$ rpki-client -vvf rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.mft File: 5YjHPmy0_bOLhO5A-Pm2TFC-S3M.mft (raw, json) Hash identifier: qFBLwb02KFhlqYCw0k1piZuiX2LPMAX+q+xYAimV6YY= Subject key identifier: A4:1F:B3:2E:FC:DF:3D:EE:70:FC:67:28:C2:F5:77:44:41:2B:0D:2F Authority key identifier: E5:88:C7:3E:6C:B4:FD:B3:8B:84:EE:40:F8:F9:B6:4C:50:BE:4B:73 Certificate issuer: /CN=A913ABFE/serialNumber=E588C73E6CB4FDB38B84EE40F8F9B64C50BE4B73 Certificate serial: 01B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.mft Manifest number: 01A8 Signing time: Wed 17 Sep 2025 03:55:16 +0000 Manifest this update: Wed 17 Sep 2025 03:55:15 +0000 Manifest next update: Wed 24 Sep 2025 03:55:15 +0000 Files and hashes: 1: 5YjHPmy0_bOLhO5A-Pm2TFC-S3M.crl (hash: wGByxSdvwtWM17dSSH2p9grej/PU1admc5aBrMMNcMk=) 2: F4C13F18066811F0B521BF2FC4F9AE02.roa (hash: 3QKkD65qHOB5c8IaweySFDogSMcVT6Hz9Y4s2qa90So=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.crl rsync://rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 03:55:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 438 (0x1b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913ABFE, serialNumber=E588C73E6CB4FDB38B84EE40F8F9B64C50BE4B73 Validity Not Before: Sep 17 03:55:15 2025 GMT Not After : Sep 24 03:55:15 2025 GMT Subject: CN=68ca3124-c0dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:a4:33:38:b5:1d:36:b1:80:06:6d:7a:4f:bb: b5:c3:65:20:41:a4:bf:78:a7:be:63:57:0c:8e:6b: a6:75:d7:e9:d0:4b:e1:18:8b:40:8f:21:7f:ee:2e: 19:53:23:7d:a6:f1:ef:98:fa:0a:20:1d:8f:d3:94: c3:d5:a9:82:d3:69:97:ec:e8:54:f0:9d:85:e2:01: e9:0a:b1:f3:56:41:1f:b4:fe:5e:ce:a3:4e:e1:02: 20:d9:0b:85:f8:13:da:ce:c7:d5:b2:74:37:57:0a: 6f:64:12:bf:9b:ba:39:be:c7:c8:3d:74:d3:50:5f: e5:64:d1:24:2c:a6:46:8a:ab:74:ec:ef:63:23:a3: c8:10:24:ce:f7:8b:4d:76:2c:cd:dc:3f:76:8d:e1: 41:02:b3:be:8e:72:41:f3:88:de:3d:a3:9b:22:0f: 3c:97:9a:e5:f4:05:65:91:5a:17:a8:76:b5:56:2c: 25:47:a8:ab:ed:17:76:1b:d7:75:21:46:61:53:5b: 00:d1:2f:15:15:26:08:ac:a7:ab:c8:11:2f:96:77: 15:55:dc:7b:78:dd:9b:e9:ed:79:9c:02:77:64:f8: 56:76:c3:a7:98:91:47:80:d2:c9:e0:a2:1c:f8:02: a3:fa:ff:e4:83:45:3a:85:fe:30:1f:bd:07:9f:36: ad:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:1F:B3:2E:FC:DF:3D:EE:70:FC:67:28:C2:F5:77:44:41:2B:0D:2F X509v3 Authority Key Identifier: keyid:E5:88:C7:3E:6C:B4:FD:B3:8B:84:EE:40:F8:F9:B6:4C:50:BE:4B:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:ef:06:47:0a:3a:8b:be:45:1f:92:d1:50:7c:bb:9e:5e:68: 9d:63:53:ad:28:7a:4e:6b:29:94:d5:21:6a:76:5d:8f:e9:09: fd:10:31:cb:e4:86:b3:ee:03:e6:2c:a5:af:77:85:4f:37:0b: 67:b0:63:9b:53:37:a6:c0:8b:d6:f8:31:4b:e2:3f:8c:fc:7b: 29:8a:68:bb:af:1f:4f:b4:7b:a0:6c:3d:01:84:a3:f9:ac:60: 09:d0:c8:1b:8b:5c:27:b8:8a:d8:41:13:0d:ab:c6:7d:f7:cb: 1b:5b:bf:53:0c:29:26:d7:9f:b2:1a:84:9c:eb:c5:aa:d3:fb: c2:bf:84:86:03:06:5f:7c:2f:41:f9:55:62:c4:1d:de:8c:03: fb:fb:49:8f:90:78:1d:71:cc:08:1c:76:a7:b9:62:04:fa:a0: 38:b6:30:4e:7a:9f:b7:2e:78:71:8e:71:56:4f:02:67:1e:04: b4:51:34:f3:65:81:d0:5c:1b:ba:5c:78:33:91:61:90:6d:db: 02:ed:2c:3a:0c:28:e3:3d:11:b6:96:3e:87:20:2e:af:d0:17: a0:5c:e7:12:db:18:8f:37:49:e4:c5:a2:26:79:5e:19:1f:5d: e3:50:95:6f:9e:0e:92:af:b8:ce:4b:9c:64:1a:d4:47:06:c4: 23:12:93:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FCRkUxMTAvBgNVBAUTKEU1ODhDNzNFNkNCNEZEQjM4Qjg0RUU0MEY4RjlCNjRD NTBCRTRCNzMwHhcNMjUwOTE3MDM1NTE1WhcNMjUwOTI0MDM1NTE1WjAYMRYwFAYD VQQDEw02OGNhMzEyNC1jMGRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtqQzOLUdNrGABm16T7u1w2UgQaS/eKe+Y1cMjmumddfp0EvhGItAjyF/7i4Z UyN9pvHvmPoKIB2P05TD1amC02mX7OhU8J2F4gHpCrHzVkEftP5ezqNO4QIg2QuF +BPazsfVsnQ3VwpvZBK/m7o5vsfIPXTTUF/lZNEkLKZGiqt07O9jI6PIECTO94tN dizN3D92jeFBArO+jnJB84jePaObIg88l5rl9AVlkVoXqHa1ViwlR6ir7Rd2G9d1 IUZhU1sA0S8VFSYIrKeryBEvlncVVdx7eN2b6e15nAJ3ZPhWdsOnmJFHgNLJ4KIc +AKj+v/kg0U6hf4wH70HnzatwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKQfsy78 3z3ucPxnKML1d0RBKw0vMB8GA1UdIwQYMBaAFOWIxz5stP2zi4TuQPj5tkxQvktz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUJGRS9GMUQ1NTg3RTI1 RjExMUVFQjdCNDgwNThDNEY5QUUwMi81WWpIUG15MF9iT0xoTzVBLVBtMlRGQy1T M00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVZakhQbXkwX2JPTGhPNUEtUG0yVEZDLVMzTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUJGRS9GMUQ1NTg3RTI1RjExMUVFQjdCNDgwNThDNEY5QUUwMi81WWpIUG15MF9i T0xoTzVBLVBtMlRGQy1TM00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBL7wZHCjqLvkUfktFQfLueXmidY1OtKHpOaymU1SFqdl2P6Qn9EDHL 5Iaz7gPmLKWvd4VPNwtnsGObUzemwIvW+DFL4j+M/Hspimi7rx9PtHugbD0BhKP5 rGAJ0Mgbi1wnuIrYQRMNq8Z998sbW79TDCkm15+yGoSc68Wq0/vCv4SGAwZffC9B +VVixB3ejAP7+0mPkHgdccwIHHanuWIE+qA4tjBOep+3LnhxjnFWTwJnHgS0UTTz ZYHQXBu6XHgzkWGQbdsC7Sw6DCjjPRG2lj6HIC6v0BegXOcS2xiPN0nkxaImeV4Z H13jUJVvng6Sr7jOS5xkGtRHBsQjEpMD -----END CERTIFICATE-----Generated at Thu Sep 18 23:28:38 2025 by rpki-client