$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0D37/05EECD86535B11EE9BF20A6BC4F9AE02/5CANRK2dbstocvZTqVhD-yfYR6Q.mft File: 5CANRK2dbstocvZTqVhD-yfYR6Q.mft (raw, json) Hash identifier: 73uYy1bsmPBxHgQ177VBh3twX2k1TWJw5b0/nEvuik0= Subject key identifier: 16:AA:25:2D:5B:52:BE:41:01:DF:DD:09:43:36:85:B7:C7:52:23:0E Authority key identifier: E4:20:0D:44:AD:9D:6E:CB:68:72:F6:53:A9:58:43:FB:27:D8:47:A4 Certificate issuer: /CN=A91C0D37/serialNumber=E4200D44AD9D6ECB6872F653A95843FB27D847A4 Certificate serial: 0162 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5CANRK2dbstocvZTqVhD-yfYR6Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0D37/05EECD86535B11EE9BF20A6BC4F9AE02/5CANRK2dbstocvZTqVhD-yfYR6Q.mft Manifest number: 015D Signing time: Fri 25 Jul 2025 04:15:13 +0000 Manifest this update: Fri 25 Jul 2025 04:15:12 +0000 Manifest next update: Fri 01 Aug 2025 04:15:12 +0000 Files and hashes: 1: 5CANRK2dbstocvZTqVhD-yfYR6Q.crl (hash: 2dcBq9BMUoTtoYRjbRS24TQiibD1qFOQwmkmDHzVw5E=) 2: 0099AE56536911EE8594503BC4F9AE02.roa (hash: AOPC9WbNcZUf3rw4IBXy2gFnwozs8jTrPTS3eOn6dJw=) 3: C7C45DD643F611EF84151D6FC4F9AE02.roa (hash: SfS9ZnMJ4K7BL+m5tPbXXtGeAg5+tE+/js3vJ/6kex8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0D37/05EECD86535B11EE9BF20A6BC4F9AE02/5CANRK2dbstocvZTqVhD-yfYR6Q.crl rsync://rpki.apnic.net/member_repository/A91C0D37/05EECD86535B11EE9BF20A6BC4F9AE02/5CANRK2dbstocvZTqVhD-yfYR6Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5CANRK2dbstocvZTqVhD-yfYR6Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 01 Aug 2025 04:15:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 354 (0x162) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0D37, serialNumber=E4200D44AD9D6ECB6872F653A95843FB27D847A4 Validity Not Before: Jul 25 04:15:12 2025 GMT Not After : Aug 1 04:15:12 2025 GMT Subject: CN=688304d0-88e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:31:bb:af:1a:22:95:3d:c2:88:ef:78:7e:35: 1d:a8:1b:52:29:1e:71:15:6f:fc:fc:60:c8:04:03: 5a:5e:d2:ee:69:4e:e9:47:07:67:82:fc:2c:b3:e0: 19:f6:45:20:4c:52:31:a8:60:49:6c:9d:0f:ce:e5: 83:d7:ba:7e:55:f6:f2:19:e8:31:0c:ad:c1:21:7c: b7:3b:84:31:49:3b:63:6d:c2:3d:61:38:6b:63:71: 65:a7:67:33:6e:c1:88:cc:a8:70:f4:a6:17:64:5f: 26:a7:75:49:1f:9d:ce:0b:2b:c0:6f:86:9d:2d:16: b6:cb:f0:07:86:aa:1e:ec:6c:d3:98:43:44:52:0a: 9e:47:aa:89:3b:3e:15:db:1c:e6:48:7f:9a:76:56: 31:a1:89:85:02:0c:6d:a9:bc:26:74:e7:49:cf:3b: e8:a6:40:cc:ce:c7:b8:8d:a8:af:37:e4:f5:75:31: df:99:d2:22:53:78:46:8f:79:51:7d:0d:ce:9b:14: 9e:ca:a9:44:68:16:6c:5c:a1:55:6f:bc:83:f4:1d: 04:7e:a4:bc:61:c2:b7:91:7d:62:3f:39:d8:95:71: 51:be:24:5e:11:a8:50:c9:3e:cc:5b:a9:42:12:5b: 73:0d:d6:2c:7f:21:f1:69:82:57:f4:06:bc:46:89: a9:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:AA:25:2D:5B:52:BE:41:01:DF:DD:09:43:36:85:B7:C7:52:23:0E X509v3 Authority Key Identifier: keyid:E4:20:0D:44:AD:9D:6E:CB:68:72:F6:53:A9:58:43:FB:27:D8:47:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0D37/05EECD86535B11EE9BF20A6BC4F9AE02/5CANRK2dbstocvZTqVhD-yfYR6Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5CANRK2dbstocvZTqVhD-yfYR6Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0D37/05EECD86535B11EE9BF20A6BC4F9AE02/5CANRK2dbstocvZTqVhD-yfYR6Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:35:0e:97:6d:f3:05:f3:10:ca:31:b6:67:ed:89:d4:5e:27: 4b:5c:72:39:00:88:3f:b1:f1:ff:f7:9f:34:55:0a:cc:e0:ba: ae:0e:d7:5c:ba:05:a0:40:1c:04:4b:aa:bb:79:bd:54:f9:69: a3:76:2c:20:6d:af:2a:03:ef:09:d5:01:92:25:3c:96:e2:c1: 4e:66:c7:37:9d:e1:84:f9:0c:af:79:2c:57:f3:d0:3f:77:25: 4f:ba:fb:e9:ff:34:d2:15:88:2b:5e:ea:91:00:e1:66:c8:53: 67:17:59:40:ac:03:ee:59:27:f9:e4:64:c6:96:dd:07:17:ee: 29:e3:de:80:8c:ed:cc:2f:2a:5a:49:56:e5:34:9c:d6:ce:6b: 5d:ee:f0:21:d2:3c:81:38:29:6e:46:cd:bb:3f:f0:07:cc:8b: c1:0a:61:f8:bf:46:b2:69:77:74:b0:43:c0:37:03:24:ac:94: ad:3b:09:f2:a6:b5:90:8c:9f:07:84:ee:7d:44:a0:bb:af:19: 0c:c3:80:47:9f:f2:6f:b2:a9:42:d7:94:20:ac:d3:2b:d8:e4: 61:48:41:5f:54:4b:45:4e:5f:89:37:48:04:0f:07:ee:ef:0c: 3c:41:bf:db:23:e1:bf:8f:6b:8f:7a:57:4c:8e:6b:dc:43:b7: 19:df:9d:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBEMzcxMTAvBgNVBAUTKEU0MjAwRDQ0QUQ5RDZFQ0I2ODcyRjY1M0E5NTg0M0ZC MjdEODQ3QTQwHhcNMjUwNzI1MDQxNTEyWhcNMjUwODAxMDQxNTEyWjAYMRYwFAYD VQQDEw02ODgzMDRkMC04OGUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1jG7rxoilT3CiO94fjUdqBtSKR5xFW/8/GDIBANaXtLuaU7pRwdngvwss+AZ 9kUgTFIxqGBJbJ0PzuWD17p+VfbyGegxDK3BIXy3O4QxSTtjbcI9YThrY3Flp2cz bsGIzKhw9KYXZF8mp3VJH53OCyvAb4adLRa2y/AHhqoe7GzTmENEUgqeR6qJOz4V 2xzmSH+adlYxoYmFAgxtqbwmdOdJzzvopkDMzse4jaivN+T1dTHfmdIiU3hGj3lR fQ3OmxSeyqlEaBZsXKFVb7yD9B0EfqS8YcK3kX1iPznYlXFRviReEahQyT7MW6lC EltzDdYsfyHxaYJX9Aa8RompDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBaqJS1b Ur5BAd/dCUM2hbfHUiMOMB8GA1UdIwQYMBaAFOQgDUStnW7LaHL2U6lYQ/sn2Eek MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEQzNy8wNUVFQ0Q4NjUz NUIxMUVFOUJGMjBBNkJDNEY5QUUwMi81Q0FOUksyZGJzdG9jdlpUcVZoRC15ZllS NlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzVDQU5SSzJkYnN0b2N2WlRxVmhELXlmWVI2US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEQzNy8wNUVFQ0Q4NjUzNUIxMUVFOUJGMjBBNkJDNEY5QUUwMi81Q0FOUksyZGJz dG9jdlpUcVZoRC15ZllSNlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlNQ6XbfMF8xDKMbZn7YnUXidLXHI5AIg/sfH/9580VQrM4LquDtdc ugWgQBwES6q7eb1U+Wmjdiwgba8qA+8J1QGSJTyW4sFOZsc3neGE+QyveSxX89A/ dyVPuvvp/zTSFYgrXuqRAOFmyFNnF1lArAPuWSf55GTGlt0HF+4p496AjO3MLypa SVblNJzWzmtd7vAh0jyBOCluRs27P/AHzIvBCmH4v0ayaXd0sEPANwMkrJStOwny prWQjJ8HhO59RKC7rxkMw4BHn/JvsqlC15QgrNMr2ORhSEFfVEtFTl+JN0gEDwfu 7ww8Qb/bI+G/j2uPeldMjmvcQ7cZ351p -----END CERTIFICATE-----Generated at Sat Jul 26 00:17:36 2025 by rpki-client