$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft File: 5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft (raw, json) Hash identifier: LObLPDPB8hp9PYUbqnnsIC5R/A2xujg4ohq80BKHlLU= Subject key identifier: 05:7D:89:0A:D3:C4:3F:2B:F9:A8:F1:41:31:C1:54:66:97:14:77:9D Authority key identifier: E4:D6:2D:31:29:7F:17:E4:9C:42:FA:7A:7B:66:23:62:4A:D9:41:75 Certificate issuer: /CN=A91B9B0D/serialNumber=E4D62D31297F17E49C42FA7A7B6623624AD94175 Certificate serial: 0680 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NYtMSl_F-ScQvp6e2YjYkrZQXU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft Manifest number: 067A Signing time: Fri 22 Aug 2025 22:35:15 +0000 Manifest this update: Fri 22 Aug 2025 22:35:15 +0000 Manifest next update: Fri 29 Aug 2025 22:35:15 +0000 Files and hashes: 1: 5NYtMSl_F-ScQvp6e2YjYkrZQXU.crl (hash: mCLl8R9m/FWKq4VVyHlE23G6U16sxE6eC5OIywj3D04=) 2: 3F9CDA68179911EDB9008D18C4F9AE02.roa (hash: DFqO6gnNkZlWs0i15FxZnhMePoBQwEKxGo7fxkcs71I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.crl rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NYtMSl_F-ScQvp6e2YjYkrZQXU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:35:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1664 (0x680) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9B0D, serialNumber=E4D62D31297F17E49C42FA7A7B6623624AD94175 Validity Not Before: Aug 22 22:35:15 2025 GMT Not After : Aug 29 22:35:15 2025 GMT Subject: CN=68a8f0a3-e0d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:cb:d4:9e:d1:3c:fe:50:fd:ee:ff:cb:b1:18: fa:60:c9:fa:06:21:69:4d:88:5b:dc:f9:d6:2c:11: b3:d4:ae:fd:a2:23:5e:46:81:4c:31:df:c3:30:15: 53:cb:80:14:fe:4c:90:0e:f3:e4:60:23:bd:7e:8d: fb:c6:6d:26:30:a6:20:d5:c2:c1:40:01:bc:a7:8f: 52:73:de:28:9a:2a:11:11:f0:a3:f6:86:34:df:59: 72:e6:1b:f0:5a:1c:46:77:62:89:fb:97:67:a7:54: 37:10:83:09:33:0d:6f:10:9a:f9:90:02:6d:f0:f8: 03:06:e6:64:81:ba:f4:89:52:41:f8:65:74:d7:cc: d7:11:6f:f5:24:58:42:eb:1d:ed:03:21:f7:89:a7: 85:f5:e7:87:16:50:82:bf:af:fa:9e:bd:9a:9e:42: 35:0e:c5:5c:09:ff:9a:e1:58:ef:af:de:db:cb:16: 48:55:c7:b7:e2:0c:3d:5c:27:85:0e:75:7c:14:b9: 91:ad:14:7e:34:f5:7f:f2:85:0a:2c:3e:83:53:14: 50:c0:ac:91:f0:83:76:ec:85:1c:fe:8e:ed:6e:0d: b9:5f:eb:54:77:eb:cf:eb:9f:98:36:1d:c2:2b:e7: 50:21:a7:26:09:f8:a8:7a:01:87:2b:8e:42:50:56: 34:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:7D:89:0A:D3:C4:3F:2B:F9:A8:F1:41:31:C1:54:66:97:14:77:9D X509v3 Authority Key Identifier: keyid:E4:D6:2D:31:29:7F:17:E4:9C:42:FA:7A:7B:66:23:62:4A:D9:41:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NYtMSl_F-ScQvp6e2YjYkrZQXU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:fe:4f:ad:67:61:ee:d6:ca:6e:f6:da:8e:ea:6a:1c:44:d6: 1d:e1:65:3b:0a:bc:a0:1d:50:e2:bd:bc:e0:1a:72:1d:6f:4f: b3:44:2e:51:fe:7f:58:1b:c4:70:c6:41:75:ca:77:86:c0:cd: c2:4a:c0:d7:f9:05:10:34:18:80:aa:bf:c9:c9:43:d3:b1:4f: 30:38:b3:29:3f:8b:50:c6:80:d1:3b:ae:cd:c2:02:8d:0b:34: b8:1a:6c:08:f5:93:2b:d5:d6:db:e3:f7:f0:91:58:04:78:84: b2:87:85:b4:d4:c3:32:ec:5f:b5:91:58:69:38:b5:66:95:0d: bf:68:78:cc:01:38:95:c0:36:4a:93:c3:33:ca:6d:2f:59:02: 5d:31:c3:64:aa:62:99:70:77:c9:c7:dd:c2:43:2e:a0:4f:24: c5:01:c2:ac:c8:9f:c9:f7:2e:b9:7e:2d:db:f2:53:86:7f:43: 2e:c6:1d:85:ad:9c:b7:56:36:67:37:45:45:a2:91:b3:dc:6d: 26:2b:f6:4c:a9:44:88:a0:0c:d8:94:b8:ca:9c:65:48:75:05: 28:ae:aa:50:d3:cf:e8:b1:7d:5c:64:60:d0:8a:b7:9c:e4:06: e8:ae:97:33:01:e2:3e:b2:7b:23:e7:82:ae:90:1a:5f:b8:05: fc:b4:96:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlCMEQxMTAvBgNVBAUTKEU0RDYyRDMxMjk3RjE3RTQ5QzQyRkE3QTdCNjYyMzYy NEFEOTQxNzUwHhcNMjUwODIyMjIzNTE1WhcNMjUwODI5MjIzNTE1WjAYMRYwFAYD VQQDEw02OGE4ZjBhMy1lMGQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAycvUntE8/lD97v/LsRj6YMn6BiFpTYhb3PnWLBGz1K79oiNeRoFMMd/DMBVT y4AU/kyQDvPkYCO9fo37xm0mMKYg1cLBQAG8p49Sc94omioREfCj9oY031ly5hvw WhxGd2KJ+5dnp1Q3EIMJMw1vEJr5kAJt8PgDBuZkgbr0iVJB+GV018zXEW/1JFhC 6x3tAyH3iaeF9eeHFlCCv6/6nr2ankI1DsVcCf+a4Vjvr97byxZIVce34gw9XCeF DnV8FLmRrRR+NPV/8oUKLD6DUxRQwKyR8IN27IUc/o7tbg25X+tUd+vP65+YNh3C K+dQIacmCfioegGHK45CUFY0ywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAV9iQrT xD8r+ajxQTHBVGaXFHedMB8GA1UdIwQYMBaAFOTWLTEpfxfknEL6entmI2JK2UF1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUIwRC9BMjhFQ0JDMDhB QjYxMUVCODIzN0Q0MTRDNEY5QUUwMi81Tll0TVNsX0YtU2NRdnA2ZTJZallrclpR WFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVOWXRNU2xfRi1TY1F2cDZlMllqWWtyWlFYVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUIwRC9BMjhFQ0JDMDhBQjYxMUVCODIzN0Q0MTRDNEY5QUUwMi81Tll0TVNsX0Yt U2NRdnA2ZTJZallrclpRWFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAM/k+tZ2Hu1spu9tqO6mocRNYd4WU7CrygHVDivbzgGnIdb0+zRC5R /n9YG8RwxkF1yneGwM3CSsDX+QUQNBiAqr/JyUPTsU8wOLMpP4tQxoDRO67NwgKN CzS4GmwI9ZMr1dbb4/fwkVgEeISyh4W01MMy7F+1kVhpOLVmlQ2/aHjMATiVwDZK k8Mzym0vWQJdMcNkqmKZcHfJx93CQy6gTyTFAcKsyJ/J9y65fi3b8lOGf0Muxh2F rZy3VjZnN0VFopGz3G0mK/ZMqUSIoAzYlLjKnGVIdQUorqpQ08/osX1cZGDQirec 5AborpczAeI+snsj54KukBpfuAX8tJZL -----END CERTIFICATE-----Generated at Sat Aug 23 14:29:51 2025 by rpki-client