$ rpki-client -vvf rpki.apnic.net/member_repository/A91B861D/D2997F60ABE311EB9C2B1156C4F9AE02/5hI_ServZkwi-UzV67rqztOHoW8.mft File: 5hI_ServZkwi-UzV67rqztOHoW8.mft (raw, json) Hash identifier: lwZ5WWjsQhFw8wH0XdUN5iEhnPRPc+kWM+9v3Rnqan4= Subject key identifier: 1C:C2:FB:5C:82:23:A8:A9:BD:F6:94:9B:34:53:AA:4B:0A:3C:34:15 Authority key identifier: E6:12:3F:49:EA:EF:66:4C:22:F9:4C:D5:EB:BA:EA:CE:D3:87:A1:6F Certificate issuer: /CN=A91B861D/serialNumber=E6123F49EAEF664C22F94CD5EBBAEACED387A16F Certificate serial: 062D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5hI_ServZkwi-UzV67rqztOHoW8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B861D/D2997F60ABE311EB9C2B1156C4F9AE02/5hI_ServZkwi-UzV67rqztOHoW8.mft Manifest number: 0626 Signing time: Fri 22 Aug 2025 22:56:21 +0000 Manifest this update: Fri 22 Aug 2025 22:56:20 +0000 Manifest next update: Fri 29 Aug 2025 22:56:20 +0000 Files and hashes: 1: 5hI_ServZkwi-UzV67rqztOHoW8.crl (hash: b9KIN6kDAWCTj+cnVWcVv8gGso5/Ao+ypYjQrJ/9DkQ=) 2: 1D0BA0FC57EB11F096357F7CC4F9AE02.roa (hash: Njg0pVJ4I7URnxza7bv42AK9X5Mt3J26B9EOz9eASoo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B861D/D2997F60ABE311EB9C2B1156C4F9AE02/5hI_ServZkwi-UzV67rqztOHoW8.crl rsync://rpki.apnic.net/member_repository/A91B861D/D2997F60ABE311EB9C2B1156C4F9AE02/5hI_ServZkwi-UzV67rqztOHoW8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5hI_ServZkwi-UzV67rqztOHoW8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:56:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1581 (0x62d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B861D, serialNumber=E6123F49EAEF664C22F94CD5EBBAEACED387A16F Validity Not Before: Aug 22 22:56:20 2025 GMT Not After : Aug 29 22:56:20 2025 GMT Subject: CN=68a8f595-d478 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:0a:33:8a:6b:fe:fa:76:fa:22:ef:e3:e9:8d: d3:a7:c4:e3:41:5f:88:a2:64:8d:d2:f0:b0:e8:de: 3e:93:dc:00:d6:cb:8b:fe:08:cf:1b:8c:82:fe:07: f1:05:86:92:f1:b8:30:f9:89:e3:73:53:73:b0:99: f4:8e:bd:19:36:29:5d:4d:58:4d:c2:f4:5d:32:09: 0f:84:ec:dd:f5:26:ea:76:d0:90:f4:bc:f9:9e:bb: b9:c2:70:24:f0:a9:a3:fd:8f:d2:73:f1:9b:bf:f6: ea:6a:fe:31:aa:59:38:c1:4f:65:e4:7d:d5:fe:ac: fb:05:21:2f:35:3b:e0:3a:3f:5b:29:ec:57:dd:5f: 2a:48:c6:bc:99:32:0c:51:f0:a4:22:0d:c9:9a:f3: 38:eb:fd:50:bb:a1:9c:03:3c:a5:3d:7f:4d:97:b8: 76:0a:e2:94:77:51:90:95:5d:19:cc:94:13:f9:85: b6:ce:b2:39:3e:0e:b3:89:47:19:3e:5c:81:e6:2b: 94:0a:d3:81:f6:e6:d1:3b:d8:10:3d:c1:b8:ef:f7: 3b:7b:93:50:7f:b6:53:6c:de:f2:f9:5b:a3:af:f3: df:1d:dc:a9:77:97:ed:e1:0b:32:16:ae:53:0f:cd: d2:a5:7c:82:24:f1:5f:4c:fc:f5:04:b8:9d:8d:df: 91:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:C2:FB:5C:82:23:A8:A9:BD:F6:94:9B:34:53:AA:4B:0A:3C:34:15 X509v3 Authority Key Identifier: keyid:E6:12:3F:49:EA:EF:66:4C:22:F9:4C:D5:EB:BA:EA:CE:D3:87:A1:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B861D/D2997F60ABE311EB9C2B1156C4F9AE02/5hI_ServZkwi-UzV67rqztOHoW8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5hI_ServZkwi-UzV67rqztOHoW8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B861D/D2997F60ABE311EB9C2B1156C4F9AE02/5hI_ServZkwi-UzV67rqztOHoW8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c6:fc:22:05:dc:0b:48:c7:b1:29:94:db:92:10:36:c6:bb:b6: 83:ee:b8:0b:82:8f:3d:e1:45:af:1b:15:6e:d2:bd:2d:4c:65: f1:2d:a4:56:71:e6:9b:bf:d6:38:1e:33:9d:36:d2:18:3c:f1: 3c:f3:a2:55:7f:80:42:bf:90:f2:4b:6c:84:3d:e0:93:36:19: 1e:e9:26:9a:80:05:2b:f1:62:a1:a7:95:21:07:b2:99:fc:f5: c5:e3:88:61:36:69:d9:84:d3:0d:d1:bc:8e:3d:4d:a6:63:92: 65:2c:66:2a:66:1d:d8:95:08:79:f2:fa:83:1d:56:ce:2f:21: be:f0:ae:14:2c:73:f1:f3:8a:58:f8:11:a6:7b:f0:b4:65:4f: ab:85:81:69:64:2e:a4:4a:b0:a4:67:96:c3:88:a1:eb:22:6e: 77:e6:67:0a:ee:b7:a9:5e:04:0f:09:e0:d6:e6:e0:7c:91:5a: d0:7a:7a:d0:71:12:a3:ac:e5:18:fd:01:b7:af:e8:d1:0f:97: e2:45:3a:a9:0f:24:70:6e:2a:c6:a8:53:11:a5:e0:14:dc:40: 82:1a:d9:99:ca:3d:1c:ba:70:c8:98:65:a3:d5:1d:21:23:63: 1a:97:0a:5e:4d:fb:22:8e:0a:08:80:eb:2c:e4:13:b4:e7:44: 54:f3:08:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBi0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjg2MUQxMTAvBgNVBAUTKEU2MTIzRjQ5RUFFRjY2NEMyMkY5NENENUVCQkFFQUNF RDM4N0ExNkYwHhcNMjUwODIyMjI1NjIwWhcNMjUwODI5MjI1NjIwWjAYMRYwFAYD VQQDEw02OGE4ZjU5NS1kNDc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1gozimv++nb6Iu/j6Y3Tp8TjQV+IomSN0vCw6N4+k9wA1suL/gjPG4yC/gfx BYaS8bgw+Ynjc1NzsJn0jr0ZNildTVhNwvRdMgkPhOzd9SbqdtCQ9Lz5nru5wnAk 8Kmj/Y/Sc/Gbv/bqav4xqlk4wU9l5H3V/qz7BSEvNTvgOj9bKexX3V8qSMa8mTIM UfCkIg3JmvM46/1Qu6GcAzylPX9Nl7h2CuKUd1GQlV0ZzJQT+YW2zrI5Pg6ziUcZ PlyB5iuUCtOB9ubRO9gQPcG47/c7e5NQf7ZTbN7y+Vujr/PfHdypd5ft4QsyFq5T D83SpXyCJPFfTPz1BLidjd+R8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBzC+1yC I6ipvfaUmzRTqksKPDQVMB8GA1UdIwQYMBaAFOYSP0nq72ZMIvlM1eu66s7Th6Fv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODYxRC9EMjk5N0Y2MEFC RTMxMUVCOUMyQjExNTZDNEY5QUUwMi81aElfU2Vydlprd2ktVXpWNjdycXp0T0hv VzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVoSV9TZXJ2Wmt3aS1VelY2N3JxenRPSG9XOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODYxRC9EMjk5N0Y2MEFCRTMxMUVCOUMyQjExNTZDNEY5QUUwMi81aElfU2Vydlpr d2ktVXpWNjdycXp0T0hvVzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDG/CIF3AtIx7EplNuSEDbGu7aD7rgLgo894UWvGxVu0r0tTGXxLaRW ceabv9Y4HjOdNtIYPPE886JVf4BCv5DyS2yEPeCTNhke6SaagAUr8WKhp5UhB7KZ /PXF44hhNmnZhNMN0byOPU2mY5JlLGYqZh3YlQh58vqDHVbOLyG+8K4ULHPx84pY +BGme/C0ZU+rhYFpZC6kSrCkZ5bDiKHrIm535mcK7repXgQPCeDW5uB8kVrQenrQ cRKjrOUY/QG3r+jRD5fiRTqpDyRwbirGqFMRpeAU3ECCGtmZyj0cunDImGWj1R0h I2MalwpeTfsijgoIgOss5BO050RU8wgO -----END CERTIFICATE-----Generated at Sat Aug 23 20:31:22 2025 by rpki-client