$ rpki-client -vvf rpki.apnic.net/member_repository/A914C4D7/99D9153AB79011E9BEE8DD34C4F9AE02/5viFuMHmNK45nsq4FzoD245MEpQ.mft File: 5viFuMHmNK45nsq4FzoD245MEpQ.mft (raw, json) Hash identifier: nAuTTZeRbpnaf/AmmLpiaH6ks8T97JV4diAy1Pd+U54= Subject key identifier: E0:E1:54:69:02:E0:DF:B8:B2:8A:79:5E:D0:AF:97:C0:23:73:36:80 Authority key identifier: E6:F8:85:B8:C1:E6:34:AE:39:9E:CA:B8:17:3A:03:DB:8E:4C:12:94 Certificate issuer: /CN=A914C4D7/serialNumber=E6F885B8C1E634AE399ECAB8173A03DB8E4C1294 Certificate serial: 0DEE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5viFuMHmNK45nsq4FzoD245MEpQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C4D7/99D9153AB79011E9BEE8DD34C4F9AE02/5viFuMHmNK45nsq4FzoD245MEpQ.mft Manifest number: 0DE5 Signing time: Fri 18 Jul 2025 18:02:30 +0000 Manifest this update: Fri 18 Jul 2025 18:02:30 +0000 Manifest next update: Fri 25 Jul 2025 18:02:30 +0000 Files and hashes: 1: 5viFuMHmNK45nsq4FzoD245MEpQ.crl (hash: aQC2Y1zdch0CbDoIEVxNHq5EcqGiz9Z3YhgYk3hlYeM=) 2: 1801797EB79211E986129837C4F9AE02.roa (hash: I7CEbkBg9Av7yOv0PNqj77FDrgxZjjIl1US16C5a7sQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C4D7/99D9153AB79011E9BEE8DD34C4F9AE02/5viFuMHmNK45nsq4FzoD245MEpQ.crl rsync://rpki.apnic.net/member_repository/A914C4D7/99D9153AB79011E9BEE8DD34C4F9AE02/5viFuMHmNK45nsq4FzoD245MEpQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5viFuMHmNK45nsq4FzoD245MEpQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 18:02:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3566 (0xdee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C4D7, serialNumber=E6F885B8C1E634AE399ECAB8173A03DB8E4C1294 Validity Not Before: Jul 18 18:02:30 2025 GMT Not After : Jul 25 18:02:30 2025 GMT Subject: CN=687a8c36-b4bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:d2:49:15:83:f7:21:a0:7f:91:50:71:26:0c: a6:d1:9b:28:48:4f:c1:51:e1:df:35:b6:25:1b:18: 53:68:fb:71:d3:c7:30:61:6d:74:86:99:b8:e9:4b: fe:f4:22:1d:57:95:ca:aa:4c:b5:1b:1e:99:4c:a4: df:3f:c3:ec:33:08:8c:59:1b:bb:55:72:4d:79:ad: d9:3e:04:c6:2c:03:86:fd:01:c1:3f:7e:32:f9:19: 2f:00:11:f1:6f:6d:b3:98:27:9d:30:85:74:fa:42: 05:b3:eb:db:1e:86:64:dc:c9:06:c0:65:a4:d9:8e: 25:31:dd:0f:05:55:fc:fa:b4:b3:64:50:c4:cb:5e: 0b:29:62:2c:1d:c9:ed:32:2c:20:1c:1d:cb:8f:39: 39:9a:54:e7:9f:d0:2f:17:c5:96:a1:b1:91:70:e9: d3:9c:ae:99:a6:76:1f:e8:2f:bc:5d:69:8e:29:86: db:33:89:e7:23:e3:ff:f0:74:25:ad:2f:4e:1d:3b: 39:94:08:04:9d:aa:2b:e5:30:49:3e:f6:f4:41:22: b1:d6:30:34:8f:73:03:e8:69:f3:2b:6b:0c:c5:0d: ce:ef:c4:2f:91:aa:da:1f:57:53:d6:86:d8:c3:e0: 4b:e6:40:8c:bd:ed:f7:ce:ec:1b:06:2d:8a:fe:8c: 23:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:E1:54:69:02:E0:DF:B8:B2:8A:79:5E:D0:AF:97:C0:23:73:36:80 X509v3 Authority Key Identifier: keyid:E6:F8:85:B8:C1:E6:34:AE:39:9E:CA:B8:17:3A:03:DB:8E:4C:12:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C4D7/99D9153AB79011E9BEE8DD34C4F9AE02/5viFuMHmNK45nsq4FzoD245MEpQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5viFuMHmNK45nsq4FzoD245MEpQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C4D7/99D9153AB79011E9BEE8DD34C4F9AE02/5viFuMHmNK45nsq4FzoD245MEpQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:88:5a:a2:46:53:af:f2:cc:29:5b:a0:03:c8:47:2d:f1:9b: c4:fb:f5:c7:15:93:25:52:8e:7a:3f:f9:e3:c5:15:33:0f:88: 53:c0:ef:0f:51:27:f4:e2:30:c9:e9:d5:92:b9:fb:67:41:41: d9:32:67:35:a9:0e:01:80:1f:db:a3:fa:8f:14:5a:fd:f1:15: 0d:27:e5:ab:35:13:ff:b0:2c:95:eb:b9:dc:53:8a:92:74:75: b4:d2:6f:f0:36:29:82:62:e6:24:b1:47:c9:ad:50:6d:b3:63: 11:b2:39:b3:0b:94:51:5e:5c:71:58:47:4b:26:df:72:38:2f: e7:49:30:cc:11:0f:dc:f0:cf:1b:91:f8:17:ca:83:17:61:69: 34:d5:36:47:4b:eb:90:5c:d7:c7:db:21:4b:5b:64:94:57:6a: 09:82:c3:ad:a1:f8:fb:11:d1:e4:19:a7:e8:cb:98:cc:bc:7e: cb:39:17:02:88:30:50:0b:2b:10:cf:1e:23:5b:ae:80:90:3b: 98:52:0e:a0:3b:29:34:64:f4:2e:9b:9b:89:b5:17:ea:10:07: 01:6c:f4:5e:ba:d7:c8:3d:ce:c3:f1:4e:9b:a4:15:9e:5a:d4: 2b:bf:d2:66:d9:da:8f:76:4d:a6:df:25:7b:b5:9c:ed:97:9d: 7b:ed:13:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDe4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0RDcxMTAvBgNVBAUTKEU2Rjg4NUI4QzFFNjM0QUUzOTlFQ0FCODE3M0EwM0RC OEU0QzEyOTQwHhcNMjUwNzE4MTgwMjMwWhcNMjUwNzI1MTgwMjMwWjAYMRYwFAYD VQQDEw02ODdhOGMzNi1iNGJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3NJJFYP3IaB/kVBxJgym0ZsoSE/BUeHfNbYlGxhTaPtx08cwYW10hpm46Uv+ 9CIdV5XKqky1Gx6ZTKTfP8PsMwiMWRu7VXJNea3ZPgTGLAOG/QHBP34y+RkvABHx b22zmCedMIV0+kIFs+vbHoZk3MkGwGWk2Y4lMd0PBVX8+rSzZFDEy14LKWIsHcnt MiwgHB3Ljzk5mlTnn9AvF8WWobGRcOnTnK6ZpnYf6C+8XWmOKYbbM4nnI+P/8HQl rS9OHTs5lAgEnaor5TBJPvb0QSKx1jA0j3MD6GnzK2sMxQ3O78QvkaraH1dT1obY w+BL5kCMve33zuwbBi2K/owjRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFODhVGkC 4N+4sop5XtCvl8AjczaAMB8GA1UdIwQYMBaAFOb4hbjB5jSuOZ7KuBc6A9uOTBKU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzRENy85OUQ5MTUzQUI3 OTAxMUU5QkVFOEREMzRDNEY5QUUwMi81dmlGdU1IbU5LNDVuc3E0RnpvRDI0NU1F cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzV2aUZ1TUhtTks0NW5zcTRGem9EMjQ1TUVwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzRENy85OUQ5MTUzQUI3OTAxMUU5QkVFOEREMzRDNEY5QUUwMi81dmlGdU1IbU5L NDVuc3E0RnpvRDI0NU1FcFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNiFqiRlOv8swpW6ADyEct8ZvE+/XHFZMlUo56P/njxRUzD4hTwO8P USf04jDJ6dWSuftnQUHZMmc1qQ4BgB/bo/qPFFr98RUNJ+WrNRP/sCyV67ncU4qS dHW00m/wNimCYuYksUfJrVBts2MRsjmzC5RRXlxxWEdLJt9yOC/nSTDMEQ/c8M8b kfgXyoMXYWk01TZHS+uQXNfH2yFLW2SUV2oJgsOtofj7EdHkGafoy5jMvH7LORcC iDBQCysQzx4jW66AkDuYUg6gOyk0ZPQum5uJtRfqEAcBbPReutfIPc7D8U6bpBWe WtQrv9Jm2dqPdk2m3yV7tZztl5177RMM -----END CERTIFICATE-----Generated at Sat Jul 19 18:41:50 2025 by rpki-client