$ rpki-client -vvf rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft File: s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft (raw, json) Hash identifier: Yi7fuZD+iZq+XGdgMoOwm7KgES7kSZkDgla26dLkOSU= Subject key identifier: A3:ED:33:C3:0D:24:D0:87:E1:C9:92:75:0C:2B:02:1F:EA:FE:3A:8F Authority key identifier: B3:98:66:A9:9D:1C:D9:F4:E7:E8:F5:3C:88:AD:14:DA:89:A1:86:25 Certificate issuer: /CN=A91964B3/serialNumber=B39866A99D1CD9F4E7E8F53C88AD14DA89A18625 Certificate serial: 3702 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft Manifest number: 35F5 Signing time: Fri 22 Aug 2025 14:24:56 +0000 Manifest this update: Fri 22 Aug 2025 14:24:56 +0000 Manifest next update: Fri 29 Aug 2025 14:24:56 +0000 Files and hashes: 1: s5hmqZ0c2fTn6PU8iK0U2omhhiU.crl (hash: KhyD7A417TM47fQNL3xJWO2I8XrUPDUjhZ6Ynco37JA=) 2: 7D9BF1DE7CC511F0A2A10150C4F9AE02.roa (hash: MPTZanzFk6VU/2rjP3VJ1ReyAnolRvAUE3O3TM1RBr8=) 3: B36EA83C70B111E98CFFF710C4F9AE02.roa (hash: YPxJgAFP2pm+e64iG82yJRkFHNHfja4F2rH7VSVuFpA=) 4: 160B219870BA11E99E0F6D2DC4F9AE02.roa (hash: 3QqIb/PpEMe7CSOMb9cfzIUcXW1tet3HABkiD8A3zkU=) 5: 26A143C291EB11EF8A024083C4F9AE02.roa (hash: apyNb0gzlP7QIPlzF+1SGVtUOjpAimi2EUrocnrYZRM=) 6: 18F4FD76918111EC93DCA42AC4F9AE02.roa (hash: 8JKaEfgtThOrevd/FI1wUsWQCsjDZCsWDfH4rtPvYOM=) 7: B0EB27B470B811E9B32F6726C4F9AE02.roa (hash: Yn6iyp3sOHzht7NrUVV1K95CTLrIyR+zeCU6DhPlbi0=) 8: 9538F912A09511EE9616A86EC4F9AE02.roa (hash: UIhH1UdXX1/WldxbBw/5eFdUsW8H5rv3xowCVi4x/js=) 9: 71D60BC2F6BA11EB865C4246C4F9AE02.roa (hash: E9Q0DLQxOx2PNLNxJzUPOmEekE0nfR8RNH8+NziMkYc=) 10: 9AF37E96D71B11EA9532F30CC4F9AE02.roa (hash: UB9M+LLNN3sS8I2EFsp8N9BHGeanS2Z+lbFEvYsOTeM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.crl rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14082 (0x3702) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91964B3, serialNumber=B39866A99D1CD9F4E7E8F53C88AD14DA89A18625 Validity Not Before: Aug 22 14:24:56 2025 GMT Not After : Aug 29 14:24:56 2025 GMT Subject: CN=68a87db8-6e8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:9b:7b:16:fe:8b:bf:cd:69:92:34:d3:59:ed: ef:88:57:36:3f:6d:1c:8b:de:1d:a6:9e:63:e6:84: 3d:e5:08:ff:23:2e:86:1d:92:b6:18:f3:de:63:ca: 41:db:22:0c:33:d7:df:b6:c6:a1:8f:41:a1:3b:d1: 9d:8d:b9:9a:33:a0:62:96:13:d3:4b:fa:d0:4d:39: 1c:66:0c:b7:c9:f4:67:cf:f3:8a:0a:04:85:36:57: 96:e2:2e:56:a1:59:3f:6a:40:a4:8e:fe:62:cc:18: 65:d2:8e:f6:4b:15:c9:29:e5:4d:ef:12:92:20:8b: 5f:80:45:97:9b:5f:5b:96:20:f9:21:e0:bb:8b:b5: 73:1b:c1:2b:8d:96:93:13:b4:e7:33:62:55:92:b0: 66:b0:10:a1:85:3f:34:db:ee:86:e6:96:a1:91:1a: 00:d9:94:5d:d8:67:96:6c:96:ce:52:6e:e9:95:50: 4e:e7:0a:cd:10:06:8e:87:b5:e1:9c:0f:23:49:08: 94:ff:0c:8a:17:1c:7e:2b:20:e3:ce:69:85:1c:2d: 0b:ea:2d:ca:c2:ec:2a:c0:d6:fb:b1:5d:d1:be:a4: e9:83:02:ef:92:15:8a:32:dc:b1:e3:0d:14:5b:ea: f6:0d:19:ea:8e:63:c3:f2:35:dd:8b:87:aa:4c:de: 93:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:ED:33:C3:0D:24:D0:87:E1:C9:92:75:0C:2B:02:1F:EA:FE:3A:8F X509v3 Authority Key Identifier: keyid:B3:98:66:A9:9D:1C:D9:F4:E7:E8:F5:3C:88:AD:14:DA:89:A1:86:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption dc:57:10:af:21:9a:81:ff:df:ba:8e:c2:f1:18:bb:2b:a5:7e: ce:b1:b8:d7:1a:07:ef:f3:9c:b3:d3:8d:95:55:8e:fa:86:fe: 74:c8:0e:42:32:53:e6:e7:40:f2:22:31:b0:56:1a:03:ad:41: 40:5d:62:01:1b:d6:fa:2b:38:9b:b2:7b:1b:7c:ce:68:f8:26: 35:7a:80:57:a4:00:6a:f5:90:91:26:66:53:d9:f3:04:1f:11: 46:97:75:ce:e4:60:e4:96:47:50:dc:f8:85:68:0c:49:b9:cf: bd:bd:da:bf:88:82:e1:08:f2:37:a9:73:44:14:18:d1:7c:7b: 11:91:0e:8b:1e:f6:fd:a3:07:ba:92:3c:5d:85:33:1d:ab:97: 31:f9:d1:41:8b:19:f0:b1:66:f9:50:4c:0c:bc:2a:82:a1:f4: 6c:eb:d4:a8:cb:6c:d3:d4:6e:da:2c:03:83:80:0a:e0:cc:58: 37:9d:21:2e:ef:79:66:93:98:45:24:15:ba:80:ac:1c:56:89: 93:54:f0:90:fd:e4:f2:6f:24:91:e1:b9:9b:97:2e:80:3e:2f: ef:8e:eb:00:c1:ff:7f:e2:f1:12:14:50:a0:36:a0:eb:e9:ec: 62:07:da:85:2a:cf:00:b1:2e:15:28:7c:c0:cc:6b:b1:cd:de: bb:b8:f2:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNwIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY0QjMxMTAvBgNVBAUTKEIzOTg2NkE5OUQxQ0Q5RjRFN0U4RjUzQzg4QUQxNERB ODlBMTg2MjUwHhcNMjUwODIyMTQyNDU2WhcNMjUwODI5MTQyNDU2WjAYMRYwFAYD VQQDEw02OGE4N2RiOC02ZThiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtJt7Fv6Lv81pkjTTWe3viFc2P20ci94dpp5j5oQ95Qj/Iy6GHZK2GPPeY8pB 2yIMM9fftsahj0GhO9GdjbmaM6BilhPTS/rQTTkcZgy3yfRnz/OKCgSFNleW4i5W oVk/akCkjv5izBhl0o72SxXJKeVN7xKSIItfgEWXm19bliD5IeC7i7VzG8ErjZaT E7TnM2JVkrBmsBChhT802+6G5pahkRoA2ZRd2GeWbJbOUm7plVBO5wrNEAaOh7Xh nA8jSQiU/wyKFxx+KyDjzmmFHC0L6i3KwuwqwNb7sV3RvqTpgwLvkhWKMtyx4w0U W+r2DRnqjmPD8jXdi4eqTN6TdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKPtM8MN JNCH4cmSdQwrAh/q/jqPMB8GA1UdIwQYMBaAFLOYZqmdHNn05+j1PIitFNqJoYYl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjRCMy9FNjU4NTExMjFE ODQxMUUyQTFCQTMwREIwOEIwMkNEMi9zNWhtcVowYzJmVG42UFU4aUswVTJvbWho aVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M1aG1xWjBjMmZUbjZQVThpSzBVMm9taGhpVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjRCMy9FNjU4NTExMjFEODQxMUUyQTFCQTMwREIwOEIwMkNEMi9zNWhtcVowYzJm VG42UFU4aUswVTJvbWhoaVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDcVxCvIZqB/9+6jsLxGLsrpX7OsbjXGgfv85yz042VVY76hv50yA5C MlPm50DyIjGwVhoDrUFAXWIBG9b6KzibsnsbfM5o+CY1eoBXpABq9ZCRJmZT2fME HxFGl3XO5GDklkdQ3PiFaAxJuc+9vdq/iILhCPI3qXNEFBjRfHsRkQ6LHvb9owe6 kjxdhTMdq5cx+dFBixnwsWb5UEwMvCqCofRs69Soy2zT1G7aLAODgArgzFg3nSEu 73lmk5hFJBW6gKwcVomTVPCQ/eTybySR4bmbly6APi/vjusAwf9/4vESFFCgNqDr 6exiB9qFKs8AsS4VKHzAzGuxzd67uPJg -----END CERTIFICATE-----Generated at Sat Aug 23 20:36:23 2025 by rpki-client