$ rpki-client -vvf rpki.apnic.net/member_repository/A912DA1D/B46E42DABB1B11ECB0AC0F14C4F9AE02/5CFC4-WEV2LQ6NaLAvsQ6HW8a_I.mft File: 5CFC4-WEV2LQ6NaLAvsQ6HW8a_I.mft (raw, json) Hash identifier: NIaTsxOmyYzrBv8xUEJ60r6mIzQEyifi7SvaWMsmjXg= Subject key identifier: 0B:FE:E3:9A:CC:4A:65:1C:5E:E3:28:20:49:72:0B:94:37:2E:BB:60 Authority key identifier: E4:21:42:E3:E5:84:57:62:D0:E8:D6:8B:02:FB:10:E8:75:BC:6B:F2 Certificate issuer: /CN=A912DA1D/serialNumber=E42142E3E5845762D0E8D68B02FB10E875BC6BF2 Certificate serial: 037B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CFC4-WEV2LQ6NaLAvsQ6HW8a_I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DA1D/B46E42DABB1B11ECB0AC0F14C4F9AE02/5CFC4-WEV2LQ6NaLAvsQ6HW8a_I.mft Manifest number: 036B Signing time: Sat 19 Jul 2025 01:22:01 +0000 Manifest this update: Sat 19 Jul 2025 01:22:00 +0000 Manifest next update: Sat 26 Jul 2025 01:22:00 +0000 Files and hashes: 1: 5CFC4-WEV2LQ6NaLAvsQ6HW8a_I.crl (hash: zx/B6/X+i5MhuRO+1XrtomS6clKnkhOEeFNE5GGlYo8=) 2: 44B90434DFA011ED8C895F7CC4F9AE02.roa (hash: OB3c0FOnO7U7Cy2O3WKkzCkZvRGF4Swy8zD33qNbalg=) 3: 0589A4B8DF9511EDAAA7E22AC4F9AE02.roa (hash: PCa5nWLR+HuKgmwdVX9BOmG2ZZvLJrtIyJd8CbPbXng=) 4: 36B1CD340A6D11ED89FD3F13C4F9AE02.roa (hash: JCVj+AscF7hWsvaIqNJTPDabzygkqnGZEfVjCkrIsro=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DA1D/B46E42DABB1B11ECB0AC0F14C4F9AE02/5CFC4-WEV2LQ6NaLAvsQ6HW8a_I.crl rsync://rpki.apnic.net/member_repository/A912DA1D/B46E42DABB1B11ECB0AC0F14C4F9AE02/5CFC4-WEV2LQ6NaLAvsQ6HW8a_I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CFC4-WEV2LQ6NaLAvsQ6HW8a_I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 01:22:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 891 (0x37b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DA1D, serialNumber=E42142E3E5845762D0E8D68B02FB10E875BC6BF2 Validity Not Before: Jul 19 01:22:00 2025 GMT Not After : Jul 26 01:22:00 2025 GMT Subject: CN=687af338-b053 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:40:37:e5:f5:36:31:c5:4e:a6:01:5a:d7:80: 04:5e:1d:e0:09:da:9e:1c:18:79:a2:e6:f1:09:ec: 93:e8:25:6a:6d:69:46:f3:bf:4c:f9:05:78:07:8a: 64:84:d7:3e:3a:f1:5f:70:09:77:53:53:32:d1:70: b7:1c:ab:01:f0:57:b5:7e:41:e6:0b:8e:9d:a3:8b: 26:da:5a:b2:a5:a2:f7:59:58:00:a5:e4:c7:39:1e: b1:8a:fe:09:22:7b:01:74:ba:12:d9:9d:20:00:35: a5:30:b5:85:77:cf:42:31:ba:53:8d:21:bf:09:06: 21:5b:12:48:b4:d4:8f:ba:4a:2b:7c:07:86:d4:f4: b5:6d:e0:92:17:6e:f3:df:3c:cb:96:f4:bb:93:94: 68:e1:1d:fb:f8:4c:67:d8:c2:f6:57:c0:09:61:17: 3e:d8:95:4c:a5:f7:72:4c:bf:98:7a:73:3c:8c:4f: bf:10:c1:b4:08:04:1a:1c:10:a5:4d:45:44:8f:a4: 81:c6:ec:1e:b7:ce:41:cd:81:68:9a:c9:99:55:30: 0d:d8:17:69:15:96:10:c7:fe:cf:fe:23:88:d0:b5: 1b:0b:d9:27:e1:71:12:c9:21:14:09:70:b7:db:cf: 3e:7a:1f:da:a1:3c:30:d8:5b:9e:01:09:e6:1c:f4: be:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:FE:E3:9A:CC:4A:65:1C:5E:E3:28:20:49:72:0B:94:37:2E:BB:60 X509v3 Authority Key Identifier: keyid:E4:21:42:E3:E5:84:57:62:D0:E8:D6:8B:02:FB:10:E8:75:BC:6B:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DA1D/B46E42DABB1B11ECB0AC0F14C4F9AE02/5CFC4-WEV2LQ6NaLAvsQ6HW8a_I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CFC4-WEV2LQ6NaLAvsQ6HW8a_I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DA1D/B46E42DABB1B11ECB0AC0F14C4F9AE02/5CFC4-WEV2LQ6NaLAvsQ6HW8a_I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:1e:77:e4:8d:3a:16:c2:c9:10:c0:29:66:5f:47:79:75:d0: 4d:e1:36:d0:38:77:18:5a:a8:19:e3:0a:e1:6c:19:de:24:4e: f5:12:52:d8:69:fc:6c:0d:3a:c4:0d:9c:92:1e:01:7e:2b:24: 7b:2b:0b:6e:94:38:fb:a0:68:b8:87:09:35:7e:f2:f1:c7:5f: 7b:ee:a0:8e:8d:ef:85:b0:8b:af:08:f8:90:8c:d5:41:15:01: b1:3f:d0:8a:de:16:bb:e7:3d:b8:88:f1:f8:c5:3f:a6:ec:0b: 78:0f:f9:77:d6:22:ee:1a:44:98:ec:36:a4:9a:30:bf:a1:01: 39:9b:e9:3e:7d:85:e6:09:a2:a3:49:51:14:cc:cb:9c:07:b8: 3a:6d:5b:de:1c:a2:ce:de:2b:f0:f7:20:06:7f:ed:59:6f:1a: 2c:a4:69:8e:31:c0:98:91:39:9e:47:72:0d:4b:ce:62:a1:db: a3:2c:99:2b:94:4b:5b:5b:d0:ff:0b:e2:be:5b:f9:87:2a:7c: d1:8e:dc:76:f7:0f:d8:a2:7d:e3:d2:44:c5:a3:60:6d:dd:c4: ad:08:f4:f3:34:e5:39:ef:7b:f2:87:54:c7:55:66:54:06:a3: 6c:e0:3d:8d:2b:a1:82:b6:56:47:ef:11:63:6d:6d:3b:fc:07: c1:01:f1:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA3swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkRBMUQxMTAvBgNVBAUTKEU0MjE0MkUzRTU4NDU3NjJEMEU4RDY4QjAyRkIxMEU4 NzVCQzZCRjIwHhcNMjUwNzE5MDEyMjAwWhcNMjUwNzI2MDEyMjAwWjAYMRYwFAYD VQQDEw02ODdhZjMzOC1iMDUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvEA35fU2McVOpgFa14AEXh3gCdqeHBh5oubxCeyT6CVqbWlG879M+QV4B4pk hNc+OvFfcAl3U1My0XC3HKsB8Fe1fkHmC46do4sm2lqypaL3WVgApeTHOR6xiv4J InsBdLoS2Z0gADWlMLWFd89CMbpTjSG/CQYhWxJItNSPukorfAeG1PS1beCSF27z 3zzLlvS7k5Ro4R37+Exn2ML2V8AJYRc+2JVMpfdyTL+YenM8jE+/EMG0CAQaHBCl TUVEj6SBxuwet85BzYFomsmZVTAN2BdpFZYQx/7P/iOI0LUbC9kn4XESySEUCXC3 288+eh/aoTww2FueAQnmHPS+IwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAv+45rM SmUcXuMoIElyC5Q3LrtgMB8GA1UdIwQYMBaAFOQhQuPlhFdi0OjWiwL7EOh1vGvy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREExRC9CNDZFNDJEQUJC MUIxMUVDQjBBQzBGMTRDNEY5QUUwMi81Q0ZDNC1XRVYyTFE2TmFMQXZzUTZIVzhh X0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVDRkM0LVdFVjJMUTZOYUxBdnNRNkhXOGFfSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REExRC9CNDZFNDJEQUJCMUIxMUVDQjBBQzBGMTRDNEY5QUUwMi81Q0ZDNC1XRVYy TFE2TmFMQXZzUTZIVzhhX0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrHnfkjToWwskQwClmX0d5ddBN4TbQOHcYWqgZ4wrhbBneJE71ElLY afxsDTrEDZySHgF+KyR7KwtulDj7oGi4hwk1fvLxx1977qCOje+FsIuvCPiQjNVB FQGxP9CK3ha75z24iPH4xT+m7At4D/l31iLuGkSY7DakmjC/oQE5m+k+fYXmCaKj SVEUzMucB7g6bVveHKLO3ivw9yAGf+1ZbxospGmOMcCYkTmeR3INS85iodujLJkr lEtbW9D/C+K+W/mHKnzRjtx29w/Yon3j0kTFo2Bt3cStCPTzNOU573vyh1THVWZU BqNs4D2NK6GCtlZH7xFjbW07/AfBAfEz -----END CERTIFICATE-----Generated at Sun Jul 20 16:27:15 2025 by rpki-client