$ rpki-client -vvf rpki.apnic.net/member_repository/A9115122/30C7A38EEF1F11EDBF71CC80C4F9AE02/5QaTyhhbtl2Syvsw43b1G5Wa0tg.mft File: 5QaTyhhbtl2Syvsw43b1G5Wa0tg.mft (raw, json) Hash identifier: qWBuLNDBXkq+25isLJ0l0a6NK7ftK2gQNcoxWahNAFI= Subject key identifier: A8:24:66:D6:3B:58:AD:4E:06:CD:2C:F7:7A:BF:58:07:C9:5C:5D:97 Authority key identifier: E5:06:93:CA:18:5B:B6:5D:92:CA:FB:30:E3:76:F5:1B:95:9A:D2:D8 Certificate issuer: /CN=A9115122/serialNumber=E50693CA185BB65D92CAFB30E376F51B959AD2D8 Certificate serial: 01B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QaTyhhbtl2Syvsw43b1G5Wa0tg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9115122/30C7A38EEF1F11EDBF71CC80C4F9AE02/5QaTyhhbtl2Syvsw43b1G5Wa0tg.mft Manifest number: 01AF Signing time: Sat 23 Aug 2025 03:16:22 +0000 Manifest this update: Sat 23 Aug 2025 03:16:21 +0000 Manifest next update: Sat 30 Aug 2025 03:16:21 +0000 Files and hashes: 1: 5QaTyhhbtl2Syvsw43b1G5Wa0tg.crl (hash: 5FMgHX6O8tpC9GAD/cTRJ4IPjUo/5nbaeYbnyi2Ad8g=) 2: D4B97082EF2211EDB7EFE882C4F9AE02.roa (hash: HWnaY2EEm6u/FMZ1I67pi/PyglY7//JccNuuPPpBYpw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9115122/30C7A38EEF1F11EDBF71CC80C4F9AE02/5QaTyhhbtl2Syvsw43b1G5Wa0tg.crl rsync://rpki.apnic.net/member_repository/A9115122/30C7A38EEF1F11EDBF71CC80C4F9AE02/5QaTyhhbtl2Syvsw43b1G5Wa0tg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QaTyhhbtl2Syvsw43b1G5Wa0tg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:16:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 435 (0x1b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9115122, serialNumber=E50693CA185BB65D92CAFB30E376F51B959AD2D8 Validity Not Before: Aug 23 03:16:21 2025 GMT Not After : Aug 30 03:16:21 2025 GMT Subject: CN=68a93286-d55c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:44:92:ba:32:04:af:d9:62:86:df:86:bf:23: 6c:28:7a:48:a7:5b:1f:27:c8:d0:08:a3:6d:e9:d0: 48:26:aa:f6:c8:57:c4:ec:13:3c:c7:eb:b8:d7:48: ee:fc:f6:0d:0a:c0:5c:76:c9:ba:f9:ae:29:d2:2b: 3a:dd:85:72:f8:4b:65:2b:b9:ea:d3:fd:0f:34:07: 98:09:4e:b1:d0:bf:bd:cf:77:69:3f:37:17:7d:8b: 44:44:87:7a:64:78:02:3c:97:8b:26:95:59:5a:c6: b6:18:e2:56:a9:42:06:15:d8:39:bc:9f:e0:b7:f6: 93:54:72:fb:5b:1d:de:43:0f:eb:47:76:b5:c8:ba: 9b:da:8e:7e:d7:01:06:fc:41:b7:36:fa:3d:7e:07: f1:cf:0f:44:52:54:bf:4e:63:7e:cd:40:80:76:13: 16:7c:e7:ed:25:87:24:07:f4:63:d9:56:54:2b:db: a3:0e:94:75:24:ff:88:c4:17:59:3e:3f:42:d2:66: d1:47:c4:6f:9a:a9:af:45:4b:ad:a6:3b:2f:38:52: 88:af:4f:eb:12:21:8f:5e:22:86:25:45:39:2e:6c: a3:41:dd:62:af:22:5d:95:13:0a:49:7b:8a:34:f6: b2:6c:0c:1c:70:87:b1:19:07:ea:c2:22:22:f2:13: 25:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:24:66:D6:3B:58:AD:4E:06:CD:2C:F7:7A:BF:58:07:C9:5C:5D:97 X509v3 Authority Key Identifier: keyid:E5:06:93:CA:18:5B:B6:5D:92:CA:FB:30:E3:76:F5:1B:95:9A:D2:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9115122/30C7A38EEF1F11EDBF71CC80C4F9AE02/5QaTyhhbtl2Syvsw43b1G5Wa0tg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QaTyhhbtl2Syvsw43b1G5Wa0tg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9115122/30C7A38EEF1F11EDBF71CC80C4F9AE02/5QaTyhhbtl2Syvsw43b1G5Wa0tg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:88:fe:63:df:28:3c:97:94:e6:b1:4d:01:f5:0d:6f:92:40: a0:6f:a2:2c:b7:bc:14:43:72:89:4d:68:36:04:5f:1b:91:fa: ea:05:78:37:28:32:6e:e1:7d:9d:66:14:1c:22:f0:95:8d:86: 6b:a2:42:fc:11:cc:f9:60:3f:8c:fb:aa:f4:f1:6a:27:e4:da: 00:dc:59:93:7b:2e:61:fa:39:dd:68:44:1b:5d:00:52:37:f8: 2e:22:81:82:9b:cc:9d:56:c8:dd:15:df:10:df:93:51:ac:92: 0e:3e:29:04:21:8e:97:14:7e:61:4c:db:ea:f1:a0:60:6f:0e: c9:be:38:84:08:85:01:b9:83:6a:54:ee:95:5a:cf:3f:d7:17: 99:3d:38:c3:7d:20:0f:56:fa:08:ae:7b:b7:97:cd:9f:fe:a8: 1d:69:15:d2:08:bb:a3:15:6b:2d:5c:d2:d3:90:02:81:21:5f: ba:ab:55:c0:17:70:ac:51:31:0a:e3:f4:4e:5c:b8:bc:bb:c6: 3a:6f:c3:44:e3:6f:6d:25:f4:e6:01:84:b3:5f:de:f5:ee:c6: 4e:73:8c:1d:d1:5a:13:da:78:ba:1f:0b:9c:5d:0e:45:be:fd: 3d:44:5e:ce:7b:1a:a6:d9:5d:d9:22:03:10:8c:7f:31:d0:57: e4:36:b4:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTUxMjIxMTAvBgNVBAUTKEU1MDY5M0NBMTg1QkI2NUQ5MkNBRkIzMEUzNzZGNTFC OTU5QUQyRDgwHhcNMjUwODIzMDMxNjIxWhcNMjUwODMwMDMxNjIxWjAYMRYwFAYD VQQDEw02OGE5MzI4Ni1kNTVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvUSSujIEr9liht+GvyNsKHpIp1sfJ8jQCKNt6dBIJqr2yFfE7BM8x+u410ju /PYNCsBcdsm6+a4p0is63YVy+EtlK7nq0/0PNAeYCU6x0L+9z3dpPzcXfYtERId6 ZHgCPJeLJpVZWsa2GOJWqUIGFdg5vJ/gt/aTVHL7Wx3eQw/rR3a1yLqb2o5+1wEG /EG3Nvo9fgfxzw9EUlS/TmN+zUCAdhMWfOftJYckB/Rj2VZUK9ujDpR1JP+IxBdZ Pj9C0mbRR8RvmqmvRUutpjsvOFKIr0/rEiGPXiKGJUU5LmyjQd1iryJdlRMKSXuK NPaybAwccIexGQfqwiIi8hMlFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKgkZtY7 WK1OBs0s93q/WAfJXF2XMB8GA1UdIwQYMBaAFOUGk8oYW7Zdksr7MON29RuVmtLY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNTEyMi8zMEM3QTM4RUVG MUYxMUVEQkY3MUNDODBDNEY5QUUwMi81UWFUeWhoYnRsMlN5dnN3NDNiMUc1V2Ew dGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVRYVR5aGhidGwyU3l2c3c0M2IxRzVXYTB0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NTEyMi8zMEM3QTM4RUVGMUYxMUVEQkY3MUNDODBDNEY5QUUwMi81UWFUeWhoYnRs MlN5dnN3NDNiMUc1V2EwdGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/iP5j3yg8l5TmsU0B9Q1vkkCgb6Ist7wUQ3KJTWg2BF8bkfrqBXg3 KDJu4X2dZhQcIvCVjYZrokL8Ecz5YD+M+6r08Won5NoA3FmTey5h+jndaEQbXQBS N/guIoGCm8ydVsjdFd8Q35NRrJIOPikEIY6XFH5hTNvq8aBgbw7JvjiECIUBuYNq VO6VWs8/1xeZPTjDfSAPVvoIrnu3l82f/qgdaRXSCLujFWstXNLTkAKBIV+6q1XA F3CsUTEK4/ROXLi8u8Y6b8NE429tJfTmAYSzX9717sZOc4wd0VoT2ni6HwucXQ5F vv09RF7Oexqm2V3ZIgMQjH8x0FfkNrQT -----END CERTIFICATE-----Generated at Sun Aug 24 22:09:16 2025 by rpki-client