$ rpki-client -vvf rpki.apnic.net/member_repository/A918F646/CECE8C9AF48E11E8B14A341EC4F9AE02/C5sr_BxrLAlndq91fTrxRUfkPnI.mft File: C5sr_BxrLAlndq91fTrxRUfkPnI.mft (raw, json) Hash identifier: 8vZ3Hcn98pQiBXDxieS7MIHk6DrrihJy41YJrxF4H5E= Subject key identifier: 23:25:3D:4C:AA:F9:76:50:58:28:52:2A:6F:11:6E:B5:C2:48:72:C9 Authority key identifier: 0B:9B:2B:FC:1C:6B:2C:09:67:76:AF:75:7D:3A:F1:45:47:E4:3E:72 Certificate issuer: /CN=A918F646/serialNumber=0B9B2BFC1C6B2C096776AF757D3AF14547E43E72 Certificate serial: 11F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/C5sr_BxrLAlndq91fTrxRUfkPnI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F646/CECE8C9AF48E11E8B14A341EC4F9AE02/C5sr_BxrLAlndq91fTrxRUfkPnI.mft Manifest number: 11E4 Signing time: Fri 22 Aug 2025 17:18:15 +0000 Manifest this update: Fri 22 Aug 2025 17:18:14 +0000 Manifest next update: Fri 29 Aug 2025 17:18:14 +0000 Files and hashes: 1: C5sr_BxrLAlndq91fTrxRUfkPnI.crl (hash: me/xqbIyl2Mvs6COZyO3Rvem8ZRptWGBwu33E8pAD5k=) 2: 60FCDED2F48F11E89651151FC4F9AE02.roa (hash: TiqURCOWDtFV1lphAi7QXXgszXNq/kYQUGQ1WC3OpiM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F646/CECE8C9AF48E11E8B14A341EC4F9AE02/C5sr_BxrLAlndq91fTrxRUfkPnI.crl rsync://rpki.apnic.net/member_repository/A918F646/CECE8C9AF48E11E8B14A341EC4F9AE02/C5sr_BxrLAlndq91fTrxRUfkPnI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/C5sr_BxrLAlndq91fTrxRUfkPnI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:18:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4601 (0x11f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F646, serialNumber=0B9B2BFC1C6B2C096776AF757D3AF14547E43E72 Validity Not Before: Aug 22 17:18:14 2025 GMT Not After : Aug 29 17:18:14 2025 GMT Subject: CN=68a8a656-5ba7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:84:a2:ea:8f:81:42:aa:04:7e:b7:f9:3b:73: 15:0a:95:8e:25:ee:8c:bd:f4:38:70:58:72:d5:77: fb:a8:bb:2f:8a:40:7d:7c:49:e8:0c:08:b2:87:db: f3:52:6d:b9:c5:c1:5e:bc:a4:e0:ce:19:ee:66:7c: 16:31:97:5b:50:a3:64:39:25:9d:b1:9f:97:19:1d: 95:ab:8f:d9:9d:a7:4f:fc:06:83:41:3b:8b:53:6b: 77:76:43:99:21:98:ba:c4:83:18:85:48:3e:43:13: cc:bf:74:aa:bb:3c:24:d0:71:0b:71:9c:32:36:5b: 83:18:6f:bc:17:48:88:02:51:74:92:a8:e3:79:3c: 4b:b8:4c:48:63:a6:68:34:bc:74:58:9c:9b:93:dc: c0:92:78:eb:d2:95:d4:53:45:c1:62:9d:85:a9:1e: fc:05:6c:5b:42:5e:2c:02:55:26:0f:dc:65:ea:86: 19:3f:a7:5c:49:a1:6e:52:3c:1c:3a:3a:56:58:09: 23:1a:67:a5:23:99:6c:24:21:b1:0b:bd:81:02:85: c2:eb:9e:8c:14:9c:61:3f:89:41:25:b1:31:d5:03: 57:e9:35:0c:ea:fa:f2:2e:2b:b8:dd:65:d7:c9:c1: 9a:d7:d8:e7:e6:ed:0f:73:f0:4e:ac:43:d9:39:64: 71:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:25:3D:4C:AA:F9:76:50:58:28:52:2A:6F:11:6E:B5:C2:48:72:C9 X509v3 Authority Key Identifier: keyid:0B:9B:2B:FC:1C:6B:2C:09:67:76:AF:75:7D:3A:F1:45:47:E4:3E:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F646/CECE8C9AF48E11E8B14A341EC4F9AE02/C5sr_BxrLAlndq91fTrxRUfkPnI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/C5sr_BxrLAlndq91fTrxRUfkPnI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F646/CECE8C9AF48E11E8B14A341EC4F9AE02/C5sr_BxrLAlndq91fTrxRUfkPnI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:ed:52:cd:96:59:9f:e4:83:5f:fe:93:d7:17:3e:e8:35:2c: c8:e4:83:26:4b:a9:60:9b:29:41:76:89:c4:7e:ef:01:05:22: 51:ea:8e:47:58:ad:92:4d:b0:01:ae:b9:69:35:21:9a:bf:42: 5a:22:f3:be:3c:7d:bb:f3:b3:35:52:20:3f:c2:fd:f7:0b:fe: 32:64:70:ed:ab:f7:06:d4:27:1d:2e:ef:38:ec:34:3f:7d:ea: 09:7a:32:f9:35:62:a0:92:f0:67:46:37:d3:55:70:73:81:53: d1:fa:4c:24:6c:ad:0b:be:ec:43:f3:17:f0:06:b5:4a:bc:ff: 4f:97:b9:dc:d0:98:e7:1b:df:65:a5:5a:b3:cd:be:97:01:fd: 20:cf:a3:35:45:67:ad:80:f9:8e:3a:79:b5:6c:e8:84:a0:8f: 5f:d8:90:00:0b:27:b4:da:e4:28:b8:a9:50:99:65:29:8d:f2: 7d:d0:bb:44:1d:a6:c3:9a:25:c7:ed:5a:eb:4a:86:34:cf:45: 8d:10:e7:19:a7:84:31:6e:e1:eb:51:cc:6a:2d:74:9f:f0:52: bd:7b:b0:f2:d2:c0:74:4c:c7:a1:25:c7:b9:cf:30:a2:e0:70: 6f:7e:80:48:7c:43:b2:51:78:d6:3f:d5:b8:f7:79:e5:ab:e7: f9:45:a9:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEfkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY2NDYxMTAvBgNVBAUTKDBCOUIyQkZDMUM2QjJDMDk2Nzc2QUY3NTdEM0FGMTQ1 NDdFNDNFNzIwHhcNMjUwODIyMTcxODE0WhcNMjUwODI5MTcxODE0WjAYMRYwFAYD VQQDEw02OGE4YTY1Ni01YmE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4YSi6o+BQqoEfrf5O3MVCpWOJe6MvfQ4cFhy1Xf7qLsvikB9fEnoDAiyh9vz Um25xcFevKTgzhnuZnwWMZdbUKNkOSWdsZ+XGR2Vq4/ZnadP/AaDQTuLU2t3dkOZ IZi6xIMYhUg+QxPMv3Squzwk0HELcZwyNluDGG+8F0iIAlF0kqjjeTxLuExIY6Zo NLx0WJybk9zAknjr0pXUU0XBYp2FqR78BWxbQl4sAlUmD9xl6oYZP6dcSaFuUjwc OjpWWAkjGmelI5lsJCGxC72BAoXC656MFJxhP4lBJbEx1QNX6TUM6vryLiu43WXX ycGa19jn5u0Pc/BOrEPZOWRxwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCMlPUyq +XZQWChSKm8RbrXCSHLJMB8GA1UdIwQYMBaAFAubK/wcaywJZ3avdX068UVH5D5y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjY0Ni9DRUNFOEM5QUY0 OEUxMUU4QjE0QTM0MUVDNEY5QUUwMi9DNXNyX0J4ckxBbG5kcTkxZlRyeFJVZmtQ bkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0M1c3JfQnhyTEFsbmRxOTFmVHJ4UlVma1BuSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RjY0Ni9DRUNFOEM5QUY0OEUxMUU4QjE0QTM0MUVDNEY5QUUwMi9DNXNyX0J4ckxB bG5kcTkxZlRyeFJVZmtQbkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAr7VLNllmf5INf/pPXFz7oNSzI5IMmS6lgmylBdonEfu8BBSJR6o5H WK2STbABrrlpNSGav0JaIvO+PH2787M1UiA/wv33C/4yZHDtq/cG1CcdLu847DQ/ feoJejL5NWKgkvBnRjfTVXBzgVPR+kwkbK0LvuxD8xfwBrVKvP9Pl7nc0JjnG99l pVqzzb6XAf0gz6M1RWetgPmOOnm1bOiEoI9f2JAACye02uQouKlQmWUpjfJ90LtE HabDmiXH7VrrSoY0z0WNEOcZp4QxbuHrUcxqLXSf8FK9e7Dy0sB0TMehJce5zzCi 4HBvfoBIfEOyUXjWP9W493nlq+f5Ramq -----END CERTIFICATE-----Generated at Sat Aug 23 14:28:56 2025 by rpki-client