$ rpki-client -vvf rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/5cOmhsg97m0zv-xUHqy0pKCJknk.mft File: 5cOmhsg97m0zv-xUHqy0pKCJknk.mft (raw, json) Hash identifier: blKRxLw3sR64fzyFzcrLtG6Er4TcOvF0+wt+9196w0c= Subject key identifier: 44:FA:03:E6:71:CE:C4:A7:2C:7F:B0:AA:9D:61:D2:1D:07:BC:2C:FF Authority key identifier: E5:C3:A6:86:C8:3D:EE:6D:33:BF:EC:54:1E:AC:B4:A4:A0:89:92:79 Certificate issuer: /CN=A9153AA6/serialNumber=E5C3A686C83DEE6D33BFEC541EACB4A4A0899279 Certificate serial: 16EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5cOmhsg97m0zv-xUHqy0pKCJknk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/5cOmhsg97m0zv-xUHqy0pKCJknk.mft Manifest number: 16E0 Signing time: Sun 20 Jul 2025 16:40:41 +0000 Manifest this update: Sun 20 Jul 2025 16:40:40 +0000 Manifest next update: Sun 27 Jul 2025 16:40:40 +0000 Files and hashes: 1: 5cOmhsg97m0zv-xUHqy0pKCJknk.crl (hash: wR9WN28mcAYQGDdYpYSZooBpgxJIpCIb3H33Ryh2j8c=) 2: 99C6F94CF52511E7948D5A0BC4F9AE02.roa (hash: aM0yH97r/h3xu615cUuk5zwsCFMLHVQ8whXpoG1e1kM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/5cOmhsg97m0zv-xUHqy0pKCJknk.crl rsync://rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/5cOmhsg97m0zv-xUHqy0pKCJknk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5cOmhsg97m0zv-xUHqy0pKCJknk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 16:40:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5866 (0x16ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153AA6, serialNumber=E5C3A686C83DEE6D33BFEC541EACB4A4A0899279 Validity Not Before: Jul 20 16:40:40 2025 GMT Not After : Jul 27 16:40:40 2025 GMT Subject: CN=687d1c08-f9f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:56:f5:c1:56:db:1b:c1:71:be:71:5f:61:a9: 3b:fd:95:aa:ce:7e:fd:01:a7:74:8e:52:4b:82:bc: bb:ee:63:86:04:6b:eb:6e:1f:1f:1d:a5:94:97:7a: 81:7b:f7:58:84:4a:92:70:44:68:83:08:06:50:ff: 3d:aa:a8:9a:66:b5:86:9d:67:2c:b7:f2:bf:8a:ef: 3a:33:4f:8a:67:34:a5:bf:30:ff:0a:5d:b0:b4:f4: 05:93:6a:f7:72:ab:01:24:72:68:73:53:d2:96:d0: 6c:da:0a:c3:4a:04:9e:8c:87:e5:ad:e7:58:06:ce: 21:de:e2:89:a2:b6:85:e5:47:e4:c6:21:37:4c:33: 5d:10:a2:e2:1c:1d:27:21:7a:d7:82:43:c7:fd:df: 3a:27:a6:8e:a1:d0:af:bf:ad:37:de:25:c3:d1:ba: 6c:26:f9:37:d4:84:c6:96:ea:93:bb:c0:83:1c:eb: d8:a9:33:2f:d9:d7:8c:f4:2b:a0:25:55:02:21:2c: 78:b7:76:f7:9c:80:5e:d5:57:f1:a7:ad:bb:f2:3b: 3d:a2:bd:6d:fe:68:39:4b:1f:93:22:ad:fd:4c:bf: 22:05:fa:67:7b:b2:47:4f:ab:15:81:ab:e2:aa:3c: af:fe:f6:32:98:52:3a:48:a9:1d:03:43:a6:f8:96: 4c:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:FA:03:E6:71:CE:C4:A7:2C:7F:B0:AA:9D:61:D2:1D:07:BC:2C:FF X509v3 Authority Key Identifier: keyid:E5:C3:A6:86:C8:3D:EE:6D:33:BF:EC:54:1E:AC:B4:A4:A0:89:92:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/5cOmhsg97m0zv-xUHqy0pKCJknk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5cOmhsg97m0zv-xUHqy0pKCJknk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/5cOmhsg97m0zv-xUHqy0pKCJknk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:d0:85:7c:5d:78:00:ae:f1:ba:59:4d:5f:bf:4d:ce:d1:2c: ff:47:58:c9:88:a9:19:4b:9d:45:04:5a:27:6c:d6:76:30:de: ff:3f:de:3d:d2:9c:82:8a:14:9a:e0:7e:53:8b:80:a4:b2:af: 6f:e0:4e:5d:b1:6d:b5:53:7c:a7:43:67:38:73:b0:50:d9:23: 53:d8:77:84:9a:71:c6:5a:7a:67:7c:ec:2f:13:40:e8:9b:7e: c0:a3:7f:e9:c2:a4:62:cd:8f:23:1f:d7:90:7e:e1:e2:08:7a: 8c:f6:c7:10:ad:83:24:d5:c0:c1:d4:16:e2:54:2c:99:99:73: f4:43:14:03:d4:5a:f2:b4:d3:25:aa:dd:6c:35:8b:74:04:a6: f7:37:0d:ce:c2:b9:6f:f4:6a:3a:ab:ac:97:c5:3b:9b:fc:8b: c6:66:b8:7d:5a:61:ff:74:66:61:16:41:e1:c6:a3:ca:6e:96: 63:89:13:ff:74:8e:2d:47:5d:7b:fb:93:69:8d:2b:00:87:46: fa:1e:45:a6:83:c1:0a:c0:40:1a:e2:fd:38:1d:da:96:34:16: cd:35:f4:99:53:e5:ec:fc:7c:b2:56:2a:a2:2d:c0:65:ed:68: b1:48:bb:61:00:67:71:2c:a6:aa:fb:e5:e4:1e:48:8e:16:8e: 20:e0:d2:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFuowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNBQTYxMTAvBgNVBAUTKEU1QzNBNjg2QzgzREVFNkQzM0JGRUM1NDFFQUNCNEE0 QTA4OTkyNzkwHhcNMjUwNzIwMTY0MDQwWhcNMjUwNzI3MTY0MDQwWjAYMRYwFAYD VQQDEw02ODdkMWMwOC1mOWY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxFb1wVbbG8FxvnFfYak7/ZWqzn79Aad0jlJLgry77mOGBGvrbh8fHaWUl3qB e/dYhEqScERogwgGUP89qqiaZrWGnWcst/K/iu86M0+KZzSlvzD/Cl2wtPQFk2r3 cqsBJHJoc1PSltBs2grDSgSejIflredYBs4h3uKJoraF5UfkxiE3TDNdEKLiHB0n IXrXgkPH/d86J6aOodCvv6033iXD0bpsJvk31ITGluqTu8CDHOvYqTMv2deM9Cug JVUCISx4t3b3nIBe1Vfxp6278js9or1t/mg5Sx+TIq39TL8iBfpne7JHT6sVgavi qjyv/vYymFI6SKkdA0Om+JZMxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFET6A+Zx zsSnLH+wqp1h0h0HvCz/MB8GA1UdIwQYMBaAFOXDpobIPe5tM7/sVB6stKSgiZJ5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0FBNi85QzNEODdFNkY1 MjQxMUU3OTY0NEIwMDlDNEY5QUUwMi81Y09taHNnOTdtMHp2LXhVSHF5MHBLQ0pr bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVjT21oc2c5N20wenYteFVIcXkwcEtDSmtuay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0FBNi85QzNEODdFNkY1MjQxMUU3OTY0NEIwMDlDNEY5QUUwMi81Y09taHNnOTdt MHp2LXhVSHF5MHBLQ0prbmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB80IV8XXgArvG6WU1fv03O0Sz/R1jJiKkZS51FBFonbNZ2MN7/P949 0pyCihSa4H5Ti4Cksq9v4E5dsW21U3ynQ2c4c7BQ2SNT2HeEmnHGWnpnfOwvE0Do m37Ao3/pwqRizY8jH9eQfuHiCHqM9scQrYMk1cDB1BbiVCyZmXP0QxQD1FrytNMl qt1sNYt0BKb3Nw3Owrlv9Go6q6yXxTub/IvGZrh9WmH/dGZhFkHhxqPKbpZjiRP/ dI4tR117+5NpjSsAh0b6HkWmg8EKwEAa4v04HdqWNBbNNfSZU+Xs/HyyViqiLcBl 7WixSLthAGdxLKaq++XkHkiOFo4g4NId -----END CERTIFICATE-----Generated at Mon Jul 21 13:19:42 2025 by rpki-client