$ rpki-client -vvf rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.mft File: 5HE8G511dZKVr2TN-6YrcNuaBTc.mft (raw, json) Hash identifier: pRM0A53jRPeSBhdsV29K9XdAobNqrTViF3PG4QpLuPc= Subject key identifier: BC:4C:3C:26:3C:3A:5F:09:EA:1C:B8:49:94:79:00:74:35:FF:27:77 Authority key identifier: E4:71:3C:1B:9D:75:75:92:95:AF:64:CD:FB:A6:2B:70:DB:9A:05:37 Certificate issuer: /CN=A91561B7/serialNumber=E4713C1B9D75759295AF64CDFBA62B70DB9A0537 Certificate serial: 1DE6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HE8G511dZKVr2TN-6YrcNuaBTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.mft Manifest number: 1DD1 Signing time: Thu 18 Sep 2025 16:12:39 +0000 Manifest this update: Thu 18 Sep 2025 16:12:38 +0000 Manifest next update: Thu 25 Sep 2025 16:12:38 +0000 Files and hashes: 1: 5HE8G511dZKVr2TN-6YrcNuaBTc.crl (hash: JMfCK0iieazrd890KfHARQHRjYK+ehwmeWfeN9VUhcA=) 2: 4865DD00A13B11E687921078C4F9AE02.roa (hash: MaFWYkY2HcnSI16cq7zrf3Xg1TMrKe+K2OOU5n2vPcU=) 3: 1D57FF40A01311E684546521C4F9AE02.roa (hash: 8kLRR6g7/NXM5uPCUqU+X4Qb9woBVi0kDN/Wkxs+ARo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.crl rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HE8G511dZKVr2TN-6YrcNuaBTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 16:12:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7654 (0x1de6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91561B7, serialNumber=E4713C1B9D75759295AF64CDFBA62B70DB9A0537 Validity Not Before: Sep 18 16:12:38 2025 GMT Not After : Sep 25 16:12:38 2025 GMT Subject: CN=68cc2f76-e540 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:ed:11:92:bd:fd:e8:78:b6:01:42:ba:69:3c: 3e:85:d6:a6:87:d2:16:e1:04:cf:d3:5d:a0:aa:1e: e5:08:80:9e:7f:4a:0d:71:eb:77:76:16:29:ee:0b: 72:0d:4c:99:13:60:7b:4d:15:48:d5:d2:b0:fd:cc: 6b:cd:e5:b6:7c:49:e6:81:50:04:16:07:2c:d9:ef: 4b:a4:1e:3e:e3:8c:58:d3:04:b2:dd:d9:5b:57:03: e9:6a:4f:13:01:05:55:79:7a:94:43:40:45:35:63: 73:9d:37:6b:2b:30:1c:9e:c5:3c:7d:aa:b0:9b:1a: b3:24:52:22:a2:0a:fc:81:1c:0c:aa:b4:36:c3:88: f1:e1:34:0b:bd:88:77:5b:4d:55:ad:41:71:cd:3c: 32:00:bd:ee:66:d3:6a:65:b9:bf:d0:02:84:07:80: 77:aa:24:94:1a:e7:70:32:df:04:7a:7f:8c:b2:28: 46:c2:76:cb:52:c1:37:51:93:02:79:5c:fd:39:ff: 8c:f2:7c:9b:8d:95:24:2e:61:d2:d3:f3:e0:d0:8c: 23:f1:6d:5f:eb:65:1c:8b:c5:b9:64:2a:54:32:af: 6a:f3:57:b6:da:6f:db:7f:dc:1a:d3:cd:3a:b8:85: e1:d6:df:4b:a7:a0:35:75:f6:31:fe:cb:fe:fd:36: b7:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:4C:3C:26:3C:3A:5F:09:EA:1C:B8:49:94:79:00:74:35:FF:27:77 X509v3 Authority Key Identifier: keyid:E4:71:3C:1B:9D:75:75:92:95:AF:64:CD:FB:A6:2B:70:DB:9A:05:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HE8G511dZKVr2TN-6YrcNuaBTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:de:51:ed:b6:98:dd:fd:b3:ef:2c:34:0d:c6:f1:27:8e:c4: ce:56:10:bb:ad:f3:a7:14:3a:b1:df:41:d7:8e:43:51:d0:6e: 52:cf:a9:3a:6d:5a:af:01:b8:81:e7:e1:aa:b5:de:e1:21:35: 7e:30:cd:87:fc:9b:5b:c1:b6:1e:0f:6a:a0:53:ea:d2:49:50: c5:9b:fb:5e:4b:4c:08:15:35:dc:b1:6b:65:5d:3e:4d:2d:6b: 45:26:77:c3:49:98:4c:18:3f:d4:72:be:7a:e5:a4:9b:f2:90: f4:38:f7:e1:a0:35:43:47:a8:54:b9:e8:ab:cd:d0:57:8c:ad: 17:7b:ef:ca:9e:3b:1d:61:8f:88:a6:bc:4a:59:20:54:5a:ca: be:58:61:25:de:c0:fc:65:aa:40:02:b0:1d:58:ce:13:0d:f0: 45:34:c1:8e:14:3b:c9:0b:3b:8f:dc:8c:8a:7c:1a:f3:e7:f4: 60:62:a7:1c:c2:1d:43:8e:ed:9e:b8:d7:b6:7b:4d:a0:64:25: 0b:6f:ea:6d:16:2d:77:67:b6:3b:60:49:2b:a4:f5:cc:91:b3: 8f:89:6c:51:e3:1e:ef:c6:ea:81:a7:c5:81:e0:56:e5:00:5f: f3:0b:c9:95:eb:79:87:b6:3d:7e:86:67:3d:32:ac:ac:07:21: 32:a6:be:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHeYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYxQjcxMTAvBgNVBAUTKEU0NzEzQzFCOUQ3NTc1OTI5NUFGNjRDREZCQTYyQjcw REI5QTA1MzcwHhcNMjUwOTE4MTYxMjM4WhcNMjUwOTI1MTYxMjM4WjAYMRYwFAYD VQQDEw02OGNjMmY3Ni1lNTQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1u0Rkr396Hi2AUK6aTw+hdamh9IW4QTP012gqh7lCICef0oNcet3dhYp7gty DUyZE2B7TRVI1dKw/cxrzeW2fEnmgVAEFgcs2e9LpB4+44xY0wSy3dlbVwPpak8T AQVVeXqUQ0BFNWNznTdrKzAcnsU8faqwmxqzJFIiogr8gRwMqrQ2w4jx4TQLvYh3 W01VrUFxzTwyAL3uZtNqZbm/0AKEB4B3qiSUGudwMt8Een+MsihGwnbLUsE3UZMC eVz9Of+M8nybjZUkLmHS0/Pg0Iwj8W1f62Uci8W5ZCpUMq9q81e22m/bf9wa0806 uIXh1t9Lp6A1dfYx/sv+/Ta3IwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLxMPCY8 Ol8J6hy4SZR5AHQ1/yd3MB8GA1UdIwQYMBaAFORxPBuddXWSla9kzfumK3DbmgU3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjFCNy81RkExRUQzMDlF RjAxMUU2ODExMDI3MzNDNEY5QUUwMi81SEU4RzUxMWRaS1ZyMlROLTZZcmNOdWFC VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVIRThHNTExZFpLVnIyVE4tNllyY051YUJUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjFCNy81RkExRUQzMDlFRjAxMUU2ODExMDI3MzNDNEY5QUUwMi81SEU4RzUxMWRa S1ZyMlROLTZZcmNOdWFCVGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAB3lHttpjd/bPvLDQNxvEnjsTOVhC7rfOnFDqx30HXjkNR0G5Sz6k6 bVqvAbiB5+Gqtd7hITV+MM2H/JtbwbYeD2qgU+rSSVDFm/teS0wIFTXcsWtlXT5N LWtFJnfDSZhMGD/Ucr565aSb8pD0OPfhoDVDR6hUueirzdBXjK0Xe+/KnjsdYY+I prxKWSBUWsq+WGEl3sD8ZapAArAdWM4TDfBFNMGOFDvJCzuP3IyKfBrz5/RgYqcc wh1Dju2euNe2e02gZCULb+ptFi13Z7Y7YEkrpPXMkbOPiWxR4x7vxuqBp8WB4Fbl AF/zC8mV63mHtj1+hmc9MqysByEypr77 -----END CERTIFICATE-----Generated at Fri Sep 19 06:50:46 2025 by rpki-client