$ rpki-client -vvf rpki.apnic.net/member_repository/A915393C/6D04315E640E11EFB5446458C4F9AE02/S5R0cysQASlff10ywBNpOhk3aBM.mft File: S5R0cysQASlff10ywBNpOhk3aBM.mft (raw, json) Hash identifier: 4kwH9OTrZ/Vy4IfuAs7kRtoCohy9VTTHTe1n/SzR8tM= Subject key identifier: 1F:CE:BF:08:F9:84:EE:45:FF:5B:D4:F7:CF:E1:BA:DA:E3:FD:51:17 Authority key identifier: 4B:94:74:73:2B:10:01:29:5F:7F:5D:32:C0:13:69:3A:19:37:68:13 Certificate issuer: /CN=A915393C/serialNumber=4B9474732B1001295F7F5D32C013693A19376813 Certificate serial: CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S5R0cysQASlff10ywBNpOhk3aBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915393C/6D04315E640E11EFB5446458C4F9AE02/S5R0cysQASlff10ywBNpOhk3aBM.mft Manifest number: C8 Signing time: Wed 17 Sep 2025 06:26:00 +0000 Manifest this update: Wed 17 Sep 2025 06:26:00 +0000 Manifest next update: Wed 24 Sep 2025 06:26:00 +0000 Files and hashes: 1: S5R0cysQASlff10ywBNpOhk3aBM.crl (hash: 47FNsHnk/SwtvrXPgyjdzAgPNTK9bh4Q1t1LOmd0SgM=) 2: D970354A640E11EF93D18659C4F9AE02.roa (hash: etNLN0xdcIQbsfAOgbyJVGgcDaVOQsDMFkI6IBI01Ws=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915393C/6D04315E640E11EFB5446458C4F9AE02/S5R0cysQASlff10ywBNpOhk3aBM.crl rsync://rpki.apnic.net/member_repository/A915393C/6D04315E640E11EFB5446458C4F9AE02/S5R0cysQASlff10ywBNpOhk3aBM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S5R0cysQASlff10ywBNpOhk3aBM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 06:25:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915393C, serialNumber=4B9474732B1001295F7F5D32C013693A19376813 Validity Not Before: Sep 17 06:26:00 2025 GMT Not After : Sep 24 06:26:00 2025 GMT Subject: CN=68ca5478-378d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e8:66:9c:f6:ac:c0:78:ad:68:4f:59:7b:0f: 84:0c:47:3e:08:f5:3e:c2:51:15:2f:c6:64:bc:c2: 91:3b:f6:19:18:56:a8:0e:d6:06:1e:63:6b:e5:6d: b3:a7:75:66:3d:90:0a:4a:c8:3d:68:08:6a:ba:0e: 2d:34:b7:4a:77:73:ef:39:dd:4c:ea:f9:81:95:3d: fc:a6:5f:89:0e:60:68:b6:d7:4d:28:2c:e0:0b:9e: 3b:fb:45:19:6b:d1:33:f5:e7:bf:b6:44:6d:60:52: 9d:d2:09:dd:0c:28:83:78:94:17:58:0a:96:f6:2f: aa:db:56:89:50:25:d0:14:70:f0:56:35:04:72:c2: 2c:f0:fa:d4:b8:d6:c5:6d:81:7c:82:c8:99:24:b7: bf:2d:2f:43:2c:84:2c:03:d0:87:11:6c:89:8b:78: ac:ca:5b:70:57:7a:e5:5c:2c:8a:f4:6e:5f:10:76: 62:32:4d:66:41:86:6f:23:ba:dd:45:fd:06:a2:e2: 75:72:e1:2d:95:62:1a:24:e0:fe:ea:eb:66:83:29: 48:c3:fe:1c:fe:ec:b9:a9:d2:01:04:30:13:41:76: 68:00:49:f8:1f:fd:78:38:7a:d6:01:ca:c2:cc:64: 99:29:7f:88:6c:ab:66:5b:87:d1:39:f3:ee:52:67: 48:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:CE:BF:08:F9:84:EE:45:FF:5B:D4:F7:CF:E1:BA:DA:E3:FD:51:17 X509v3 Authority Key Identifier: keyid:4B:94:74:73:2B:10:01:29:5F:7F:5D:32:C0:13:69:3A:19:37:68:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915393C/6D04315E640E11EFB5446458C4F9AE02/S5R0cysQASlff10ywBNpOhk3aBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S5R0cysQASlff10ywBNpOhk3aBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915393C/6D04315E640E11EFB5446458C4F9AE02/S5R0cysQASlff10ywBNpOhk3aBM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:88:f0:29:1f:07:3f:32:e9:50:cb:d6:cb:90:23:04:73:8a: 54:c2:e8:7c:d0:2e:65:53:99:2b:d4:94:c1:22:18:4c:26:df: 09:b2:ec:92:76:e0:4c:3a:c9:7a:53:93:56:0d:93:24:70:64: c5:cf:61:37:b1:f2:f6:49:d2:86:f7:bf:5e:08:aa:5b:dc:e3: 6e:83:93:0f:a7:db:fb:54:b5:a6:2f:b5:fe:2b:cb:35:99:32: ce:05:35:ed:00:43:4c:6d:c2:11:96:a2:eb:d9:fa:56:33:9f: 9e:a6:28:19:bc:25:0e:34:5f:d1:be:12:90:89:c1:17:7d:0d: 3b:33:99:71:55:0a:16:ba:28:2e:fe:f9:aa:8b:d0:a1:07:83: 72:8b:f8:80:cd:d6:27:b7:53:03:64:71:da:2d:1b:cb:2a:f1: 53:06:ed:64:63:92:a6:4f:1a:c3:45:14:74:86:2f:77:ee:b5: 7c:32:ba:66:e3:77:9f:83:98:5a:ef:7a:0c:82:9b:89:b1:cc: 10:2c:cd:d2:90:06:be:c4:23:b8:36:55:0e:f3:f7:b5:9f:4f: 6a:3d:a7:d6:c7:4a:5a:6b:8a:b5:8d:f0:c1:30:0c:9e:7f:f6: 71:d7:13:8b:78:af:46:f2:ba:db:7d:89:47:47:3e:35:a4:04: 1b:12:e3:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM5M0MxMTAvBgNVBAUTKDRCOTQ3NDczMkIxMDAxMjk1RjdGNUQzMkMwMTM2OTNB MTkzNzY4MTMwHhcNMjUwOTE3MDYyNjAwWhcNMjUwOTI0MDYyNjAwWjAYMRYwFAYD VQQDEw02OGNhNTQ3OC0zNzhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwuhmnPaswHitaE9Zew+EDEc+CPU+wlEVL8ZkvMKRO/YZGFaoDtYGHmNr5W2z p3VmPZAKSsg9aAhqug4tNLdKd3PvOd1M6vmBlT38pl+JDmBottdNKCzgC547+0UZ a9Ez9ee/tkRtYFKd0gndDCiDeJQXWAqW9i+q21aJUCXQFHDwVjUEcsIs8PrUuNbF bYF8gsiZJLe/LS9DLIQsA9CHEWyJi3isyltwV3rlXCyK9G5fEHZiMk1mQYZvI7rd Rf0GouJ1cuEtlWIaJOD+6utmgylIw/4c/uy5qdIBBDATQXZoAEn4H/14OHrWAcrC zGSZKX+IbKtmW4fROfPuUmdIuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB/Ovwj5 hO5F/1vU98/hutrj/VEXMB8GA1UdIwQYMBaAFEuUdHMrEAEpX39dMsATaToZN2gT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzkzQy82RDA0MzE1RTY0 MEUxMUVGQjU0NDY0NThDNEY5QUUwMi9TNVIwY3lzUUFTbGZmMTB5d0JOcE9oazNh Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1M1UjBjeXNRQVNsZmYxMHl3Qk5wT2hrM2FCTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzkzQy82RDA0MzE1RTY0MEUxMUVGQjU0NDY0NThDNEY5QUUwMi9TNVIwY3lzUUFT bGZmMTB5d0JOcE9oazNhQk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCniPApHwc/MulQy9bLkCMEc4pUwuh80C5lU5kr1JTBIhhMJt8JsuyS duBMOsl6U5NWDZMkcGTFz2E3sfL2SdKG979eCKpb3ONug5MPp9v7VLWmL7X+K8s1 mTLOBTXtAENMbcIRlqLr2fpWM5+epigZvCUONF/RvhKQicEXfQ07M5lxVQoWuigu /vmqi9ChB4Nyi/iAzdYnt1MDZHHaLRvLKvFTBu1kY5KmTxrDRRR0hi937rV8Mrpm 43efg5ha73oMgpuJscwQLM3SkAa+xCO4NlUO8/e1n09qPafWx0paa4q1jfDBMAye f/Zx1xOLeK9G8rrbfYlHRz41pAQbEuMA -----END CERTIFICATE-----Generated at Fri Sep 19 00:57:34 2025 by rpki-client