$ rpki-client -vvf rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.mft File: 5vEsD995brDfK2AuWsQsy4OyLhg.mft (raw, json) Hash identifier: yBLqEH7yo67QevKUjjc3yyEbMTT6RNcENmZSnmWTIb0= Subject key identifier: D5:0A:39:81:B5:4F:04:6D:3A:5A:5C:13:38:D1:7C:AD:0C:C8:4E:C7 Authority key identifier: E6:F1:2C:0F:DF:79:6E:B0:DF:2B:60:2E:5A:C4:2C:CB:83:B2:2E:18 Certificate issuer: /CN=A914E3B7/serialNumber=E6F12C0FDF796EB0DF2B602E5AC42CCB83B22E18 Certificate serial: 34AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vEsD995brDfK2AuWsQsy4OyLhg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.mft Manifest number: 34AB Signing time: Fri 22 Aug 2025 15:11:15 +0000 Manifest this update: Fri 22 Aug 2025 15:11:14 +0000 Manifest next update: Fri 29 Aug 2025 15:11:14 +0000 Files and hashes: 1: 5vEsD995brDfK2AuWsQsy4OyLhg.crl (hash: YPdSh+HsE0ZGsuyqqZIDXV84g3i6ZbmbZqhagSBcq6A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.crl rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vEsD995brDfK2AuWsQsy4OyLhg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:11:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13486 (0x34ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E3B7, serialNumber=E6F12C0FDF796EB0DF2B602E5AC42CCB83B22E18 Validity Not Before: Aug 22 15:11:14 2025 GMT Not After : Aug 29 15:11:14 2025 GMT Subject: CN=68a88893-98af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:7e:38:a2:52:9c:11:1b:c0:d9:49:27:95:33: 91:e6:12:d7:a6:ad:e4:b7:78:dd:45:86:b5:44:a6: 6b:9a:b3:02:cd:da:f9:8b:7a:b0:e6:36:af:d1:91: fc:bf:41:51:f0:e8:bc:ea:36:54:58:7f:8d:e4:0a: d9:4d:64:f0:ee:51:f7:af:0f:c6:6c:ee:d5:eb:84: 81:fd:c0:9d:2d:8d:87:18:b9:d7:26:14:75:23:d7: d0:4a:58:91:13:0d:33:27:0c:1f:89:4e:e6:fe:89: fe:18:cf:f3:8f:af:1f:b8:7d:ee:89:12:a7:d1:80: c6:a0:7f:f1:1b:b1:3f:f4:f5:99:d2:7c:0f:cb:3a: e7:ea:85:8d:48:3a:85:49:f1:fd:aa:f8:5c:fe:9a: b3:98:4f:d5:d3:2e:e8:16:ff:5b:37:ae:30:62:fa: 40:73:5f:d5:ff:6a:b6:89:bc:8c:8e:68:e1:88:81: 6c:11:1d:c5:eb:b9:8e:f2:22:29:4b:d1:a2:03:f6: ba:60:a0:b1:f4:6c:cc:f8:2a:d3:b6:ee:b1:96:7d: ea:36:82:b2:e8:b5:53:e5:c6:e7:b2:79:d7:f0:b4: 0e:2c:83:74:f4:91:85:31:52:df:c1:e0:3d:b3:a7: 97:97:af:65:10:8c:7b:d5:0f:85:50:ee:02:2b:8f: 4c:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:0A:39:81:B5:4F:04:6D:3A:5A:5C:13:38:D1:7C:AD:0C:C8:4E:C7 X509v3 Authority Key Identifier: keyid:E6:F1:2C:0F:DF:79:6E:B0:DF:2B:60:2E:5A:C4:2C:CB:83:B2:2E:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vEsD995brDfK2AuWsQsy4OyLhg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:08:d4:0f:29:77:86:ea:7b:c4:67:cd:94:aa:4e:95:e3:8e: c0:95:c3:d1:5c:7a:4b:84:c1:45:e4:cd:3c:51:a4:59:d1:a7: 9e:bf:14:81:05:c0:bd:28:26:63:18:7b:60:42:a1:56:99:0d: de:43:01:71:ac:dc:df:87:1f:ea:ca:8e:79:7c:f7:85:83:65: 54:f6:d8:1f:18:99:23:ab:eb:56:71:64:d0:04:0d:2b:d7:78: 78:04:35:69:b7:b1:f2:d7:a6:34:22:dd:10:83:4c:a3:3d:f5: d6:ef:db:cb:b0:58:a7:c6:da:9d:d6:28:7e:ce:6d:96:78:12: a6:ca:80:65:dc:cf:ae:4e:20:96:39:bc:79:6e:ca:27:97:d0: 37:34:53:c4:ad:ff:ed:b1:17:7f:a7:2a:5e:9c:ef:33:50:41: 19:dc:87:db:ff:2d:d0:16:3b:80:53:92:b2:f9:dd:02:2d:bd: 14:4b:de:3f:7f:f0:c8:05:9e:5d:23:c0:18:cf:63:be:73:98: ff:74:ba:a3:3c:52:bb:a7:ea:71:c8:65:1a:c1:82:02:74:6e: 9d:4a:88:3c:07:a1:89:93:91:7b:78:06:43:ba:d9:b0:c8:56: bd:13:fa:52:de:85:fe:a1:68:b9:30:3c:66:27:65:5d:8f:5f: 8f:91:1b:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUzQjcxMTAvBgNVBAUTKEU2RjEyQzBGREY3OTZFQjBERjJCNjAyRTVBQzQyQ0NC ODNCMjJFMTgwHhcNMjUwODIyMTUxMTE0WhcNMjUwODI5MTUxMTE0WjAYMRYwFAYD VQQDEw02OGE4ODg5My05OGFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz344olKcERvA2UknlTOR5hLXpq3kt3jdRYa1RKZrmrMCzdr5i3qw5jav0ZH8 v0FR8Oi86jZUWH+N5ArZTWTw7lH3rw/GbO7V64SB/cCdLY2HGLnXJhR1I9fQSliR Ew0zJwwfiU7m/on+GM/zj68fuH3uiRKn0YDGoH/xG7E/9PWZ0nwPyzrn6oWNSDqF SfH9qvhc/pqzmE/V0y7oFv9bN64wYvpAc1/V/2q2ibyMjmjhiIFsER3F67mO8iIp S9GiA/a6YKCx9GzM+CrTtu6xln3qNoKy6LVT5cbnsnnX8LQOLIN09JGFMVLfweA9 s6eXl69lEIx71Q+FUO4CK49MOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNUKOYG1 TwRtOlpcEzjRfK0MyE7HMB8GA1UdIwQYMBaAFObxLA/feW6w3ytgLlrELMuDsi4Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTNCNy85RkFFODRGQTFE QTQxMUUyQUMyQkFGOUEwOEIwMkNEMi81dkVzRDk5NWJyRGZLMkF1V3NRc3k0T3lM aGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzV2RXNEOTk1YnJEZksyQXVXc1FzeTRPeUxoZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTNCNy85RkFFODRGQTFEQTQxMUUyQUMyQkFGOUEwOEIwMkNEMi81dkVzRDk5NWJy RGZLMkF1V3NRc3k0T3lMaGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOCNQPKXeG6nvEZ82Uqk6V447AlcPRXHpLhMFF5M08UaRZ0aeevxSB BcC9KCZjGHtgQqFWmQ3eQwFxrNzfhx/qyo55fPeFg2VU9tgfGJkjq+tWcWTQBA0r 13h4BDVpt7Hy16Y0It0Qg0yjPfXW79vLsFinxtqd1ih+zm2WeBKmyoBl3M+uTiCW Obx5bsonl9A3NFPErf/tsRd/pypenO8zUEEZ3Ifb/y3QFjuAU5Ky+d0CLb0US94/ f/DIBZ5dI8AYz2O+c5j/dLqjPFK7p+pxyGUawYICdG6dSog8B6GJk5F7eAZDutmw yFa9E/pS3oX+oWi5MDxmJ2Vdj1+PkRsm -----END CERTIFICATE-----Generated at Sun Aug 24 09:01:39 2025 by rpki-client