$ rpki-client -vvf rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft File: 5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft (raw, json) Hash identifier: 9BV+wayltE+qzmIk9RMW9og8HVEwp1vUFPjzgh8mbZY= Subject key identifier: D6:17:EF:09:00:AB:81:BC:A1:B7:7A:BF:F6:EF:2B:88:CA:76:72:83 Authority key identifier: E4:62:3C:FD:44:3E:62:32:F2:6C:23:E8:1F:DF:97:58:B2:6F:3B:2C Certificate issuer: /CN=A914F3BA/serialNumber=E4623CFD443E6232F26C23E81FDF9758B26F3B2C Certificate serial: 07E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5GI8_UQ-YjLybCPoH9-XWLJvOyw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft Manifest number: 07DD Signing time: Sat 06 Sep 2025 21:18:22 +0000 Manifest this update: Sat 06 Sep 2025 21:18:22 +0000 Manifest next update: Sat 13 Sep 2025 21:18:22 +0000 Files and hashes: 1: 5GI8_UQ-YjLybCPoH9-XWLJvOyw.crl (hash: BBZdw/Ug8r+b42qbqTmU4I70KKksQkekmsYcV0vS3y8=) 2: D0D7EE48343211EFBF2C280DC4F9AE02.roa (hash: hbQmOshNkorS1/g78QiEhSVwbWUn9A8H0a6ZSzOWB98=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.crl rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5GI8_UQ-YjLybCPoH9-XWLJvOyw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 21:18:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2016 (0x7e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F3BA, serialNumber=E4623CFD443E6232F26C23E81FDF9758B26F3B2C Validity Not Before: Sep 6 21:18:22 2025 GMT Not After : Sep 13 21:18:22 2025 GMT Subject: CN=68bca51e-a0ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:44:67:34:96:2b:09:fa:03:85:4d:e3:26:77: d2:2c:9e:d4:ee:d0:6f:d5:b1:8d:f5:30:1f:fb:89: f8:56:95:64:b5:85:6d:f4:0c:6c:d7:a5:02:f4:80: 3b:7d:c0:a2:2d:92:b2:d5:79:bf:d0:56:ad:8e:f7: 16:cb:ce:bc:4a:e1:e0:a4:30:62:38:0b:23:43:57: c2:55:2e:63:2b:fd:88:84:b9:a2:16:40:20:04:22: f8:46:d0:d5:00:0d:6e:db:c2:a6:d0:1d:f3:30:ea: 4b:c9:b7:bd:4a:2a:29:e8:51:c7:4f:87:a0:f9:be: f3:21:d3:9e:a5:53:32:c3:67:01:ec:99:04:94:b1: 68:48:0f:f2:1b:eb:0d:08:f5:35:23:04:28:6e:e7: 72:96:e1:90:b9:9b:f2:15:3f:e5:af:73:70:0f:2a: 75:41:c6:6e:55:6e:ab:a5:50:ae:ea:c4:47:4e:29: 10:8e:c8:d4:92:cd:96:ea:eb:e4:21:15:36:f0:d7: 34:16:2c:4f:dc:2d:c3:6c:a7:8e:00:00:a8:00:5b: e9:9a:c6:c0:06:9b:c5:38:05:fb:dd:10:9e:26:91: 4a:56:07:a2:6f:7c:bb:76:e2:a1:d8:81:2c:bd:59: ac:a9:11:a4:71:40:83:7d:e7:9a:28:e3:ba:4b:84: e0:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:17:EF:09:00:AB:81:BC:A1:B7:7A:BF:F6:EF:2B:88:CA:76:72:83 X509v3 Authority Key Identifier: keyid:E4:62:3C:FD:44:3E:62:32:F2:6C:23:E8:1F:DF:97:58:B2:6F:3B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5GI8_UQ-YjLybCPoH9-XWLJvOyw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:ea:03:c9:80:36:9c:ba:4a:ab:59:45:83:74:a1:48:f0:71: 55:ce:29:fb:80:1b:8e:87:71:5d:96:b5:eb:2b:3f:38:59:4c: 8d:3e:17:85:fb:9e:fd:4c:da:d2:25:d9:98:91:57:81:e4:66: 62:df:52:c2:7a:ff:52:ca:e5:b4:36:5b:c1:92:76:0d:7b:a1: 67:1c:df:7a:2b:8a:95:00:20:58:34:21:52:c9:8f:17:69:69: 18:48:7f:9b:2d:29:2b:e9:62:4c:61:63:0f:80:7d:5d:a6:24: 6f:53:0f:73:cb:30:72:76:31:3a:eb:de:ae:b4:6f:89:71:d8: 3e:86:33:3c:9a:de:82:e4:4e:35:2b:f0:09:44:cb:6b:e7:d5: 54:7f:de:f1:0c:b0:ee:d8:1b:62:a2:5a:29:2e:43:7f:8f:a6: d3:7a:47:f6:3b:5e:c7:ca:1c:cd:66:b5:2f:c8:6c:b2:91:80: d6:ff:cc:b4:4e:38:4a:44:6e:78:e0:50:48:67:4e:82:87:35: 5c:85:80:55:a5:d6:25:ee:ce:28:85:7a:9b:85:06:b8:77:04: ec:d4:d3:7d:ed:32:e8:e8:6d:7f:4b:87:8c:0b:72:1e:29:f4: 18:d3:12:5e:dd:f3:7b:1c:00:83:4e:6f:f6:87:c7:27:f2:67: 6a:90:13:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEYzQkExMTAvBgNVBAUTKEU0NjIzQ0ZENDQzRTYyMzJGMjZDMjNFODFGREY5NzU4 QjI2RjNCMkMwHhcNMjUwOTA2MjExODIyWhcNMjUwOTEzMjExODIyWjAYMRYwFAYD VQQDEw02OGJjYTUxZS1hMGVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmURnNJYrCfoDhU3jJnfSLJ7U7tBv1bGN9TAf+4n4VpVktYVt9Axs16UC9IA7 fcCiLZKy1Xm/0FatjvcWy868SuHgpDBiOAsjQ1fCVS5jK/2IhLmiFkAgBCL4RtDV AA1u28Km0B3zMOpLybe9Siop6FHHT4eg+b7zIdOepVMyw2cB7JkElLFoSA/yG+sN CPU1IwQobudyluGQuZvyFT/lr3NwDyp1QcZuVW6rpVCu6sRHTikQjsjUks2W6uvk IRU28Nc0FixP3C3DbKeOAACoAFvpmsbABpvFOAX73RCeJpFKVgeib3y7duKh2IEs vVmsqRGkcUCDfeeaKOO6S4TgnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNYX7wkA q4G8obd6v/bvK4jKdnKDMB8GA1UdIwQYMBaAFORiPP1EPmIy8mwj6B/fl1iybzss MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjNCQS9GRjIwRUJEQzAx M0QxMUVCQTAwMDEyNkJDNEY5QUUwMi81R0k4X1VRLVlqTHliQ1BvSDktWFdMSnZP eXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVHSThfVVEtWWpMeWJDUG9IOS1YV0xKdk95dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjNCQS9GRjIwRUJEQzAxM0QxMUVCQTAwMDEyNkJDNEY5QUUwMi81R0k4X1VRLVlq THliQ1BvSDktWFdMSnZPeXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA46gPJgDacukqrWUWDdKFI8HFVzin7gBuOh3FdlrXrKz84WUyNPheF +579TNrSJdmYkVeB5GZi31LCev9SyuW0NlvBknYNe6FnHN96K4qVACBYNCFSyY8X aWkYSH+bLSkr6WJMYWMPgH1dpiRvUw9zyzBydjE6696utG+Jcdg+hjM8mt6C5E41 K/AJRMtr59VUf97xDLDu2BtiolopLkN/j6bTekf2O17HyhzNZrUvyGyykYDW/8y0 TjhKRG544FBIZ06ChzVchYBVpdYl7s4ohXqbhQa4dwTs1NN97TLo6G1/S4eMC3Ie KfQY0xJe3fN7HACDTm/2h8cn8mdqkBPZ -----END CERTIFICATE-----Generated at Mon Sep 8 20:05:58 2025 by rpki-client