$ rpki-client -vvf rpki.apnic.net/member_repository/A91EEEB8/8E0F2CB61DA111E2B906BC9308B02CD2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.mft File: 5iLIEU8_JKpqgHyBQeOWS1UbuTA.mft (raw, json) Hash identifier: 9oPbKnfa1si8c4G27nUIFLUmfO2qA+00RjrSSCdOSfg= Subject key identifier: 51:89:3C:05:81:61:CF:BF:A7:A5:FE:D9:7F:50:74:27:72:4E:A4:02 Authority key identifier: E6:22:C8:11:4F:3F:24:AA:6A:80:7C:81:41:E3:96:4B:55:1B:B9:30 Certificate issuer: /CN=A91EEEB8/serialNumber=E622C8114F3F24AA6A807C8141E3964B551BB930 Certificate serial: 34E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EEEB8/8E0F2CB61DA111E2B906BC9308B02CD2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.mft Manifest number: 34C4 Signing time: Fri 22 Aug 2025 15:07:21 +0000 Manifest this update: Fri 22 Aug 2025 15:07:20 +0000 Manifest next update: Fri 29 Aug 2025 15:07:20 +0000 Files and hashes: 1: 5iLIEU8_JKpqgHyBQeOWS1UbuTA.crl (hash: GUcWC1GahuhGLOr5drk8QbCMIpT8OM/Mdm+zMxJOut8=) 2: 32DFCCDCEB8011EAAB806163C4F9AE02.roa (hash: d8SyVppxPlIuR4fpNFIkYTURn6Yx4CMf1TSPHGG+TtY=) 3: 9A4EE834EB8111EA87E2C165C4F9AE02.roa (hash: 2HjZqBm6c0Bz0zik/PCkuHSNvhZSOIqG0dnIWyE0YeQ=) 4: FC75A532DBAC11EA9FF2FA1FC4F9AE02.roa (hash: EbIaf/1Sy/3aBx9khl+6A1cQZxzTMmTyasNR7QqdjR8=) 5: 60DA0694D9E111EA82120960C4F9AE02.roa (hash: 0RxGIy0cRn46gMQ4a+LKJK3dXVABCl5t2jG6UZ82riU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EEEB8/8E0F2CB61DA111E2B906BC9308B02CD2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.crl rsync://rpki.apnic.net/member_repository/A91EEEB8/8E0F2CB61DA111E2B906BC9308B02CD2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:07:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13540 (0x34e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EEEB8, serialNumber=E622C8114F3F24AA6A807C8141E3964B551BB930 Validity Not Before: Aug 22 15:07:20 2025 GMT Not After : Aug 29 15:07:20 2025 GMT Subject: CN=68a887a8-4b71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e7:50:22:c0:ec:65:46:9b:b4:72:95:e1:a0: 37:e3:00:f1:d0:cd:0d:82:62:9a:71:27:52:76:15: 06:87:f8:ff:5c:b1:b3:87:52:12:1b:65:eb:d9:c1: e3:84:28:01:84:0f:90:c5:23:cf:31:4f:ab:e4:53: 48:64:91:0b:6b:31:9c:26:2d:98:22:12:c6:0a:c7: 1c:9a:bb:b5:5d:88:c9:ac:59:84:07:49:f9:04:2b: cc:2a:74:66:12:c5:82:98:1f:3b:c9:ea:99:06:75: 75:6a:86:46:5d:3a:3d:50:7b:e8:c0:bd:21:89:bf: b4:38:a1:30:a7:9d:e8:a4:f1:31:04:cf:2b:5a:a2: bf:f1:a6:24:6e:e3:bb:87:9c:62:45:8e:8b:ff:c0: 39:99:15:ee:e5:3a:c3:e7:9e:73:f9:c6:8e:f9:62: 71:d6:f9:f4:1b:8c:4c:e3:31:04:5d:6f:43:73:f5: bb:d8:d9:eb:0c:37:30:08:23:26:9c:7a:a1:0d:c9: 9c:f6:f7:7e:a5:86:ac:be:c3:74:23:93:a5:48:fb: 77:0b:5d:54:6c:82:2c:54:58:45:00:88:81:2c:37: 90:e7:a7:d9:cf:cd:85:dd:e7:a4:da:18:96:a7:d4: 44:c4:40:49:f1:1b:7b:ec:26:36:b1:70:1f:da:29: 77:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:89:3C:05:81:61:CF:BF:A7:A5:FE:D9:7F:50:74:27:72:4E:A4:02 X509v3 Authority Key Identifier: keyid:E6:22:C8:11:4F:3F:24:AA:6A:80:7C:81:41:E3:96:4B:55:1B:B9:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EEEB8/8E0F2CB61DA111E2B906BC9308B02CD2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EEEB8/8E0F2CB61DA111E2B906BC9308B02CD2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:5b:9b:92:95:44:e4:c9:86:40:c6:d9:a5:23:32:a0:5a:e2: a8:c4:2b:24:de:af:37:5a:cf:f6:c1:68:7e:7d:3e:45:4f:ff: 1d:1f:f4:79:1a:3b:30:93:03:95:3f:a5:b5:f4:7f:e7:ca:e0: c6:57:ea:1a:e0:9a:01:07:62:66:30:70:18:50:7d:98:6f:cb: a7:43:71:05:f6:75:ac:85:cd:2d:32:eb:31:72:6e:7c:e3:9f: bd:a6:12:c9:4f:60:3b:77:ef:38:ae:29:b8:3b:9a:c1:bf:c5: 1c:5e:c8:61:cc:7a:86:cc:bc:7c:37:88:ef:97:10:e2:e5:5e: f0:80:99:2a:73:ea:e7:58:70:87:8a:82:31:2e:9e:fe:40:65: 5e:e9:ac:11:27:71:5b:d2:25:44:97:67:ac:23:8a:34:13:6c: 6e:37:af:51:d2:35:c1:6a:1c:c4:5a:22:8f:f5:7c:84:96:db: de:47:d7:e7:b9:8d:66:21:99:f2:9d:7d:45:9d:fb:cc:e5:51: bf:41:9d:31:49:7e:5b:10:c5:16:fa:8d:64:6f:43:a8:20:1f: 1c:96:4f:c5:d4:21:5b:d2:67:59:aa:35:cb:93:cd:65:1f:23: 1f:12:08:8f:c9:e5:ba:c9:78:51:7b:4e:1d:70:fa:f4:21:ef: 65:33:f0:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNOQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUVFQjgxMTAvBgNVBAUTKEU2MjJDODExNEYzRjI0QUE2QTgwN0M4MTQxRTM5NjRC NTUxQkI5MzAwHhcNMjUwODIyMTUwNzIwWhcNMjUwODI5MTUwNzIwWjAYMRYwFAYD VQQDEw02OGE4ODdhOC00YjcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyOdQIsDsZUabtHKV4aA34wDx0M0NgmKacSdSdhUGh/j/XLGzh1ISG2Xr2cHj hCgBhA+QxSPPMU+r5FNIZJELazGcJi2YIhLGCsccmru1XYjJrFmEB0n5BCvMKnRm EsWCmB87yeqZBnV1aoZGXTo9UHvowL0hib+0OKEwp53opPExBM8rWqK/8aYkbuO7 h5xiRY6L/8A5mRXu5TrD555z+caO+WJx1vn0G4xM4zEEXW9Dc/W72NnrDDcwCCMm nHqhDcmc9vd+pYasvsN0I5OlSPt3C11UbIIsVFhFAIiBLDeQ56fZz82F3eek2hiW p9RExEBJ8Rt77CY2sXAf2il3owIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFGJPAWB Yc+/p6X+2X9QdCdyTqQCMB8GA1UdIwQYMBaAFOYiyBFPPySqaoB8gUHjlktVG7kw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRUVCOC84RTBGMkNCNjFE QTExMUUyQjkwNkJDOTMwOEIwMkNEMi81aUxJRVU4X0pLcHFnSHlCUWVPV1MxVWJ1 VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVpTElFVThfSktwcWdIeUJRZU9XUzFVYnVUQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RUVCOC84RTBGMkNCNjFEQTExMUUyQjkwNkJDOTMwOEIwMkNEMi81aUxJRVU4X0pL cHFnSHlCUWVPV1MxVWJ1VEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhW5uSlUTkyYZAxtmlIzKgWuKoxCsk3q83Ws/2wWh+fT5FT/8dH/R5 GjswkwOVP6W19H/nyuDGV+oa4JoBB2JmMHAYUH2Yb8unQ3EF9nWshc0tMusxcm58 45+9phLJT2A7d+84rim4O5rBv8UcXshhzHqGzLx8N4jvlxDi5V7wgJkqc+rnWHCH ioIxLp7+QGVe6awRJ3Fb0iVEl2esI4o0E2xuN69R0jXBahzEWiKP9XyEltveR9fn uY1mIZnynX1FnfvM5VG/QZ0xSX5bEMUW+o1kb0OoIB8clk/F1CFb0mdZqjXLk81l HyMfEgiPyeW6yXhRe04dcPr0Ie9lM/DN -----END CERTIFICATE-----Generated at Sun Aug 24 00:43:20 2025 by rpki-client