$ rpki-client -vvf rpki.apnic.net/member_repository/A91D98FC/1C899E26F4EC11E98FBE9B0FC4F9AE02/s5m0raB1Aagp1W8h2o613DIDSlY.mft File: s5m0raB1Aagp1W8h2o613DIDSlY.mft (raw, json) Hash identifier: iCWEzSKcBM8Ah1IHhBdZg5x1g/85nIt/oJcogX1OpAQ= Subject key identifier: FC:46:78:BA:9B:3D:95:73:28:3C:2B:A9:E2:29:C6:49:B2:CE:1A:15 Authority key identifier: B3:99:B4:AD:A0:75:01:A8:29:D5:6F:21:DA:8E:B5:DC:32:03:4A:56 Certificate issuer: /CN=A91D98FC/serialNumber=B399B4ADA07501A829D56F21DA8EB5DC32034A56 Certificate serial: 0CC8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5m0raB1Aagp1W8h2o613DIDSlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D98FC/1C899E26F4EC11E98FBE9B0FC4F9AE02/s5m0raB1Aagp1W8h2o613DIDSlY.mft Manifest number: 0CBA Signing time: Sun 20 Jul 2025 18:12:22 +0000 Manifest this update: Sun 20 Jul 2025 18:12:21 +0000 Manifest next update: Sun 27 Jul 2025 18:12:21 +0000 Files and hashes: 1: s5m0raB1Aagp1W8h2o613DIDSlY.crl (hash: KUW3UnDnmRirt7AKE1WZ/N6JOPIz++ogsuxAd589Wg0=) 2: 238AAE04B3CD11EF82D5B34FC4F9AE02.roa (hash: Vh7yMYlqWkmmCVoJUzEKALaYDnLO+UKuaoILrbL+tGw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D98FC/1C899E26F4EC11E98FBE9B0FC4F9AE02/s5m0raB1Aagp1W8h2o613DIDSlY.crl rsync://rpki.apnic.net/member_repository/A91D98FC/1C899E26F4EC11E98FBE9B0FC4F9AE02/s5m0raB1Aagp1W8h2o613DIDSlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5m0raB1Aagp1W8h2o613DIDSlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 18:12:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3272 (0xcc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D98FC, serialNumber=B399B4ADA07501A829D56F21DA8EB5DC32034A56 Validity Not Before: Jul 20 18:12:21 2025 GMT Not After : Jul 27 18:12:21 2025 GMT Subject: CN=687d3185-405b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:81:7f:3d:c4:0f:53:a8:ab:7d:1c:ed:04:33: a8:82:38:86:76:6a:ce:08:ed:7b:37:d6:0d:62:9a: f3:5a:30:ce:c9:03:3e:83:4a:ce:03:2a:de:0d:34: 59:40:a1:1d:e7:61:61:d8:66:15:d4:63:ac:fb:e2: c5:0d:8c:97:e5:1b:ac:8f:80:80:01:28:f4:a3:d1: 04:c4:6d:4b:05:85:5a:dd:d8:e4:cc:0e:b3:42:42: 22:5d:1e:fc:a9:7f:9f:d9:b4:49:9f:4f:f6:73:11: 84:9c:d5:47:d3:a2:14:9a:ea:63:0f:e5:9d:85:fb: 84:50:cf:0d:02:c6:ae:e8:e1:f8:b0:53:d2:94:70: aa:a4:2a:8c:42:33:3c:a1:7e:93:b6:06:8a:80:23: a6:6e:f8:c4:2e:70:e6:24:c1:61:2e:72:c2:45:d0: 71:bf:b4:41:9d:e1:f1:31:9c:36:a8:10:07:28:6d: 48:04:e2:23:48:80:48:2b:c5:d6:9b:0f:9d:b4:1a: 7e:ed:82:e4:60:df:6e:eb:72:3f:75:e0:9a:a8:b1: a1:09:9c:74:f4:da:3b:6c:72:77:38:10:cb:1d:12: 00:d9:d5:61:ad:e3:c6:71:40:e0:fc:53:81:21:e0: 37:57:af:a0:d7:d1:79:99:56:b9:3e:0e:4c:ec:f8: 76:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:46:78:BA:9B:3D:95:73:28:3C:2B:A9:E2:29:C6:49:B2:CE:1A:15 X509v3 Authority Key Identifier: keyid:B3:99:B4:AD:A0:75:01:A8:29:D5:6F:21:DA:8E:B5:DC:32:03:4A:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D98FC/1C899E26F4EC11E98FBE9B0FC4F9AE02/s5m0raB1Aagp1W8h2o613DIDSlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5m0raB1Aagp1W8h2o613DIDSlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D98FC/1C899E26F4EC11E98FBE9B0FC4F9AE02/s5m0raB1Aagp1W8h2o613DIDSlY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:05:9a:a1:1f:bc:bf:4e:c1:fe:72:1c:fc:7a:c4:c7:38:2e: 25:f2:83:b5:ef:87:e4:21:df:9d:79:62:75:85:80:7f:c6:17: af:d5:87:a2:73:63:ab:d5:46:4d:46:a6:eb:a0:41:ce:da:d2: 20:9c:48:ec:ec:98:7e:9f:bb:72:02:eb:58:8f:50:3d:0d:20: af:f3:2f:bd:5c:58:2c:ac:0b:ae:86:23:2e:fc:40:fc:04:6d: 2d:09:29:ee:b5:7a:ab:17:a4:e5:fd:bb:e1:50:99:23:36:a8: 41:72:04:fc:91:f4:1c:7b:78:2f:05:bc:b6:d6:4c:56:cf:35: 3d:64:d5:03:54:36:0f:24:4c:e7:eb:13:c9:4d:ac:49:e0:20: be:a0:57:f6:71:29:01:92:67:b6:c2:19:30:d7:05:2a:2f:56: 59:94:cb:8c:f1:d6:9f:73:d0:c9:cf:74:30:f7:71:e3:6d:b5: 9e:93:a9:de:12:ec:3a:f0:35:94:68:3b:1e:96:80:75:db:b8: 0f:58:08:5f:49:98:00:31:16:97:5e:b0:d2:df:4e:9e:1d:98: b4:cc:f2:a3:a6:2f:b9:4e:ca:90:d3:6f:83:48:3d:d7:5a:65: 5f:63:13:bd:5d:50:13:31:94:47:5f:51:ac:7c:cd:a8:63:05: a8:f3:3a:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDk4RkMxMTAvBgNVBAUTKEIzOTlCNEFEQTA3NTAxQTgyOUQ1NkYyMURBOEVCNURD MzIwMzRBNTYwHhcNMjUwNzIwMTgxMjIxWhcNMjUwNzI3MTgxMjIxWjAYMRYwFAYD VQQDEw02ODdkMzE4NS00MDViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3IF/PcQPU6irfRztBDOogjiGdmrOCO17N9YNYprzWjDOyQM+g0rOAyreDTRZ QKEd52Fh2GYV1GOs++LFDYyX5Rusj4CAASj0o9EExG1LBYVa3djkzA6zQkIiXR78 qX+f2bRJn0/2cxGEnNVH06IUmupjD+WdhfuEUM8NAsau6OH4sFPSlHCqpCqMQjM8 oX6TtgaKgCOmbvjELnDmJMFhLnLCRdBxv7RBneHxMZw2qBAHKG1IBOIjSIBIK8XW mw+dtBp+7YLkYN9u63I/deCaqLGhCZx09No7bHJ3OBDLHRIA2dVhrePGcUDg/FOB IeA3V6+g19F5mVa5Pg5M7Ph2PwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPxGeLqb PZVzKDwrqeIpxkmyzhoVMB8GA1UdIwQYMBaAFLOZtK2gdQGoKdVvIdqOtdwyA0pW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOThGQy8xQzg5OUUyNkY0 RUMxMUU5OEZCRTlCMEZDNEY5QUUwMi9zNW0wcmFCMUFhZ3AxVzhoMm82MTNESURT bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M1bTByYUIxQWFncDFXOGgybzYxM0RJRFNsWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OThGQy8xQzg5OUUyNkY0RUMxMUU5OEZCRTlCMEZDNEY5QUUwMi9zNW0wcmFCMUFh Z3AxVzhoMm82MTNESURTbFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfBZqhH7y/TsH+chz8esTHOC4l8oO174fkId+deWJ1hYB/xhev1Yei c2Or1UZNRqbroEHO2tIgnEjs7Jh+n7tyAutYj1A9DSCv8y+9XFgsrAuuhiMu/ED8 BG0tCSnutXqrF6Tl/bvhUJkjNqhBcgT8kfQce3gvBby21kxWzzU9ZNUDVDYPJEzn 6xPJTaxJ4CC+oFf2cSkBkme2whkw1wUqL1ZZlMuM8dafc9DJz3Qw93HjbbWek6ne Euw68DWUaDseloB127gPWAhfSZgAMRaXXrDS306eHZi0zPKjpi+5TsqQ02+DSD3X WmVfYxO9XVATMZRHX1GsfM2oYwWo8zrp -----END CERTIFICATE-----Generated at Mon Jul 21 07:02:18 2025 by rpki-client