$ rpki-client -vvf rpki.apnic.net/member_repository/A914D2BF/2A71E6BCD34411ED8E2C5464C4F9AE02/5rsDqligwnDrZrPq6yQI__q6Xsc.mft File: 5rsDqligwnDrZrPq6yQI__q6Xsc.mft (raw, json) Hash identifier: Is5QL1EnhiW6R22dkbDpDJ1w33cFA83+GloTsk2CpeY= Subject key identifier: AE:71:A0:F0:40:55:BC:CF:33:EC:A8:CA:93:72:AF:8A:C3:2D:5E:37 Authority key identifier: E6:BB:03:AA:58:A0:C2:70:EB:66:B3:EA:EB:24:08:FF:FA:BA:5E:C7 Certificate issuer: /CN=A914D2BF/serialNumber=E6BB03AA58A0C270EB66B3EAEB2408FFFABA5EC7 Certificate serial: 01B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5rsDqligwnDrZrPq6yQI__q6Xsc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D2BF/2A71E6BCD34411ED8E2C5464C4F9AE02/5rsDqligwnDrZrPq6yQI__q6Xsc.mft Manifest number: 01B4 Signing time: Mon 21 Jul 2025 03:15:49 +0000 Manifest this update: Mon 21 Jul 2025 03:15:49 +0000 Manifest next update: Mon 28 Jul 2025 03:15:49 +0000 Files and hashes: 1: 5rsDqligwnDrZrPq6yQI__q6Xsc.crl (hash: OItH3K1WpjgWXbGzvqjYOnWuen02LX7e7OFKQqHOoGQ=) 2: AEF266ECD34811EDAD96D95DC4F9AE02.roa (hash: KXSCbuQLHG9xWL+hihrwdJUS/R0sgZW/C4dlIANzg14=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D2BF/2A71E6BCD34411ED8E2C5464C4F9AE02/5rsDqligwnDrZrPq6yQI__q6Xsc.crl rsync://rpki.apnic.net/member_repository/A914D2BF/2A71E6BCD34411ED8E2C5464C4F9AE02/5rsDqligwnDrZrPq6yQI__q6Xsc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5rsDqligwnDrZrPq6yQI__q6Xsc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 03:15:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 440 (0x1b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D2BF, serialNumber=E6BB03AA58A0C270EB66B3EAEB2408FFFABA5EC7 Validity Not Before: Jul 21 03:15:49 2025 GMT Not After : Jul 28 03:15:49 2025 GMT Subject: CN=687db0e5-af92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:cd:ab:93:1e:41:14:d7:7f:3c:c0:0a:28:29: 0a:95:fe:b1:db:e6:85:e9:4a:1b:a7:82:34:85:2a: be:37:6f:b7:77:4e:62:ef:42:66:bd:f5:1d:9d:b0: 27:9f:09:03:1d:7e:d2:66:e7:5d:dc:87:45:e2:55: d7:cd:27:05:da:cd:39:36:b5:e3:37:6e:83:f3:5c: 05:e5:5b:e9:7b:de:a8:e5:56:6d:13:65:5f:c0:cd: 12:33:3b:c4:0a:a0:bc:20:34:ee:c5:e7:3c:e3:c9: 4b:40:2f:40:56:60:60:fc:0d:47:57:b4:32:e4:82: 43:6b:d3:8f:16:67:90:8d:26:58:d6:3b:2a:79:cf: bc:47:6c:08:a8:14:bc:60:1a:2c:2e:fb:7f:d9:5e: d2:51:94:0e:cd:57:61:ec:12:31:d8:68:a0:eb:e4: bf:86:d6:b4:40:2b:04:d1:2a:fc:71:ef:49:29:97: a1:c8:7c:63:d9:8e:36:c1:f0:97:d6:db:b1:b2:ca: ed:1f:9c:d0:6a:6c:cc:0a:c9:ad:32:d0:c3:17:9d: 76:c2:e5:e9:1a:5b:9a:07:3e:aa:c3:e3:82:59:1f: 75:95:73:d1:31:ac:e0:0a:ea:df:2c:87:d4:2a:2d: 48:4b:81:a4:49:ab:b0:17:6f:74:cd:f6:ae:cf:a6: 65:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:71:A0:F0:40:55:BC:CF:33:EC:A8:CA:93:72:AF:8A:C3:2D:5E:37 X509v3 Authority Key Identifier: keyid:E6:BB:03:AA:58:A0:C2:70:EB:66:B3:EA:EB:24:08:FF:FA:BA:5E:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D2BF/2A71E6BCD34411ED8E2C5464C4F9AE02/5rsDqligwnDrZrPq6yQI__q6Xsc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5rsDqligwnDrZrPq6yQI__q6Xsc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D2BF/2A71E6BCD34411ED8E2C5464C4F9AE02/5rsDqligwnDrZrPq6yQI__q6Xsc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:47:48:5c:ea:71:cd:1d:a5:26:64:f3:c2:7c:cf:7f:52:e5: 4b:00:7e:cb:1b:dc:fe:83:7d:70:a3:ae:34:97:4c:99:e9:d7: f0:4f:49:40:4d:1a:a7:5e:99:ae:f3:ff:02:72:9b:6b:52:88: c7:76:4f:5d:24:1e:c2:e5:51:51:66:43:1f:0f:91:a8:3f:34: f3:20:ff:2a:6c:b2:10:ce:e4:2b:41:17:9b:5d:19:99:77:85: 56:c1:b5:25:21:f5:da:f6:f6:9e:1b:a9:96:b1:2d:ca:e5:af: 04:a6:7f:0b:a7:57:ee:5c:5b:5c:85:bb:e0:f8:2b:76:74:a4: 36:b7:5f:2a:2b:46:ba:9a:8c:eb:08:00:c8:8a:63:82:8a:32: 68:19:a6:05:f7:f8:89:b6:90:99:fe:ad:53:3c:6e:bc:7f:12: 18:52:e4:af:b9:18:3b:3a:10:4f:59:11:07:87:ef:7a:60:53: 7e:d9:4b:bd:65:11:fb:a9:20:57:a7:55:72:55:a1:1e:d5:a5: 1c:0f:a3:20:f7:fb:ab:48:f1:88:75:53:e2:a4:c0:e7:34:54: b4:31:10:d4:ae:3e:46:0e:40:a9:0e:2c:d0:ac:00:b0:67:d6: bf:d5:01:16:15:9d:e2:18:9f:43:ab:43:7f:e2:12:65:83:c8: 8e:ca:35:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQyQkYxMTAvBgNVBAUTKEU2QkIwM0FBNThBMEMyNzBFQjY2QjNFQUVCMjQwOEZG RkFCQTVFQzcwHhcNMjUwNzIxMDMxNTQ5WhcNMjUwNzI4MDMxNTQ5WjAYMRYwFAYD VQQDEw02ODdkYjBlNS1hZjkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1c2rkx5BFNd/PMAKKCkKlf6x2+aF6Uobp4I0hSq+N2+3d05i70JmvfUdnbAn nwkDHX7SZudd3IdF4lXXzScF2s05NrXjN26D81wF5Vvpe96o5VZtE2VfwM0SMzvE CqC8IDTuxec848lLQC9AVmBg/A1HV7Qy5IJDa9OPFmeQjSZY1jsqec+8R2wIqBS8 YBosLvt/2V7SUZQOzVdh7BIx2Gig6+S/hta0QCsE0Sr8ce9JKZehyHxj2Y42wfCX 1tuxssrtH5zQamzMCsmtMtDDF512wuXpGluaBz6qw+OCWR91lXPRMazgCurfLIfU Ki1IS4GkSauwF290zfauz6ZlxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK5xoPBA VbzPM+yoypNyr4rDLV43MB8GA1UdIwQYMBaAFOa7A6pYoMJw62az6uskCP/6ul7H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDJCRi8yQTcxRTZCQ0Qz NDQxMUVEOEUyQzU0NjRDNEY5QUUwMi81cnNEcWxpZ3duRHJaclBxNnlRSV9fcTZY c2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVyc0RxbGlnd25EclpyUHE2eVFJX19xNlhzYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDJCRi8yQTcxRTZCQ0QzNDQxMUVEOEUyQzU0NjRDNEY5QUUwMi81cnNEcWxpZ3du RHJaclBxNnlRSV9fcTZYc2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQR0hc6nHNHaUmZPPCfM9/UuVLAH7LG9z+g31wo640l0yZ6dfwT0lA TRqnXpmu8/8CcptrUojHdk9dJB7C5VFRZkMfD5GoPzTzIP8qbLIQzuQrQRebXRmZ d4VWwbUlIfXa9vaeG6mWsS3K5a8Epn8Lp1fuXFtchbvg+Ct2dKQ2t18qK0a6mozr CADIimOCijJoGaYF9/iJtpCZ/q1TPG68fxIYUuSvuRg7OhBPWREHh+96YFN+2Uu9 ZRH7qSBXp1VyVaEe1aUcD6Mg9/urSPGIdVPipMDnNFS0MRDUrj5GDkCpDizQrACw Z9a/1QEWFZ3iGJ9Dq0N/4hJlg8iOyjXy -----END CERTIFICATE-----Generated at Mon Jul 21 13:27:26 2025 by rpki-client