$ rpki-client -vvf rpki.apnic.net/member_repository/A91827C5/D9AAB82C8AD911EF981C8283C4F9AE02/o5hxRib4es6-X2_QHlBwGRWqfRU.mft File: o5hxRib4es6-X2_QHlBwGRWqfRU.mft (raw, json) Hash identifier: 5Kjlc8foGmaun9qoA1HztBy6NwClcF2Rcgxw9i1FvkQ= Subject key identifier: 6D:F5:08:81:0A:AE:06:4F:82:A8:48:E9:93:EC:75:3C:4B:C4:45:4A Authority key identifier: A3:98:71:46:26:F8:7A:CE:BE:5F:6F:D0:1E:50:70:19:15:AA:7D:15 Certificate issuer: /CN=A91827C5/serialNumber=A398714626F87ACEBE5F6FD01E50701915AA7D15 Certificate serial: A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5hxRib4es6-X2_QHlBwGRWqfRU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91827C5/D9AAB82C8AD911EF981C8283C4F9AE02/o5hxRib4es6-X2_QHlBwGRWqfRU.mft Manifest number: A0 Signing time: Sat 23 Aug 2025 06:28:59 +0000 Manifest this update: Sat 23 Aug 2025 06:28:58 +0000 Manifest next update: Sat 30 Aug 2025 06:28:58 +0000 Files and hashes: 1: o5hxRib4es6-X2_QHlBwGRWqfRU.crl (hash: c1VXEg2etMauEnHGCT9pXWcQow3MnwJrPnsn6HEC0Rc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91827C5/D9AAB82C8AD911EF981C8283C4F9AE02/o5hxRib4es6-X2_QHlBwGRWqfRU.crl rsync://rpki.apnic.net/member_repository/A91827C5/D9AAB82C8AD911EF981C8283C4F9AE02/o5hxRib4es6-X2_QHlBwGRWqfRU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5hxRib4es6-X2_QHlBwGRWqfRU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:28:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 160 (0xa0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91827C5, serialNumber=A398714626F87ACEBE5F6FD01E50701915AA7D15 Validity Not Before: Aug 23 06:28:58 2025 GMT Not After : Aug 30 06:28:58 2025 GMT Subject: CN=68a95fab-9d20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:43:e3:bc:1f:af:c8:1c:81:a4:af:42:3b:ff: 82:50:e1:d9:da:49:16:6c:e0:d4:69:20:ed:32:76: 48:a1:c3:e1:b5:d1:45:4d:8d:7c:0d:c2:3c:b0:bb: 42:b6:ed:93:57:7a:1c:4c:3c:44:b6:2b:59:03:af: 4e:f3:2a:8b:3a:a0:b8:63:33:70:de:d2:71:90:ff: d5:34:6f:cf:e8:1c:77:5e:51:03:10:d7:03:c1:f4: 00:6d:4d:7b:18:7f:3b:39:0d:1d:35:f3:23:84:77: ab:89:82:4a:d4:db:26:8b:cc:bb:73:07:a3:04:b6: db:8c:0c:49:d9:6c:73:03:b4:ec:b6:14:7b:61:68: 07:38:f7:b4:a7:39:6e:10:0b:70:10:c0:2a:d6:53: 9b:f4:c4:f3:65:6d:da:3c:47:da:42:a1:05:08:7f: 17:2e:cc:73:7c:27:99:58:5f:03:49:5a:e7:c1:04: 43:df:5b:26:ec:f2:c4:44:b4:17:4c:f5:67:60:5d: 30:ef:93:9a:7d:e1:71:b8:39:eb:ee:56:df:d4:58: 14:3a:96:74:e0:3f:71:5d:4b:a4:52:ce:84:a5:89: 16:ce:67:99:f1:0f:76:c8:ee:0b:8b:57:7e:d3:7f: 93:5f:c6:05:2d:1e:50:4d:70:10:45:84:58:d7:7f: 67:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:F5:08:81:0A:AE:06:4F:82:A8:48:E9:93:EC:75:3C:4B:C4:45:4A X509v3 Authority Key Identifier: keyid:A3:98:71:46:26:F8:7A:CE:BE:5F:6F:D0:1E:50:70:19:15:AA:7D:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91827C5/D9AAB82C8AD911EF981C8283C4F9AE02/o5hxRib4es6-X2_QHlBwGRWqfRU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5hxRib4es6-X2_QHlBwGRWqfRU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91827C5/D9AAB82C8AD911EF981C8283C4F9AE02/o5hxRib4es6-X2_QHlBwGRWqfRU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:bb:4f:11:af:0c:a8:a1:0f:36:4c:21:4a:f0:12:06:37:33: 16:f7:1c:44:2b:11:99:84:6e:23:c5:f1:0d:bc:85:53:1c:60: 49:65:07:d9:5e:94:bc:46:70:09:40:43:7e:aa:37:8e:57:20: 7b:4a:e7:7c:24:36:4b:73:c9:2d:c1:44:b0:a0:b8:56:4b:92: d0:a1:e0:ec:f4:0f:db:af:cb:2e:a3:2d:48:c0:d5:3e:31:bd: 22:43:26:0c:f0:a7:dd:62:5b:86:04:6f:a2:cb:a3:d6:e3:33: 42:c0:58:4e:b8:e0:51:a6:88:2b:b7:f8:28:2c:ba:ae:ec:00: 4d:4a:93:10:0d:07:b6:fb:84:1a:28:fb:c9:eb:3d:55:f5:b0: 74:ae:4e:3b:fe:0e:e8:c6:f7:6e:bc:48:a7:ae:1f:58:3d:ec: 6a:53:52:4a:ba:19:04:e6:b7:c3:e2:a6:8c:36:f2:b8:66:62: 8c:59:9b:22:c5:1e:3a:cb:f7:71:76:d8:0c:60:1c:0e:70:d6: cf:1b:c2:b1:3a:b1:d1:56:f5:ba:1f:fd:72:f1:b9:b3:9e:76: ff:2c:0e:7e:93:db:c0:c2:8f:1d:6a:ba:02:c0:5c:d3:3a:87: ff:f0:7b:68:34:b5:52:aa:d5:2c:02:ae:bd:ea:67:63:f0:72: 42:db:c8:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODI3QzUxMTAvBgNVBAUTKEEzOTg3MTQ2MjZGODdBQ0VCRTVGNkZEMDFFNTA3MDE5 MTVBQTdEMTUwHhcNMjUwODIzMDYyODU4WhcNMjUwODMwMDYyODU4WjAYMRYwFAYD VQQDEw02OGE5NWZhYi05ZDIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlkPjvB+vyByBpK9CO/+CUOHZ2kkWbODUaSDtMnZIocPhtdFFTY18DcI8sLtC tu2TV3ocTDxEtitZA69O8yqLOqC4YzNw3tJxkP/VNG/P6Bx3XlEDENcDwfQAbU17 GH87OQ0dNfMjhHeriYJK1Nsmi8y7cwejBLbbjAxJ2WxzA7TsthR7YWgHOPe0pzlu EAtwEMAq1lOb9MTzZW3aPEfaQqEFCH8XLsxzfCeZWF8DSVrnwQRD31sm7PLERLQX TPVnYF0w75OafeFxuDnr7lbf1FgUOpZ04D9xXUukUs6EpYkWzmeZ8Q92yO4Li1d+ 03+TX8YFLR5QTXAQRYRY139nzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG31CIEK rgZPgqhI6ZPsdTxLxEVKMB8GA1UdIwQYMBaAFKOYcUYm+HrOvl9v0B5QcBkVqn0V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjdDNS9EOUFBQjgyQzhB RDkxMUVGOTgxQzgyODNDNEY5QUUwMi9vNWh4UmliNGVzNi1YMl9RSGxCd0dSV3Fm UlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL281aHhSaWI0ZXM2LVgyX1FIbEJ3R1JXcWZSVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjdDNS9EOUFBQjgyQzhBRDkxMUVGOTgxQzgyODNDNEY5QUUwMi9vNWh4UmliNGVz Ni1YMl9RSGxCd0dSV3FmUlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASu08RrwyooQ82TCFK8BIGNzMW9xxEKxGZhG4jxfENvIVTHGBJZQfZ XpS8RnAJQEN+qjeOVyB7Sud8JDZLc8ktwUSwoLhWS5LQoeDs9A/br8suoy1IwNU+ Mb0iQyYM8KfdYluGBG+iy6PW4zNCwFhOuOBRpogrt/goLLqu7ABNSpMQDQe2+4Qa KPvJ6z1V9bB0rk47/g7oxvduvEinrh9YPexqU1JKuhkE5rfD4qaMNvK4ZmKMWZsi xR46y/dxdtgMYBwOcNbPG8KxOrHRVvW6H/1y8bmznnb/LA5+k9vAwo8daroCwFzT Oof/8HtoNLVSqtUsAq696mdj8HJC28i/ -----END CERTIFICATE-----Generated at Sun Aug 24 03:08:36 2025 by rpki-client