$ rpki-client -vvf rpki.apnic.net/member_repository/A917A362/7CBA4C4C726E11EE9FE35061C4F9AE02/5sRskdEtWFoSsFVpYh3uGtP4kI4.mft File: 5sRskdEtWFoSsFVpYh3uGtP4kI4.mft (raw, json) Hash identifier: E9UoVL5289zHFWymVT4ls6pmi4UCdtsQ7GZXWpVbDt8= Subject key identifier: ED:9F:E6:E6:22:44:D5:39:D5:23:5B:12:A5:48:87:95:BE:55:38:A9 Authority key identifier: E6:C4:6C:91:D1:2D:58:5A:12:B0:55:69:62:1D:EE:1A:D3:F8:90:8E Certificate issuer: /CN=A917A362/serialNumber=E6C46C91D12D585A12B05569621DEE1AD3F8908E Certificate serial: 014A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5sRskdEtWFoSsFVpYh3uGtP4kI4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A362/7CBA4C4C726E11EE9FE35061C4F9AE02/5sRskdEtWFoSsFVpYh3uGtP4kI4.mft Manifest number: 0147 Signing time: Mon 21 Jul 2025 04:22:57 +0000 Manifest this update: Mon 21 Jul 2025 04:22:57 +0000 Manifest next update: Mon 28 Jul 2025 04:22:57 +0000 Files and hashes: 1: 5sRskdEtWFoSsFVpYh3uGtP4kI4.crl (hash: Gf+PPP1GdsNRIrr+INiLnA6XoD+cXL48EKotnGtfamI=) 2: 1B299892726F11EEB1217365C4F9AE02.roa (hash: 6cDYRuNREDOcfjp20jGUwg25me6jxHxjZr5vSBlmhG8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A362/7CBA4C4C726E11EE9FE35061C4F9AE02/5sRskdEtWFoSsFVpYh3uGtP4kI4.crl rsync://rpki.apnic.net/member_repository/A917A362/7CBA4C4C726E11EE9FE35061C4F9AE02/5sRskdEtWFoSsFVpYh3uGtP4kI4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5sRskdEtWFoSsFVpYh3uGtP4kI4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 04:22:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 330 (0x14a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A362, serialNumber=E6C46C91D12D585A12B05569621DEE1AD3F8908E Validity Not Before: Jul 21 04:22:57 2025 GMT Not After : Jul 28 04:22:57 2025 GMT Subject: CN=687dc0a1-643a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:0e:21:38:f5:79:08:38:88:b9:64:ff:9c:5d: fd:af:d0:7e:ae:f1:84:6b:c1:96:90:da:41:bb:f1: 76:f1:a6:5a:fb:13:34:16:af:6a:76:a9:49:f1:a8: d8:9e:8d:aa:89:a9:4b:0d:c4:98:ad:f0:b5:5b:74: f9:0f:6a:61:75:25:ba:4f:f0:66:18:f7:53:37:f9: c1:61:66:79:33:b4:c7:0f:31:be:d2:c8:62:e8:27: 7c:79:d3:8f:41:a5:d1:e3:fb:3c:f3:b6:d8:cf:73: c7:27:2e:56:f6:0b:dc:61:53:bd:aa:25:dc:35:3b: 92:6d:25:98:16:d5:01:32:06:9c:2c:a1:69:aa:58: 36:07:0f:24:b6:b1:10:01:0c:e8:d8:e6:ce:74:8e: 8f:34:00:e4:4d:eb:8a:35:c4:66:81:64:bf:ae:45: cc:ef:d5:6c:36:20:c1:71:e2:c9:91:53:01:29:91: 3f:6d:62:cc:e5:e5:ab:53:0b:77:75:f7:ae:19:02: c5:fd:38:3c:20:4a:72:10:67:8d:e1:71:7b:54:c3: 35:43:92:de:7e:31:b8:cb:6d:8d:79:c5:cd:51:2a: b4:72:61:80:e3:2f:11:ef:60:0e:70:70:30:49:40: 13:5a:05:66:1b:79:ee:53:8c:c3:fd:62:a6:25:fe: 2f:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:9F:E6:E6:22:44:D5:39:D5:23:5B:12:A5:48:87:95:BE:55:38:A9 X509v3 Authority Key Identifier: keyid:E6:C4:6C:91:D1:2D:58:5A:12:B0:55:69:62:1D:EE:1A:D3:F8:90:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A362/7CBA4C4C726E11EE9FE35061C4F9AE02/5sRskdEtWFoSsFVpYh3uGtP4kI4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5sRskdEtWFoSsFVpYh3uGtP4kI4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A362/7CBA4C4C726E11EE9FE35061C4F9AE02/5sRskdEtWFoSsFVpYh3uGtP4kI4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:66:4a:98:80:9c:9e:ee:7b:17:9f:2b:6b:d6:9f:0a:86:b3: eb:0d:ff:6d:b7:ae:8d:88:51:e4:9d:6f:54:14:f4:ea:65:34: 62:80:a7:45:d2:37:9b:d9:cb:26:dd:34:e0:9c:ad:7b:bb:0a: 54:1c:4b:3f:e8:f3:ad:f9:8c:b7:4b:01:d5:77:5d:00:66:d3: ac:49:36:69:0e:4d:49:79:24:b9:33:dc:a7:f6:6e:98:10:84: 83:a9:3d:a5:6e:07:28:4d:c6:00:a3:84:82:2d:93:9f:fe:6c: 4d:38:53:dc:6d:b4:2e:cc:7d:42:87:c3:d4:b8:24:24:a0:2e: 99:ce:d9:db:28:ff:85:02:84:9d:cf:c7:26:70:ff:d9:6e:a9: 56:88:4a:18:9b:ea:1d:4d:3d:df:69:95:dd:e0:b5:dd:89:a7: 62:4c:67:5c:52:27:df:78:1c:40:76:b6:50:21:9f:f0:82:a3: fa:75:66:d0:61:5c:11:83:44:ff:78:11:0b:f6:7f:65:5b:ff: c6:3a:f0:c9:da:4e:de:69:cd:32:d0:2a:ef:fd:40:28:d3:93: 86:c9:81:24:93:71:5a:6d:03:d7:ec:de:28:8e:c9:37:e7:4f: a1:3e:b2:53:f3:45:5b:07:22:bd:b0:33:86:38:ed:81:21:48: 95:5e:c5:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0EzNjIxMTAvBgNVBAUTKEU2QzQ2QzkxRDEyRDU4NUExMkIwNTU2OTYyMURFRTFB RDNGODkwOEUwHhcNMjUwNzIxMDQyMjU3WhcNMjUwNzI4MDQyMjU3WjAYMRYwFAYD VQQDEw02ODdkYzBhMS02NDNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnA4hOPV5CDiIuWT/nF39r9B+rvGEa8GWkNpBu/F28aZa+xM0Fq9qdqlJ8ajY no2qialLDcSYrfC1W3T5D2phdSW6T/BmGPdTN/nBYWZ5M7THDzG+0shi6Cd8edOP QaXR4/s887bYz3PHJy5W9gvcYVO9qiXcNTuSbSWYFtUBMgacLKFpqlg2Bw8ktrEQ AQzo2ObOdI6PNADkTeuKNcRmgWS/rkXM79VsNiDBceLJkVMBKZE/bWLM5eWrUwt3 dfeuGQLF/Tg8IEpyEGeN4XF7VMM1Q5LefjG4y22NecXNUSq0cmGA4y8R72AOcHAw SUATWgVmG3nuU4zD/WKmJf4vuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO2f5uYi RNU51SNbEqVIh5W+VTipMB8GA1UdIwQYMBaAFObEbJHRLVhaErBVaWId7hrT+JCO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTM2Mi83Q0JBNEM0Qzcy NkUxMUVFOUZFMzUwNjFDNEY5QUUwMi81c1Jza2RFdFdGb1NzRlZwWWgzdUd0UDRr STQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVzUnNrZEV0V0ZvU3NGVnBZaDN1R3RQNGtJNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTM2Mi83Q0JBNEM0QzcyNkUxMUVFOUZFMzUwNjFDNEY5QUUwMi81c1Jza2RFdFdG b1NzRlZwWWgzdUd0UDRrSTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASZkqYgJye7nsXnytr1p8KhrPrDf9tt66NiFHknW9UFPTqZTRigKdF 0jeb2csm3TTgnK17uwpUHEs/6POt+Yy3SwHVd10AZtOsSTZpDk1JeSS5M9yn9m6Y EISDqT2lbgcoTcYAo4SCLZOf/mxNOFPcbbQuzH1Ch8PUuCQkoC6ZztnbKP+FAoSd z8cmcP/ZbqlWiEoYm+odTT3faZXd4LXdiadiTGdcUiffeBxAdrZQIZ/wgqP6dWbQ YVwRg0T/eBEL9n9lW//GOvDJ2k7eac0y0Crv/UAo05OGyYEkk3FabQPX7N4ojsk3 50+hPrJT80VbByK9sDOGOO2BIUiVXsWq -----END CERTIFICATE-----Generated at Mon Jul 21 08:17:31 2025 by rpki-client