$ rpki-client -vvf rpki.apnic.net/member_repository/A912809D/01FAC98A84F911EEA75C2F39C4F9AE02/5HXUQnchUazw-uprObkBK9Ij05M.mft File: 5HXUQnchUazw-uprObkBK9Ij05M.mft (raw, json) Hash identifier: 1SE0+pKlciG9yj4V28uF3cCQWEWwSBmlJEGkzACXsnA= Subject key identifier: 2D:DE:59:EB:F8:43:13:2E:E2:1C:EC:0A:CB:E1:57:77:52:CF:BF:D2 Authority key identifier: E4:75:D4:42:77:21:51:AC:F0:FA:EA:6B:39:B9:01:2B:D2:23:D3:93 Certificate issuer: /CN=A912809D/serialNumber=E475D442772151ACF0FAEA6B39B9012BD223D393 Certificate serial: 013C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HXUQnchUazw-uprObkBK9Ij05M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912809D/01FAC98A84F911EEA75C2F39C4F9AE02/5HXUQnchUazw-uprObkBK9Ij05M.mft Manifest number: 0139 Signing time: Sat 19 Jul 2025 04:38:56 +0000 Manifest this update: Sat 19 Jul 2025 04:38:56 +0000 Manifest next update: Sat 26 Jul 2025 04:38:56 +0000 Files and hashes: 1: 5HXUQnchUazw-uprObkBK9Ij05M.crl (hash: U6lNGDPFH3m5J8n8z0dPRpOXmgVBd02yVYsw4nY2kMY=) 2: 2BBE96C284FC11EEAA5EAA5DC4F9AE02.roa (hash: KgQSXjT0/AcvVs+PHWWF/UPrCiIk9MVvntWwSCiQouc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912809D/01FAC98A84F911EEA75C2F39C4F9AE02/5HXUQnchUazw-uprObkBK9Ij05M.crl rsync://rpki.apnic.net/member_repository/A912809D/01FAC98A84F911EEA75C2F39C4F9AE02/5HXUQnchUazw-uprObkBK9Ij05M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HXUQnchUazw-uprObkBK9Ij05M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 04:38:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 316 (0x13c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912809D, serialNumber=E475D442772151ACF0FAEA6B39B9012BD223D393 Validity Not Before: Jul 19 04:38:56 2025 GMT Not After : Jul 26 04:38:56 2025 GMT Subject: CN=687b2160-2bf8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:1d:d0:43:5e:3b:c8:fd:88:39:1c:fb:5e:ff: 18:50:3f:f8:43:2a:cc:65:11:76:bd:70:6d:5e:c8: 34:83:bb:cb:73:e3:70:aa:05:ac:98:a4:99:78:15: a5:88:26:5b:8c:f6:13:91:7f:ba:6f:83:0f:66:03: c0:72:98:c9:21:11:89:6e:0e:0f:85:f9:db:cb:35: 2d:cc:57:b2:88:ed:a7:b3:09:2f:02:6b:20:b9:22: fe:7a:5b:6e:84:95:e2:3a:49:3a:68:c6:bb:9e:ce: f9:4a:82:ad:10:7a:75:e3:44:11:fd:35:c8:5b:84: 7c:10:7f:49:a9:0c:86:89:48:b6:13:cd:3c:4b:cb: 5a:d6:05:56:f8:8b:99:d1:18:26:a0:5f:0d:84:35: 1e:83:c0:b4:8b:39:97:dd:2c:c0:84:0a:1c:36:eb: 4c:56:06:88:81:ce:b9:b2:33:0d:34:ab:89:79:63: d2:6b:06:eb:19:ca:d6:12:8b:fd:fb:f9:f5:18:5f: b0:29:e5:05:45:3f:74:43:85:6e:20:0b:61:c9:01: c4:41:0b:05:26:c3:d8:56:05:26:89:9b:9b:b4:1e: 37:e5:de:c1:bd:4c:77:ff:9e:07:b2:87:12:cb:a6: 9a:7a:f8:f6:92:09:5d:8b:62:6d:6a:e8:a9:49:f0: 43:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:DE:59:EB:F8:43:13:2E:E2:1C:EC:0A:CB:E1:57:77:52:CF:BF:D2 X509v3 Authority Key Identifier: keyid:E4:75:D4:42:77:21:51:AC:F0:FA:EA:6B:39:B9:01:2B:D2:23:D3:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912809D/01FAC98A84F911EEA75C2F39C4F9AE02/5HXUQnchUazw-uprObkBK9Ij05M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HXUQnchUazw-uprObkBK9Ij05M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912809D/01FAC98A84F911EEA75C2F39C4F9AE02/5HXUQnchUazw-uprObkBK9Ij05M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:df:b9:49:8f:a4:af:54:5c:e1:a0:35:c7:44:d8:fc:1b:18: ae:f7:68:00:40:b3:84:72:54:9a:30:49:12:22:46:1b:41:d0: f3:50:ea:69:af:d7:27:29:8a:c1:72:e3:04:b8:0c:8e:92:0c: bb:dc:7c:2e:a5:46:5e:85:05:b4:a4:65:2b:c2:cc:8b:d3:81: 22:13:b9:b5:49:c3:d2:4a:c4:00:fc:9e:29:17:38:eb:06:86: 39:aa:d8:2c:ba:66:3a:1a:f6:69:ca:3e:4c:8a:59:57:83:9e: 76:dc:ab:7b:49:43:60:63:aa:2b:63:25:21:c4:98:26:13:bc: e3:d5:18:0d:9f:fd:8e:80:e6:9c:8e:2e:43:2e:f6:51:0e:98: 76:87:86:25:15:85:69:6e:e9:85:1a:35:67:66:63:db:5d:0c: 6e:c1:d3:98:f9:47:2e:9e:83:bc:37:12:18:e4:ce:e8:d8:d7: 88:7b:5a:88:ee:cb:e8:ad:4e:ba:49:5c:24:75:2a:8e:f5:f3: f3:ca:25:e6:8f:9a:33:8b:65:69:5b:26:a2:0c:ee:2a:73:be: 4c:98:ab:dc:47:6c:fb:5d:be:15:27:7f:58:bb:98:cd:23:24: 0d:59:43:2f:c1:1b:29:51:fd:fa:b1:d3:b0:b7:98:43:20:f3: 29:3d:ba:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjgwOUQxMTAvBgNVBAUTKEU0NzVENDQyNzcyMTUxQUNGMEZBRUE2QjM5QjkwMTJC RDIyM0QzOTMwHhcNMjUwNzE5MDQzODU2WhcNMjUwNzI2MDQzODU2WjAYMRYwFAYD VQQDEw02ODdiMjE2MC0yYmY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2B3QQ147yP2IORz7Xv8YUD/4QyrMZRF2vXBtXsg0g7vLc+NwqgWsmKSZeBWl iCZbjPYTkX+6b4MPZgPAcpjJIRGJbg4PhfnbyzUtzFeyiO2nswkvAmsguSL+eltu hJXiOkk6aMa7ns75SoKtEHp140QR/TXIW4R8EH9JqQyGiUi2E808S8ta1gVW+IuZ 0RgmoF8NhDUeg8C0izmX3SzAhAocNutMVgaIgc65sjMNNKuJeWPSawbrGcrWEov9 +/n1GF+wKeUFRT90Q4VuIAthyQHEQQsFJsPYVgUmiZubtB435d7BvUx3/54HsocS y6aaevj2kgldi2JtauipSfBDbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC3eWev4 QxMu4hzsCsvhV3dSz7/SMB8GA1UdIwQYMBaAFOR11EJ3IVGs8Prqazm5ASvSI9OT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODA5RC8wMUZBQzk4QTg0 RjkxMUVFQTc1QzJGMzlDNEY5QUUwMi81SFhVUW5jaFVhenctdXByT2JrQks5SWow NU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVIWFVRbmNoVWF6dy11cHJPYmtCSzlJajA1TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODA5RC8wMUZBQzk4QTg0RjkxMUVFQTc1QzJGMzlDNEY5QUUwMi81SFhVUW5jaFVh enctdXByT2JrQks5SWowNU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBY37lJj6SvVFzhoDXHRNj8Gxiu92gAQLOEclSaMEkSIkYbQdDzUOpp r9cnKYrBcuMEuAyOkgy73HwupUZehQW0pGUrwsyL04EiE7m1ScPSSsQA/J4pFzjr BoY5qtgsumY6GvZpyj5MillXg5523Kt7SUNgY6orYyUhxJgmE7zj1RgNn/2OgOac ji5DLvZRDph2h4YlFYVpbumFGjVnZmPbXQxuwdOY+UcunoO8NxIY5M7o2NeIe1qI 7svorU66SVwkdSqO9fPzyiXmj5ozi2VpWyaiDO4qc75MmKvcR2z7Xb4VJ39Yu5jN IyQNWUMvwRspUf36sdOwt5hDIPMpPbqd -----END CERTIFICATE-----Generated at Sun Jul 20 07:01:54 2025 by rpki-client