$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3174/B131F89CEECD11EC8CF4471EC4F9AE02/5CK_AmFA0gPv1r_eruJoqosEZtU.mft File: 5CK_AmFA0gPv1r_eruJoqosEZtU.mft (raw, json) Hash identifier: ypbiNpdm32R9/WFDdqyMdMfGVIvbi3/G1eYTL6laXJ0= Subject key identifier: 0F:50:89:66:33:1B:43:41:67:75:17:24:B8:C9:88:86:5B:75:13:26 Authority key identifier: E4:22:BF:02:61:40:D2:03:EF:D6:BF:DE:AE:E2:68:AA:8B:04:66:D5 Certificate issuer: /CN=A91C3174/serialNumber=E422BF026140D203EFD6BFDEAEE268AA8B0466D5 Certificate serial: 02F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CK_AmFA0gPv1r_eruJoqosEZtU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3174/B131F89CEECD11EC8CF4471EC4F9AE02/5CK_AmFA0gPv1r_eruJoqosEZtU.mft Manifest number: 02F4 Signing time: Sat 23 Aug 2025 01:31:34 +0000 Manifest this update: Sat 23 Aug 2025 01:31:34 +0000 Manifest next update: Sat 30 Aug 2025 01:31:34 +0000 Files and hashes: 1: 5CK_AmFA0gPv1r_eruJoqosEZtU.crl (hash: bOMIqnHNSlc2DsdTTI2TZ5BqjfG32ja4D+4Vbb1TxQc=) 2: 9A4B6146EED111EC9BDD4C49C4F9AE02.roa (hash: KkExhLw32KhJNP1vh+cfX+3O2VUbbBLKFmBZMRijetQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3174/B131F89CEECD11EC8CF4471EC4F9AE02/5CK_AmFA0gPv1r_eruJoqosEZtU.crl rsync://rpki.apnic.net/member_repository/A91C3174/B131F89CEECD11EC8CF4471EC4F9AE02/5CK_AmFA0gPv1r_eruJoqosEZtU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CK_AmFA0gPv1r_eruJoqosEZtU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:31:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 761 (0x2f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3174, serialNumber=E422BF026140D203EFD6BFDEAEE268AA8B0466D5 Validity Not Before: Aug 23 01:31:34 2025 GMT Not After : Aug 30 01:31:34 2025 GMT Subject: CN=68a919f6-667a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:01:b6:90:ae:f7:73:dd:49:4c:90:a8:50:3f: 94:d5:9d:ce:e6:30:48:f0:c9:df:39:ed:7f:35:c9: 22:c2:5e:d3:e4:84:b8:4d:d9:4a:97:a2:68:8f:2a: 36:1b:01:57:79:69:6e:2e:ff:15:ab:3c:b7:eb:ea: 88:c1:de:1b:80:b3:79:db:18:99:af:5c:d6:75:18: 3d:a1:18:dd:47:e3:36:f9:6d:b2:cc:ae:91:9f:98: ef:e0:12:0b:7e:7c:24:16:5a:c0:09:be:db:7b:6c: 92:9f:04:cc:32:bf:70:62:c8:62:37:96:ff:59:a1: 06:dc:3d:80:a4:40:ee:8c:b2:bd:d6:6e:d1:45:85: 8f:78:f7:54:14:fb:ad:12:58:87:32:62:bf:bf:31: 01:e8:ee:b5:8c:7b:26:84:b3:71:3b:3d:55:b7:cd: 19:dc:17:7d:50:45:37:8c:2c:3d:bc:bb:17:49:e1: 61:d9:da:46:0a:ff:c4:82:c6:8c:5b:7a:21:c8:5b: bf:3b:d6:f5:d6:f7:8a:07:11:08:b8:4e:d2:2c:73: 4d:9c:7b:47:70:f3:74:0c:da:14:b0:9b:f5:49:7a: e6:cf:89:ae:1a:e4:a6:a1:f0:0f:fc:c6:75:05:af: 3a:93:80:fe:da:99:8f:70:7a:2a:6b:42:8b:cf:16: 9f:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:50:89:66:33:1B:43:41:67:75:17:24:B8:C9:88:86:5B:75:13:26 X509v3 Authority Key Identifier: keyid:E4:22:BF:02:61:40:D2:03:EF:D6:BF:DE:AE:E2:68:AA:8B:04:66:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3174/B131F89CEECD11EC8CF4471EC4F9AE02/5CK_AmFA0gPv1r_eruJoqosEZtU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CK_AmFA0gPv1r_eruJoqosEZtU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3174/B131F89CEECD11EC8CF4471EC4F9AE02/5CK_AmFA0gPv1r_eruJoqosEZtU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:f5:e4:da:4d:8b:08:05:f2:5b:d1:32:ed:34:f1:7a:e7:2e: 29:3d:8e:85:5a:52:31:10:80:cf:26:8c:c8:ff:d6:d0:4f:1d: fb:35:76:a7:fd:3c:89:c0:05:01:ff:a2:e5:fe:b8:cd:2e:40: 1b:5a:70:be:d4:b7:cb:3b:2d:bb:b7:69:90:b8:ff:02:be:6e: f4:9a:d6:9c:b2:79:47:84:6c:42:9d:c0:a8:3f:43:47:ab:fe: 3f:f9:f0:62:08:d8:ac:d2:21:98:ce:bb:48:04:6a:eb:b1:d1: e2:6d:27:e9:9e:1f:ee:2f:87:e1:92:d0:43:d8:25:8e:cb:59: e2:e9:48:3e:0c:ac:00:91:7b:44:14:a4:9d:96:5b:e4:d2:08: a3:b8:da:23:8d:2a:8e:90:de:52:c7:46:23:2d:f6:fb:84:ad: 42:cd:98:bb:11:83:bf:7d:cc:6c:bf:4b:a3:fb:24:ed:37:8d: 20:51:39:a5:f3:34:7d:22:bc:65:31:40:cb:5b:f4:29:aa:6a: 93:6f:3f:5b:00:61:23:ef:3e:d6:fe:fa:85:76:04:75:88:bf: 4a:f2:9b:f4:12:a9:b0:71:5a:d3:7f:7c:ee:17:7d:ab:1f:37: cf:a5:3d:b8:6b:76:bd:bb:d8:ea:9b:bd:61:4c:58:70:70:36: 25:ae:82:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAvkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzMxNzQxMTAvBgNVBAUTKEU0MjJCRjAyNjE0MEQyMDNFRkQ2QkZERUFFRTI2OEFB OEIwNDY2RDUwHhcNMjUwODIzMDEzMTM0WhcNMjUwODMwMDEzMTM0WjAYMRYwFAYD VQQDEw02OGE5MTlmNi02NjdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwAG2kK73c91JTJCoUD+U1Z3O5jBI8MnfOe1/Nckiwl7T5IS4TdlKl6Jojyo2 GwFXeWluLv8Vqzy36+qIwd4bgLN52xiZr1zWdRg9oRjdR+M2+W2yzK6Rn5jv4BIL fnwkFlrACb7be2ySnwTMMr9wYshiN5b/WaEG3D2ApEDujLK91m7RRYWPePdUFPut EliHMmK/vzEB6O61jHsmhLNxOz1Vt80Z3Bd9UEU3jCw9vLsXSeFh2dpGCv/EgsaM W3ohyFu/O9b11veKBxEIuE7SLHNNnHtHcPN0DNoUsJv1SXrmz4muGuSmofAP/MZ1 Ba86k4D+2pmPcHoqa0KLzxafLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA9QiWYz G0NBZ3UXJLjJiIZbdRMmMB8GA1UdIwQYMBaAFOQivwJhQNID79a/3q7iaKqLBGbV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzE3NC9CMTMxRjg5Q0VF Q0QxMUVDOENGNDQ3MUVDNEY5QUUwMi81Q0tfQW1GQTBnUHYxcl9lcnVKb3Fvc0Va dFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVDS19BbUZBMGdQdjFyX2VydUpvcW9zRVp0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MzE3NC9CMTMxRjg5Q0VFQ0QxMUVDOENGNDQ3MUVDNEY5QUUwMi81Q0tfQW1GQTBn UHYxcl9lcnVKb3Fvc0VadFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBE9eTaTYsIBfJb0TLtNPF65y4pPY6FWlIxEIDPJozI/9bQTx37NXan /TyJwAUB/6Ll/rjNLkAbWnC+1LfLOy27t2mQuP8Cvm70mtacsnlHhGxCncCoP0NH q/4/+fBiCNis0iGYzrtIBGrrsdHibSfpnh/uL4fhktBD2CWOy1ni6Ug+DKwAkXtE FKSdllvk0gijuNojjSqOkN5Sx0YjLfb7hK1CzZi7EYO/fcxsv0uj+yTtN40gUTml 8zR9IrxlMUDLW/QpqmqTbz9bAGEj7z7W/vqFdgR1iL9K8pv0EqmwcVrTf3zuF32r HzfPpT24a3a9u9jqm71hTFhwcDYlroIf -----END CERTIFICATE-----Generated at Sat Aug 23 16:33:29 2025 by rpki-client