$ rpki-client -vvf rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.mft File: c5FNFBChzT-FrR4bClD_P4vWDBA.mft (raw, json) Hash identifier: H57dxF5S4WG4RirYnjk7idD3ZQkmiA/EN01O3QcgoW0= Subject key identifier: A6:08:84:B7:24:63:A7:AD:37:CC:69:1E:82:C2:15:FA:A4:DF:00:96 Authority key identifier: 73:91:4D:14:10:A1:CD:3F:85:AD:1E:1B:0A:50:FF:3F:8B:D6:0C:10 Certificate issuer: /CN=A91366F8/serialNumber=73914D1410A1CD3F85AD1E1B0A50FF3F8BD60C10 Certificate serial: 035E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c5FNFBChzT-FrR4bClD_P4vWDBA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.mft Manifest number: 035A Signing time: Sat 19 Jul 2025 01:22:38 +0000 Manifest this update: Sat 19 Jul 2025 01:22:37 +0000 Manifest next update: Sat 26 Jul 2025 01:22:37 +0000 Files and hashes: 1: c5FNFBChzT-FrR4bClD_P4vWDBA.crl (hash: cobzuPmAZmPnlwjwrjGC6kvHCPqBo21KdDnRkpeOJ5M=) 2: 591A8C06BE4D11EC8DADB22CC4F9AE02.roa (hash: Py8gHJNmqLpByr4I29rw6Mm8G9sMV9RnjA0oEGne9CY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.crl rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c5FNFBChzT-FrR4bClD_P4vWDBA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 01:22:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 862 (0x35e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91366F8, serialNumber=73914D1410A1CD3F85AD1E1B0A50FF3F8BD60C10 Validity Not Before: Jul 19 01:22:37 2025 GMT Not After : Jul 26 01:22:37 2025 GMT Subject: CN=687af35d-e80e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:9e:ae:a9:65:41:0f:d3:d0:a2:d5:6f:4e:3d: 5d:0a:02:10:12:bc:00:9e:6d:cb:25:8c:e6:0a:2d: 5d:60:9b:a6:92:3f:41:29:ff:23:d7:71:36:dd:e5: f0:0c:b8:15:69:cd:4b:5b:7d:00:29:fd:b7:4b:f8: 29:ff:9d:9d:34:b3:cc:03:ec:be:9b:f5:83:01:6e: 5e:7e:68:e1:4e:92:ca:1f:18:0a:2e:cd:9b:5b:8e: 21:a9:c2:4b:1e:f8:b8:f6:96:5f:5b:94:c5:14:3f: b7:60:ed:2d:44:49:75:2d:0c:2b:6c:2b:b5:36:6e: 70:61:2c:04:d2:34:29:0e:a8:40:5a:eb:f1:00:4f: 14:04:c7:23:d5:29:b3:2b:e3:f4:ab:17:18:7e:d9: 2f:42:53:98:e2:39:d4:52:45:08:85:0a:0c:1f:f6: ab:2b:a7:1e:d4:95:b0:68:ab:48:cc:8c:85:dc:6c: 41:a8:09:13:53:06:5a:76:95:76:66:0c:92:a5:22: 33:5d:ba:51:50:fb:90:9e:fb:4a:01:b0:de:e8:71: d1:94:04:ec:f5:71:96:59:6b:a9:c5:02:81:60:9d: e3:72:d3:47:04:7d:e9:fd:79:58:f0:2e:6b:79:e6: 54:3e:01:f5:4e:17:8f:c1:e0:03:12:60:4d:11:d0: e9:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:08:84:B7:24:63:A7:AD:37:CC:69:1E:82:C2:15:FA:A4:DF:00:96 X509v3 Authority Key Identifier: keyid:73:91:4D:14:10:A1:CD:3F:85:AD:1E:1B:0A:50:FF:3F:8B:D6:0C:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c5FNFBChzT-FrR4bClD_P4vWDBA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:a7:d0:50:45:67:58:f9:d2:56:88:b9:32:a2:2d:9d:d0:6f: 2d:c7:d2:70:cc:0c:f4:1c:7c:5a:b6:71:57:9b:e8:48:86:7f: 94:9f:44:dc:b6:a4:75:51:0d:43:05:48:4b:c5:18:c0:a7:ce: e4:21:ce:05:e4:63:22:89:d1:0b:f6:0c:d5:75:72:cf:ba:a5: 88:94:3c:b7:ac:e7:03:ed:aa:be:78:d9:3d:f2:33:c4:6f:c2: b3:ce:92:e8:e6:48:17:d3:fc:9f:aa:64:8f:17:78:e0:80:53: 8b:b5:f3:6d:43:45:df:27:15:cd:dd:d0:a6:e8:df:e2:26:af: d5:11:2b:b2:f7:0b:a2:d9:be:0b:51:3f:28:8f:34:1d:14:71: 24:61:b6:ec:a5:5e:93:d4:78:74:a4:f4:e1:1b:45:da:2d:15: 0c:e2:4c:c1:0a:b0:4e:74:1f:4e:dc:26:bf:8e:7a:4e:94:0c: ba:bd:cd:d8:44:7f:b0:85:86:70:1b:a4:cf:78:20:8f:14:74: 5b:e6:09:23:4f:22:44:59:6c:ff:37:86:8b:f0:f9:3f:22:01: af:a7:6d:65:4e:b4:97:a5:37:7d:80:df:5e:08:e3:fd:27:68: fe:f9:e7:45:47:af:5a:3a:94:db:d7:18:c2:2c:25:b6:30:ca: 85:d9:07:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA14wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzY2RjgxMTAvBgNVBAUTKDczOTE0RDE0MTBBMUNEM0Y4NUFEMUUxQjBBNTBGRjNG OEJENjBDMTAwHhcNMjUwNzE5MDEyMjM3WhcNMjUwNzI2MDEyMjM3WjAYMRYwFAYD VQQDEw02ODdhZjM1ZC1lODBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz56uqWVBD9PQotVvTj1dCgIQErwAnm3LJYzmCi1dYJumkj9BKf8j13E23eXw DLgVac1LW30AKf23S/gp/52dNLPMA+y+m/WDAW5efmjhTpLKHxgKLs2bW44hqcJL Hvi49pZfW5TFFD+3YO0tREl1LQwrbCu1Nm5wYSwE0jQpDqhAWuvxAE8UBMcj1Smz K+P0qxcYftkvQlOY4jnUUkUIhQoMH/arK6ce1JWwaKtIzIyF3GxBqAkTUwZadpV2 ZgySpSIzXbpRUPuQnvtKAbDe6HHRlATs9XGWWWupxQKBYJ3jctNHBH3p/XlY8C5r eeZUPgH1ThePweADEmBNEdDpRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKYIhLck Y6etN8xpHoLCFfqk3wCWMB8GA1UdIwQYMBaAFHORTRQQoc0/ha0eGwpQ/z+L1gwQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjZGOC9BNDI0Mzk3MEJF NEExMUVDQjI3OTU1MkFDNEY5QUUwMi9jNUZORkJDaHpULUZyUjRiQ2xEX1A0dldE QkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2M1Rk5GQkNoelQtRnJSNGJDbERfUDR2V0RCQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NjZGOC9BNDI0Mzk3MEJFNEExMUVDQjI3OTU1MkFDNEY5QUUwMi9jNUZORkJDaHpU LUZyUjRiQ2xEX1A0dldEQkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRp9BQRWdY+dJWiLkyoi2d0G8tx9JwzAz0HHxatnFXm+hIhn+Un0Tc tqR1UQ1DBUhLxRjAp87kIc4F5GMiidEL9gzVdXLPuqWIlDy3rOcD7aq+eNk98jPE b8KzzpLo5kgX0/yfqmSPF3jggFOLtfNtQ0XfJxXN3dCm6N/iJq/VESuy9wui2b4L UT8ojzQdFHEkYbbspV6T1Hh0pPThG0XaLRUM4kzBCrBOdB9O3Ca/jnpOlAy6vc3Y RH+whYZwG6TPeCCPFHRb5gkjTyJEWWz/N4aL8Pk/IgGvp21lTrSXpTd9gN9eCOP9 J2j++edFR69aOpTb1xjCLCW2MMqF2QcZ -----END CERTIFICATE-----Generated at Sun Jul 20 07:32:20 2025 by rpki-client