$ rpki-client -vvf rpki.apnic.net/member_repository/A91557F2/233504A44FCC11EB9DBE7F5DC4F9AE02/-tm5N3fQzrort6a3jVB_d5CSHAY.mft File: -tm5N3fQzrort6a3jVB_d5CSHAY.mft (raw, json) Hash identifier: PlddXlIvx5NlAxXIiwiRPlUKguGx81yehuqDfeZFLF4= Subject key identifier: BB:5D:38:42:DB:EC:DF:57:CF:24:26:EA:98:6A:E0:96:B5:93:92:48 Authority key identifier: FA:D9:B9:37:77:D0:CE:BA:2B:B7:A6:B7:8D:50:7F:77:90:92:1C:06 Certificate issuer: /CN=A91557F2/serialNumber=FAD9B93777D0CEBA2BB7A6B78D507F7790921C06 Certificate serial: 0712 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-tm5N3fQzrort6a3jVB_d5CSHAY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91557F2/233504A44FCC11EB9DBE7F5DC4F9AE02/-tm5N3fQzrort6a3jVB_d5CSHAY.mft Manifest number: 0888 Signing time: Fri 22 Aug 2025 22:00:24 +0000 Manifest this update: Fri 22 Aug 2025 22:00:24 +0000 Manifest next update: Fri 29 Aug 2025 22:00:24 +0000 Files and hashes: 1: -tm5N3fQzrort6a3jVB_d5CSHAY.crl (hash: 2m5FjebBENTMkcr8bOy18BF581B2Ho+KqJV4Mj+7yEA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91557F2/233504A44FCC11EB9DBE7F5DC4F9AE02/-tm5N3fQzrort6a3jVB_d5CSHAY.crl rsync://rpki.apnic.net/member_repository/A91557F2/233504A44FCC11EB9DBE7F5DC4F9AE02/-tm5N3fQzrort6a3jVB_d5CSHAY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-tm5N3fQzrort6a3jVB_d5CSHAY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:00:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1810 (0x712) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91557F2, serialNumber=FAD9B93777D0CEBA2BB7A6B78D507F7790921C06 Validity Not Before: Aug 22 22:00:24 2025 GMT Not After : Aug 29 22:00:24 2025 GMT Subject: CN=68a8e878-6537 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:db:49:5c:e5:ec:b1:12:ab:8c:31:05:05:27: 3f:0d:55:39:af:9e:8c:8e:ff:a7:55:d5:4d:c4:ed: 71:c2:f1:69:e0:58:2c:b0:38:c0:8c:21:1e:a3:e8: 8a:d0:f6:ab:13:d9:1a:68:fc:0d:01:84:18:af:39: 00:e8:80:03:f7:3e:57:9d:95:7e:c7:e1:26:d4:86: b9:bb:f5:6b:9f:6f:e3:52:78:d7:31:cc:17:dc:58: c0:1b:2e:0b:3c:e0:ac:6c:9d:9c:d2:13:bf:fc:a0: 5a:c6:e5:2e:e4:0a:c9:f8:6b:de:ac:ed:f5:cc:f8: c4:22:91:58:22:89:ab:db:bf:84:5b:f2:4f:58:38: 1e:26:85:bc:53:55:a7:d1:48:13:5a:83:67:44:65: 96:4a:3f:9c:62:52:06:91:8e:eb:5e:40:cb:5b:45: 77:86:82:e1:b3:09:29:86:f6:0f:12:e1:36:77:8c: 6e:c7:44:e9:2a:1d:48:95:5b:26:8a:76:eb:be:69: 5c:13:eb:08:4d:e4:00:da:c4:a5:83:07:1e:90:d0: f1:41:a4:f7:d4:2f:4a:ac:2e:1e:11:37:21:a6:98: 97:c7:f1:af:05:ac:7a:62:08:fd:f8:1b:f8:c5:56: 94:20:33:e5:79:ea:c4:36:17:14:23:7f:90:a2:21: fe:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:5D:38:42:DB:EC:DF:57:CF:24:26:EA:98:6A:E0:96:B5:93:92:48 X509v3 Authority Key Identifier: keyid:FA:D9:B9:37:77:D0:CE:BA:2B:B7:A6:B7:8D:50:7F:77:90:92:1C:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91557F2/233504A44FCC11EB9DBE7F5DC4F9AE02/-tm5N3fQzrort6a3jVB_d5CSHAY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-tm5N3fQzrort6a3jVB_d5CSHAY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91557F2/233504A44FCC11EB9DBE7F5DC4F9AE02/-tm5N3fQzrort6a3jVB_d5CSHAY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:f9:8b:57:9e:33:a0:77:c9:a1:5c:d5:83:cb:a2:ba:e4:86: 62:bb:c6:4e:83:8b:dd:42:15:0f:9d:1a:00:11:b9:cd:68:1b: db:3d:b2:3d:e4:c3:43:a2:48:ba:79:92:73:bf:29:a9:5c:ad: 37:e3:05:11:2a:fa:26:aa:08:dd:db:a8:5b:c7:5e:8a:00:1b: 90:a0:bb:cc:76:40:41:b8:f5:1c:3e:7d:32:32:1e:7c:24:85: 1e:91:99:58:99:f5:d8:0f:dc:6d:db:37:3b:a7:38:e2:ea:82: 13:ab:f0:34:fb:3b:4d:a2:66:b9:93:ec:28:39:c2:4b:ed:fb: 84:95:9d:5e:ac:20:75:d0:b2:45:e5:89:70:28:d1:23:58:e3: 53:a1:c2:7f:aa:b7:c3:47:5f:ca:19:a5:aa:31:be:1a:8e:93: 31:59:a6:a3:6a:83:0e:a3:a0:61:81:a9:3d:48:36:ff:33:19: 35:25:7a:45:a7:27:3b:97:f2:2f:11:67:22:ba:e9:47:1d:0d: 4f:39:19:f4:e6:c0:1a:1b:60:48:34:a4:cd:cf:60:26:71:60: c4:b7:4a:88:e3:59:67:12:b4:90:70:b4:4d:79:98:cb:e5:0c: 9c:17:37:a6:f1:a2:97:fb:dd:e4:96:b3:12:e6:93:ba:1b:2f: 11:df:49:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBxIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU3RjIxMTAvBgNVBAUTKEZBRDlCOTM3NzdEMENFQkEyQkI3QTZCNzhENTA3Rjc3 OTA5MjFDMDYwHhcNMjUwODIyMjIwMDI0WhcNMjUwODI5MjIwMDI0WjAYMRYwFAYD VQQDEw02OGE4ZTg3OC02NTM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv9tJXOXssRKrjDEFBSc/DVU5r56Mjv+nVdVNxO1xwvFp4FgssDjAjCEeo+iK 0ParE9kaaPwNAYQYrzkA6IAD9z5XnZV+x+Em1Ia5u/Vrn2/jUnjXMcwX3FjAGy4L POCsbJ2c0hO//KBaxuUu5ArJ+GverO31zPjEIpFYIomr27+EW/JPWDgeJoW8U1Wn 0UgTWoNnRGWWSj+cYlIGkY7rXkDLW0V3hoLhswkphvYPEuE2d4xux0TpKh1IlVsm inbrvmlcE+sITeQA2sSlgwcekNDxQaT31C9KrC4eETchppiXx/GvBax6Ygj9+Bv4 xVaUIDPleerENhcUI3+QoiH+IwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLtdOELb 7N9XzyQm6phq4Ja1k5JIMB8GA1UdIwQYMBaAFPrZuTd30M66K7emt41Qf3eQkhwG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTdGMi8yMzM1MDRBNDRG Q0MxMUVCOURCRTdGNURDNEY5QUUwMi8tdG01TjNmUXpyb3J0NmEzalZCX2Q1Q1NI QVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy10bTVOM2ZRenJvcnQ2YTNqVkJfZDVDU0hBWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTdGMi8yMzM1MDRBNDRGQ0MxMUVCOURCRTdGNURDNEY5QUUwMi8tdG01TjNmUXpy b3J0NmEzalZCX2Q1Q1NIQVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7+YtXnjOgd8mhXNWDy6K65IZiu8ZOg4vdQhUPnRoAEbnNaBvbPbI9 5MNDoki6eZJzvympXK034wURKvomqgjd26hbx16KABuQoLvMdkBBuPUcPn0yMh58 JIUekZlYmfXYD9xt2zc7pzji6oITq/A0+ztNoma5k+woOcJL7fuElZ1erCB10LJF 5YlwKNEjWONTocJ/qrfDR1/KGaWqMb4ajpMxWaajaoMOo6Bhgak9SDb/Mxk1JXpF pyc7l/IvEWciuulHHQ1PORn05sAaG2BINKTNz2AmcWDEt0qI41lnErSQcLRNeZjL 5QycFzem8aKX+93klrMS5pO6Gy8R30kS -----END CERTIFICATE-----Generated at Sat Aug 23 17:55:53 2025 by rpki-client