$ rpki-client -vvf rpki.apnic.net/member_repository/A9168336/19F75A6601CD11EAB865EA22C4F9AE02/5iRBKkJ5WJuewvqzIiurBibTElo.mft File: 5iRBKkJ5WJuewvqzIiurBibTElo.mft (raw, json) Hash identifier: 60skbQ9+k/8eMu5Zg/YsiiLz9lsP9dLy3fY9ELsmclM= Subject key identifier: 10:F1:D8:45:55:31:05:D4:F1:2A:73:26:F9:AD:43:A4:95:A4:5E:39 Authority key identifier: E6:24:41:2A:42:79:58:9B:9E:C2:FA:B3:22:2B:AB:06:26:D3:12:5A Certificate issuer: /CN=A9168336/serialNumber=E624412A4279589B9EC2FAB3222BAB0626D3125A Certificate serial: 0C93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5iRBKkJ5WJuewvqzIiurBibTElo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168336/19F75A6601CD11EAB865EA22C4F9AE02/5iRBKkJ5WJuewvqzIiurBibTElo.mft Manifest number: 0C84 Signing time: Thu 24 Jul 2025 18:28:15 +0000 Manifest this update: Thu 24 Jul 2025 18:28:14 +0000 Manifest next update: Thu 31 Jul 2025 18:28:14 +0000 Files and hashes: 1: 5iRBKkJ5WJuewvqzIiurBibTElo.crl (hash: y4dxf/sxb9yIHsf0gvFMEpJ9S2lT0En/0N8YbQK7hhE=) 2: BE4852941C2E11EE9A9A9940C4F9AE02.roa (hash: DnLi7rEERWA5qhTcgS0GPWRyD6exAMMBjfted7mhPy4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168336/19F75A6601CD11EAB865EA22C4F9AE02/5iRBKkJ5WJuewvqzIiurBibTElo.crl rsync://rpki.apnic.net/member_repository/A9168336/19F75A6601CD11EAB865EA22C4F9AE02/5iRBKkJ5WJuewvqzIiurBibTElo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5iRBKkJ5WJuewvqzIiurBibTElo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 18:28:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3219 (0xc93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168336, serialNumber=E624412A4279589B9EC2FAB3222BAB0626D3125A Validity Not Before: Jul 24 18:28:14 2025 GMT Not After : Jul 31 18:28:14 2025 GMT Subject: CN=68827b3e-9657 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:39:a9:40:52:40:f2:9e:b6:f1:39:70:17:cf: 21:86:01:50:7f:d4:94:8c:df:27:78:f9:76:fc:44: 75:2f:d0:24:a4:16:82:3b:66:47:0b:85:7c:dc:8c: 38:7b:c1:de:19:d8:e4:e3:98:f3:67:77:a7:8b:78: 27:00:e9:d8:ba:c4:b4:4c:87:72:aa:6c:a4:95:76: d4:12:5e:c0:a5:a2:39:22:a3:14:e5:70:70:8e:c8: d5:33:ab:b7:3c:73:04:ee:3a:00:77:ff:75:cb:f7: d6:d7:e2:4b:5e:f8:37:25:58:72:34:4f:69:0d:b8: 55:c2:8f:3b:8c:b3:82:49:9e:9e:f6:38:db:ab:a5: de:ac:47:56:f1:64:14:43:ff:6b:dd:a7:7b:b8:e2: 95:b4:31:8c:68:de:8b:bc:36:35:44:f9:4c:b6:9c: 8c:12:18:73:5b:a7:da:4e:4e:3e:25:b3:c9:79:55: 4a:eb:9f:e8:aa:ac:6d:b4:2f:87:69:57:84:e1:35: 70:e9:f0:9a:a9:14:24:21:81:75:ee:78:da:92:cf: b6:4f:a8:53:f8:f7:20:e4:eb:17:0d:f2:a4:05:70: 65:88:f5:08:85:1f:33:9b:a3:b9:f6:be:2c:f9:4a: 0e:f2:23:5b:85:11:fc:d7:16:85:4a:37:05:fe:1f: 50:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:F1:D8:45:55:31:05:D4:F1:2A:73:26:F9:AD:43:A4:95:A4:5E:39 X509v3 Authority Key Identifier: keyid:E6:24:41:2A:42:79:58:9B:9E:C2:FA:B3:22:2B:AB:06:26:D3:12:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168336/19F75A6601CD11EAB865EA22C4F9AE02/5iRBKkJ5WJuewvqzIiurBibTElo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5iRBKkJ5WJuewvqzIiurBibTElo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168336/19F75A6601CD11EAB865EA22C4F9AE02/5iRBKkJ5WJuewvqzIiurBibTElo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:79:ca:87:72:6f:21:fe:d5:2e:de:fc:8e:f8:36:cf:ea:10: 0c:d9:a6:14:3f:7c:74:a1:ad:3d:3f:fc:08:d9:e0:92:de:14: 8b:3d:fc:9a:d3:6d:95:d7:63:64:b2:e1:39:f3:a5:35:f1:9d: 3c:50:73:9e:8e:dc:ad:c2:4b:4a:01:eb:a9:7d:c6:f6:31:ea: 2f:38:64:41:54:9a:22:b6:bd:3e:80:2d:a0:0a:0a:f1:e4:e5: 94:0b:01:df:1d:8c:8c:3f:f5:ae:fb:4e:43:73:65:d7:d5:34: fd:b6:ed:12:7c:22:35:a9:6e:bb:40:41:8b:24:c0:fd:03:ad: 65:18:15:6e:88:37:f3:68:d1:ca:a2:2f:28:c3:3a:61:0d:f7: cd:05:90:db:b6:d7:ae:0a:4d:78:0a:42:81:af:32:69:41:b5: ef:ec:99:d3:19:48:5a:cd:22:2d:4c:b0:10:8e:5f:8a:84:23: ae:09:4f:3e:a6:47:e2:fe:41:07:6d:26:60:8d:0f:29:fb:7b: 05:09:7c:e3:6d:c3:bb:2d:49:dd:52:4f:62:92:34:22:2a:67: 80:66:ec:7c:f3:a6:34:8e:09:91:52:a3:f2:9f:f3:86:97:dd: 35:b9:98:16:b9:09:2b:d4:97:45:ff:0b:27:04:01:e0:3b:98: b9:7c:d2:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjgzMzYxMTAvBgNVBAUTKEU2MjQ0MTJBNDI3OTU4OUI5RUMyRkFCMzIyMkJBQjA2 MjZEMzEyNUEwHhcNMjUwNzI0MTgyODE0WhcNMjUwNzMxMTgyODE0WjAYMRYwFAYD VQQDEw02ODgyN2IzZS05NjU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwDmpQFJA8p628TlwF88hhgFQf9SUjN8nePl2/ER1L9AkpBaCO2ZHC4V83Iw4 e8HeGdjk45jzZ3eni3gnAOnYusS0TIdyqmyklXbUEl7ApaI5IqMU5XBwjsjVM6u3 PHME7joAd/91y/fW1+JLXvg3JVhyNE9pDbhVwo87jLOCSZ6e9jjbq6XerEdW8WQU Q/9r3ad7uOKVtDGMaN6LvDY1RPlMtpyMEhhzW6faTk4+JbPJeVVK65/oqqxttC+H aVeE4TVw6fCaqRQkIYF17njaks+2T6hT+Pcg5OsXDfKkBXBliPUIhR8zm6O59r4s +UoO8iNbhRH81xaFSjcF/h9Q1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBDx2EVV MQXU8SpzJvmtQ6SVpF45MB8GA1UdIwQYMBaAFOYkQSpCeVibnsL6syIrqwYm0xJa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODMzNi8xOUY3NUE2NjAx Q0QxMUVBQjg2NUVBMjJDNEY5QUUwMi81aVJCS2tKNVdKdWV3dnF6SWl1ckJpYlRF bG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVpUkJLa0o1V0p1ZXd2cXpJaXVyQmliVEVsby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODMzNi8xOUY3NUE2NjAxQ0QxMUVBQjg2NUVBMjJDNEY5QUUwMi81aVJCS2tKNVdK dWV3dnF6SWl1ckJpYlRFbG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANecqHcm8h/tUu3vyO+DbP6hAM2aYUP3x0oa09P/wI2eCS3hSLPfya 022V12NksuE586U18Z08UHOejtytwktKAeupfcb2MeovOGRBVJoitr0+gC2gCgrx 5OWUCwHfHYyMP/Wu+05Dc2XX1TT9tu0SfCI1qW67QEGLJMD9A61lGBVuiDfzaNHK oi8owzphDffNBZDbtteuCk14CkKBrzJpQbXv7JnTGUhazSItTLAQjl+KhCOuCU8+ pkfi/kEHbSZgjQ8p+3sFCXzjbcO7LUndUk9ikjQiKmeAZux886Y0jgmRUqPyn/OG l901uZgWuQkr1JdF/wsnBAHgO5i5fNK3 -----END CERTIFICATE-----Generated at Sat Jul 26 06:59:58 2025 by rpki-client