$ rpki-client -vvf rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft File: 5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft (raw, json) Hash identifier: 1fmCYS4GvOSS77aoTSXU+exLp6W8Y76MZ8/+dYX0zjg= Subject key identifier: CD:AF:07:93:96:3C:F1:90:5F:13:77:DD:3E:92:AF:6F:A6:CE:65:11 Authority key identifier: E4:7B:F7:02:54:53:26:97:D2:0D:0D:31:10:F6:25:37:0D:65:FA:83 Certificate issuer: /CN=A91B59E5/serialNumber=E47BF70254532697D20D0D3110F625370D65FA83 Certificate serial: 01F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft Manifest number: 01C5 Signing time: Sat 23 Aug 2025 03:49:09 +0000 Manifest this update: Sat 23 Aug 2025 03:49:09 +0000 Manifest next update: Sat 30 Aug 2025 03:49:09 +0000 Files and hashes: 1: 5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.crl (hash: 6g7eyweMrVXdOskYk2Ff1Ka/js4Qnq2e4W/wFDsVcCk=) 2: 9EEE3C44D94F11EF916BCF23C4F9AE02.roa (hash: JTgCQ/a/n5QlsjMCTHDArlAgGVjedlWxdAR2U4v5LnA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.crl rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:49:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 498 (0x1f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B59E5, serialNumber=E47BF70254532697D20D0D3110F625370D65FA83 Validity Not Before: Aug 23 03:49:09 2025 GMT Not After : Aug 30 03:49:09 2025 GMT Subject: CN=68a93a35-9195 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ce:13:23:f9:db:42:25:3a:3b:43:75:3d:39: 5e:19:2c:9c:6e:0f:09:94:0f:33:64:bc:b4:62:91: 05:90:15:04:53:00:fc:e3:91:09:0b:bf:93:74:fb: 2e:cf:c5:5b:75:83:cc:d0:18:67:16:3f:78:77:2f: 3e:46:d3:6b:fe:37:67:1c:27:80:42:55:b5:41:ff: 3e:5a:cd:02:ca:83:f7:88:8b:2a:7d:74:1b:1b:11: 0a:5b:07:cb:7c:73:85:ed:b5:a1:92:c9:eb:db:4b: fa:fb:b0:74:02:17:7f:c8:db:10:87:7b:3b:05:07: 40:23:46:eb:a7:7b:da:d2:f0:b2:7d:82:90:8e:4a: 70:3a:48:21:84:63:fc:69:e6:6c:1a:cf:1e:1e:6f: ae:44:32:ce:84:d4:dd:af:d2:c2:93:fa:7e:22:72: eb:7c:40:a5:19:59:c3:d0:98:a3:83:04:4f:a3:54: a1:d5:d4:3f:a4:8f:16:ff:6e:28:54:0e:67:9c:bb: 61:49:ae:09:c7:63:26:3a:1b:1f:75:f9:b9:53:74: 34:6a:02:32:38:08:52:9a:4d:c8:e2:1f:fd:21:68: c9:cd:40:28:16:02:0f:92:e6:c6:e0:9a:ae:5f:90: 4a:dc:e4:cc:c5:6a:9f:35:73:22:d9:d7:8f:2c:bb: 5c:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:AF:07:93:96:3C:F1:90:5F:13:77:DD:3E:92:AF:6F:A6:CE:65:11 X509v3 Authority Key Identifier: keyid:E4:7B:F7:02:54:53:26:97:D2:0D:0D:31:10:F6:25:37:0D:65:FA:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:b5:6d:a4:24:9c:f5:93:e5:10:2b:0a:5d:09:d6:94:d2:85: 31:2d:69:7d:3d:ef:f7:2b:a7:80:34:79:2a:fb:d3:26:66:03: 15:1a:33:27:c1:a8:3c:a1:cf:0f:f2:c7:4a:68:e3:96:c7:68: ec:c0:99:f0:2c:cd:76:9a:cb:d6:09:69:c0:5a:08:57:bc:fe: ad:c6:49:04:d7:2a:66:16:67:1d:45:b0:b1:43:7e:f0:00:f8: 11:18:fc:aa:3f:7c:b4:e6:75:5b:60:c4:b0:64:a9:1a:9e:07: 49:ae:79:41:6f:20:83:7d:b6:4d:66:83:21:4c:e4:39:e7:21: df:0d:93:74:25:d5:eb:c3:72:ba:53:98:ff:53:39:19:6e:7e: 95:91:af:6d:38:cc:fd:a3:71:ae:16:37:57:d3:0f:76:e0:00: ac:db:ed:a9:19:68:7b:58:31:dd:0b:6c:52:84:af:db:bd:a4: d3:f4:97:c3:e9:c4:46:f9:e2:9a:bc:e2:47:0f:07:c1:cf:d3: 8f:82:96:03:fb:cd:01:a6:9d:d0:2d:4f:c3:9b:f5:eb:96:ea: 79:d6:e1:65:fa:f6:01:00:f8:79:7b:11:69:0e:f1:2d:8d:aa: 0d:83:18:e5:05:a0:49:19:0f:71:1d:39:74:e7:a5:b6:32:61: 7f:93:6e:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU5RTUxMTAvBgNVBAUTKEU0N0JGNzAyNTQ1MzI2OTdEMjBEMEQzMTEwRjYyNTM3 MEQ2NUZBODMwHhcNMjUwODIzMDM0OTA5WhcNMjUwODMwMDM0OTA5WjAYMRYwFAYD VQQDEw02OGE5M2EzNS05MTk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAps4TI/nbQiU6O0N1PTleGSycbg8JlA8zZLy0YpEFkBUEUwD845EJC7+TdPsu z8VbdYPM0BhnFj94dy8+RtNr/jdnHCeAQlW1Qf8+Ws0CyoP3iIsqfXQbGxEKWwfL fHOF7bWhksnr20v6+7B0Ahd/yNsQh3s7BQdAI0brp3va0vCyfYKQjkpwOkghhGP8 aeZsGs8eHm+uRDLOhNTdr9LCk/p+InLrfEClGVnD0JijgwRPo1Sh1dQ/pI8W/24o VA5nnLthSa4Jx2MmOhsfdfm5U3Q0agIyOAhSmk3I4h/9IWjJzUAoFgIPkubG4Jqu X5BK3OTMxWqfNXMi2dePLLtcgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM2vB5OW PPGQXxN33T6Sr2+mzmURMB8GA1UdIwQYMBaAFOR79wJUUyaX0g0NMRD2JTcNZfqD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTlFNS9ERDlGMUY3QzND MDExMUVFOTFDQkUxNTdDNEY5QUUwMi81SHYzQWxSVEpwZlNEUTB4RVBZbE53MWwt b00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVIdjNBbFJUSnBmU0RRMHhFUFlsTncxbC1vTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTlFNS9ERDlGMUY3QzNDMDExMUVFOTFDQkUxNTdDNEY5QUUwMi81SHYzQWxSVEpw ZlNEUTB4RVBZbE53MWwtb00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwtW2kJJz1k+UQKwpdCdaU0oUxLWl9Pe/3K6eANHkq+9MmZgMVGjMn wag8oc8P8sdKaOOWx2jswJnwLM12msvWCWnAWghXvP6txkkE1ypmFmcdRbCxQ37w APgRGPyqP3y05nVbYMSwZKkangdJrnlBbyCDfbZNZoMhTOQ55yHfDZN0JdXrw3K6 U5j/UzkZbn6Vka9tOMz9o3GuFjdX0w924ACs2+2pGWh7WDHdC2xShK/bvaTT9JfD 6cRG+eKavOJHDwfBz9OPgpYD+80Bpp3QLU/Dm/Xrlup51uFl+vYBAPh5exFpDvEt jaoNgxjlBaBJGQ9xHTl056W2MmF/k24L -----END CERTIFICATE-----Generated at Sat Aug 23 16:12:43 2025 by rpki-client