$ rpki-client -vvf rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft File: 5S3osZGTOKPiVWZOiASKVpihINA.mft (raw, json) Hash identifier: 4sJlM6kLKlGD7fIz4CyMaMaCPNK0q0hP5PPK/Xl3JR0= Subject key identifier: 68:D9:CA:9C:48:7D:26:A9:18:50:B1:76:87:9B:7B:CC:05:96:09:EA Authority key identifier: E5:2D:E8:B1:91:93:38:A3:E2:55:66:4E:88:04:8A:56:98:A1:20:D0 Certificate issuer: /CN=A9160701/serialNumber=E52DE8B1919338A3E255664E88048A5698A120D0 Certificate serial: 0B9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S3osZGTOKPiVWZOiASKVpihINA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft Manifest number: 0B95 Signing time: Fri 22 Aug 2025 19:07:16 +0000 Manifest this update: Fri 22 Aug 2025 19:07:15 +0000 Manifest next update: Fri 29 Aug 2025 19:07:15 +0000 Files and hashes: 1: 5S3osZGTOKPiVWZOiASKVpihINA.crl (hash: JaaNL7JnYAG2uZxhi14ek6IWdcPFNcvHxZlvdkp/iA8=) 2: 6DCC06C231BC11EA9AACCA4BC4F9AE02.roa (hash: 3rmLILbAM/KMJx9b9ZtmiW/UU8JiAcyOhmtpDcFmRPg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.crl rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S3osZGTOKPiVWZOiASKVpihINA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:07:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2975 (0xb9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160701, serialNumber=E52DE8B1919338A3E255664E88048A5698A120D0 Validity Not Before: Aug 22 19:07:15 2025 GMT Not After : Aug 29 19:07:15 2025 GMT Subject: CN=68a8bfe3-0d61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:43:0d:e4:ad:65:ab:a0:eb:27:a4:51:16:e3: 62:84:78:ed:9a:4b:1f:ae:c2:90:a7:14:5c:4a:88: 17:eb:65:37:13:2a:1e:2c:c9:f9:c9:bd:3d:c5:7d: d5:e2:7d:f6:3e:e9:d1:dc:bd:89:d2:7e:fa:70:9e: aa:30:ea:74:5c:e4:da:73:35:f8:21:60:e4:1d:14: 16:05:00:96:c0:0b:d9:a2:fd:8f:fa:56:f7:4d:60: 5c:be:55:e9:04:af:c3:ee:ed:3f:86:3d:56:cb:f1: 6d:76:7a:aa:03:75:60:d5:95:68:f3:88:c4:34:3d: 19:b5:03:00:27:9c:80:06:46:ff:ae:ad:21:fe:d0: e7:89:ad:9f:93:a4:e4:32:d3:80:96:30:38:83:b4: 35:16:a9:a7:21:46:c7:8d:f8:f3:88:e5:3a:c8:0a: 40:d0:00:1f:ba:36:c0:81:7e:49:f9:67:e2:a3:1b: bb:25:d0:b9:f0:75:ae:fe:7f:0e:a5:21:5b:10:1f: 93:47:0b:bb:3d:b8:ab:c3:35:9d:24:83:0a:48:95: a7:fb:b8:9e:cb:62:0b:55:c7:e1:ba:85:59:ff:23: f9:eb:41:95:c6:80:d5:7d:a5:2d:8d:47:e3:8d:2c: 4c:f4:09:27:77:4f:98:8a:5f:a0:53:42:24:21:a4: 7a:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:D9:CA:9C:48:7D:26:A9:18:50:B1:76:87:9B:7B:CC:05:96:09:EA X509v3 Authority Key Identifier: keyid:E5:2D:E8:B1:91:93:38:A3:E2:55:66:4E:88:04:8A:56:98:A1:20:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S3osZGTOKPiVWZOiASKVpihINA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:32:bb:cd:5e:95:54:52:4e:38:c2:3b:9b:f2:ea:0a:08:86: 84:91:f4:d9:4b:ce:02:db:a7:23:0a:54:58:5c:1b:ed:00:6a: ba:b1:95:be:fc:2a:75:9f:c7:6f:e5:31:d9:7d:42:7d:9f:ac: 2c:59:4d:3b:6c:d7:84:8e:c6:ea:fb:e8:a5:e5:19:3d:74:2d: 74:00:c5:62:47:13:b0:e3:3d:42:fd:28:7d:62:e3:49:a1:d3: 22:77:08:d1:8a:d6:5e:93:c4:b8:c9:bc:c3:40:a3:a3:11:19: 1b:b6:6d:a7:a9:2f:ad:ee:f2:3c:bf:3e:7d:b2:c1:46:22:18: e9:49:ad:b3:e1:b2:68:87:77:d0:f3:70:f2:a4:75:87:1c:48: a7:09:69:e1:41:6b:f5:30:43:3a:bd:21:56:6f:71:e0:56:0a: fa:50:e3:5a:76:a9:0a:4a:00:7b:1a:f3:be:6d:7e:1f:50:3a: b5:82:6d:af:c2:b7:21:fd:f3:ca:6b:e0:8f:e1:c0:48:84:35: d1:80:6a:4e:c6:da:a1:ea:df:c5:b5:20:25:91:3b:8a:b7:f9: ea:76:ab:f3:fc:f0:cc:de:59:97:ca:1b:d4:a6:f9:8f:60:b1: 1a:fb:33:2e:93:5f:08:ad:ce:b3:cd:8d:1d:24:b0:66:32:71: d0:89:b9:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC58wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA3MDExMTAvBgNVBAUTKEU1MkRFOEIxOTE5MzM4QTNFMjU1NjY0RTg4MDQ4QTU2 OThBMTIwRDAwHhcNMjUwODIyMTkwNzE1WhcNMjUwODI5MTkwNzE1WjAYMRYwFAYD VQQDEw02OGE4YmZlMy0wZDYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAukMN5K1lq6DrJ6RRFuNihHjtmksfrsKQpxRcSogX62U3EyoeLMn5yb09xX3V 4n32PunR3L2J0n76cJ6qMOp0XOTaczX4IWDkHRQWBQCWwAvZov2P+lb3TWBcvlXp BK/D7u0/hj1Wy/FtdnqqA3Vg1ZVo84jEND0ZtQMAJ5yABkb/rq0h/tDnia2fk6Tk MtOAljA4g7Q1FqmnIUbHjfjziOU6yApA0AAfujbAgX5J+Wfioxu7JdC58HWu/n8O pSFbEB+TRwu7PbirwzWdJIMKSJWn+7iey2ILVcfhuoVZ/yP560GVxoDVfaUtjUfj jSxM9Aknd0+Yil+gU0IkIaR6UwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGjZypxI fSapGFCxdoebe8wFlgnqMB8GA1UdIwQYMBaAFOUt6LGRkzij4lVmTogEilaYoSDQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDcwMS81NDAwQzQxODMw MzAxMUVBQTcyRjM2N0FDNEY5QUUwMi81UzNvc1pHVE9LUGlWV1pPaUFTS1ZwaWhJ TkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVTM29zWkdUT0tQaVZXWk9pQVNLVnBpaElOQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDcwMS81NDAwQzQxODMwMzAxMUVBQTcyRjM2N0FDNEY5QUUwMi81UzNvc1pHVE9L UGlWV1pPaUFTS1ZwaWhJTkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+MrvNXpVUUk44wjub8uoKCIaEkfTZS84C26cjClRYXBvtAGq6sZW+ /Cp1n8dv5THZfUJ9n6wsWU07bNeEjsbq++il5Rk9dC10AMViRxOw4z1C/Sh9YuNJ odMidwjRitZek8S4ybzDQKOjERkbtm2nqS+t7vI8vz59ssFGIhjpSa2z4bJoh3fQ 83DypHWHHEinCWnhQWv1MEM6vSFWb3HgVgr6UONadqkKSgB7GvO+bX4fUDq1gm2v wrch/fPKa+CP4cBIhDXRgGpOxtqh6t/FtSAlkTuKt/nqdqvz/PDM3lmXyhvUpvmP YLEa+zMuk18Irc6zzY0dJLBmMnHQiblG -----END CERTIFICATE-----Generated at Sat Aug 23 17:55:13 2025 by rpki-client