$ rpki-client -vvf rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft File: 5igiDz_QD0F7mXLh1KD2QWlueZk.mft (raw, json) Hash identifier: wWIGEgNcUHq7x3YT5i+V+q03l8T/CYorYDsfi9p5oiY= Subject key identifier: DD:57:F8:9E:B1:D8:E3:51:10:0F:C7:58:CC:74:A6:C4:54:7F:E9:CC Authority key identifier: E6:28:22:0F:3F:D0:0F:41:7B:99:72:E1:D4:A0:F6:41:69:6E:79:99 Certificate issuer: /CN=A912E31D/serialNumber=E628220F3FD00F417B9972E1D4A0F641696E7999 Certificate serial: 6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5igiDz_QD0F7mXLh1KD2QWlueZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft Manifest number: 69 Signing time: Fri 19 Sep 2025 07:43:42 +0000 Manifest this update: Fri 19 Sep 2025 07:43:42 +0000 Manifest next update: Fri 26 Sep 2025 07:43:42 +0000 Files and hashes: 1: 5igiDz_QD0F7mXLh1KD2QWlueZk.crl (hash: nppzIUn3VpiR2P7nXs04mCIYs0qaK39e4LwPgmGFKaI=) 2: 9CDF0C0CFA4311EFAEC6A81AC4F9AE02.roa (hash: A659tR0soBiQRXoeD1FPvGrYfSs+v9kVVN6MSoHXtyU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.crl rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5igiDz_QD0F7mXLh1KD2QWlueZk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 07:06:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 107 (0x6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E31D, serialNumber=E628220F3FD00F417B9972E1D4A0F641696E7999 Validity Not Before: Sep 19 07:43:42 2025 GMT Not After : Sep 26 07:43:42 2025 GMT Subject: CN=68cd09ae-10d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:a1:bb:70:76:79:bc:4a:a1:39:74:d3:54:bf: c1:2a:6e:8b:39:c4:fb:be:a5:8d:1a:ac:60:d9:4c: fc:7d:e7:95:d4:4d:7f:52:2d:98:4b:8b:84:07:41: f4:bc:da:42:2e:0b:65:3d:b1:09:5e:7a:e9:3b:8d: a5:52:7b:e4:ff:b5:fa:db:ef:8b:24:d7:e4:62:ae: 75:74:82:54:77:96:30:f7:e2:77:10:f5:0c:cb:42: e4:8d:a2:c4:d8:46:4b:02:e8:0f:b8:36:f1:da:9b: 4c:3f:9b:79:57:f4:9c:df:77:31:06:52:b4:ac:6e: 94:4c:69:e7:94:0c:97:5a:e4:8a:c7:19:58:f8:ab: d4:11:82:ab:ff:97:fc:b3:e1:9f:25:2f:29:f5:63: c6:1f:c2:59:77:38:dd:0f:33:05:7a:e9:e0:96:64: 25:4b:6c:2d:d4:81:63:42:24:23:8c:60:cc:a3:0f: 16:ba:1f:b1:83:6f:ca:e7:54:67:54:f3:3b:10:a2: bc:a5:a0:aa:bd:3f:a3:aa:5a:67:c3:86:1c:da:25: 21:86:2c:3a:25:f6:b4:ec:4f:41:71:72:d0:61:12: 16:27:9a:b5:34:18:eb:b6:df:8b:0a:5e:96:9b:80: 16:99:18:be:ae:4f:2d:e7:ee:e5:23:4b:54:fc:45: b9:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:57:F8:9E:B1:D8:E3:51:10:0F:C7:58:CC:74:A6:C4:54:7F:E9:CC X509v3 Authority Key Identifier: keyid:E6:28:22:0F:3F:D0:0F:41:7B:99:72:E1:D4:A0:F6:41:69:6E:79:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5igiDz_QD0F7mXLh1KD2QWlueZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:a4:3e:5d:99:1f:1c:66:61:4b:10:f5:0d:95:1c:14:60:f4: a5:60:c8:8f:14:24:a3:ef:ac:b9:e2:95:ba:2e:a9:67:25:bb: f8:f0:58:a7:b6:5b:8e:4c:d4:b1:e0:94:fa:dc:f5:66:b7:d8: c3:0a:6b:35:4c:21:29:85:88:c4:22:54:cc:97:a7:88:97:35: f5:79:d1:f0:2f:9f:28:af:03:84:10:ae:3c:2e:d8:26:d8:27: ad:ed:63:b1:aa:91:fd:4e:ba:59:62:03:86:5f:5f:78:84:02: 14:1b:a8:f3:24:2e:ac:bc:4b:99:e6:73:47:a3:d9:98:50:30: 2c:b0:1f:02:b7:5d:d8:94:21:22:06:af:63:aa:11:8a:ab:4d: 4f:90:c8:1c:62:40:6d:ff:1d:5b:65:7b:fe:06:84:38:4a:c8: 8b:2a:d3:3b:04:43:5c:d0:64:70:02:05:3a:2b:54:66:88:7f: 6c:e5:e7:84:1e:ba:a4:ed:44:82:40:25:0e:3f:55:1e:f2:e2: 24:5a:bb:8c:e3:9a:2c:18:47:1e:ef:4c:36:35:fd:e4:29:ef: 20:ca:93:06:0b:34:d5:f9:9c:ab:8c:ba:29:f9:0c:e2:dd:f5: 71:31:50:a7:35:20:75:f9:d5:12:73:1f:02:c2:3f:6b:1b:f5: 8f:4c:3e:5c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBazANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy RTMxRDExMC8GA1UEBRMoRTYyODIyMEYzRkQwMEY0MTdCOTk3MkUxRDRBMEY2NDE2 OTZFNzk5OTAeFw0yNTA5MTkwNzQzNDJaFw0yNTA5MjYwNzQzNDJaMBgxFjAUBgNV BAMTDTY4Y2QwOWFlLTEwZDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDiobtwdnm8SqE5dNNUv8Eqbos5xPu+pY0arGDZTPx955XUTX9SLZhLi4QHQfS8 2kIuC2U9sQleeuk7jaVSe+T/tfrb74sk1+RirnV0glR3ljD34ncQ9QzLQuSNosTY RksC6A+4NvHam0w/m3lX9JzfdzEGUrSsbpRMaeeUDJda5IrHGVj4q9QRgqv/l/yz 4Z8lLyn1Y8Yfwll3ON0PMwV66eCWZCVLbC3UgWNCJCOMYMyjDxa6H7GDb8rnVGdU 8zsQoryloKq9P6OqWmfDhhzaJSGGLDol9rTsT0FxctBhEhYnmrU0GOu234sKXpab gBaZGL6uTy3n7uUjS1T8RbnTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU3Vf4nrHY 41EQD8dYzHSmxFR/6cwwHwYDVR0jBBgwFoAU5igiDz/QD0F7mXLh1KD2QWlueZkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJFMzFELzJDRjZCOEIwRjlD OTExRUZBNTRGNzYyQUM0RjlBRTAyLzVpZ2lEel9RRDBGN21YTGgxS0QyUVdsdWVa ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNWlnaUR6X1FEMEY3bVhMaDFLRDJRV2x1ZVprLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJF MzFELzJDRjZCOEIwRjlDOTExRUZBNTRGNzYyQUM0RjlBRTAyLzVpZ2lEel9RRDBG N21YTGgxS0QyUVdsdWVaay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALqkPl2ZHxxmYUsQ9Q2VHBRg9KVgyI8UJKPvrLnilbouqWclu/jwWKe2 W45M1LHglPrc9Wa32MMKazVMISmFiMQiVMyXp4iXNfV50fAvnyivA4QQrjwu2CbY J63tY7Gqkf1OulliA4ZfX3iEAhQbqPMkLqy8S5nmc0ej2ZhQMCywHwK3XdiUISIG r2OqEYqrTU+QyBxiQG3/HVtle/4GhDhKyIsq0zsEQ1zQZHACBTorVGaIf2zl54Qe uqTtRIJAJQ4/VR7y4iRau4zjmiwYRx7vTDY1/eQp7yDKkwYLNNX5nKuMuin5DOLd 9XExUKc1IHX51RJzHwLCP2sb9Y9MPlw= -----END CERTIFICATE-----Generated at Fri Sep 19 12:22:12 2025 by rpki-client