$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9CA8/2932C588E4FD11EFAC1CE67FC4F9AE02/5JdLhBatO5ndEfOwQFbwx5m3ocs.mft File: 5JdLhBatO5ndEfOwQFbwx5m3ocs.mft (raw, json) Hash identifier: 0Em+mE4Y6tbQgemh6bzVfkVFP4dHNWQNicMV4KJWKDI= Subject key identifier: CF:E6:3F:64:8C:E2:5B:8F:C6:56:06:1A:0E:6C:78:08:25:56:21:95 Authority key identifier: E4:97:4B:84:16:AD:3B:99:DD:11:F3:B0:40:56:F0:C7:99:B7:A1:CB Certificate issuer: /CN=A91D9CA8/serialNumber=E4974B8416AD3B99DD11F3B04056F0C799B7A1CB Certificate serial: 65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5JdLhBatO5ndEfOwQFbwx5m3ocs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9CA8/2932C588E4FD11EFAC1CE67FC4F9AE02/5JdLhBatO5ndEfOwQFbwx5m3ocs.mft Manifest number: 65 Signing time: Sat 23 Aug 2025 07:14:24 +0000 Manifest this update: Sat 23 Aug 2025 07:14:24 +0000 Manifest next update: Sat 30 Aug 2025 07:14:24 +0000 Files and hashes: 1: 5JdLhBatO5ndEfOwQFbwx5m3ocs.crl (hash: 61qPUFUi/6tGAIs4PZ2Khb3j4laFgwLxt+ANwrlye6o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9CA8/2932C588E4FD11EFAC1CE67FC4F9AE02/5JdLhBatO5ndEfOwQFbwx5m3ocs.crl rsync://rpki.apnic.net/member_repository/A91D9CA8/2932C588E4FD11EFAC1CE67FC4F9AE02/5JdLhBatO5ndEfOwQFbwx5m3ocs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5JdLhBatO5ndEfOwQFbwx5m3ocs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:14:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 101 (0x65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9CA8, serialNumber=E4974B8416AD3B99DD11F3B04056F0C799B7A1CB Validity Not Before: Aug 23 07:14:24 2025 GMT Not After : Aug 30 07:14:24 2025 GMT Subject: CN=68a96a50-91a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:c0:18:44:9c:c5:cc:b2:94:bf:c3:a3:85:62: 20:ec:c6:82:65:31:c3:3d:ae:10:b2:d1:14:be:41: d7:6b:aa:61:96:4c:d0:c1:07:2a:db:14:f3:e3:8a: 0c:d2:0e:51:cc:f3:5a:61:cb:54:a4:df:6b:20:c3: 47:14:ab:fb:12:3e:18:cc:9f:aa:b6:0f:d0:00:16: 31:ce:12:6f:ed:fb:a5:ca:5c:e2:6b:e4:ad:29:54: 6a:18:70:3e:a8:e4:0c:b3:e2:32:ac:7e:1a:98:78: 5e:26:18:fd:76:81:e1:fa:35:f0:66:f5:e0:56:13: 8b:31:e7:4d:60:aa:cd:4b:95:81:35:0f:58:5e:fa: e0:21:eb:8e:0f:b1:f4:08:fe:57:8a:99:89:d6:cd: 15:e1:95:63:4f:40:33:7d:19:ef:21:19:18:c9:a9: 69:b5:2d:72:cb:27:67:0d:a4:cc:0d:91:21:80:09: f5:e2:78:72:90:83:e3:7b:67:f9:bd:df:b6:a0:8e: 90:2f:48:22:be:12:0d:a4:92:f2:09:01:c4:55:fc: 20:c3:88:97:07:48:31:60:7a:87:94:2d:56:5d:a7: 52:b0:97:eb:52:ac:01:f4:ca:ac:22:27:8a:b3:d1: c9:08:d6:d6:f7:c2:1e:ab:24:9e:84:64:e4:df:53: ca:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:E6:3F:64:8C:E2:5B:8F:C6:56:06:1A:0E:6C:78:08:25:56:21:95 X509v3 Authority Key Identifier: keyid:E4:97:4B:84:16:AD:3B:99:DD:11:F3:B0:40:56:F0:C7:99:B7:A1:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/2932C588E4FD11EFAC1CE67FC4F9AE02/5JdLhBatO5ndEfOwQFbwx5m3ocs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5JdLhBatO5ndEfOwQFbwx5m3ocs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/2932C588E4FD11EFAC1CE67FC4F9AE02/5JdLhBatO5ndEfOwQFbwx5m3ocs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:69:df:71:f7:93:a8:39:05:a3:bd:a3:fd:6b:05:9c:71:28: a8:88:a5:77:1a:29:1b:24:7b:08:bf:a3:31:67:b8:a1:46:9b: ad:88:22:72:cc:d3:a7:86:76:bc:2c:af:81:0c:a3:4d:af:d1: 87:6b:ed:e0:5c:47:de:f4:9e:38:de:54:0f:33:31:16:a0:7a: ca:95:8e:9e:7a:3d:17:28:78:03:30:84:f9:6a:59:c1:3d:89: 68:5a:6f:a6:25:6d:19:d1:77:d4:4c:96:c2:3f:db:09:c9:44: 61:a4:ad:2e:50:c0:d2:81:8c:c0:4a:35:dc:2e:1c:a5:b3:88: 7a:0a:2d:b2:94:c1:b0:e6:74:8d:82:9d:fd:e9:84:db:0b:18: 60:24:fb:2a:6d:6e:d8:d1:05:25:77:6a:08:63:8e:fc:8a:61: 2b:37:d4:c8:d4:be:48:3b:90:53:16:ce:8d:69:82:44:69:e3: 44:2c:67:15:11:18:59:53:07:93:88:17:32:e4:53:22:ae:39: 1c:13:8f:57:d9:5e:f9:5a:95:49:51:8f:ad:5d:05:21:cc:5e: 6a:7b:f0:4a:1c:f4:54:fd:fc:0e:35:84:ce:f5:9b:f1:f1:a3: 66:d5:67:08:a2:35:41:0c:39:51:92:7a:d6:35:ad:12:74:55: ac:20:c0:e6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE OUNBODExMC8GA1UEBRMoRTQ5NzRCODQxNkFEM0I5OUREMTFGM0IwNDA1NkYwQzc5 OUI3QTFDQjAeFw0yNTA4MjMwNzE0MjRaFw0yNTA4MzAwNzE0MjRaMBgxFjAUBgNV BAMTDTY4YTk2YTUwLTkxYTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCkwBhEnMXMspS/w6OFYiDsxoJlMcM9rhCy0RS+QddrqmGWTNDBByrbFPPjigzS DlHM81phy1Sk32sgw0cUq/sSPhjMn6q2D9AAFjHOEm/t+6XKXOJr5K0pVGoYcD6o 5Ayz4jKsfhqYeF4mGP12geH6NfBm9eBWE4sx501gqs1LlYE1D1he+uAh644PsfQI /leKmYnWzRXhlWNPQDN9Ge8hGRjJqWm1LXLLJ2cNpMwNkSGACfXieHKQg+N7Z/m9 37agjpAvSCK+Eg2kkvIJAcRV/CDDiJcHSDFgeoeULVZdp1Kwl+tSrAH0yqwiJ4qz 0ckI1tb3wh6rJJ6EZOTfU8r1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUz+Y/ZIzi W4/GVgYaDmx4CCVWIZUwHwYDVR0jBBgwFoAU5JdLhBatO5ndEfOwQFbwx5m3ocsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5Q0E4LzI5MzJDNTg4RTRG RDExRUZBQzFDRTY3RkM0RjlBRTAyLzVKZExoQmF0TzVuZEVmT3dRRmJ3eDVtM29j cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNUpkTGhCYXRPNW5kRWZPd1FGYnd4NW0zb2NzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5 Q0E4LzI5MzJDNTg4RTRGRDExRUZBQzFDRTY3RkM0RjlBRTAyLzVKZExoQmF0TzVu ZEVmT3dRRmJ3eDVtM29jcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABxp33H3k6g5BaO9o/1rBZxxKKiIpXcaKRskewi/ozFnuKFGm62IInLM 06eGdrwsr4EMo02v0Ydr7eBcR970njjeVA8zMRagesqVjp56PRcoeAMwhPlqWcE9 iWhab6YlbRnRd9RMlsI/2wnJRGGkrS5QwNKBjMBKNdwuHKWziHoKLbKUwbDmdI2C nf3phNsLGGAk+yptbtjRBSV3aghjjvyKYSs31MjUvkg7kFMWzo1pgkRp40QsZxUR GFlTB5OIFzLkUyKuORwTj1fZXvlalUlRj61dBSHMXmp78Eoc9FT9/A41hM71m/Hx o2bVZwiiNUEMOVGSetY1rRJ0VawgwOY= -----END CERTIFICATE-----Generated at Sat Aug 23 17:10:36 2025 by rpki-client