$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft File: 5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft (raw, json) Hash identifier: xfDYuq1Edifs1TrLks+Z3hlzC94jd22cwFchhvNNeUc= Subject key identifier: E8:F3:D4:EB:0D:62:84:79:AF:C9:DB:3C:F3:CA:4C:64:D2:9D:9C:68 Authority key identifier: E4:5F:61:EF:BC:B2:E7:B1:E4:14:B2:CB:DC:34:50:F7:F8:46:18:9D Certificate issuer: /CN=A91E4ED1/serialNumber=E45F61EFBCB2E7B1E414B2CBDC3450F7F846189D Certificate serial: 0C4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5F9h77yy57HkFLLL3DRQ9_hGGJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft Manifest number: 0C4A Signing time: Fri 22 Aug 2025 18:39:31 +0000 Manifest this update: Fri 22 Aug 2025 18:39:31 +0000 Manifest next update: Fri 29 Aug 2025 18:39:31 +0000 Files and hashes: 1: 5F9h77yy57HkFLLL3DRQ9_hGGJ0.crl (hash: rB8KO2usfIVPoykNinQgHf44zECQfqH67+/dJRaBHOQ=) 2: D77C5AC003E611F0A9F5535FC4F9AE02.roa (hash: C3dI3f47oUkTpODJD7lPzsLlPec49Cck1X3kjiuVXDM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.crl rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5F9h77yy57HkFLLL3DRQ9_hGGJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3148 (0xc4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4ED1, serialNumber=E45F61EFBCB2E7B1E414B2CBDC3450F7F846189D Validity Not Before: Aug 22 18:39:31 2025 GMT Not After : Aug 29 18:39:31 2025 GMT Subject: CN=68a8b963-e2fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:77:1c:dd:be:98:0a:ae:78:de:1a:4d:42:d0: cf:4e:72:19:56:f3:36:1c:13:79:a8:9d:bb:ed:6a: d8:9b:43:0f:88:93:25:d5:a5:91:f6:86:1c:8b:85: 8e:cf:6f:67:4b:6d:ac:de:79:f9:6b:35:43:1b:97: 63:a6:2e:f3:bb:79:27:de:ef:e9:f4:18:6a:4d:9f: 3f:c3:3a:c4:24:fa:fb:8f:7d:9a:c2:16:1c:03:5f: d9:48:7d:c6:e3:49:b1:75:88:a0:f5:8a:67:f4:19: 0b:07:98:95:53:b5:c4:6f:73:59:3f:a5:0d:0c:c8: 40:e6:30:c2:9b:5b:50:71:98:f6:2a:88:bd:f3:f4: 99:cc:d4:b1:fe:b1:fc:e7:57:58:48:9c:aa:48:de: 78:bb:06:9c:21:d1:89:7e:1a:54:4e:1e:7e:1f:10: e1:d9:7c:49:5d:64:54:e1:83:1d:93:b9:68:75:fe: 73:3c:6f:4a:3f:f1:2f:b0:bd:d4:d4:7f:d8:01:09: 78:01:c5:dc:f7:af:df:1a:da:08:c6:f4:7d:4d:61: c1:cd:9f:ce:43:d5:79:77:75:05:01:2a:2a:97:26: 3e:65:29:f8:ed:d3:9e:9e:68:d6:58:b6:45:52:56: e0:90:f5:20:5f:00:a7:63:15:84:38:e0:9e:39:3c: 79:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:F3:D4:EB:0D:62:84:79:AF:C9:DB:3C:F3:CA:4C:64:D2:9D:9C:68 X509v3 Authority Key Identifier: keyid:E4:5F:61:EF:BC:B2:E7:B1:E4:14:B2:CB:DC:34:50:F7:F8:46:18:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5F9h77yy57HkFLLL3DRQ9_hGGJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:e1:d5:d0:ec:f7:2f:84:22:df:c6:2d:8c:9a:4c:d8:fc:ce: 5f:4d:3f:8d:3a:ed:6e:72:04:d4:b5:8f:bb:b0:f9:7e:4d:3a: b4:c9:b2:54:ee:82:80:ad:6b:30:70:32:c0:3d:79:55:f1:80: 96:c0:f2:c5:f3:99:6a:18:b3:2e:9c:7e:4f:cf:09:f9:2f:59: 06:ea:18:74:76:a8:d0:97:74:f3:91:fc:35:91:63:51:63:22: 6c:b9:9e:e6:78:63:e1:99:68:56:cf:4e:7c:c3:ab:4b:c0:4b: be:2c:1b:67:27:0a:44:c4:63:8d:61:ce:a2:5b:06:a9:a3:cf: 03:17:01:8b:2e:51:a9:b2:37:4e:bf:cd:90:e0:ce:72:3e:85: c4:4a:62:f0:3c:69:d4:75:95:e1:97:20:3a:d3:0d:d5:15:4a: 6d:88:59:b6:4e:9e:75:6a:78:de:5f:22:02:51:e6:fb:8d:71: 6a:40:89:70:ce:6a:49:ab:da:a1:70:7c:a9:c3:f4:b4:f0:a1: a0:bd:bc:6e:df:03:c3:70:cf:21:1b:a2:12:27:77:a0:78:e0: df:a9:64:83:61:4d:6d:0b:4b:65:ba:8d:db:a7:43:61:6c:8a: 53:0d:d6:0d:20:99:1d:2a:ec:a8:cd:2d:0a:ca:43:3e:b5:1e: 73:51:f6:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRFRDExMTAvBgNVBAUTKEU0NUY2MUVGQkNCMkU3QjFFNDE0QjJDQkRDMzQ1MEY3 Rjg0NjE4OUQwHhcNMjUwODIyMTgzOTMxWhcNMjUwODI5MTgzOTMxWjAYMRYwFAYD VQQDEw02OGE4Yjk2My1lMmZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyncc3b6YCq543hpNQtDPTnIZVvM2HBN5qJ277WrYm0MPiJMl1aWR9oYci4WO z29nS22s3nn5azVDG5djpi7zu3kn3u/p9BhqTZ8/wzrEJPr7j32awhYcA1/ZSH3G 40mxdYig9Ypn9BkLB5iVU7XEb3NZP6UNDMhA5jDCm1tQcZj2Koi98/SZzNSx/rH8 51dYSJyqSN54uwacIdGJfhpUTh5+HxDh2XxJXWRU4YMdk7lodf5zPG9KP/EvsL3U 1H/YAQl4AcXc96/fGtoIxvR9TWHBzZ/OQ9V5d3UFASoqlyY+ZSn47dOenmjWWLZF UlbgkPUgXwCnYxWEOOCeOTx5dwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOjz1OsN YoR5r8nbPPPKTGTSnZxoMB8GA1UdIwQYMBaAFORfYe+8suex5BSyy9w0UPf4Rhid MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEVEMS81RkRENzhCMjBC NjQxMUVBOTA5MjMwNjZDNEY5QUUwMi81RjloNzd5eTU3SGtGTExMM0RSUTlfaEdH SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVGOWg3N3l5NTdIa0ZMTEwzRFJROV9oR0dKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEVEMS81RkRENzhCMjBCNjQxMUVBOTA5MjMwNjZDNEY5QUUwMi81RjloNzd5eTU3 SGtGTExMM0RSUTlfaEdHSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBW4dXQ7PcvhCLfxi2MmkzY/M5fTT+NOu1ucgTUtY+7sPl+TTq0ybJU 7oKArWswcDLAPXlV8YCWwPLF85lqGLMunH5Pzwn5L1kG6hh0dqjQl3Tzkfw1kWNR YyJsuZ7meGPhmWhWz058w6tLwEu+LBtnJwpExGONYc6iWwapo88DFwGLLlGpsjdO v82Q4M5yPoXESmLwPGnUdZXhlyA60w3VFUptiFm2Tp51anjeXyICUeb7jXFqQIlw zmpJq9qhcHypw/S08KGgvbxu3wPDcM8hG6ISJ3egeODfqWSDYU1tC0tluo3bp0Nh bIpTDdYNIJkdKuyozS0KykM+tR5zUfb9 -----END CERTIFICATE-----Generated at Sat Aug 23 19:13:03 2025 by rpki-client