fa:c3:7c:9b:be:ad:30:54:b3:68:ac:f8:95:2c: a5:20:e9:4e:75:e0:ce:ef:5c:32:16:a1:ce:84:59: 0d:d8:36:7e:f0:f5:c0:1b:96:74:45:30:2a:00:d2: 85:1e:21:45:ce:10:17:c7:75:61:44:94:ae:08:52: 12:66:73:5e:1b:8e:ce:5f:be:82:94:51:02:41:be: 31:dc:49:61:90:be:30:79:27:df:56:d8:b7:ea:68: 07:9c:b1:91:a0:e0:af:90:93:51:e6:66:ce:30:ee: 84:64:78:0b:f1:1a:1d:78:a8:63:fd:78:28:14:69: 4a:5d:b2:1f:22:aa:e2:9b:da:56:3a:a2:9c:9e:ad: ba:73:34:af:06:e2:16:1a:31:82:19:87:e3:5b:a5: fd:cd:4d:20:66:09:d6:06:53:da:93:87:1e:7a:c2: 92:fe:b0:38:68:b5:93:58:57:59:95:b8:45:b6:f5: ec:df:48:c5:49:12:fc:11:d5:70:7e:44:94:84:88: 15:7d:ae:77:5a:5d:2c:4e:9b:60:ea:bf:5d:4d:50: 1a:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:90:A3:04:61:4C:91:EC:5E:5F:3D:45:50:4E:28:0B:7C:13:15:22 X509v3 Authority Key Identifier: keyid:E3:69:29:0F:D7:19:E3:E4:98:7D:71:9A:73:B1:EC:77:AA:AF:49:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/42kpD9cZ4-SYfXGac7Hsd6qvSbY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:25:ec:55:89:fe:fe:3a:c4:3f:3f:3e:a1:92:5c:70:a8:1e: 4c:c2:ed:ec:8a:64:30:62:6b:d8:8d:39:f7:17:64:d1:6e:5c: be:a4:d1:b1:ad:7a:b2:6f:76:d0:24:c4:fe:82:9c:de:62:4c: 6b:e7:2e:49:a6:cc:0e:4a:68:c7:90:c6:84:f9:68:fb:8a:b2: 91:5a:f1:a4:88:63:4c:6a:fa:17:50:e1:b5:59:4d:a3:08:b4: ed:1d:72:3e:8f:70:1c:e1:14:63:23:75:c0:0f:3b:66:13:35: 18:81:31:cf:79:38:d7:3a:00:24:ca:a5:2a:59:4c:70:8f:a6: 6a:7a:8f:c6:4c:02:43:52:cc:c9:3d:a7:8d:aa:28:cd:d2:9b: 21:4d:ba:76:ed:78:a7:1a:5c:87:92:2e:5d:2e:58:98:9e:20: 02:92:9c:55:d0:b7:fb:68:ff:0b:66:47:e4:5b:7b:98:e7:6d: 53:d4:70:47:6c:ce:9a:95:95:d8:ec:41:2d:f4:8d:7c:d8:23: e6:62:45:9a:de:90:7f:28:01:54:46:87:36:e2:3f:5d:e7:fd: af:89:74:a5:4e:4c:5a:19:fa:8f:d9:f4:b8:64:1d:6c:9d:14: 71:d2:fd:e8:10:f4:0e:9b:15:19:97:89:71:9b:83:b2:fc:07: 39:b8:54:da -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MThDNzExMC8GA1UEBRMoRTM2OTI5MEZENzE5RTNFNDk4N0Q3MTlBNzNCMUVDNzdB QUFGNDlCNjAeFw0yNTA4MjMwNzIzMzFaFw0yNTA4MzAwNzIzMzFaMBgxFjAUBgNV BAMTDTY4YTk2Yzc0LWRlNWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJYoRLN3L2zQart6lYNVjICubsyXEdJkxRqiewpP82DP3m1pXK43vI8XqQpnH6 w3ybvq0wVLNorPiVLKUg6U514M7vXDIWoc6EWQ3YNn7w9cAblnRFMCoA0oUeIUXO EBfHdWFElK4IUhJmc14bjs5fvoKUUQJBvjHcSWGQvjB5J99W2LfqaAecsZGg4K+Q k1HmZs4w7oRkeAvxGh14qGP9eCgUaUpdsh8iquKb2lY6opyerbpzNK8G4hYaMYIZ h+Nbpf3NTSBmCdYGU9qThx56wpL+sDhotZNYV1mVuEW29ezfSMVJEvwR1XB+RJSE iBV9rndaXSxOm2Dqv11NUBrJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU6ZCjBGFM kexeXz1FUE4oC3wTFSIwHwYDVR0jBBgwFoAU42kpD9cZ4+SYfXGac7Hsd6qvSbYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQxOEM3L0Y5MzAwMUI2RjhD RjExRUY4MkQ4RDUyQkM0RjlBRTAyLzQya3BEOWNaNC1TWWZYR2FjN0hzZDZxdlNi WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNDJrcEQ5Y1o0LVNZZlhHYWM3SHNkNnF2U2JZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQx OEM3L0Y5MzAwMUI2RjhDRjExRUY4MkQ4RDUyQkM0RjlBRTAyLzQya3BEOWNaNC1T WWZYR2FjN0hzZDZxdlNiWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKUl7FWJ/v46xD8/PqGSXHCoHkzC7eyKZDBia9iNOfcXZNFuXL6k0bGt erJvdtAkxP6CnN5iTGvnLkmmzA5KaMeQxoT5aPuKspFa8aSIY0xq+hdQ4bVZTaMI tO0dcj6PcBzhFGMjdcAPO2YTNRiBMc95ONc6ACTKpSpZTHCPpmp6j8ZMAkNSzMk9 p42qKM3SmyFNunbteKcaXIeSLl0uWJieIAKSnFXQt/to/wtmR+Rbe5jnbVPUcEds zpqVldjsQS30jXzYI+ZiRZrekH8oAVRGhzbiP13n/a+JdKVOTFoZ+o/Z9LhkHWyd FHHS/egQ9A6bFRmXiXGbg7L8Bzm4VNo= -----END CERTIFICATE-----Generated at Sat Aug 23 15:13:18 2025 by rpki-client