$ rpki-client -vvf rpki.apnic.net/member_repository/A91867F1/809D715C591A11EA9692AA3CC4F9AE02/s5MbVo8uudLtLKTWS-vAhvuduJo.mft File: s5MbVo8uudLtLKTWS-vAhvuduJo.mft (raw, json) Hash identifier: 09ebzUDT0ql40BrJlYZunH2tq8ZwU+tlMyMqV83U9qI= Subject key identifier: 52:25:F6:C6:66:F9:D4:66:3C:9B:6D:06:04:7F:7A:B5:1C:7F:94:1E Authority key identifier: B3:93:1B:56:8F:2E:B9:D2:ED:2C:A4:D6:4B:EB:C0:86:FB:9D:B8:9A Certificate issuer: /CN=A91867F1/serialNumber=B3931B568F2EB9D2ED2CA4D64BEBC086FB9DB89A Certificate serial: 0AC2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5MbVo8uudLtLKTWS-vAhvuduJo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91867F1/809D715C591A11EA9692AA3CC4F9AE02/s5MbVo8uudLtLKTWS-vAhvuduJo.mft Manifest number: 0ABB Signing time: Fri 22 Aug 2025 19:37:53 +0000 Manifest this update: Fri 22 Aug 2025 19:37:53 +0000 Manifest next update: Fri 29 Aug 2025 19:37:53 +0000 Files and hashes: 1: s5MbVo8uudLtLKTWS-vAhvuduJo.crl (hash: sp5rypsE8Q3EI/JV+wDwvaQtxcCzy9YHmXE+8mI4vbo=) 2: 6FEF33E05C2B11EAAE63403FC4F9AE02.roa (hash: OjmKjbirK1HOaPuAuxNpB1VjEustiEgzLqIxeeZ+0sM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91867F1/809D715C591A11EA9692AA3CC4F9AE02/s5MbVo8uudLtLKTWS-vAhvuduJo.crl rsync://rpki.apnic.net/member_repository/A91867F1/809D715C591A11EA9692AA3CC4F9AE02/s5MbVo8uudLtLKTWS-vAhvuduJo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5MbVo8uudLtLKTWS-vAhvuduJo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:37:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2754 (0xac2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91867F1, serialNumber=B3931B568F2EB9D2ED2CA4D64BEBC086FB9DB89A Validity Not Before: Aug 22 19:37:53 2025 GMT Not After : Aug 29 19:37:53 2025 GMT Subject: CN=68a8c711-823c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:f4:c8:64:2d:08:62:23:6f:18:79:88:1b:bc: ec:2a:96:4b:e2:b5:68:e1:13:89:94:07:b6:65:84: e0:82:7f:6a:cd:2b:a4:8e:b6:3e:55:03:68:f6:d6: bb:76:23:17:b2:c4:23:30:53:f0:be:60:2c:8f:db: 78:aa:d1:d8:40:50:f9:63:a8:92:8b:34:dc:87:df: 34:37:dc:38:62:0b:99:30:5d:d7:bf:96:2b:23:06: 76:57:e4:06:a1:c5:ff:6f:44:0a:e8:4b:1e:73:b2: d4:b8:b0:34:38:92:9b:f4:5d:10:8a:fc:2a:8f:28: f8:5b:ce:18:fe:05:14:36:a2:8b:a6:f9:c8:e0:c8: be:99:80:d9:bf:f2:3a:2c:a1:4d:e6:52:f8:8e:b0: dd:22:b5:0c:63:74:d6:ce:b2:9b:c2:70:13:02:33: 42:60:02:d0:75:ca:4a:6d:90:35:94:24:d7:ac:59: df:61:05:69:58:b8:11:bb:a4:c5:5c:3f:a7:46:15: fc:7a:cf:4f:1a:b0:be:2b:25:6a:db:67:13:52:3b: 17:e1:a8:04:cc:e1:a9:07:9b:d4:aa:53:06:38:2e: 36:80:df:fe:b5:d0:ff:46:00:e4:fd:6d:cf:e0:30: b4:9f:93:91:3a:7d:93:77:4a:0d:87:54:ef:0e:83: d1:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:25:F6:C6:66:F9:D4:66:3C:9B:6D:06:04:7F:7A:B5:1C:7F:94:1E X509v3 Authority Key Identifier: keyid:B3:93:1B:56:8F:2E:B9:D2:ED:2C:A4:D6:4B:EB:C0:86:FB:9D:B8:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91867F1/809D715C591A11EA9692AA3CC4F9AE02/s5MbVo8uudLtLKTWS-vAhvuduJo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5MbVo8uudLtLKTWS-vAhvuduJo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91867F1/809D715C591A11EA9692AA3CC4F9AE02/s5MbVo8uudLtLKTWS-vAhvuduJo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:42:20:3a:22:73:41:41:85:f2:31:49:7d:3f:86:c9:72:95: c7:47:21:37:af:ea:3c:1b:65:32:9b:a9:03:aa:99:01:c6:c3: 7b:f8:12:61:3e:f6:3c:a9:52:8a:ff:77:13:e0:70:f6:72:8a: be:4b:a4:77:bf:0c:0e:dc:9e:d1:50:2b:b9:ed:a4:6a:d2:9a: 3a:e9:2c:34:53:c3:f8:e6:4d:49:38:dd:9a:4a:95:8c:a6:e4: 6c:04:86:f2:31:b2:c2:0b:fe:6d:ef:06:aa:08:b1:8b:98:79: a4:b0:e1:28:fb:54:0a:b3:56:2a:42:84:43:5c:31:ed:0d:b4: 62:29:31:72:32:d1:73:f7:59:0d:34:e2:4d:8a:40:f0:74:5e: c9:af:c8:79:50:b3:86:70:7f:dc:a1:ec:94:75:51:e4:30:1d: 8b:d0:53:52:26:d4:1f:25:0e:2e:cd:0c:ca:94:13:45:e4:33: 7c:34:13:3a:5b:31:f0:7b:00:25:1c:3c:40:18:0f:de:ec:88: 83:d6:b7:43:b7:22:bd:27:49:bc:62:e0:06:98:2e:75:d7:68: 3f:b2:f9:79:fa:98:22:41:a5:1d:f8:55:82:f4:1a:4a:c2:fc: 7f:bf:29:d4:50:fd:b1:28:2b:a3:95:ce:ee:4b:7d:55:7b:01: 2b:28:23:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCsIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY3RjExMTAvBgNVBAUTKEIzOTMxQjU2OEYyRUI5RDJFRDJDQTRENjRCRUJDMDg2 RkI5REI4OUEwHhcNMjUwODIyMTkzNzUzWhcNMjUwODI5MTkzNzUzWjAYMRYwFAYD VQQDEw02OGE4YzcxMS04MjNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3vTIZC0IYiNvGHmIG7zsKpZL4rVo4ROJlAe2ZYTggn9qzSukjrY+VQNo9ta7 diMXssQjMFPwvmAsj9t4qtHYQFD5Y6iSizTch980N9w4YguZMF3Xv5YrIwZ2V+QG ocX/b0QK6Esec7LUuLA0OJKb9F0Qivwqjyj4W84Y/gUUNqKLpvnI4Mi+mYDZv/I6 LKFN5lL4jrDdIrUMY3TWzrKbwnATAjNCYALQdcpKbZA1lCTXrFnfYQVpWLgRu6TF XD+nRhX8es9PGrC+KyVq22cTUjsX4agEzOGpB5vUqlMGOC42gN/+tdD/RgDk/W3P 4DC0n5OROn2Td0oNh1TvDoPR+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFIl9sZm +dRmPJttBgR/erUcf5QeMB8GA1UdIwQYMBaAFLOTG1aPLrnS7Syk1kvrwIb7nbia MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjdGMS84MDlENzE1QzU5 MUExMUVBOTY5MkFBM0NDNEY5QUUwMi9zNU1iVm84dXVkTHRMS1RXUy12QWh2dWR1 Sm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M1TWJWbzh1dWRMdExLVFdTLXZBaHZ1ZHVKby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjdGMS84MDlENzE1QzU5MUExMUVBOTY5MkFBM0NDNEY5QUUwMi9zNU1iVm84dXVk THRMS1RXUy12QWh2dWR1Sm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsQiA6InNBQYXyMUl9P4bJcpXHRyE3r+o8G2Uym6kDqpkBxsN7+BJh PvY8qVKK/3cT4HD2coq+S6R3vwwO3J7RUCu57aRq0po66Sw0U8P45k1JON2aSpWM puRsBIbyMbLCC/5t7waqCLGLmHmksOEo+1QKs1YqQoRDXDHtDbRiKTFyMtFz91kN NOJNikDwdF7Jr8h5ULOGcH/coeyUdVHkMB2L0FNSJtQfJQ4uzQzKlBNF5DN8NBM6 WzHwewAlHDxAGA/e7IiD1rdDtyK9J0m8YuAGmC5112g/svl5+pgiQaUd+FWC9BpK wvx/vynUUP2xKCujlc7uS31VewErKCOx -----END CERTIFICATE-----Generated at Sat Aug 23 19:34:09 2025 by rpki-client