$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC711/C7D1B0541EE311EF90D21234C4F9AE02/5CnUKeZreXs9ihy-JJFXetw4pI4.mft File: 5CnUKeZreXs9ihy-JJFXetw4pI4.mft (raw, json) Hash identifier: G8mFBDk3FQ8Dfr15AfnfINXBg5/PM7upx3BGKjKTIH8= Subject key identifier: 13:D6:43:00:ED:16:69:16:0B:27:88:E4:4D:87:E3:D7:65:2A:B1:BA Authority key identifier: E4:29:D4:29:E6:6B:79:7B:3D:8A:1C:BE:24:91:57:7A:DC:38:A4:8E Certificate issuer: /CN=A91CC711/serialNumber=E429D429E66B797B3D8A1CBE2491577ADC38A48E Certificate serial: 012C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CnUKeZreXs9ihy-JJFXetw4pI4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC711/C7D1B0541EE311EF90D21234C4F9AE02/5CnUKeZreXs9ihy-JJFXetw4pI4.mft Manifest number: 010C Signing time: Sat 23 Aug 2025 05:32:09 +0000 Manifest this update: Sat 23 Aug 2025 05:32:08 +0000 Manifest next update: Sat 30 Aug 2025 05:32:08 +0000 Files and hashes: 1: 5CnUKeZreXs9ihy-JJFXetw4pI4.crl (hash: cBT2QswzIzx0TUyGHTu/R6iTgAcYQPDl5f7NqaH+vno=) 2: 06FA65A81F2711EF98DA2926C4F9AE02.roa (hash: oS4PRK+VFwkVhFqqmzFtlUlVZ/0tESve4AVvdpaS7tg=) 3: 25ED44B41EE411EFA62B1335C4F9AE02.roa (hash: zb91MkoqcDkuzuZwD7VYBRLCNDf9oSeL0ikN94ozVn8=) 4: A7FC5DEE8D0411EFBD7A0057C4F9AE02.roa (hash: TGsIq74Qma+U6c7Ey8qeEz04VjG5STVU5SpvAS46Q6U=) 5: 359CBDB28D0D11EF90882959C4F9AE02.roa (hash: qdwbcsIyL1f3wI2tO7dwB6BR0n7SfSV/G7xRpNDHqtU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC711/C7D1B0541EE311EF90D21234C4F9AE02/5CnUKeZreXs9ihy-JJFXetw4pI4.crl rsync://rpki.apnic.net/member_repository/A91CC711/C7D1B0541EE311EF90D21234C4F9AE02/5CnUKeZreXs9ihy-JJFXetw4pI4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CnUKeZreXs9ihy-JJFXetw4pI4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 300 (0x12c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC711, serialNumber=E429D429E66B797B3D8A1CBE2491577ADC38A48E Validity Not Before: Aug 23 05:32:08 2025 GMT Not After : Aug 30 05:32:08 2025 GMT Subject: CN=68a95258-5689 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:a9:4f:91:64:a8:ce:1c:72:ad:9b:54:37:6a: f9:2c:1f:1e:0a:d7:b3:93:74:1b:40:0a:99:d7:52: a5:7c:be:a1:f5:d6:98:38:a5:6d:4e:7c:8c:c2:92: 14:5b:2a:a3:40:5b:d9:ad:bc:f3:d8:64:b4:de:ad: 95:fa:93:bd:8d:0c:62:2c:59:12:6e:fd:7a:43:aa: a4:51:dd:5e:61:6f:81:aa:fd:70:31:48:f5:50:7c: 2f:ee:47:de:29:0e:ac:9a:94:24:92:23:94:76:2e: c2:9f:0c:f1:de:0e:33:5b:3e:df:16:c6:b3:b5:b4: 9c:71:06:97:6a:51:bf:d5:68:b3:1e:c6:c8:49:7b: 27:40:ad:73:41:1b:1a:d7:ce:09:09:ab:c9:95:39: 29:bb:89:b4:e4:d3:d0:cd:14:0b:71:cb:8a:23:18: fc:c4:cd:f5:4f:a5:49:2a:e0:79:bb:68:53:d2:39: cd:be:53:ed:4e:3d:33:a5:ed:bb:6b:93:62:61:69: 04:93:9e:9b:4a:78:c0:a3:11:db:3e:64:08:9f:81: f8:61:01:2c:c1:f2:42:77:79:64:5b:8d:79:5b:eb: 97:68:21:f6:19:01:c5:1c:de:f8:bf:d5:9a:b7:d4: 63:c9:1c:3e:56:1a:5a:dc:d4:6e:85:16:bf:19:34: a0:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:D6:43:00:ED:16:69:16:0B:27:88:E4:4D:87:E3:D7:65:2A:B1:BA X509v3 Authority Key Identifier: keyid:E4:29:D4:29:E6:6B:79:7B:3D:8A:1C:BE:24:91:57:7A:DC:38:A4:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC711/C7D1B0541EE311EF90D21234C4F9AE02/5CnUKeZreXs9ihy-JJFXetw4pI4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CnUKeZreXs9ihy-JJFXetw4pI4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC711/C7D1B0541EE311EF90D21234C4F9AE02/5CnUKeZreXs9ihy-JJFXetw4pI4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:3f:82:59:35:5a:c0:48:dc:36:e6:0c:fc:ca:f4:6f:a2:45: c0:53:cd:bf:e7:13:e9:a5:02:86:98:db:1e:32:53:b3:ec:5d: e0:f9:a3:80:f5:78:0d:dc:14:06:26:4e:19:f1:83:47:70:0b: b0:80:83:d4:20:e1:d6:2b:4a:27:fe:f2:a2:39:4a:2d:04:48: 8f:67:20:bc:77:2b:4f:91:d9:a9:f5:6e:1e:1e:89:a6:e2:c2: b0:da:30:7a:23:b3:3a:1d:cf:98:a7:ac:d1:e5:43:e2:d5:2c: 8d:6e:e2:bb:96:d3:94:04:ec:eb:ce:17:77:ef:c7:1f:16:a7: eb:a4:df:f6:bd:17:31:66:8b:c9:f5:69:7e:73:39:b0:32:82: 01:8e:20:72:17:07:40:fa:f4:56:05:33:3a:85:73:23:90:66: df:04:3a:56:c9:1f:6c:ca:c3:b5:e9:98:0f:0b:2a:11:1a:fb: a2:c9:6c:3d:26:9e:2d:84:d9:9d:8c:45:43:95:57:5d:fd:70: 37:00:7d:7b:d1:b6:de:8e:b1:40:7a:4a:99:17:16:1f:83:83: 9a:ba:7d:61:67:fd:67:8a:ad:55:6f:d7:2a:40:0e:c8:fd:fc: 8e:58:79:24:ac:5d:7a:87:ae:36:4b:d5:d1:ed:5d:d7:3e:8d: 1b:5f:d5:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0M3MTExMTAvBgNVBAUTKEU0MjlENDI5RTY2Qjc5N0IzRDhBMUNCRTI0OTE1NzdB REMzOEE0OEUwHhcNMjUwODIzMDUzMjA4WhcNMjUwODMwMDUzMjA4WjAYMRYwFAYD VQQDEw02OGE5NTI1OC01Njg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxqlPkWSozhxyrZtUN2r5LB8eCtezk3QbQAqZ11KlfL6h9daYOKVtTnyMwpIU WyqjQFvZrbzz2GS03q2V+pO9jQxiLFkSbv16Q6qkUd1eYW+Bqv1wMUj1UHwv7kfe KQ6smpQkkiOUdi7Cnwzx3g4zWz7fFsaztbSccQaXalG/1WizHsbISXsnQK1zQRsa 184JCavJlTkpu4m05NPQzRQLccuKIxj8xM31T6VJKuB5u2hT0jnNvlPtTj0zpe27 a5NiYWkEk56bSnjAoxHbPmQIn4H4YQEswfJCd3lkW415W+uXaCH2GQHFHN74v9Wa t9RjyRw+Vhpa3NRuhRa/GTSgmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBPWQwDt FmkWCyeI5E2H49dlKrG6MB8GA1UdIwQYMBaAFOQp1Cnma3l7PYocviSRV3rcOKSO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzcxMS9DN0QxQjA1NDFF RTMxMUVGOTBEMjEyMzRDNEY5QUUwMi81Q25VS2VacmVYczlpaHktSkpGWGV0dzRw STQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVDblVLZVpyZVhzOWloeS1KSkZYZXR3NHBJNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QzcxMS9DN0QxQjA1NDFFRTMxMUVGOTBEMjEyMzRDNEY5QUUwMi81Q25VS2VacmVY czlpaHktSkpGWGV0dzRwSTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcP4JZNVrASNw25gz8yvRvokXAU82/5xPppQKGmNseMlOz7F3g+aOA 9XgN3BQGJk4Z8YNHcAuwgIPUIOHWK0on/vKiOUotBEiPZyC8dytPkdmp9W4eHomm 4sKw2jB6I7M6Hc+Yp6zR5UPi1SyNbuK7ltOUBOzrzhd378cfFqfrpN/2vRcxZovJ 9Wl+czmwMoIBjiByFwdA+vRWBTM6hXMjkGbfBDpWyR9sysO16ZgPCyoRGvuiyWw9 Jp4thNmdjEVDlVdd/XA3AH170bbejrFAekqZFxYfg4Oaun1hZ/1niq1Vb9cqQA7I /fyOWHkkrF16h642S9XR7V3XPo0bX9UN -----END CERTIFICATE-----Generated at Sat Aug 23 21:34:06 2025 by rpki-client