$ rpki-client -vvf rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft File: 5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft (raw, json) Hash identifier: JxOji5/Jzvatfg+kRH8fHLGA6I396B84j14UpCsJT7g= Subject key identifier: 58:7B:D8:42:FF:C6:59:B1:EF:72:37:6E:9F:D0:26:3A:24:A5:77:8E Authority key identifier: E4:62:3C:FD:44:3E:62:32:F2:6C:23:E8:1F:DF:97:58:B2:6F:3B:2C Certificate issuer: /CN=A914F3BA/serialNumber=E4623CFD443E6232F26C23E81FDF9758B26F3B2C Certificate serial: 07BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5GI8_UQ-YjLybCPoH9-XWLJvOyw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft Manifest number: 07B9 Signing time: Wed 02 Jul 2025 21:25:36 +0000 Manifest this update: Wed 02 Jul 2025 21:25:36 +0000 Manifest next update: Wed 09 Jul 2025 21:25:36 +0000 Files and hashes: 1: 5GI8_UQ-YjLybCPoH9-XWLJvOyw.crl (hash: +hXZhg7EV8jiBYINFNvUPA1hbO6yjdU3bGF0iIQ8Ux8=) 2: D0D7EE48343211EFBF2C280DC4F9AE02.roa (hash: 5hdkZ5DddWFl8kbLYaaqhPZLjdFJcDk309blXMyKcbQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.crl rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5GI8_UQ-YjLybCPoH9-XWLJvOyw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 21:25:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1979 (0x7bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F3BA, serialNumber=E4623CFD443E6232F26C23E81FDF9758B26F3B2C Validity Not Before: Jul 2 21:25:36 2025 GMT Not After : Jul 9 21:25:36 2025 GMT Subject: CN=6865a3d0-af20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:d2:d9:3c:96:db:80:96:6a:f3:30:79:7f:90: d0:9d:21:67:70:b2:6f:e8:cc:32:95:4e:65:77:ef: b6:03:57:8b:3a:04:04:77:50:c2:31:0b:39:b1:b8: d5:10:9e:c8:a6:cd:b9:ef:df:22:cf:85:db:62:4c: da:87:5d:f3:27:0d:89:85:15:00:82:c0:1e:10:d0: 90:01:9e:3c:92:1d:ca:cb:1b:42:66:04:18:85:55: c0:75:1c:9c:dc:35:95:51:cf:17:b6:81:0a:16:11: 98:2a:8c:cd:04:1b:8d:df:99:ff:ec:e4:26:f6:ef: 00:ba:45:b2:29:07:9f:e3:b3:5a:5a:96:46:d2:b3: 1e:23:f2:77:95:14:33:57:a9:dc:c8:83:42:bc:70: 86:c9:d4:0f:d0:4e:de:ab:16:3a:a8:62:95:0d:a0: 02:39:1a:b4:33:32:b3:7d:c5:f4:e3:b3:ef:a6:d1: ac:eb:b5:36:c3:89:14:2d:62:ed:a4:50:c6:f5:63: 27:c5:b4:62:f0:13:44:1b:d6:06:96:74:57:99:7f: 97:c7:31:aa:32:28:ec:43:d3:8d:99:fd:d8:0b:0d: 86:5e:b8:08:9e:cc:64:78:44:6d:d3:7f:8a:23:a6: f6:99:f8:b2:c4:62:8e:ea:8c:c9:6e:3a:0e:00:06: 58:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:7B:D8:42:FF:C6:59:B1:EF:72:37:6E:9F:D0:26:3A:24:A5:77:8E X509v3 Authority Key Identifier: keyid:E4:62:3C:FD:44:3E:62:32:F2:6C:23:E8:1F:DF:97:58:B2:6F:3B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5GI8_UQ-YjLybCPoH9-XWLJvOyw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:b0:77:20:b8:36:38:ab:3a:b5:da:d6:1e:6b:67:8b:c7:fe: 3a:69:91:9c:6e:a8:d8:45:d9:44:20:43:ba:88:60:f9:26:11: 6e:9b:2a:ac:b7:05:7d:23:0e:4d:c7:b9:4c:f6:d0:5a:67:f1: 4e:4c:b9:2a:60:88:12:3b:83:51:ca:a1:7d:05:4e:36:4a:99: 81:7d:18:7d:fa:10:e9:a0:d7:0c:c2:02:00:fe:a1:83:35:53: 81:10:95:f5:25:6d:04:40:c7:51:fe:8e:c7:06:1b:47:e0:77: 96:01:34:fa:f7:13:f8:ac:12:5d:aa:36:60:95:22:79:ba:2b: 77:3c:9e:ce:99:b0:60:81:bc:2c:0a:18:20:24:5d:7d:85:7d: 03:e7:f7:0d:04:9b:a5:66:40:7f:37:ec:73:ff:e5:5f:3e:e0: c3:1d:10:d5:a7:5a:10:21:5c:80:3f:e9:0c:f3:22:2a:42:e5: 4b:39:3a:f2:54:e8:d7:db:d5:5f:75:07:dc:18:4d:3f:3e:4b: ed:5e:27:e6:dc:d0:3e:8e:b3:25:d6:c2:73:77:28:10:e1:69: c8:74:27:3e:a5:d8:e2:18:d7:1e:31:94:63:6a:1c:ed:02:95: ac:63:37:88:f8:6b:37:20:32:bd:da:f1:2d:08:53:0b:ef:5b: 5e:04:92:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEYzQkExMTAvBgNVBAUTKEU0NjIzQ0ZENDQzRTYyMzJGMjZDMjNFODFGREY5NzU4 QjI2RjNCMkMwHhcNMjUwNzAyMjEyNTM2WhcNMjUwNzA5MjEyNTM2WjAYMRYwFAYD VQQDEw02ODY1YTNkMC1hZjIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnNLZPJbbgJZq8zB5f5DQnSFncLJv6MwylU5ld++2A1eLOgQEd1DCMQs5sbjV EJ7Ips25798iz4XbYkzah13zJw2JhRUAgsAeENCQAZ48kh3KyxtCZgQYhVXAdRyc 3DWVUc8XtoEKFhGYKozNBBuN35n/7OQm9u8AukWyKQef47NaWpZG0rMeI/J3lRQz V6ncyINCvHCGydQP0E7eqxY6qGKVDaACORq0MzKzfcX047PvptGs67U2w4kULWLt pFDG9WMnxbRi8BNEG9YGlnRXmX+XxzGqMijsQ9ONmf3YCw2GXrgInsxkeERt03+K I6b2mfiyxGKO6ozJbjoOAAZYeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFh72EL/ xlmx73I3bp/QJjokpXeOMB8GA1UdIwQYMBaAFORiPP1EPmIy8mwj6B/fl1iybzss MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjNCQS9GRjIwRUJEQzAx M0QxMUVCQTAwMDEyNkJDNEY5QUUwMi81R0k4X1VRLVlqTHliQ1BvSDktWFdMSnZP eXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVHSThfVVEtWWpMeWJDUG9IOS1YV0xKdk95dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjNCQS9GRjIwRUJEQzAxM0QxMUVCQTAwMDEyNkJDNEY5QUUwMi81R0k4X1VRLVlq THliQ1BvSDktWFdMSnZPeXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLsHcguDY4qzq12tYea2eLx/46aZGcbqjYRdlEIEO6iGD5JhFumyqs twV9Iw5Nx7lM9tBaZ/FOTLkqYIgSO4NRyqF9BU42SpmBfRh9+hDpoNcMwgIA/qGD NVOBEJX1JW0EQMdR/o7HBhtH4HeWATT69xP4rBJdqjZglSJ5uit3PJ7OmbBggbws ChggJF19hX0D5/cNBJulZkB/N+xz/+VfPuDDHRDVp1oQIVyAP+kM8yIqQuVLOTry VOjX29VfdQfcGE0/PkvtXifm3NA+jrMl1sJzdygQ4WnIdCc+pdjiGNceMZRjahzt ApWsYzeI+Gs3IDK92vEtCFML71teBJIa -----END CERTIFICATE-----Generated at Thu Jul 3 01:11:56 2025 by rpki-client