$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3CA7/3F0E0E06F46111EC823CA07CC4F9AE02/05fnjG3TxpaFEzQVMschiNd1Z68.mft File: 05fnjG3TxpaFEzQVMschiNd1Z68.mft (raw, json) Hash identifier: nLrJAbUTfxULDu3CnWCB3dn+JZQrFMmSxmOVZnChejk= Subject key identifier: 62:2D:D5:EB:55:63:F8:E3:71:EC:B5:E1:12:33:F0:46:FD:04:91:B6 Authority key identifier: D3:97:E7:8C:6D:D3:C6:96:85:13:34:15:32:C7:21:88:D7:75:67:AF Certificate issuer: /CN=A91D3CA7/serialNumber=D397E78C6DD3C6968513341532C72188D77567AF Certificate serial: 02EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/05fnjG3TxpaFEzQVMschiNd1Z68.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3CA7/3F0E0E06F46111EC823CA07CC4F9AE02/05fnjG3TxpaFEzQVMschiNd1Z68.mft Manifest number: 02E5 Signing time: Sat 23 Aug 2025 01:33:26 +0000 Manifest this update: Sat 23 Aug 2025 01:33:25 +0000 Manifest next update: Sat 30 Aug 2025 01:33:25 +0000 Files and hashes: 1: 05fnjG3TxpaFEzQVMschiNd1Z68.crl (hash: uTjYDp/LgVKyU4SK/ajT5W8I16L+fPqKh5GOC2/UyL0=) 2: DE183F1CF46611EC815F7283C4F9AE02.roa (hash: 9MdpJxrwdV0aU1f/zX8n/hykvTdPQn1kKe0kWScV57Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3CA7/3F0E0E06F46111EC823CA07CC4F9AE02/05fnjG3TxpaFEzQVMschiNd1Z68.crl rsync://rpki.apnic.net/member_repository/A91D3CA7/3F0E0E06F46111EC823CA07CC4F9AE02/05fnjG3TxpaFEzQVMschiNd1Z68.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/05fnjG3TxpaFEzQVMschiNd1Z68.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:33:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 746 (0x2ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3CA7, serialNumber=D397E78C6DD3C6968513341532C72188D77567AF Validity Not Before: Aug 23 01:33:25 2025 GMT Not After : Aug 30 01:33:25 2025 GMT Subject: CN=68a91a65-294b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:64:a2:17:c0:6d:db:ca:39:34:52:1c:a1:c1: 18:39:48:63:1b:7b:e8:c6:63:32:c6:23:ec:0a:cb: 15:ab:cd:36:c1:19:61:76:f7:48:cc:96:6c:7c:1f: e9:f1:e4:26:a4:ee:d6:11:50:60:3a:50:69:28:dd: c9:51:86:78:df:92:2c:a5:ee:81:41:34:1d:dc:f3: a5:8b:01:bd:fa:76:b1:73:1c:40:73:ba:25:be:71: 48:50:8a:48:59:29:4a:64:d3:38:a0:c7:39:d0:98: 65:30:41:78:0c:dd:33:25:ab:d6:ed:1c:54:ee:9c: 8d:dd:86:aa:05:0c:3f:a3:ec:d9:02:98:f3:14:13: b3:af:42:49:52:cd:41:e1:63:2e:6b:0f:57:0b:b1: fb:c4:fc:65:30:e9:e2:63:10:bb:d3:c7:a7:f0:e0: 79:f2:ee:c5:d6:fa:ca:76:22:a6:fb:8d:de:10:e1: 06:94:1d:1f:4e:3f:d1:82:06:90:3d:1a:1a:8f:69: 64:f9:3e:e5:c4:39:6f:56:18:48:e3:ea:c2:15:14: 60:c3:77:25:be:52:4f:b3:8c:55:bc:79:df:76:93: d2:84:d2:be:77:4d:25:54:8b:83:eb:b9:fd:fc:a7: ec:85:61:d5:89:28:52:c2:8a:ef:7a:98:bf:98:63: ef:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:2D:D5:EB:55:63:F8:E3:71:EC:B5:E1:12:33:F0:46:FD:04:91:B6 X509v3 Authority Key Identifier: keyid:D3:97:E7:8C:6D:D3:C6:96:85:13:34:15:32:C7:21:88:D7:75:67:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3CA7/3F0E0E06F46111EC823CA07CC4F9AE02/05fnjG3TxpaFEzQVMschiNd1Z68.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/05fnjG3TxpaFEzQVMschiNd1Z68.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3CA7/3F0E0E06F46111EC823CA07CC4F9AE02/05fnjG3TxpaFEzQVMschiNd1Z68.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:dc:ed:f9:40:5c:d6:7f:e8:3e:97:54:e3:f3:ec:a8:c7:b5: f1:b9:4f:c9:03:86:e3:0a:f0:76:b7:af:0d:64:0a:0b:f5:04: 54:96:0b:08:36:3d:3a:d8:90:c6:23:52:9b:a5:1f:74:f6:a7: 00:69:07:e3:24:93:51:8d:98:b5:8f:6b:f4:4c:9b:54:9e:e6: d8:36:89:34:9e:82:1e:1a:41:90:37:03:b7:1d:4d:69:2f:93: 1a:3d:51:d8:80:54:6a:6b:5a:01:22:bf:44:f5:2b:2f:62:10: b1:7a:86:f5:df:2b:a0:bb:d5:41:f0:9f:2b:41:8a:9b:72:aa: 9b:99:4b:3f:bc:fb:0d:9b:b8:2c:40:0a:77:de:61:10:ba:77: 34:1f:30:28:3c:d2:98:1f:7e:64:b0:df:cd:f9:c6:2c:6d:84: e1:73:dd:68:03:28:bf:68:f9:31:f5:87:bc:4f:6a:b5:c2:2f: 9f:65:28:bc:3b:0b:b8:44:58:a9:72:85:1e:c7:c9:e2:db:6e: ca:40:37:9a:12:5b:dc:b6:63:c4:95:9f:2c:2d:a9:65:83:e2: a4:88:dc:2d:26:aa:8e:8d:e7:8e:98:93:4e:c8:25:34:65:4f: f7:53:17:d6:56:5d:5b:b0:6e:98:da:93:ec:4d:ca:c1:d0:33: cd:48:5e:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAuowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDNDQTcxMTAvBgNVBAUTKEQzOTdFNzhDNkREM0M2OTY4NTEzMzQxNTMyQzcyMTg4 RDc3NTY3QUYwHhcNMjUwODIzMDEzMzI1WhcNMjUwODMwMDEzMzI1WjAYMRYwFAYD VQQDEw02OGE5MWE2NS0yOTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnGSiF8Bt28o5NFIcocEYOUhjG3voxmMyxiPsCssVq802wRlhdvdIzJZsfB/p 8eQmpO7WEVBgOlBpKN3JUYZ435Ispe6BQTQd3POliwG9+naxcxxAc7olvnFIUIpI WSlKZNM4oMc50JhlMEF4DN0zJavW7RxU7pyN3YaqBQw/o+zZApjzFBOzr0JJUs1B 4WMuaw9XC7H7xPxlMOniYxC708en8OB58u7F1vrKdiKm+43eEOEGlB0fTj/RggaQ PRoaj2lk+T7lxDlvVhhI4+rCFRRgw3clvlJPs4xVvHnfdpPShNK+d00lVIuD67n9 /KfshWHViShSworvepi/mGPvzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGIt1etV Y/jjcey14RIz8Eb9BJG2MB8GA1UdIwQYMBaAFNOX54xt08aWhRM0FTLHIYjXdWev MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEM0NBNy8zRjBFMEUwNkY0 NjExMUVDODIzQ0EwN0NDNEY5QUUwMi8wNWZuakczVHhwYUZFelFWTXNjaGlOZDFa NjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA1Zm5qRzNUeHBhRkV6UVZNc2NoaU5kMVo2OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE M0NBNy8zRjBFMEUwNkY0NjExMUVDODIzQ0EwN0NDNEY5QUUwMi8wNWZuakczVHhw YUZFelFWTXNjaGlOZDFaNjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/3O35QFzWf+g+l1Tj8+yox7XxuU/JA4bjCvB2t68NZAoL9QRUlgsI Nj062JDGI1KbpR909qcAaQfjJJNRjZi1j2v0TJtUnubYNok0noIeGkGQNwO3HU1p L5MaPVHYgFRqa1oBIr9E9SsvYhCxeob13yugu9VB8J8rQYqbcqqbmUs/vPsNm7gs QAp33mEQunc0HzAoPNKYH35ksN/N+cYsbYThc91oAyi/aPkx9Ye8T2q1wi+fZSi8 Owu4RFipcoUex8ni227KQDeaElvctmPElZ8sLallg+KkiNwtJqqOjeeOmJNOyCU0 ZU/3UxfWVl1bsG6Y2pPsTcrB0DPNSF7e -----END CERTIFICATE-----Generated at Sun Aug 24 05:04:37 2025 by rpki-client