$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft File: 5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft (raw, json) Hash identifier: 0+diPB8yV2QTRwFi+LYCbcKr2oM/MmoO7mz2HBCck98= Subject key identifier: 89:5F:EC:16:9E:44:7F:C6:0A:D0:CB:96:BE:7E:89:EA:73:09:BF:BD Authority key identifier: E4:D6:2D:31:29:7F:17:E4:9C:42:FA:7A:7B:66:23:62:4A:D9:41:75 Certificate issuer: /CN=A91B9B0D/serialNumber=E4D62D31297F17E49C42FA7A7B6623624AD94175 Certificate serial: 066F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NYtMSl_F-ScQvp6e2YjYkrZQXU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft Manifest number: 0669 Signing time: Sun 20 Jul 2025 22:37:45 +0000 Manifest this update: Sun 20 Jul 2025 22:37:45 +0000 Manifest next update: Sun 27 Jul 2025 22:37:45 +0000 Files and hashes: 1: 5NYtMSl_F-ScQvp6e2YjYkrZQXU.crl (hash: SYCpkIkgIo7aXTVXVViTfV6IKxf1HpxQHK7N2ZGpD6A=) 2: 3F9CDA68179911EDB9008D18C4F9AE02.roa (hash: DFqO6gnNkZlWs0i15FxZnhMePoBQwEKxGo7fxkcs71I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.crl rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NYtMSl_F-ScQvp6e2YjYkrZQXU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 22:37:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1647 (0x66f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9B0D, serialNumber=E4D62D31297F17E49C42FA7A7B6623624AD94175 Validity Not Before: Jul 20 22:37:45 2025 GMT Not After : Jul 27 22:37:45 2025 GMT Subject: CN=687d6fb9-b12f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:00:6c:bb:8d:c9:49:43:9c:6c:77:bd:92:e6: 30:73:78:a7:f2:20:79:5e:3b:ac:af:49:75:65:bb: a3:8f:d4:0a:10:59:90:76:83:57:4e:d0:4f:b4:a1: c0:88:e3:2e:be:26:92:99:ae:ed:9f:27:12:a2:dc: 8f:40:3b:20:9f:c4:89:eb:7d:47:01:e0:fe:16:66: 53:be:8f:b7:6b:16:22:cd:f0:b1:f1:cb:0a:c9:d5: 52:6d:97:4a:23:cd:8e:9e:93:60:72:c0:ff:48:53: 72:f7:63:cd:83:d1:47:5f:e0:48:31:46:d4:91:f4: ba:44:3a:75:ae:95:70:8c:b5:53:02:76:f6:9c:87: 64:17:42:e8:da:c8:b3:19:6d:73:0c:bf:f8:cb:bd: 5e:f8:5f:43:ba:55:89:8e:41:61:71:87:39:ac:52: b4:17:07:18:0f:d1:5e:dd:ed:34:0c:53:39:4c:65: 24:02:3d:f5:3f:6f:7f:b4:fa:dd:2e:98:2d:db:1a: 70:d8:ac:41:85:7e:62:6a:f1:c4:13:42:40:3c:7f: a5:83:30:26:32:55:09:84:78:f5:3d:e5:0a:6f:a3: f0:01:2f:2f:af:f7:9f:b3:94:25:56:e3:f8:48:51: e1:d3:94:8a:3f:5b:98:21:41:40:2d:3f:8b:68:c7: ba:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:5F:EC:16:9E:44:7F:C6:0A:D0:CB:96:BE:7E:89:EA:73:09:BF:BD X509v3 Authority Key Identifier: keyid:E4:D6:2D:31:29:7F:17:E4:9C:42:FA:7A:7B:66:23:62:4A:D9:41:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NYtMSl_F-ScQvp6e2YjYkrZQXU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:b5:e0:bf:05:4e:12:21:75:40:68:0a:5d:4e:e5:5f:11:f3: d9:12:39:7e:b0:3f:68:3d:d9:53:80:a4:e6:e1:ff:d9:06:49: 7c:cd:2f:2d:13:7e:b1:e0:ae:5e:d8:5a:d1:93:68:5b:13:4a: fd:1f:b2:c4:50:32:ae:20:1b:eb:d1:07:71:f4:6a:18:88:3c: 98:88:9f:32:e3:92:56:19:6e:69:d4:d9:9a:1c:37:97:03:c8: a6:f3:6c:e6:31:c1:e7:c9:11:37:f7:0d:2e:7a:9c:f3:ab:4f: b0:05:42:a4:5a:bc:c4:6f:60:68:58:fa:47:12:4b:5c:82:09: c5:bf:e0:6c:09:4e:49:d5:97:ac:57:08:07:ce:fc:3e:be:1a: 9b:40:36:94:80:97:4b:1d:ba:62:6c:c6:95:ce:29:33:e1:39: e5:6a:74:a7:46:1a:4d:79:b7:0c:a1:2a:de:5d:74:7a:e9:57: e0:4c:2e:64:24:09:bf:c3:4c:6d:96:98:54:00:75:34:46:a7: 0b:80:d4:f8:7a:02:79:a3:c9:f2:0c:d8:2d:9f:4f:c7:67:a7: 26:55:74:a3:7a:b9:a8:58:9d:44:62:ed:7c:cd:e4:45:05:7d: b1:a2:b0:a2:a7:da:f1:e5:98:41:7c:4d:a0:ef:bf:77:52:0c: d8:83:f1:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBm8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlCMEQxMTAvBgNVBAUTKEU0RDYyRDMxMjk3RjE3RTQ5QzQyRkE3QTdCNjYyMzYy NEFEOTQxNzUwHhcNMjUwNzIwMjIzNzQ1WhcNMjUwNzI3MjIzNzQ1WjAYMRYwFAYD VQQDEw02ODdkNmZiOS1iMTJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtQBsu43JSUOcbHe9kuYwc3in8iB5Xjusr0l1Zbujj9QKEFmQdoNXTtBPtKHA iOMuviaSma7tnycSotyPQDsgn8SJ631HAeD+FmZTvo+3axYizfCx8csKydVSbZdK I82OnpNgcsD/SFNy92PNg9FHX+BIMUbUkfS6RDp1rpVwjLVTAnb2nIdkF0Lo2siz GW1zDL/4y71e+F9DulWJjkFhcYc5rFK0FwcYD9Fe3e00DFM5TGUkAj31P29/tPrd Lpgt2xpw2KxBhX5iavHEE0JAPH+lgzAmMlUJhHj1PeUKb6PwAS8vr/efs5QlVuP4 SFHh05SKP1uYIUFALT+LaMe63wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIlf7Bae RH/GCtDLlr5+iepzCb+9MB8GA1UdIwQYMBaAFOTWLTEpfxfknEL6entmI2JK2UF1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUIwRC9BMjhFQ0JDMDhB QjYxMUVCODIzN0Q0MTRDNEY5QUUwMi81Tll0TVNsX0YtU2NRdnA2ZTJZallrclpR WFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVOWXRNU2xfRi1TY1F2cDZlMllqWWtyWlFYVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUIwRC9BMjhFQ0JDMDhBQjYxMUVCODIzN0Q0MTRDNEY5QUUwMi81Tll0TVNsX0Yt U2NRdnA2ZTJZallrclpRWFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrteC/BU4SIXVAaApdTuVfEfPZEjl+sD9oPdlTgKTm4f/ZBkl8zS8t E36x4K5e2FrRk2hbE0r9H7LEUDKuIBvr0Qdx9GoYiDyYiJ8y45JWGW5p1NmaHDeX A8im82zmMcHnyRE39w0uepzzq0+wBUKkWrzEb2BoWPpHEktcggnFv+BsCU5J1Zes VwgHzvw+vhqbQDaUgJdLHbpibMaVzikz4TnlanSnRhpNebcMoSreXXR66VfgTC5k JAm/w0xtlphUAHU0RqcLgNT4egJ5o8nyDNgtn0/HZ6cmVXSjermoWJ1EYu18zeRF BX2xorCip9rx5ZhBfE2g7793UgzYg/E/ -----END CERTIFICATE-----Generated at Tue Jul 22 11:56:58 2025 by rpki-client