$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.mft File: 5dmsjXWxbbnyPICt2LO72OWLaHg.mft (raw, json) Hash identifier: HUKKn9qvH22Fx+S/cdjc+EjX4etQfHCY2RQZXjaRUdk= Subject key identifier: E7:FD:C9:7B:C0:C9:6A:18:7E:6D:0F:EB:5F:B7:84:8A:26:3C:BD:7C Authority key identifier: E5:D9:AC:8D:75:B1:6D:B9:F2:3C:80:AD:D8:B3:BB:D8:E5:8B:68:78 Certificate issuer: /CN=A91D8400/serialNumber=E5D9AC8D75B16DB9F23C80ADD8B3BBD8E58B6878 Certificate serial: 0427 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5dmsjXWxbbnyPICt2LO72OWLaHg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.mft Manifest number: 0422 Signing time: Sat 23 Aug 2025 00:34:20 +0000 Manifest this update: Sat 23 Aug 2025 00:34:20 +0000 Manifest next update: Sat 30 Aug 2025 00:34:19 +0000 Files and hashes: 1: 5dmsjXWxbbnyPICt2LO72OWLaHg.crl (hash: B0C7DBmLziUSRY3zQfCnK77HHVQ8dJlQ8wU34dx0tVQ=) 2: 46C1646C781611ECADCDAB0EC4F9AE02.roa (hash: X0bJVDOuH3hxzxDqtFhaGE8zyPysnrk6jtT4gfdw6QQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.crl rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5dmsjXWxbbnyPICt2LO72OWLaHg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:34:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1063 (0x427) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8400, serialNumber=E5D9AC8D75B16DB9F23C80ADD8B3BBD8E58B6878 Validity Not Before: Aug 23 00:34:20 2025 GMT Not After : Aug 30 00:34:19 2025 GMT Subject: CN=68a90c8c-4151 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:d7:77:f7:db:af:4f:b0:13:28:5b:c3:80:6d: 3c:84:42:af:28:3d:50:91:fc:7b:7a:30:99:57:6d: 87:92:8c:6f:67:c8:88:71:46:a0:20:19:57:d2:3f: 64:9e:7c:89:6e:b7:c3:3c:a7:6e:b6:54:48:84:9c: d0:85:d7:fc:03:ce:6e:b9:c1:6c:b1:93:0c:ba:be: 3a:e2:59:3e:67:4b:c3:06:49:7b:d7:71:c7:5e:cd: df:c1:82:c2:67:cd:08:13:1e:61:ff:07:8e:e4:5d: 8c:aa:02:a2:8f:90:96:ac:d7:f4:4d:df:4c:c0:74: 48:3f:22:c9:61:13:be:a2:16:72:4c:fa:b7:98:84: a9:5f:71:f0:4e:14:bb:d4:0c:25:a3:1d:03:f6:6c: ae:08:4d:3d:57:55:39:f0:57:d7:57:4e:d5:c8:21: 08:b1:7b:98:dc:3f:cf:6c:3f:78:c9:e2:c6:d2:35: 3d:8a:b1:d9:dd:bb:81:f9:91:0e:be:9d:64:96:ee: ef:c8:4f:70:7d:fd:9b:f7:ff:ee:e6:d1:31:05:03: 0c:7a:9c:19:d9:ff:a7:5f:ac:05:17:75:e0:4e:94: 83:43:13:ee:0f:f0:bb:3b:db:48:da:82:19:80:45: 88:51:90:9c:81:fb:10:38:f1:c0:f3:ad:25:96:da: 61:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:FD:C9:7B:C0:C9:6A:18:7E:6D:0F:EB:5F:B7:84:8A:26:3C:BD:7C X509v3 Authority Key Identifier: keyid:E5:D9:AC:8D:75:B1:6D:B9:F2:3C:80:AD:D8:B3:BB:D8:E5:8B:68:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5dmsjXWxbbnyPICt2LO72OWLaHg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:6a:ec:c6:74:4f:79:23:34:6b:e3:71:51:4d:2b:9e:3c:db: da:9b:5b:4b:95:a7:67:96:42:29:b2:b5:21:c2:2b:48:2e:a4: 45:89:f3:1c:45:d5:63:a4:21:64:de:1f:35:79:83:be:8b:f5: 24:ff:5f:65:4e:47:46:de:61:39:ca:b4:72:da:d6:5e:1c:40: 83:dc:3d:c1:70:f0:51:9f:86:aa:d4:09:2d:1c:e3:89:13:f6: d6:db:de:e2:56:ba:1c:d5:11:10:61:32:8a:36:63:45:c7:59: 61:91:f3:3c:b9:23:7b:d8:0a:62:68:5d:16:87:fc:94:bb:65: ac:29:12:06:24:8b:4f:7d:cc:e5:53:e3:60:85:dc:21:c5:ed: 8f:25:4f:7a:f9:7a:a4:7c:b3:b2:aa:58:f7:b4:f0:1a:9a:b5: d7:ae:cf:98:09:e5:62:b4:6b:e4:cc:4c:26:05:48:be:c4:2e: 4e:29:06:42:8a:83:21:64:d1:cf:5a:3f:59:7e:e5:b7:fd:b5: 95:5c:88:f3:b0:05:6d:61:1c:43:64:c3:a4:d5:84:b0:a0:5e: dc:29:0f:ba:d7:04:99:85:35:51:2e:54:6f:a3:60:fb:7e:c6: 10:02:c9:e8:62:cb:5a:1c:b8:bd:3a:a9:a4:32:6f:74:9b:b9: a4:89:2b:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDg0MDAxMTAvBgNVBAUTKEU1RDlBQzhENzVCMTZEQjlGMjNDODBBREQ4QjNCQkQ4 RTU4QjY4NzgwHhcNMjUwODIzMDAzNDIwWhcNMjUwODMwMDAzNDE5WjAYMRYwFAYD VQQDEw02OGE5MGM4Yy00MTUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA09d399uvT7ATKFvDgG08hEKvKD1Qkfx7ejCZV22HkoxvZ8iIcUagIBlX0j9k nnyJbrfDPKdutlRIhJzQhdf8A85uucFssZMMur464lk+Z0vDBkl713HHXs3fwYLC Z80IEx5h/weO5F2MqgKij5CWrNf0Td9MwHRIPyLJYRO+ohZyTPq3mISpX3HwThS7 1Awlox0D9myuCE09V1U58FfXV07VyCEIsXuY3D/PbD94yeLG0jU9irHZ3buB+ZEO vp1klu7vyE9wff2b9//u5tExBQMMepwZ2f+nX6wFF3XgTpSDQxPuD/C7O9tI2oIZ gEWIUZCcgfsQOPHA860lltphPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOf9yXvA yWoYfm0P61+3hIomPL18MB8GA1UdIwQYMBaAFOXZrI11sW258jyArdizu9jli2h4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODQwMC9GNjgxQkJBNDc4 MTExMUVDQTM5N0QwMzRDNEY5QUUwMi81ZG1zalhXeGJibnlQSUN0MkxPNzJPV0xh SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVkbXNqWFd4YmJueVBJQ3QyTE83Mk9XTGFIZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODQwMC9GNjgxQkJBNDc4MTExMUVDQTM5N0QwMzRDNEY5QUUwMi81ZG1zalhXeGJi bnlQSUN0MkxPNzJPV0xhSGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByauzGdE95IzRr43FRTSuePNvam1tLladnlkIpsrUhwitILqRFifMc RdVjpCFk3h81eYO+i/Uk/19lTkdG3mE5yrRy2tZeHECD3D3BcPBRn4aq1AktHOOJ E/bW297iVroc1REQYTKKNmNFx1lhkfM8uSN72ApiaF0Wh/yUu2WsKRIGJItPfczl U+Nghdwhxe2PJU96+XqkfLOyqlj3tPAamrXXrs+YCeVitGvkzEwmBUi+xC5OKQZC ioMhZNHPWj9ZfuW3/bWVXIjzsAVtYRxDZMOk1YSwoF7cKQ+61wSZhTVRLlRvo2D7 fsYQAsnoYstaHLi9OqmkMm90m7mkiSvN -----END CERTIFICATE-----Generated at Sat Aug 23 15:16:10 2025 by rpki-client