$ rpki-client -vvf rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft File: D5BpKh7v5_ChrGi14awJ9wJpccw.mft (raw, json) Hash identifier: HHgvDeDLROX3Rh+BR2RKycbyPASCjFbkG2fbyRMLvIc= Subject key identifier: 88:39:6F:F2:E9:27:DC:11:2C:8A:A3:A1:07:88:E8:9C:DD:CF:6C:A8 Authority key identifier: 0F:90:69:2A:1E:EF:E7:F0:A1:AC:68:B5:E1:AC:09:F7:02:69:71:CC Certificate issuer: /CN=A91185B8/serialNumber=0F90692A1EEFE7F0A1AC68B5E1AC09F7026971CC Certificate serial: 01D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D5BpKh7v5_ChrGi14awJ9wJpccw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft Manifest number: 01D4 Signing time: Fri 05 Sep 2025 03:06:31 +0000 Manifest this update: Fri 05 Sep 2025 03:06:30 +0000 Manifest next update: Fri 12 Sep 2025 03:06:30 +0000 Files and hashes: 1: D5BpKh7v5_ChrGi14awJ9wJpccw.crl (hash: NawJebcIRE2P44lIv3gZEteUL8w4dAMlI7Vo6pt4fNk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.crl rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D5BpKh7v5_ChrGi14awJ9wJpccw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 03:06:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 468 (0x1d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91185B8, serialNumber=0F90692A1EEFE7F0A1AC68B5E1AC09F7026971CC Validity Not Before: Sep 5 03:06:30 2025 GMT Not After : Sep 12 03:06:30 2025 GMT Subject: CN=68ba53b7-6291 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:87:34:d3:38:64:77:ac:4f:8a:a5:d1:ca:c5: 4d:52:07:16:36:cb:2e:2a:45:0d:bd:2a:13:cf:e6: 46:b9:b2:20:c8:1d:e6:67:ae:f0:2a:79:b6:6c:62: 50:55:ee:59:60:f8:d0:4d:d7:19:75:73:32:ae:b1: cf:90:ef:0b:79:a1:90:b9:65:b4:1e:91:4b:a2:d5: 53:4c:7e:c2:30:6d:8c:da:f3:e5:9a:fb:2f:40:ff: f1:67:ee:33:80:eb:13:76:3f:d1:5e:e9:4e:b1:b0: b1:f4:1f:c7:86:24:d7:97:c9:9f:19:e0:70:24:0c: 15:1f:4f:9f:3d:ba:92:c4:f7:a4:f2:42:de:53:a7: 8f:a8:98:35:2f:c7:5c:c1:4c:dc:ec:96:b3:bc:0e: 90:da:69:88:95:99:25:09:a0:53:08:fc:0d:ea:d4: 4b:a6:43:cf:69:1b:f6:67:65:81:0e:59:49:79:7d: 24:33:6a:1d:ce:0c:90:67:91:17:7d:e6:82:49:e7: 3a:44:2c:c7:cf:c0:f2:94:67:52:fa:d7:58:d1:b2: 32:10:42:6e:ba:75:a3:43:01:e8:d1:d1:5e:e9:22: b4:1f:c4:c8:df:69:60:7e:57:7d:61:dd:b4:37:2f: 20:2e:f6:b2:36:bc:fd:a0:d7:76:0d:f1:83:b4:89: f0:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:39:6F:F2:E9:27:DC:11:2C:8A:A3:A1:07:88:E8:9C:DD:CF:6C:A8 X509v3 Authority Key Identifier: keyid:0F:90:69:2A:1E:EF:E7:F0:A1:AC:68:B5:E1:AC:09:F7:02:69:71:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D5BpKh7v5_ChrGi14awJ9wJpccw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:af:10:a1:ce:67:40:9a:f3:35:05:e2:23:e7:71:1e:b8:7a: e4:b6:31:80:9a:99:c1:28:d1:2b:d0:3c:ae:e6:bb:27:d1:88: f7:bb:a9:18:0d:33:fd:8f:e7:8e:bf:aa:f7:99:e7:b5:db:ec: de:37:34:73:5e:10:a2:59:a5:dc:18:f4:ff:73:ff:e5:c3:6d: a6:67:f9:0c:4b:72:cc:b7:9b:57:67:39:3b:e0:da:72:1d:3e: 28:c2:60:82:34:b5:41:70:b3:0b:d9:d7:75:bb:0d:4a:22:b8: ac:41:55:38:53:45:45:50:ce:34:77:14:47:6a:6c:0a:ec:2a: 99:b3:ba:9a:1a:c9:26:43:a5:f4:6f:13:15:ef:45:c0:5c:72: b6:58:0e:40:4b:e9:23:cf:92:08:9f:fe:c1:c3:ad:0a:86:49: e5:42:28:47:49:65:2e:16:aa:ac:14:4c:9c:24:be:d9:72:10: 47:3a:7e:8c:6d:69:88:e8:2b:e8:ba:70:d7:a8:e7:e2:45:5c: d8:da:42:82:0e:32:ff:27:2e:fa:a5:60:b1:d5:5a:33:4a:43: ad:eb:9b:7e:9f:11:e4:90:e5:de:ed:66:12:95:68:ce:70:71: 16:c6:f5:80:50:6d:f2:01:45:34:c9:39:37:90:ed:2e:b8:70: d4:c3:09:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg1QjgxMTAvBgNVBAUTKDBGOTA2OTJBMUVFRkU3RjBBMUFDNjhCNUUxQUMwOUY3 MDI2OTcxQ0MwHhcNMjUwOTA1MDMwNjMwWhcNMjUwOTEyMDMwNjMwWjAYMRYwFAYD VQQDEw02OGJhNTNiNy02MjkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAroc00zhkd6xPiqXRysVNUgcWNssuKkUNvSoTz+ZGubIgyB3mZ67wKnm2bGJQ Ve5ZYPjQTdcZdXMyrrHPkO8LeaGQuWW0HpFLotVTTH7CMG2M2vPlmvsvQP/xZ+4z gOsTdj/RXulOsbCx9B/HhiTXl8mfGeBwJAwVH0+fPbqSxPek8kLeU6ePqJg1L8dc wUzc7JazvA6Q2mmIlZklCaBTCPwN6tRLpkPPaRv2Z2WBDllJeX0kM2odzgyQZ5EX feaCSec6RCzHz8DylGdS+tdY0bIyEEJuunWjQwHo0dFe6SK0H8TI32lgfld9Yd20 Ny8gLvayNrz9oNd2DfGDtInw0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIg5b/Lp J9wRLIqjoQeI6Jzdz2yoMB8GA1UdIwQYMBaAFA+QaSoe7+fwoaxoteGsCfcCaXHM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODVCOC9DRkEzNDA5QUJF MzExMUVEQjRGRjdEMzRDNEY5QUUwMi9ENUJwS2g3djVfQ2hyR2kxNGF3Sjl3SnBj Y3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0Q1QnBLaDd2NV9DaHJHaTE0YXdKOXdKcGNjdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODVCOC9DRkEzNDA5QUJFMzExMUVEQjRGRjdEMzRDNEY5QUUwMi9ENUJwS2g3djVf Q2hyR2kxNGF3Sjl3SnBjY3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChrxChzmdAmvM1BeIj53EeuHrktjGAmpnBKNEr0Dyu5rsn0Yj3u6kY DTP9j+eOv6r3mee12+zeNzRzXhCiWaXcGPT/c//lw22mZ/kMS3LMt5tXZzk74Npy HT4owmCCNLVBcLML2dd1uw1KIrisQVU4U0VFUM40dxRHamwK7CqZs7qaGskmQ6X0 bxMV70XAXHK2WA5AS+kjz5IIn/7Bw60KhknlQihHSWUuFqqsFEycJL7ZchBHOn6M bWmI6CvounDXqOfiRVzY2kKCDjL/Jy76pWCx1VozSkOt65t+nxHkkOXe7WYSlWjO cHEWxvWAUG3yAUU0yTk3kO0uuHDUwwkp -----END CERTIFICATE-----Generated at Sat Sep 6 21:11:01 2025 by rpki-client