$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft File: 5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft (raw, json) Hash identifier: bUg2ljxTcp2Kdym90zRgz8SbUUwbDa4Vr2uqIo4iqnM= Subject key identifier: 62:A9:77:E2:49:D6:E1:CC:18:02:84:D2:15:7D:6C:15:41:68:71:32 Authority key identifier: E5:B1:CE:1D:45:39:18:19:5B:EB:5C:D9:0F:6D:87:9E:FE:99:10:A2 Certificate issuer: /CN=A91DE5E8/serialNumber=E5B1CE1D453918195BEB5CD90F6D879EFE9910A2 Certificate serial: 01D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bHOHUU5GBlb61zZD22Hnv6ZEKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft Manifest number: 01CC Signing time: Sat 19 Jul 2025 03:03:45 +0000 Manifest this update: Sat 19 Jul 2025 03:03:44 +0000 Manifest next update: Sat 26 Jul 2025 03:03:44 +0000 Files and hashes: 1: 5bHOHUU5GBlb61zZD22Hnv6ZEKI.crl (hash: xgS5hNFvFztbZKH8rWdgl0dxs6JdoX+sDa3hbaRqlLE=) 2: 785B44D6F2AF11EF97443030C4F9AE02.roa (hash: 3X8JQRJ56NXF/A25OQxe1Q8xkJiOt4/FMaPtZ+BwKik=) 3: B264EB66A30911ED99A82087C4F9AE02.roa (hash: tZEzhiKfHDteKh17cCbwci/tZYnVymPaW90yd5ZJ1q4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.crl rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bHOHUU5GBlb61zZD22Hnv6ZEKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 03:03:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 466 (0x1d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE5E8, serialNumber=E5B1CE1D453918195BEB5CD90F6D879EFE9910A2 Validity Not Before: Jul 19 03:03:44 2025 GMT Not After : Jul 26 03:03:44 2025 GMT Subject: CN=687b0b11-326d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:31:41:b5:16:2b:7b:b3:fc:fb:5a:ec:7c:d1: e9:ee:68:19:17:71:5c:aa:89:03:2c:b0:6c:c1:49: 30:65:18:dd:25:4b:61:1f:17:36:51:a4:ad:54:58: 7a:a6:32:a1:72:a4:ba:8c:51:80:59:5c:9b:1e:0b: 4f:7a:aa:97:8a:68:7f:85:55:83:36:84:aa:15:dd: 14:a1:29:02:ca:3d:35:f6:47:0e:d4:8c:57:ca:a2: c7:0a:2b:7a:e9:66:08:96:f7:15:b3:4f:af:b6:15: a3:37:44:ba:14:7b:0b:43:01:59:cb:3d:37:ed:5b: 6e:18:1f:65:6c:26:43:64:b7:cc:50:c6:89:4b:df: 31:76:68:9c:7c:3b:e9:3b:3c:77:a2:67:41:10:3d: 3f:ea:a1:de:a7:af:f6:7e:2b:98:0c:89:7e:c5:72: b2:d0:4e:1a:78:83:b1:80:16:c5:3b:83:e7:b0:d2: 9e:3f:e9:b9:3d:b4:00:c7:95:bb:6a:ce:4e:3e:8c: d1:0b:3d:0d:96:e1:7d:02:39:63:d0:50:ac:8a:69: f4:82:ed:db:bf:8a:d3:ac:82:21:b6:a0:e9:77:42: af:d5:e9:ee:f4:79:a4:31:30:d9:19:ad:16:4a:8e: 30:e1:2e:71:de:9a:64:8a:32:49:de:16:21:bf:48: 52:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:A9:77:E2:49:D6:E1:CC:18:02:84:D2:15:7D:6C:15:41:68:71:32 X509v3 Authority Key Identifier: keyid:E5:B1:CE:1D:45:39:18:19:5B:EB:5C:D9:0F:6D:87:9E:FE:99:10:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bHOHUU5GBlb61zZD22Hnv6ZEKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:47:2b:08:33:bf:22:c7:2d:df:4e:cb:f7:12:2a:6e:72:9f: 8d:2e:a5:35:80:96:ae:f9:d5:30:57:3f:a0:43:9a:60:92:2f: 08:49:1e:20:94:2f:38:34:a2:87:a0:38:32:77:08:12:f3:fd: a9:f0:09:9e:dc:c4:ba:e1:73:00:7c:2d:8c:8e:eb:ff:3a:ca: a6:29:99:68:0c:bd:9c:31:94:9a:e7:a2:9e:0b:2a:94:d2:54: 4b:30:a4:3a:07:20:2d:2e:b1:93:92:c0:df:28:dd:32:dc:f9: c2:38:25:83:08:16:58:a7:c1:56:ee:a4:b1:b9:91:8a:09:13: f1:f6:0d:63:93:c6:90:54:b5:38:3b:07:cf:96:85:a5:8c:ef: 65:85:00:8c:ad:c5:41:d7:f9:1e:67:17:96:c0:c2:4e:85:f1: b3:8c:06:49:b6:e2:af:25:39:65:1e:15:dd:92:eb:92:16:0f: e5:c0:7f:5f:e0:d9:d0:de:39:f8:9d:b6:2c:10:d2:8a:7f:fd: 22:cc:1f:15:1b:06:fd:54:0e:76:85:e1:42:e3:38:68:91:2e: 40:73:d7:d7:92:76:d9:e2:cd:a3:86:f3:c4:98:a2:dc:eb:53: fc:95:13:d3:c1:5f:31:27:00:17:33:29:d6:94:6a:13:5d:63: d0:9b:61:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU1RTgxMTAvBgNVBAUTKEU1QjFDRTFENDUzOTE4MTk1QkVCNUNEOTBGNkQ4NzlF RkU5OTEwQTIwHhcNMjUwNzE5MDMwMzQ0WhcNMjUwNzI2MDMwMzQ0WjAYMRYwFAYD VQQDEw02ODdiMGIxMS0zMjZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvDFBtRYre7P8+1rsfNHp7mgZF3FcqokDLLBswUkwZRjdJUthHxc2UaStVFh6 pjKhcqS6jFGAWVybHgtPeqqXimh/hVWDNoSqFd0UoSkCyj019kcO1IxXyqLHCit6 6WYIlvcVs0+vthWjN0S6FHsLQwFZyz037VtuGB9lbCZDZLfMUMaJS98xdmicfDvp Ozx3omdBED0/6qHep6/2fiuYDIl+xXKy0E4aeIOxgBbFO4PnsNKeP+m5PbQAx5W7 as5OPozRCz0NluF9Ajlj0FCsimn0gu3bv4rTrIIhtqDpd0Kv1enu9HmkMTDZGa0W So4w4S5x3ppkijJJ3hYhv0hSxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGKpd+JJ 1uHMGAKE0hV9bBVBaHEyMB8GA1UdIwQYMBaAFOWxzh1FORgZW+tc2Q9th57+mRCi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTVFOC9FOUUxQkYyOEEz MDUxMUVEQUMxNEVFNkNDNEY5QUUwMi81YkhPSFVVNUdCbGI2MXpaRDIySG52NlpF S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzViSE9IVVU1R0JsYjYxelpEMjJIbnY2WkVLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTVFOC9FOUUxQkYyOEEzMDUxMUVEQUMxNEVFNkNDNEY5QUUwMi81YkhPSFVVNUdC bGI2MXpaRDIySG52NlpFS0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKRysIM78ixy3fTsv3Eipucp+NLqU1gJau+dUwVz+gQ5pgki8ISR4g lC84NKKHoDgydwgS8/2p8Ame3MS64XMAfC2Mjuv/OsqmKZloDL2cMZSa56KeCyqU 0lRLMKQ6ByAtLrGTksDfKN0y3PnCOCWDCBZYp8FW7qSxuZGKCRPx9g1jk8aQVLU4 OwfPloWljO9lhQCMrcVB1/keZxeWwMJOhfGzjAZJtuKvJTllHhXdkuuSFg/lwH9f 4NnQ3jn4nbYsENKKf/0izB8VGwb9VA52heFC4zhokS5Ac9fXknbZ4s2jhvPEmKLc 61P8lRPTwV8xJwAXMynWlGoTXWPQm2Hc -----END CERTIFICATE-----Generated at Sun Jul 20 10:16:20 2025 by rpki-client