$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/5rVNAnzjSYvzXk0GW8R4qTbBYWk.mft File: 5rVNAnzjSYvzXk0GW8R4qTbBYWk.mft (raw, json) Hash identifier: Nr8MQ+F8BYFrKTtmhqfWF66Gu1BUUK/ms0U0g7Bymw8= Subject key identifier: 53:18:80:B4:CF:C9:D4:1C:6A:FE:7A:E5:B1:BF:B5:D7:4C:9A:C1:59 Authority key identifier: E6:B5:4D:02:7C:E3:49:8B:F3:5E:4D:06:5B:C4:78:A9:36:C1:61:69 Certificate issuer: /CN=A9170DD8/serialNumber=E6B54D027CE3498BF35E4D065BC478A936C16169 Certificate serial: BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5rVNAnzjSYvzXk0GW8R4qTbBYWk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/5rVNAnzjSYvzXk0GW8R4qTbBYWk.mft Manifest number: BB Signing time: Sat 23 Aug 2025 06:09:20 +0000 Manifest this update: Sat 23 Aug 2025 06:09:20 +0000 Manifest next update: Sat 30 Aug 2025 06:09:20 +0000 Files and hashes: 1: 5rVNAnzjSYvzXk0GW8R4qTbBYWk.crl (hash: LqsnlM3tfToG5FeIRPqBIR3obtOU+IjDsSK6qzYtoVg=) 2: 4D06CD2C667411EF8E723587C4F9AE02.roa (hash: 4PdtbIsL2ZotyQ7lOujn962oNOjC34OWUPtAk2nb5/I=) 3: 4CA4BE8E667411EF8E723587C4F9AE02.roa (hash: 8qwHnAzkWpQMSqbxW4gRTYW6uWniUVjWaHfJJJJlxJ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/5rVNAnzjSYvzXk0GW8R4qTbBYWk.crl rsync://rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/5rVNAnzjSYvzXk0GW8R4qTbBYWk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5rVNAnzjSYvzXk0GW8R4qTbBYWk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:09:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 191 (0xbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170DD8, serialNumber=E6B54D027CE3498BF35E4D065BC478A936C16169 Validity Not Before: Aug 23 06:09:20 2025 GMT Not After : Aug 30 06:09:20 2025 GMT Subject: CN=68a95b10-2a64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:3d:51:2c:30:d0:44:cb:9b:f6:36:6d:df:74: 84:67:8b:69:cd:46:9a:02:10:58:99:31:fe:f4:7e: 0b:af:f7:f4:21:c2:6f:c3:b1:00:eb:29:9e:6b:1d: 23:b3:01:f5:d5:02:0a:24:c2:1a:bf:69:10:6e:16: f7:57:af:a9:7e:43:44:d4:a9:14:29:1d:2d:3e:d5: 35:0d:18:80:b0:f8:79:5f:05:27:55:e3:d9:81:48: e8:00:a6:0c:67:df:4d:7d:0d:bd:d1:f5:cd:94:58: cd:3a:cd:78:9a:89:f4:63:79:d0:c7:06:19:aa:47: af:0a:39:54:f2:9a:1f:5c:5d:80:be:7f:b3:34:74: 2d:c8:b8:78:90:35:46:34:67:83:ff:3f:b2:de:35: c8:5d:e2:98:0f:dc:52:72:80:b0:7f:c3:ad:f8:cf: d3:21:f1:49:8f:c3:02:20:67:be:19:b8:06:68:0d: ac:d7:c8:42:a2:20:34:11:ce:53:95:68:4f:1b:24: 64:6a:2e:21:67:a5:ed:cc:b1:f8:66:4d:bf:e6:d6: 7f:ba:37:ef:a7:ce:6c:32:0b:f2:5e:52:e9:01:cf: e2:b1:73:b7:a9:d7:a9:88:b8:13:6e:5c:71:28:7f: be:49:e7:ee:ec:3a:3e:6a:e3:f5:c5:91:79:ad:53: 36:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:18:80:B4:CF:C9:D4:1C:6A:FE:7A:E5:B1:BF:B5:D7:4C:9A:C1:59 X509v3 Authority Key Identifier: keyid:E6:B5:4D:02:7C:E3:49:8B:F3:5E:4D:06:5B:C4:78:A9:36:C1:61:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/5rVNAnzjSYvzXk0GW8R4qTbBYWk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5rVNAnzjSYvzXk0GW8R4qTbBYWk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/5rVNAnzjSYvzXk0GW8R4qTbBYWk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:1e:fb:13:c6:3e:a8:1e:fc:61:32:2b:99:30:c9:ee:7a:f4: 5a:f5:40:94:fa:84:0c:1d:5b:bf:58:38:78:69:60:ea:3f:62: a0:3f:23:0e:b4:2e:60:d1:9c:4d:05:4a:e0:9f:b8:93:f7:7d: 7c:cd:13:96:27:ec:1c:45:65:af:17:92:0b:c1:8e:14:21:a2: 30:53:12:b4:8e:e2:13:d5:98:db:5a:93:e0:12:2a:68:bf:92: 9e:74:a6:b9:8f:79:e1:ad:c9:6f:b7:01:ba:4e:05:cc:60:80: 61:be:aa:88:b9:a5:eb:6c:bd:de:01:a7:5e:7b:c1:35:52:3e: b3:d6:7f:ce:9f:8b:72:27:19:5a:b1:63:c1:4a:92:8b:ee:bf: bc:33:ac:6b:94:6e:8c:76:a8:a7:80:7e:58:4b:d4:f5:dc:5c: 6a:da:54:49:af:61:bf:58:62:ac:85:99:a4:32:f0:4c:a8:b5: 62:cd:a1:9b:84:8b:a5:3d:73:87:00:49:ca:ae:13:10:0d:b2: 00:98:8e:cf:83:50:13:fe:ed:d5:f0:64:45:35:bb:d8:8f:25: 59:c2:aa:c7:f0:26:c2:6d:fc:21:36:7d:a5:46:1b:e5:5c:6b: b2:d5:02:ab:03:55:86:a3:98:af:d4:a2:11:d6:73:08:73:57: 34:25:12:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBERDgxMTAvBgNVBAUTKEU2QjU0RDAyN0NFMzQ5OEJGMzVFNEQwNjVCQzQ3OEE5 MzZDMTYxNjkwHhcNMjUwODIzMDYwOTIwWhcNMjUwODMwMDYwOTIwWjAYMRYwFAYD VQQDEw02OGE5NWIxMC0yYTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxz1RLDDQRMub9jZt33SEZ4tpzUaaAhBYmTH+9H4Lr/f0IcJvw7EA6ymeax0j swH11QIKJMIav2kQbhb3V6+pfkNE1KkUKR0tPtU1DRiAsPh5XwUnVePZgUjoAKYM Z99NfQ290fXNlFjNOs14mon0Y3nQxwYZqkevCjlU8pofXF2Avn+zNHQtyLh4kDVG NGeD/z+y3jXIXeKYD9xScoCwf8Ot+M/TIfFJj8MCIGe+GbgGaA2s18hCoiA0Ec5T lWhPGyRkai4hZ6XtzLH4Zk2/5tZ/ujfvp85sMgvyXlLpAc/isXO3qdepiLgTblxx KH++Sefu7Do+auP1xZF5rVM2HQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFMYgLTP ydQcav565bG/tddMmsFZMB8GA1UdIwQYMBaAFOa1TQJ840mL815NBlvEeKk2wWFp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEREOC9BNjZBNzVFRTY1 QkIxMUVGQUZBMzJGODJDNEY5QUUwMi81clZOQW56alNZdnpYazBHVzhSNHFUYkJZ V2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVyVk5BbnpqU1l2elhrMEdXOFI0cVRiQllXay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEREOC9BNjZBNzVFRTY1QkIxMUVGQUZBMzJGODJDNEY5QUUwMi81clZOQW56alNZ dnpYazBHVzhSNHFUYkJZV2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1HvsTxj6oHvxhMiuZMMnuevRa9UCU+oQMHVu/WDh4aWDqP2KgPyMO tC5g0ZxNBUrgn7iT9318zROWJ+wcRWWvF5ILwY4UIaIwUxK0juIT1ZjbWpPgEipo v5KedKa5j3nhrclvtwG6TgXMYIBhvqqIuaXrbL3eAadee8E1Uj6z1n/On4tyJxla sWPBSpKL7r+8M6xrlG6MdqingH5YS9T13Fxq2lRJr2G/WGKshZmkMvBMqLVizaGb hIulPXOHAEnKrhMQDbIAmI7Pg1AT/u3V8GRFNbvYjyVZwqrH8CbCbfwhNn2lRhvl XGuy1QKrA1WGo5iv1KIR1nMIc1c0JRJ4 -----END CERTIFICATE-----Generated at Sun Aug 24 09:04:27 2025 by rpki-client