$ rpki-client -vvf rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.mft File: 5k3PxJR4oTweMa6HKi-sEL-4lTE.mft (raw, json) Hash identifier: TAFmqJPiY4/2QUarVQt6qKOm9m1EtHQOjaPopvNgR5c= Subject key identifier: 23:F8:EF:02:5E:44:17:38:95:A4:F0:09:68:C7:98:4C:F9:F1:3E:F2 Authority key identifier: E6:4D:CF:C4:94:78:A1:3C:1E:31:AE:87:2A:2F:AC:10:BF:B8:95:31 Certificate issuer: /CN=A915F67F/serialNumber=E64DCFC49478A13C1E31AE872A2FAC10BFB89531 Certificate serial: 34B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5k3PxJR4oTweMa6HKi-sEL-4lTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.mft Manifest number: 34B1 Signing time: Fri 22 Aug 2025 14:33:20 +0000 Manifest this update: Fri 22 Aug 2025 14:33:19 +0000 Manifest next update: Fri 29 Aug 2025 14:33:19 +0000 Files and hashes: 1: 5k3PxJR4oTweMa6HKi-sEL-4lTE.crl (hash: LfEvAkR4uqmnchXk8XM/uU52gJt8DZBuHfZuMvG7Lms=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.crl rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5k3PxJR4oTweMa6HKi-sEL-4lTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:33:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13489 (0x34b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915F67F, serialNumber=E64DCFC49478A13C1E31AE872A2FAC10BFB89531 Validity Not Before: Aug 22 14:33:19 2025 GMT Not After : Aug 29 14:33:19 2025 GMT Subject: CN=68a87fb0-aea2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:f6:75:f9:ea:35:64:3d:45:9d:75:7b:55:48: 39:fb:bc:28:34:ad:c1:ab:96:70:4a:a3:be:cf:3d: 0b:d4:d4:71:d7:3d:2e:91:1d:d9:fa:30:e6:e2:1b: c8:d0:84:60:1d:ab:b5:f6:66:f5:2b:b6:7c:76:42: b0:72:9f:c0:2a:93:9b:f1:f9:24:f0:01:ee:7b:6e: 4b:07:91:b4:79:3a:11:be:3d:da:d4:3e:3c:d0:f5: 00:be:84:4f:4f:ef:8b:7b:7e:82:e9:12:91:9c:55: 21:78:df:b7:1d:fb:1d:fa:79:fe:a3:8d:bb:f1:4c: db:78:8f:97:54:15:5d:f9:1d:26:67:50:33:37:7b: f9:44:be:61:61:4f:3f:26:ec:0f:33:24:49:48:ac: 25:43:bf:a2:6a:e1:6e:6d:42:d5:4e:50:17:f1:6c: 22:80:24:59:d6:6b:15:f6:e1:02:bc:11:d7:f5:3c: d0:3f:af:53:6c:2b:e0:25:0b:fa:96:e3:f9:08:01: 19:50:04:d9:39:f3:f9:71:dd:44:9c:c9:0f:81:71: 0c:b8:d3:d2:e9:71:2d:f2:b0:d7:35:53:f0:94:d2: cc:49:a8:2f:23:a7:d6:9c:6e:a2:99:81:f0:c4:27: 16:a4:cc:62:d8:71:25:67:d0:ea:9a:93:34:23:f0: 58:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:F8:EF:02:5E:44:17:38:95:A4:F0:09:68:C7:98:4C:F9:F1:3E:F2 X509v3 Authority Key Identifier: keyid:E6:4D:CF:C4:94:78:A1:3C:1E:31:AE:87:2A:2F:AC:10:BF:B8:95:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5k3PxJR4oTweMa6HKi-sEL-4lTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:c3:6d:24:9a:db:ef:1d:c7:b8:34:1e:4a:7b:4b:72:f4:65: f6:64:65:a5:3d:9a:47:bd:76:b6:17:d2:6e:4a:5a:af:5b:45: 2e:a4:2c:34:40:9b:75:23:65:a0:aa:ee:14:88:ca:48:d2:2a: 16:e7:e0:1a:a9:9c:d9:4c:d9:42:2a:4f:cb:e2:f9:01:e3:e7: a8:b3:60:ae:f4:59:d3:08:c2:33:38:d2:39:85:36:92:c1:48: 68:60:bc:53:99:5a:59:ef:a2:b6:74:f5:61:79:10:28:c9:d2: dc:26:d5:ba:06:1c:c3:dd:8e:9c:0c:34:00:7d:62:88:ba:b7: d3:f7:fb:7c:e6:b9:4f:c8:10:2a:b9:bd:e8:a2:d0:f8:fb:8d: aa:95:d5:47:0a:ee:8f:84:3e:cc:0c:0f:ad:52:5e:50:5f:7b: ce:6d:ed:67:e3:d8:fe:4a:d1:1c:26:5b:08:ee:fe:89:c3:9a: 96:b9:f7:ff:59:8b:d1:50:d2:31:37:13:be:f7:58:80:1a:aa: c9:38:0e:a2:76:d9:da:90:0a:a0:57:b2:03:50:80:1a:9a:d5: 73:f7:f3:a6:bb:db:37:36:a4:24:fc:06:e8:87:b9:d9:10:fd: f7:bc:9f:5f:e5:1c:4d:c7:c6:6c:1b:b0:97:2e:33:fd:0b:4a: 0a:fd:ef:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUY2N0YxMTAvBgNVBAUTKEU2NERDRkM0OTQ3OEExM0MxRTMxQUU4NzJBMkZBQzEw QkZCODk1MzEwHhcNMjUwODIyMTQzMzE5WhcNMjUwODI5MTQzMzE5WjAYMRYwFAYD VQQDEw02OGE4N2ZiMC1hZWEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApfZ1+eo1ZD1FnXV7VUg5+7woNK3Bq5ZwSqO+zz0L1NRx1z0ukR3Z+jDm4hvI 0IRgHau19mb1K7Z8dkKwcp/AKpOb8fkk8AHue25LB5G0eToRvj3a1D480PUAvoRP T++Le36C6RKRnFUheN+3Hfsd+nn+o4278UzbeI+XVBVd+R0mZ1AzN3v5RL5hYU8/ JuwPMyRJSKwlQ7+iauFubULVTlAX8WwigCRZ1msV9uECvBHX9TzQP69TbCvgJQv6 luP5CAEZUATZOfP5cd1EnMkPgXEMuNPS6XEt8rDXNVPwlNLMSagvI6fWnG6imYHw xCcWpMxi2HElZ9DqmpM0I/BYaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCP47wJe RBc4laTwCWjHmEz58T7yMB8GA1UdIwQYMBaAFOZNz8SUeKE8HjGuhyovrBC/uJUx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RjY3Ri85MUI5ODNDODFE OEExMUUyQjBFNDk0RTQwOEIwMkNEMi81azNQeEpSNG9Ud2VNYTZIS2ktc0VMLTRs VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVrM1B4SlI0b1R3ZU1hNkhLaS1zRUwtNGxURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RjY3Ri85MUI5ODNDODFEOEExMUUyQjBFNDk0RTQwOEIwMkNEMi81azNQeEpSNG9U d2VNYTZIS2ktc0VMLTRsVEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPw20kmtvvHce4NB5Ke0ty9GX2ZGWlPZpHvXa2F9JuSlqvW0UupCw0 QJt1I2Wgqu4UiMpI0ioW5+AaqZzZTNlCKk/L4vkB4+eos2Cu9FnTCMIzONI5hTaS wUhoYLxTmVpZ76K2dPVheRAoydLcJtW6BhzD3Y6cDDQAfWKIurfT9/t85rlPyBAq ub3ootD4+42qldVHCu6PhD7MDA+tUl5QX3vObe1n49j+StEcJlsI7v6Jw5qWuff/ WYvRUNIxNxO+91iAGqrJOA6idtnakAqgV7IDUIAamtVz9/Omu9s3NqQk/Aboh7nZ EP33vJ9f5RxNx8ZsG7CXLjP9C0oK/e+P -----END CERTIFICATE-----Generated at Fri Aug 22 16:15:44 2025 by rpki-client