$ rpki-client -vvf rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft File: 5S3osZGTOKPiVWZOiASKVpihINA.mft (raw, json) Hash identifier: aYK1RLqFwWxuUyO4LMLi3XSh5/f5Xgbue40prVcwf9E= Subject key identifier: 7E:BF:BB:01:0A:17:F5:77:86:9E:B7:CA:F9:32:A8:7A:47:8F:92:CC Authority key identifier: E5:2D:E8:B1:91:93:38:A3:E2:55:66:4E:88:04:8A:56:98:A1:20:D0 Certificate issuer: /CN=A9160701/serialNumber=E52DE8B1919338A3E255664E88048A5698A120D0 Certificate serial: 0BA0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S3osZGTOKPiVWZOiASKVpihINA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft Manifest number: 0B96 Signing time: Sun 24 Aug 2025 18:58:39 +0000 Manifest this update: Sun 24 Aug 2025 18:58:38 +0000 Manifest next update: Sun 31 Aug 2025 18:58:38 +0000 Files and hashes: 1: 5S3osZGTOKPiVWZOiASKVpihINA.crl (hash: j9Zu2TK9hoieWT6Q1E+XzgnAT0yb27itoDPuHuzIPuU=) 2: 6DCC06C231BC11EA9AACCA4BC4F9AE02.roa (hash: 3rmLILbAM/KMJx9b9ZtmiW/UU8JiAcyOhmtpDcFmRPg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.crl rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S3osZGTOKPiVWZOiASKVpihINA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 18:58:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2976 (0xba0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160701, serialNumber=E52DE8B1919338A3E255664E88048A5698A120D0 Validity Not Before: Aug 24 18:58:38 2025 GMT Not After : Aug 31 18:58:38 2025 GMT Subject: CN=68ab60de-f949 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:d7:68:13:39:17:7f:67:69:6a:7a:47:d9:04: 50:d3:bf:40:c2:f5:b5:78:3c:dc:80:90:d0:37:94: 1e:94:0d:36:77:9a:c7:6e:c8:e5:a3:56:11:b5:79: 06:c6:bd:db:83:c5:33:66:52:2f:e4:95:68:4d:cd: 9a:5f:57:bb:a8:84:9e:6d:86:c8:de:22:25:2d:d2: f6:f5:d7:a1:84:94:0d:20:7c:5c:ad:bd:ff:71:4e: 0b:69:f2:59:1f:4b:b3:ed:4d:48:5a:6f:f5:8c:04: ce:89:58:a3:0c:6b:5a:39:06:a8:2a:4c:1c:bf:ed: f9:93:fb:4b:8c:74:64:74:86:18:f9:e9:21:c2:72: c8:c0:e3:45:0c:f5:a4:86:bd:8f:a4:b8:49:91:81: ef:2f:7e:08:d9:85:77:e9:d0:95:1e:69:04:0d:99: dd:75:9d:00:41:1d:5b:88:5a:65:f7:bd:bc:19:f5: f4:af:02:75:cc:ed:d2:f6:6c:53:63:98:f3:06:ec: 43:c2:e7:54:d0:26:4e:3c:95:33:6b:57:2b:2d:f5: 29:3c:df:ca:b5:51:e6:ef:70:e1:b1:64:0b:70:c3: 93:b5:4b:10:9b:f6:bc:dc:27:8a:62:52:b7:35:a4: 44:07:4e:24:6e:43:76:04:da:4e:01:c0:ff:28:f3: 2b:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:BF:BB:01:0A:17:F5:77:86:9E:B7:CA:F9:32:A8:7A:47:8F:92:CC X509v3 Authority Key Identifier: keyid:E5:2D:E8:B1:91:93:38:A3:E2:55:66:4E:88:04:8A:56:98:A1:20:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S3osZGTOKPiVWZOiASKVpihINA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:16:c1:5b:6f:0a:f7:aa:74:28:28:b4:bd:fb:75:8d:ef:58: 82:6d:eb:d7:2c:fb:12:f5:f1:16:14:7c:84:ed:e8:59:d3:2a: 50:2c:fb:d4:ed:0c:2f:33:32:30:48:56:e8:50:f6:fb:df:a1: a8:96:76:ec:3b:2d:fb:b4:99:ab:80:8b:bb:64:b8:74:d3:ed: b7:a0:e1:91:5d:ec:dc:8f:a8:5f:54:9e:a1:3a:6e:12:c0:40: bb:e7:15:71:fe:dd:ff:cb:64:cd:98:d4:21:fa:46:ce:a2:11: c5:d1:b7:dc:e8:de:4f:69:b4:d9:c2:92:a3:63:44:60:38:97: 1a:0a:47:0a:5a:a5:45:01:24:da:03:88:b2:a6:6f:e0:d5:90: a7:8a:9b:cb:e8:32:ed:91:a8:a8:0f:94:0e:eb:8d:da:a4:e2: fb:b1:21:78:4f:fd:cf:bd:5c:82:53:45:a5:93:f5:fa:27:d6: a9:89:57:5c:c5:a7:76:2f:4c:9b:42:da:5f:6c:cb:56:87:a3: 1b:91:dd:d0:99:c7:18:7c:e9:b8:3d:12:17:c3:78:fd:5a:cf: b5:43:ae:cb:11:90:b7:55:1d:3c:10:f0:01:57:fc:28:38:57: 8f:7a:06:41:e0:a5:cf:c4:5d:fe:1b:c0:1a:03:e8:12:5d:08: 59:99:ab:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC6AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA3MDExMTAvBgNVBAUTKEU1MkRFOEIxOTE5MzM4QTNFMjU1NjY0RTg4MDQ4QTU2 OThBMTIwRDAwHhcNMjUwODI0MTg1ODM4WhcNMjUwODMxMTg1ODM4WjAYMRYwFAYD VQQDEw02OGFiNjBkZS1mOTQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxNdoEzkXf2dpanpH2QRQ079AwvW1eDzcgJDQN5QelA02d5rHbsjlo1YRtXkG xr3bg8UzZlIv5JVoTc2aX1e7qISebYbI3iIlLdL29dehhJQNIHxcrb3/cU4LafJZ H0uz7U1IWm/1jATOiVijDGtaOQaoKkwcv+35k/tLjHRkdIYY+ekhwnLIwONFDPWk hr2PpLhJkYHvL34I2YV36dCVHmkEDZnddZ0AQR1biFpl9728GfX0rwJ1zO3S9mxT Y5jzBuxDwudU0CZOPJUza1crLfUpPN/KtVHm73DhsWQLcMOTtUsQm/a83CeKYlK3 NaREB04kbkN2BNpOAcD/KPMruQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH6/uwEK F/V3hp63yvkyqHpHj5LMMB8GA1UdIwQYMBaAFOUt6LGRkzij4lVmTogEilaYoSDQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDcwMS81NDAwQzQxODMw MzAxMUVBQTcyRjM2N0FDNEY5QUUwMi81UzNvc1pHVE9LUGlWV1pPaUFTS1ZwaWhJ TkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVTM29zWkdUT0tQaVZXWk9pQVNLVnBpaElOQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDcwMS81NDAwQzQxODMwMzAxMUVBQTcyRjM2N0FDNEY5QUUwMi81UzNvc1pHVE9L UGlWV1pPaUFTS1ZwaWhJTkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQFsFbbwr3qnQoKLS9+3WN71iCbevXLPsS9fEWFHyE7ehZ0ypQLPvU 7QwvMzIwSFboUPb736GolnbsOy37tJmrgIu7ZLh00+23oOGRXezcj6hfVJ6hOm4S wEC75xVx/t3/y2TNmNQh+kbOohHF0bfc6N5PabTZwpKjY0RgOJcaCkcKWqVFASTa A4iypm/g1ZCnipvL6DLtkaioD5QO643apOL7sSF4T/3PvVyCU0Wlk/X6J9apiVdc xad2L0ybQtpfbMtWh6Mbkd3QmccYfOm4PRIXw3j9Ws+1Q67LEZC3VR08EPABV/wo OFePegZB4KXPxF3+G8AaA+gSXQhZmas4 -----END CERTIFICATE-----Generated at Sun Aug 24 21:31:14 2025 by rpki-client