$ rpki-client -vvf rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft File: 5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft (raw, json) Hash identifier: 7bNf/fa8x7xa/r8R8MJ6k8e7o11TwfdFJkyUvqwJPDQ= Subject key identifier: E3:CE:6F:FF:F9:B4:75:98:9F:C8:F3:77:3A:80:4D:55:9D:5D:8B:71 Authority key identifier: 5D:70:7B:0D:35:69:62:24:32:B4:BD:CB:FD:32:0F:9A:8B:6D:DC:7B Certificate issuer: /CN=A91DD5100000/serialNumber=5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B Certificate serial: 2A490124B78EAA6D74BA897878EDCCF33DF9C178 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XXB7DTVpYiQytL3L_TIPmott3Hs.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft Manifest number: 010F Signing time: Wed 02 Jul 2025 16:14:40 +0000 Manifest this update: Wed 02 Jul 2025 16:09:40 +0000 Manifest next update: Thu 03 Jul 2025 18:54:40 +0000 Files and hashes: 1: 34332e3235322e32322e302f32342d3234203d3e203438323636.roa (hash: lh0a38K8JAllhrAcZvOqWh+3NCJyyj25skARvaE+EWo=) 2: 34332e3235322e32312e302f32342d3234203d3e203530333835.roa (hash: baGBWXcDrtK+cAVKGJBMAmZee53ol0gPCj9NO0O551w=) 3: 34332e3235322e32332e302f32342d3234203d3e203239383032.roa (hash: LfF8fU+QkX6d5K08nkQmulF4/9qGZmobs40531E0EuE=) 4: 5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.crl (hash: S3m2glK+tWsO4nkLjSLnJx7pNKvEcump3IcdUENyvF0=) 5: 34332e3235322e32302e302f32342d3234203d3e2037323234.roa (hash: xYue4w2wkAleXxGW4xAr0l0Ri4xd4/JeSpxq5osVBR8=) Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.crl rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XXB7DTVpYiQytL3L_TIPmott3Hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 18:54:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:49:01:24:b7:8e:aa:6d:74:ba:89:78:78:ed:cc:f3:3d:f9:c1:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD5100000, serialNumber=5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B Validity Not Before: Jul 2 16:09:40 2025 GMT Not After : Jul 3 18:54:40 2025 GMT Subject: CN=E3CE6FFFF9B475989FC8F3773A804D559D5D8B71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:4b:78:0d:66:49:64:3a:89:3f:5e:95:fb:6d: 08:92:b2:31:60:9d:07:eb:aa:60:c4:c4:b9:b3:44: 9c:29:25:3f:32:39:ae:f5:b9:cd:d3:7c:70:5b:9f: c4:bf:d7:95:3a:33:3f:ea:00:c0:80:d6:47:63:2f: 8b:8a:09:e9:e0:bc:b1:79:47:48:27:b3:4b:a2:dd: eb:40:36:47:70:0b:16:9c:ea:7f:f7:f8:29:2a:2f: a9:ab:9b:50:50:dd:81:0d:43:0a:f1:13:ab:77:bb: 3f:1b:1f:fe:9d:83:d3:85:6d:83:74:77:8a:7d:52: b3:9d:1f:5f:4a:f7:c4:1f:1e:87:a6:83:4f:8d:03: a2:96:ec:55:16:8b:81:9a:8d:52:bd:85:19:75:24: d9:e6:95:bd:4b:59:39:d8:54:22:65:e1:64:08:e8: 93:8d:04:ba:f3:42:0b:e6:c2:80:8c:89:92:ab:66: fe:cb:62:00:2a:d4:55:7f:19:91:79:3a:a5:33:44: 42:50:00:1b:fa:0e:f6:fa:f6:21:c3:38:87:10:55: f3:84:ac:f2:ef:a5:87:3c:cc:37:25:9c:73:35:fd: 63:0a:b0:4b:89:14:95:92:05:be:23:99:7b:5e:1e: 4e:82:95:85:54:5b:be:a3:e1:61:93:c3:ee:fd:86: de:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:CE:6F:FF:F9:B4:75:98:9F:C8:F3:77:3A:80:4D:55:9D:5D:8B:71 X509v3 Authority Key Identifier: keyid:5D:70:7B:0D:35:69:62:24:32:B4:BD:CB:FD:32:0F:9A:8B:6D:DC:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XXB7DTVpYiQytL3L_TIPmott3Hs.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9a:e7:c2:87:11:1c:0a:af:5f:96:de:ff:ea:30:01:3a:44:27: 3c:09:f7:4c:1c:f1:f8:bd:88:61:95:bf:38:de:e3:5f:9e:d3: a7:84:09:02:b7:c4:41:5b:e9:6f:37:61:ed:37:1f:25:b8:5c: cf:fc:ad:23:08:ab:46:18:cc:28:b5:f9:47:eb:dc:67:54:c4: b5:b0:e2:ef:8e:ef:63:30:a6:df:6a:9d:4c:b9:6b:98:e3:f1: 58:98:ee:f1:81:aa:8c:db:42:4a:09:08:c5:f4:c7:d9:7e:78: cd:5e:a7:cf:86:ad:fd:34:10:98:22:93:50:b7:a1:8a:54:43: 43:ef:7f:a6:0d:37:aa:7c:5c:6e:58:36:07:d5:70:59:4d:bf: 52:bd:6c:fe:ae:f9:2b:7c:e1:c9:3b:87:a1:ff:2f:b3:d9:41: 18:e7:dc:51:26:0f:d3:b0:d2:5c:04:48:b9:5e:33:d5:17:6c: 83:14:60:ff:74:6c:6f:08:0b:41:b8:1d:fc:0d:08:a6:cd:18: c9:f3:f0:fe:05:e0:18:40:0b:21:0b:27:51:3d:b5:fa:df:ca: fd:a4:6a:42:1b:62:6c:a9:af:30:09:3b:8e:1b:39:b4:98:4f: cf:1b:af:f8:5c:6f:fa:7d:79:69:bb:80:f0:f9:c4:9b:1e:cf: 7e:5f:cb:aa -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKkkBJLeOqm10uol4eO3M8z35wXgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxREQ1MTAwMDAwMTEwLwYDVQQFEyg1RDcwN0IwRDM1 Njk2MjI0MzJCNEJEQ0JGRDMyMEY5QThCNkREQzdCMB4XDTI1MDcwMjE2MDk0MFoX DTI1MDcwMzE4NTQ0MFowMzExMC8GA1UEAxMoRTNDRTZGRkZGOUI0NzU5ODlGQzhG Mzc3M0E4MDRENTU5RDVEOEI3MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKVLeA1mSWQ6iT9elfttCJKyMWCdB+uqYMTEubNEnCklPzI5rvW5zdN8cFuf xL/XlTozP+oAwIDWR2Mvi4oJ6eC8sXlHSCezS6Ld60A2R3ALFpzqf/f4KSovqaub UFDdgQ1DCvETq3e7Pxsf/p2D04Vtg3R3in1Ss50fX0r3xB8eh6aDT40DopbsVRaL gZqNUr2FGXUk2eaVvUtZOdhUImXhZAjok40EuvNCC+bCgIyJkqtm/stiACrUVX8Z kXk6pTNEQlAAG/oO9vr2IcM4hxBV84Ss8u+lhzzMNyWcczX9YwqwS4kUlZIFviOZ e14eToKVhVRbvqPhYZPD7v2G3qsCAwEAAaOCAhswggIXMB0GA1UdDgQWBBTjzm// +bR1mJ/I83c6gE1VnV2LcTAfBgNVHSMEGDAWgBRdcHsNNWliJDK0vcv9Mg+ai23c ezAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFERDUxMDAwMDAvMC81RDcwN0Iw RDM1Njk2MjI0MzJCNEJEQ0JGRDMyMEY5QThCNkREQzdCLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9YWEI3RFRWcFlp UXl0TDNMX1RJUG1vdHQzSHMuY2VyMH0GCCsGAQUFBwELBHEwbzBtBggrBgEFBQcw C4ZhcnN5bmM6Ly9ycGtpLnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFERDUx MDAwMDAvMC81RDcwN0IwRDM1Njk2MjI0MzJCNEJEQ0JGRDMyMEY5QThCNkREQzdC Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIw EDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG 9w0BAQsFAAOCAQEAmufChxEcCq9flt7/6jABOkQnPAn3TBzx+L2IYZW/ON7jX57T p4QJArfEQVvpbzdh7TcfJbhcz/ytIwirRhjMKLX5R+vcZ1TEtbDi747vYzCm32qd TLlrmOPxWJju8YGqjNtCSgkIxfTH2X54zV6nz4at/TQQmCKTULehilRDQ+9/pg03 qnxcblg2B9VwWU2/Ur1s/q75K3zhyTuHof8vs9lBGOfcUSYP07DSXARIuV4z1Rds gxRg/3RsbwgLQbgd/A0Ips0YyfPw/gXgGEALIQsnUT21+t/K/aRqQhtibKmvMAk7 jhs5tJhPzxuv+Fxv+n15abuA8PnEmx7Pfl/Lqg== -----END CERTIFICATE-----Generated at Thu Jul 3 00:42:34 2025 by rpki-client