$ rpki-client -vvf rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft File: 5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft (raw, json) Hash identifier: 1V+PMfcsAyoglIN4plcUw4aDi0rDfnk9xmUVwxgqkU4= Subject key identifier: A9:44:1C:BB:40:C1:EE:D8:0C:C2:32:35:AF:54:F3:55:6E:08:D4:CD Authority key identifier: E4:62:3C:FD:44:3E:62:32:F2:6C:23:E8:1F:DF:97:58:B2:6F:3B:2C Certificate issuer: /CN=A914F3BA/serialNumber=E4623CFD443E6232F26C23E81FDF9758B26F3B2C Certificate serial: 07D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5GI8_UQ-YjLybCPoH9-XWLJvOyw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft Manifest number: 07D5 Signing time: Fri 22 Aug 2025 21:13:20 +0000 Manifest this update: Fri 22 Aug 2025 21:13:19 +0000 Manifest next update: Fri 29 Aug 2025 21:13:19 +0000 Files and hashes: 1: 5GI8_UQ-YjLybCPoH9-XWLJvOyw.crl (hash: 42L6lCZCZDyNH8r+9psg6DywOc3D9dVAUXKpBDGTxmE=) 2: D0D7EE48343211EFBF2C280DC4F9AE02.roa (hash: hbQmOshNkorS1/g78QiEhSVwbWUn9A8H0a6ZSzOWB98=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.crl rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5GI8_UQ-YjLybCPoH9-XWLJvOyw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:13:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2008 (0x7d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F3BA, serialNumber=E4623CFD443E6232F26C23E81FDF9758B26F3B2C Validity Not Before: Aug 22 21:13:19 2025 GMT Not After : Aug 29 21:13:19 2025 GMT Subject: CN=68a8dd6f-8ef7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:25:49:bd:4b:29:f3:ec:fc:a5:76:e7:fe:84: b4:24:a0:f5:83:11:37:96:ec:e6:4c:a0:08:52:41: 42:eb:d0:26:0f:f1:9c:82:5f:77:1f:b0:68:8a:3f: d0:8a:b1:59:ba:e4:3e:58:f1:f8:6c:af:00:a2:87: b1:2d:6f:5c:cc:28:41:c4:4f:52:1d:88:2b:3e:06: 7e:01:8c:1e:58:c0:d3:27:50:34:8b:2f:25:77:e5: 34:c8:cf:61:62:4c:6d:4b:73:d9:2a:2c:61:c7:aa: 06:da:7e:35:8a:04:49:85:7d:93:3a:96:6d:2a:1b: 7c:33:de:6a:a3:63:96:df:aa:cf:c6:0c:91:01:f7: 54:dc:02:3d:24:4e:dc:71:d5:1e:09:35:0c:f2:60: 40:99:ab:17:b8:2b:9a:b6:9e:88:ea:56:c1:d5:e2: 58:0a:5f:03:02:f2:25:eb:68:34:ed:3f:03:9e:5c: 86:3a:d1:14:e7:ee:2c:05:26:c8:dd:9e:69:fb:58: 0f:97:7a:e4:45:46:10:c5:08:a9:3b:db:22:d6:c5: 16:a5:b0:8e:e0:19:88:5f:33:40:01:81:06:5d:d0: 0d:c8:97:d7:e9:b3:15:8b:1e:07:b1:3f:fd:41:9a: 0d:d7:61:33:a7:06:d4:55:04:34:04:ec:72:35:7c: 92:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:44:1C:BB:40:C1:EE:D8:0C:C2:32:35:AF:54:F3:55:6E:08:D4:CD X509v3 Authority Key Identifier: keyid:E4:62:3C:FD:44:3E:62:32:F2:6C:23:E8:1F:DF:97:58:B2:6F:3B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5GI8_UQ-YjLybCPoH9-XWLJvOyw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e0:42:54:b8:71:80:22:cb:7a:5d:81:09:d3:d5:2e:10:75:a0: 1b:ed:68:3c:63:72:25:b2:f6:44:a7:c8:a2:30:a2:16:b7:c8: 2a:8d:ce:9c:ae:cd:33:18:61:3e:1d:ac:3c:f4:e8:84:2a:45: f8:3a:3b:43:02:a7:5e:b7:a9:b4:d7:ac:e9:a0:28:df:99:e7: bb:44:d7:0e:ca:a3:64:63:cb:3e:46:9a:77:1b:ae:62:58:8b: dc:52:f4:ad:5b:d1:0d:06:da:e8:0c:c3:e7:22:eb:93:d2:b1: 9c:68:9c:2b:ae:34:25:02:89:f3:a6:38:e0:50:59:b0:f9:61: f1:16:69:5e:9f:91:04:9e:38:96:32:e1:ea:6d:7b:3d:05:0d: 31:5b:b7:0f:4b:6b:76:4d:60:d2:05:5e:f9:7d:b9:f5:22:cc: 45:fe:6d:55:90:38:89:d6:cc:60:f8:0a:af:79:90:30:e4:b6: fe:d7:7f:a1:45:f2:8e:a9:61:6b:40:2d:b8:f7:72:85:a8:0d: f0:9c:52:21:4b:18:a4:28:c9:1f:cf:bd:81:af:8a:61:93:c1: ce:51:0d:3e:43:3d:c0:9a:a2:a9:51:63:d1:66:2e:f1:1b:03: ec:27:4c:df:4d:d4:01:c1:90:ee:20:db:f6:91:81:a7:cc:6b: d2:bc:5c:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEYzQkExMTAvBgNVBAUTKEU0NjIzQ0ZENDQzRTYyMzJGMjZDMjNFODFGREY5NzU4 QjI2RjNCMkMwHhcNMjUwODIyMjExMzE5WhcNMjUwODI5MjExMzE5WjAYMRYwFAYD VQQDEw02OGE4ZGQ2Zi04ZWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAziVJvUsp8+z8pXbn/oS0JKD1gxE3luzmTKAIUkFC69AmD/Gcgl93H7Boij/Q irFZuuQ+WPH4bK8AooexLW9czChBxE9SHYgrPgZ+AYweWMDTJ1A0iy8ld+U0yM9h YkxtS3PZKixhx6oG2n41igRJhX2TOpZtKht8M95qo2OW36rPxgyRAfdU3AI9JE7c cdUeCTUM8mBAmasXuCuatp6I6lbB1eJYCl8DAvIl62g07T8DnlyGOtEU5+4sBSbI 3Z5p+1gPl3rkRUYQxQipO9si1sUWpbCO4BmIXzNAAYEGXdANyJfX6bMVix4HsT/9 QZoN12EzpwbUVQQ0BOxyNXyS8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKlEHLtA we7YDMIyNa9U81VuCNTNMB8GA1UdIwQYMBaAFORiPP1EPmIy8mwj6B/fl1iybzss MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjNCQS9GRjIwRUJEQzAx M0QxMUVCQTAwMDEyNkJDNEY5QUUwMi81R0k4X1VRLVlqTHliQ1BvSDktWFdMSnZP eXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVHSThfVVEtWWpMeWJDUG9IOS1YV0xKdk95dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjNCQS9GRjIwRUJEQzAxM0QxMUVCQTAwMDEyNkJDNEY5QUUwMi81R0k4X1VRLVlq THliQ1BvSDktWFdMSnZPeXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDgQlS4cYAiy3pdgQnT1S4QdaAb7Wg8Y3IlsvZEp8iiMKIWt8gqjc6c rs0zGGE+Haw89OiEKkX4OjtDAqdet6m016zpoCjfmee7RNcOyqNkY8s+Rpp3G65i WIvcUvStW9ENBtroDMPnIuuT0rGcaJwrrjQlAonzpjjgUFmw+WHxFmlen5EEnjiW MuHqbXs9BQ0xW7cPS2t2TWDSBV75fbn1IsxF/m1VkDiJ1sxg+AqveZAw5Lb+13+h RfKOqWFrQC2493KFqA3wnFIhSxikKMkfz72Br4phk8HOUQ0+Qz3AmqKpUWPRZi7x GwPsJ0zfTdQBwZDuINv2kYGnzGvSvFyO -----END CERTIFICATE-----Generated at Sat Aug 23 19:13:00 2025 by rpki-client