$ rpki-client -vvf rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft File: 5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft (raw, json) Hash identifier: L41XVDei5U3IB5KovmUYv71QAFL+606rfKkV2Kjjis8= Subject key identifier: 63:EC:7E:76:3E:7E:57:37:6C:02:2D:4C:FB:91:7A:9B:25:37:95:FE Authority key identifier: 5D:70:7B:0D:35:69:62:24:32:B4:BD:CB:FD:32:0F:9A:8B:6D:DC:7B Certificate issuer: /CN=A91DD5100000/serialNumber=5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B Certificate serial: 27167F3C5823F243C681706B9EC8A5F020DE8959 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XXB7DTVpYiQytL3L_TIPmott3Hs.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft Manifest number: 0154 Signing time: Sat 23 Aug 2025 08:40:02 +0000 Manifest this update: Sat 23 Aug 2025 08:35:02 +0000 Manifest next update: Sun 24 Aug 2025 08:42:02 +0000 Files and hashes: 1: 34332e3235322e32302e302f32342d3234203d3e2037323234.roa (hash: xYue4w2wkAleXxGW4xAr0l0Ri4xd4/JeSpxq5osVBR8=) 2: 5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.crl (hash: 76umXSgJXDxZH+iZLJypCRmD7b8OSwWUnWwO66xXE/o=) 3: 34332e3235322e32332e302f32342d3234203d3e203239383032.roa (hash: LfF8fU+QkX6d5K08nkQmulF4/9qGZmobs40531E0EuE=) 4: 34332e3235322e32312e302f32342d3234203d3e203530333835.roa (hash: baGBWXcDrtK+cAVKGJBMAmZee53ol0gPCj9NO0O551w=) 5: 34332e3235322e32322e302f32342d3234203d3e203438323636.roa (hash: lh0a38K8JAllhrAcZvOqWh+3NCJyyj25skARvaE+EWo=) Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.crl rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XXB7DTVpYiQytL3L_TIPmott3Hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:42:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:16:7f:3c:58:23:f2:43:c6:81:70:6b:9e:c8:a5:f0:20:de:89:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD5100000, serialNumber=5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B Validity Not Before: Aug 23 08:35:02 2025 GMT Not After : Aug 24 08:42:02 2025 GMT Subject: CN=63EC7E763E7E57376C022D4CFB917A9B253795FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:b9:d5:ae:20:00:ed:9d:1f:8d:5c:f6:93:9d: 29:35:3e:3d:1f:ba:4a:9b:1a:b4:f4:9f:f7:a0:60: a8:cb:a5:e4:df:6b:5e:8e:41:94:54:1e:0e:75:f6: 1a:b9:e4:de:fe:64:a0:ab:ce:f0:26:4c:95:d6:87: 96:98:6b:a4:20:2e:62:d9:5d:b9:f5:05:22:a7:c7: 57:44:97:c6:0a:c9:5e:02:45:a6:94:75:d7:94:c7: 14:5f:b7:c1:a2:80:0e:cc:df:13:18:e0:6d:ca:a8: cb:9d:67:f8:24:25:f0:f4:c4:12:49:c8:a0:80:25: 0a:62:ca:fd:d4:16:ec:c1:43:e5:8c:b9:12:ca:34: 3f:2b:18:b6:21:c5:20:8f:70:8a:0a:6b:f6:88:6c: 88:90:e0:84:ec:0b:69:b4:97:97:c5:b8:08:b8:a4: 47:58:eb:e5:26:37:8d:7e:82:2b:51:30:5f:1f:17: 8b:75:dc:7e:60:ae:e5:f0:25:02:92:ab:d8:29:a7: 2f:33:61:c3:08:fd:7e:4d:69:73:7f:25:b0:7d:3e: da:d9:70:29:b0:e7:72:66:f9:d9:ee:ec:0d:b8:22: a8:1f:cb:82:e6:4c:fe:86:4a:30:ee:03:99:f7:d8: 5d:aa:f9:17:02:a6:5a:28:84:6b:d2:9c:a0:c7:99: 4e:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:EC:7E:76:3E:7E:57:37:6C:02:2D:4C:FB:91:7A:9B:25:37:95:FE X509v3 Authority Key Identifier: keyid:5D:70:7B:0D:35:69:62:24:32:B4:BD:CB:FD:32:0F:9A:8B:6D:DC:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XXB7DTVpYiQytL3L_TIPmott3Hs.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d8:32:ce:ad:78:16:ba:ff:26:d6:be:35:7e:2b:1c:3e:37:4a: f1:78:32:b3:50:d9:2d:ac:7a:89:4b:f9:6b:7e:d3:20:4d:dc: 12:e2:00:4b:4a:84:30:36:65:cd:ed:a8:c8:ca:ed:b9:ef:71: cb:ac:0c:e4:dc:f0:7c:bd:97:74:f7:34:23:94:3d:77:87:00: 3f:fb:56:65:7d:f7:42:d0:35:4a:a1:2a:ad:6e:23:5f:d1:2c: b2:15:9b:bd:aa:18:c0:fe:be:1f:57:98:83:0f:86:aa:9b:56: ed:a5:3c:96:99:86:78:40:78:1c:9f:7a:cc:af:4f:a7:ba:86: ed:12:c8:27:b3:5f:3a:26:49:02:73:cd:5f:a1:d7:a7:e2:14: 42:4d:28:63:f2:86:15:b9:0b:95:5f:bc:d0:5b:6d:38:40:0b: bf:29:dc:ad:40:a2:e5:ce:86:e7:bb:24:fe:2e:63:2d:22:cc: db:76:25:41:6a:2c:8e:d6:08:34:7c:ae:dd:f0:e8:05:eb:b8: 65:30:ac:df:48:fd:98:ee:13:33:2e:e5:5d:f0:02:f3:3b:a3: a6:1b:c9:cf:38:4a:47:eb:29:43:c0:7e:f2:e7:e1:b3:d4:7d: 39:fa:62:58:38:a3:d7:11:a6:ea:b7:9a:38:31:b2:ef:57:a8: 55:38:06:b2 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJxZ/PFgj8kPGgXBrnsil8CDeiVkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxREQ1MTAwMDAwMTEwLwYDVQQFEyg1RDcwN0IwRDM1 Njk2MjI0MzJCNEJEQ0JGRDMyMEY5QThCNkREQzdCMB4XDTI1MDgyMzA4MzUwMloX DTI1MDgyNDA4NDIwMlowMzExMC8GA1UEAxMoNjNFQzdFNzYzRTdFNTczNzZDMDIy RDRDRkI5MTdBOUIyNTM3OTVGRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALm51a4gAO2dH41c9pOdKTU+PR+6SpsatPSf96BgqMul5N9rXo5BlFQeDnX2 Grnk3v5koKvO8CZMldaHlphrpCAuYtldufUFIqfHV0SXxgrJXgJFppR115THFF+3 waKADszfExjgbcqoy51n+CQl8PTEEknIoIAlCmLK/dQW7MFD5Yy5Eso0PysYtiHF II9wigpr9ohsiJDghOwLabSXl8W4CLikR1jr5SY3jX6CK1EwXx8Xi3XcfmCu5fAl ApKr2CmnLzNhwwj9fk1pc38lsH0+2tlwKbDncmb52e7sDbgiqB/LguZM/oZKMO4D mffYXar5FwKmWiiEa9KcoMeZTjcCAwEAAaOCAhswggIXMB0GA1UdDgQWBBRj7H52 Pn5XN2wCLUz7kXqbJTeV/jAfBgNVHSMEGDAWgBRdcHsNNWliJDK0vcv9Mg+ai23c ezAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFERDUxMDAwMDAvMC81RDcwN0Iw RDM1Njk2MjI0MzJCNEJEQ0JGRDMyMEY5QThCNkREQzdCLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9YWEI3RFRWcFlp UXl0TDNMX1RJUG1vdHQzSHMuY2VyMH0GCCsGAQUFBwELBHEwbzBtBggrBgEFBQcw C4ZhcnN5bmM6Ly9ycGtpLnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFERDUx MDAwMDAvMC81RDcwN0IwRDM1Njk2MjI0MzJCNEJEQ0JGRDMyMEY5QThCNkREQzdC Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIw EDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG 9w0BAQsFAAOCAQEA2DLOrXgWuv8m1r41fiscPjdK8Xgys1DZLax6iUv5a37TIE3c EuIAS0qEMDZlze2oyMrtue9xy6wM5NzwfL2XdPc0I5Q9d4cAP/tWZX33QtA1SqEq rW4jX9EsshWbvaoYwP6+H1eYgw+GqptW7aU8lpmGeEB4HJ96zK9Pp7qG7RLIJ7Nf OiZJAnPNX6HXp+IUQk0oY/KGFbkLlV+80FttOEALvyncrUCi5c6G57sk/i5jLSLM 23YlQWosjtYINHyu3fDoBeu4ZTCs30j9mO4TMy7lXfAC8zujphvJzzhKR+spQ8B+ 8ufhs9R9OfpiWDij1xGm6reaODGy71eoVTgGsg== -----END CERTIFICATE-----Generated at Sat Aug 23 13:39:15 2025 by rpki-client