$ rpki-client -vvf rpki.apnic.net/member_repository/A91316E5/51F9835C46D011EE81F2073FC4F9AE02/c5h-zOd-ROs2ZR4JjTN1D6hk5nY.mft File: c5h-zOd-ROs2ZR4JjTN1D6hk5nY.mft (raw, json) Hash identifier: 30Yhn6qEZ4tV51uYOpckJyIQxHdYyDvKfmjNJqK8mJ4= Subject key identifier: 77:7D:E8:D9:3E:B0:BD:93:4E:97:0F:EC:5C:76:46:79:6E:F4:75:F7 Authority key identifier: 73:98:7E:CC:E7:7E:44:EB:36:65:1E:09:8D:33:75:0F:A8:64:E6:76 Certificate issuer: /CN=A91316E5/serialNumber=73987ECCE77E44EB36651E098D33750FA864E676 Certificate serial: 0165 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c5h-zOd-ROs2ZR4JjTN1D6hk5nY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91316E5/51F9835C46D011EE81F2073FC4F9AE02/c5h-zOd-ROs2ZR4JjTN1D6hk5nY.mft Manifest number: 0162 Signing time: Sat 19 Jul 2025 04:08:53 +0000 Manifest this update: Sat 19 Jul 2025 04:08:52 +0000 Manifest next update: Sat 26 Jul 2025 04:08:52 +0000 Files and hashes: 1: c5h-zOd-ROs2ZR4JjTN1D6hk5nY.crl (hash: i6Rc/h/sIkEx1EpGfQLDIaIls9P6875YVjwYZjn6JzI=) 2: C1A8182646D011EE8BE5AE80C4F9AE02.roa (hash: gAXQ6XOA3NODkbVV4z4rY8FPGvcx9W1CdIeenZ4k+xI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91316E5/51F9835C46D011EE81F2073FC4F9AE02/c5h-zOd-ROs2ZR4JjTN1D6hk5nY.crl rsync://rpki.apnic.net/member_repository/A91316E5/51F9835C46D011EE81F2073FC4F9AE02/c5h-zOd-ROs2ZR4JjTN1D6hk5nY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c5h-zOd-ROs2ZR4JjTN1D6hk5nY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 04:08:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 357 (0x165) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91316E5, serialNumber=73987ECCE77E44EB36651E098D33750FA864E676 Validity Not Before: Jul 19 04:08:52 2025 GMT Not After : Jul 26 04:08:52 2025 GMT Subject: CN=687b1a55-d621 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:01:fb:62:d3:42:69:61:45:15:1b:61:84:d6: 00:b5:1b:09:72:e4:bd:9c:65:31:9e:e4:f6:c4:e7: 14:db:2d:25:4c:bd:6c:8e:3f:5b:1e:b3:5f:1c:14: 7f:d8:67:87:22:7d:bd:c7:15:06:1b:88:d8:4f:a1: 28:00:41:8b:ae:dc:07:91:30:2c:dd:9a:b2:83:fa: 5f:7c:7e:55:04:31:3d:96:58:98:1e:5d:de:95:9f: c8:3c:81:99:23:a8:63:8d:b5:49:7c:90:cb:2f:fb: 62:0c:ae:68:fc:91:7f:19:d0:18:83:44:ac:1f:bb: 6b:da:5a:e6:64:5a:14:7d:b6:fd:c8:e0:e0:b6:7c: 0b:27:f7:44:4f:a9:92:ec:70:ff:81:49:a5:ce:29: 27:c0:f0:f4:4e:9c:55:c7:12:c3:87:cd:8a:cc:50: f3:44:0b:88:b6:50:ad:eb:be:77:3c:e8:84:23:22: 6f:20:c6:72:bc:53:3b:22:ce:19:6b:49:9c:42:01: 68:ff:ad:aa:85:a1:d8:cf:3b:86:6f:11:f4:b3:57: c8:8c:b8:d6:42:45:0a:8e:5c:b8:1a:e9:0a:15:96: 1f:79:a5:a7:b2:7e:2a:8b:69:10:b4:2b:29:af:78: 3b:44:c9:5f:a7:d4:0d:ca:7a:52:90:fe:ad:83:1c: 74:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:7D:E8:D9:3E:B0:BD:93:4E:97:0F:EC:5C:76:46:79:6E:F4:75:F7 X509v3 Authority Key Identifier: keyid:73:98:7E:CC:E7:7E:44:EB:36:65:1E:09:8D:33:75:0F:A8:64:E6:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91316E5/51F9835C46D011EE81F2073FC4F9AE02/c5h-zOd-ROs2ZR4JjTN1D6hk5nY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c5h-zOd-ROs2ZR4JjTN1D6hk5nY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91316E5/51F9835C46D011EE81F2073FC4F9AE02/c5h-zOd-ROs2ZR4JjTN1D6hk5nY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:53:a4:be:0d:4b:37:e8:f0:ea:a1:de:d3:dc:ea:fc:7c:27: 3f:c2:a6:66:1c:95:7c:5e:68:30:75:dc:b5:09:ef:1b:fe:c8: e4:0a:8b:52:58:09:b9:0a:95:94:bb:93:b8:1d:89:51:47:53: 3c:c2:44:74:73:d8:41:49:d2:e7:88:c3:9d:c9:73:9b:49:bb: 7a:5e:8e:25:08:30:7a:ac:74:40:db:33:cb:83:4e:71:e5:c1: 47:25:94:b5:1c:da:af:88:f8:b5:02:b6:a8:a8:b1:67:2a:a5: 06:62:f1:d1:31:d6:35:8f:ff:01:04:71:8b:12:36:8a:5a:64: 69:00:e1:14:da:88:2e:66:11:6b:3b:3f:fe:77:51:65:f6:11: 4e:54:e3:6a:7d:04:78:5d:a8:19:a6:19:6c:11:e0:d0:cd:e0: dc:97:d6:0c:13:5f:3d:b3:f9:24:c1:88:a8:b7:04:d0:8d:ee: ab:2f:0c:fd:58:71:af:9f:f1:4f:07:43:1a:5f:23:cd:38:f1: c9:5b:b7:7c:3f:8d:2e:2d:7b:13:0c:c4:39:53:24:3a:63:49: 34:29:db:cb:eb:23:5b:60:73:72:16:b8:18:7b:5c:78:ce:8a: 6a:c2:c7:1f:64:0d:47:05:78:dc:03:db:17:55:fc:7a:ee:85: 08:65:3c:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE2RTUxMTAvBgNVBAUTKDczOTg3RUNDRTc3RTQ0RUIzNjY1MUUwOThEMzM3NTBG QTg2NEU2NzYwHhcNMjUwNzE5MDQwODUyWhcNMjUwNzI2MDQwODUyWjAYMRYwFAYD VQQDEw02ODdiMWE1NS1kNjIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAygH7YtNCaWFFFRthhNYAtRsJcuS9nGUxnuT2xOcU2y0lTL1sjj9bHrNfHBR/ 2GeHIn29xxUGG4jYT6EoAEGLrtwHkTAs3Zqyg/pffH5VBDE9lliYHl3elZ/IPIGZ I6hjjbVJfJDLL/tiDK5o/JF/GdAYg0SsH7tr2lrmZFoUfbb9yODgtnwLJ/dET6mS 7HD/gUmlziknwPD0TpxVxxLDh82KzFDzRAuItlCt6753POiEIyJvIMZyvFM7Is4Z a0mcQgFo/62qhaHYzzuGbxH0s1fIjLjWQkUKjly4GukKFZYfeaWnsn4qi2kQtCsp r3g7RMlfp9QNynpSkP6tgxx0bQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHd96Nk+ sL2TTpcP7Fx2Rnlu9HX3MB8GA1UdIwQYMBaAFHOYfsznfkTrNmUeCY0zdQ+oZOZ2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTZFNS81MUY5ODM1QzQ2 RDAxMUVFODFGMjA3M0ZDNEY5QUUwMi9jNWgtek9kLVJPczJaUjRKalROMUQ2aGs1 blkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2M1aC16T2QtUk9zMlpSNEpqVE4xRDZoazVuWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTZFNS81MUY5ODM1QzQ2RDAxMUVFODFGMjA3M0ZDNEY5QUUwMi9jNWgtek9kLVJP czJaUjRKalROMUQ2aGs1blkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMU6S+DUs36PDqod7T3Or8fCc/wqZmHJV8Xmgwddy1Ce8b/sjkCotS WAm5CpWUu5O4HYlRR1M8wkR0c9hBSdLniMOdyXObSbt6Xo4lCDB6rHRA2zPLg05x 5cFHJZS1HNqviPi1AraoqLFnKqUGYvHRMdY1j/8BBHGLEjaKWmRpAOEU2oguZhFr Oz/+d1Fl9hFOVONqfQR4XagZphlsEeDQzeDcl9YME189s/kkwYiotwTQje6rLwz9 WHGvn/FPB0MaXyPNOPHJW7d8P40uLXsTDMQ5UyQ6Y0k0KdvL6yNbYHNyFrgYe1x4 zopqwscfZA1HBXjcA9sXVfx67oUIZTzg -----END CERTIFICATE-----Generated at Sun Jul 20 07:31:19 2025 by rpki-client