$ rpki-client -vvf rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft File: s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft (raw, json) Hash identifier: nPcRl6dMhPf6rkoEZv0RuthflXpUdL8XICfkc65L2cw= Subject key identifier: 17:DA:26:A5:1B:1F:6D:86:D0:4C:BB:08:BF:DA:06:46:E8:6E:E7:6F Authority key identifier: B3:98:66:A9:9D:1C:D9:F4:E7:E8:F5:3C:88:AD:14:DA:89:A1:86:25 Certificate issuer: /CN=A91964B3/serialNumber=B39866A99D1CD9F4E7E8F53C88AD14DA89A18625 Certificate serial: 36BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft Manifest number: 35C7 Signing time: Sun 20 Jul 2025 14:25:07 +0000 Manifest this update: Sun 20 Jul 2025 14:25:07 +0000 Manifest next update: Sun 27 Jul 2025 14:25:07 +0000 Files and hashes: 1: s5hmqZ0c2fTn6PU8iK0U2omhhiU.crl (hash: JhjcVPEdJgP8Ddxq2+JztOyUZq5PAE2uUMLssS+78v4=) 2: B36EA83C70B111E98CFFF710C4F9AE02.roa (hash: YPxJgAFP2pm+e64iG82yJRkFHNHfja4F2rH7VSVuFpA=) 3: 160B219870BA11E99E0F6D2DC4F9AE02.roa (hash: 3QqIb/PpEMe7CSOMb9cfzIUcXW1tet3HABkiD8A3zkU=) 4: 26A143C291EB11EF8A024083C4F9AE02.roa (hash: apyNb0gzlP7QIPlzF+1SGVtUOjpAimi2EUrocnrYZRM=) 5: 18F4FD76918111EC93DCA42AC4F9AE02.roa (hash: 8JKaEfgtThOrevd/FI1wUsWQCsjDZCsWDfH4rtPvYOM=) 6: B0EB27B470B811E9B32F6726C4F9AE02.roa (hash: Yn6iyp3sOHzht7NrUVV1K95CTLrIyR+zeCU6DhPlbi0=) 7: 19023FA6609D11F0B3074125C4F9AE02.roa (hash: aplN9VV//QlmgSMz5DK+GbQlI0MP9TOOt4GsK1TbYpU=) 8: 9538F912A09511EE9616A86EC4F9AE02.roa (hash: UIhH1UdXX1/WldxbBw/5eFdUsW8H5rv3xowCVi4x/js=) 9: 71D60BC2F6BA11EB865C4246C4F9AE02.roa (hash: E9Q0DLQxOx2PNLNxJzUPOmEekE0nfR8RNH8+NziMkYc=) 10: 9AF37E96D71B11EA9532F30CC4F9AE02.roa (hash: UB9M+LLNN3sS8I2EFsp8N9BHGeanS2Z+lbFEvYsOTeM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.crl rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:25:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14013 (0x36bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91964B3, serialNumber=B39866A99D1CD9F4E7E8F53C88AD14DA89A18625 Validity Not Before: Jul 20 14:25:07 2025 GMT Not After : Jul 27 14:25:07 2025 GMT Subject: CN=687cfc43-1e7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:95:b5:2a:7e:b8:09:82:05:d2:11:a0:83:71: b0:e9:1a:1a:8e:ae:3e:0b:e0:f3:22:b1:8d:e8:c6: 9a:86:a8:e2:c5:00:83:5c:b8:d3:da:ca:c2:7d:c3: a2:64:49:d9:ea:de:1a:69:d8:2e:89:59:1a:20:f9: 31:d2:b5:0b:7d:ed:be:e8:53:dc:b5:64:d5:a2:ae: 9f:3e:c7:6d:2f:bf:08:7b:dd:9d:1c:72:23:dc:18: 77:d5:f1:18:7a:a6:84:09:27:15:f6:41:7a:61:ac: e3:42:90:5c:0c:a7:37:c3:35:7e:28:e6:8a:33:6a: 12:be:1c:fd:d5:56:5f:eb:60:79:be:43:07:4c:21: 9b:cb:50:1c:e5:49:ed:6f:22:c1:e8:ef:36:14:c6: 73:f3:88:05:1b:dd:77:fa:9f:ac:b9:f8:14:f4:46: 7d:8f:56:86:4c:04:28:9d:2d:7d:e1:43:b8:45:3c: fe:fc:4d:00:48:66:f2:c9:d9:69:28:d6:69:76:9a: ba:92:fc:83:c5:d9:cd:ef:ea:f8:47:ad:e9:82:43: a7:1f:84:4d:39:4a:13:95:f3:7d:ac:18:51:af:87: c3:bb:b0:0b:51:1b:62:48:27:40:fc:1e:f5:f3:f2: a3:28:ef:9c:e6:54:20:b7:78:bd:f8:07:b0:7d:b9: 24:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:DA:26:A5:1B:1F:6D:86:D0:4C:BB:08:BF:DA:06:46:E8:6E:E7:6F X509v3 Authority Key Identifier: keyid:B3:98:66:A9:9D:1C:D9:F4:E7:E8:F5:3C:88:AD:14:DA:89:A1:86:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:85:9e:f5:46:8d:27:6e:30:0c:dd:03:d5:a6:0e:48:60:2d: 2c:20:38:e4:cd:ce:ac:8d:6b:90:50:e5:01:8c:55:94:2a:3e: e9:a6:40:16:4c:50:7a:ea:a4:fc:8c:c7:43:c8:01:58:8a:ff: 2a:02:bc:36:eb:ba:4a:9c:cb:40:54:75:6f:b3:1a:34:24:12: 55:fc:ba:54:8a:4e:7b:74:2c:d5:86:b7:cb:27:ca:48:f1:88: 94:1a:f6:ad:46:2b:cf:2f:ce:36:ab:c8:ab:42:85:5d:38:77: 1f:8b:c9:9e:46:be:8d:80:19:ea:76:67:a1:e1:83:82:61:c6: 52:86:6b:d7:a3:ea:b2:bf:14:c0:62:a3:fc:71:19:56:b5:ca: e5:6c:7a:a6:42:a7:31:37:40:4c:61:f3:c3:3c:26:f7:07:ef: 2f:1c:25:7b:78:3c:19:83:50:06:89:7d:17:ca:6e:fb:b3:45: da:2a:5c:23:4f:3c:2e:bd:c0:72:fe:54:d5:20:73:e1:d4:15: a6:0e:35:10:a7:a6:f9:c0:e8:b5:8a:e5:db:62:46:e8:dc:a2: aa:18:74:36:66:81:14:ba:1a:e6:18:19:30:60:e4:85:62:e9: e0:ed:d8:4d:9e:fa:61:5b:15:c6:77:db:8a:f8:67:43:5f:51: 2a:67:eb:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNr0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY0QjMxMTAvBgNVBAUTKEIzOTg2NkE5OUQxQ0Q5RjRFN0U4RjUzQzg4QUQxNERB ODlBMTg2MjUwHhcNMjUwNzIwMTQyNTA3WhcNMjUwNzI3MTQyNTA3WjAYMRYwFAYD VQQDEw02ODdjZmM0My0xZTdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAupW1Kn64CYIF0hGgg3Gw6Roajq4+C+DzIrGN6MaahqjixQCDXLjT2srCfcOi ZEnZ6t4aadguiVkaIPkx0rULfe2+6FPctWTVoq6fPsdtL78Ie92dHHIj3Bh31fEY eqaECScV9kF6YazjQpBcDKc3wzV+KOaKM2oSvhz91VZf62B5vkMHTCGby1Ac5Unt byLB6O82FMZz84gFG913+p+sufgU9EZ9j1aGTAQonS194UO4RTz+/E0ASGbyydlp KNZpdpq6kvyDxdnN7+r4R63pgkOnH4RNOUoTlfN9rBhRr4fDu7ALURtiSCdA/B71 8/KjKO+c5lQgt3i9+AewfbkkpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBfaJqUb H22G0Ey7CL/aBkbobudvMB8GA1UdIwQYMBaAFLOYZqmdHNn05+j1PIitFNqJoYYl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjRCMy9FNjU4NTExMjFE ODQxMUUyQTFCQTMwREIwOEIwMkNEMi9zNWhtcVowYzJmVG42UFU4aUswVTJvbWho aVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M1aG1xWjBjMmZUbjZQVThpSzBVMm9taGhpVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjRCMy9FNjU4NTExMjFEODQxMUUyQTFCQTMwREIwOEIwMkNEMi9zNWhtcVowYzJm VG42UFU4aUswVTJvbWhoaVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBihZ71Ro0nbjAM3QPVpg5IYC0sIDjkzc6sjWuQUOUBjFWUKj7ppkAW TFB66qT8jMdDyAFYiv8qArw267pKnMtAVHVvsxo0JBJV/LpUik57dCzVhrfLJ8pI 8YiUGvatRivPL842q8irQoVdOHcfi8meRr6NgBnqdmeh4YOCYcZShmvXo+qyvxTA YqP8cRlWtcrlbHqmQqcxN0BMYfPDPCb3B+8vHCV7eDwZg1AGiX0Xym77s0XaKlwj TzwuvcBy/lTVIHPh1BWmDjUQp6b5wOi1iuXbYkbo3KKqGHQ2ZoEUuhrmGBkwYOSF Yung7dhNnvphWxXGd9uK+GdDX1EqZ+tL -----END CERTIFICATE-----Generated at Mon Jul 21 08:07:58 2025 by rpki-client