$ rpki-client -vvf rpki.apnic.net/member_repository/A917A362/7CBA4C4C726E11EE9FE35061C4F9AE02/5sRskdEtWFoSsFVpYh3uGtP4kI4.mft File: 5sRskdEtWFoSsFVpYh3uGtP4kI4.mft (raw, json) Hash identifier: d7/piJBaqIVu84tL7wJb2jlGpis6mlQrs5sA95h3v1w= Subject key identifier: B3:15:26:3D:F2:02:42:AE:8E:5C:44:47:25:1F:32:06:B5:48:55:96 Authority key identifier: E6:C4:6C:91:D1:2D:58:5A:12:B0:55:69:62:1D:EE:1A:D3:F8:90:8E Certificate issuer: /CN=A917A362/serialNumber=E6C46C91D12D585A12B05569621DEE1AD3F8908E Certificate serial: 0164 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5sRskdEtWFoSsFVpYh3uGtP4kI4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A362/7CBA4C4C726E11EE9FE35061C4F9AE02/5sRskdEtWFoSsFVpYh3uGtP4kI4.mft Manifest number: 0161 Signing time: Tue 09 Sep 2025 04:04:50 +0000 Manifest this update: Tue 09 Sep 2025 04:04:50 +0000 Manifest next update: Tue 16 Sep 2025 04:04:50 +0000 Files and hashes: 1: 5sRskdEtWFoSsFVpYh3uGtP4kI4.crl (hash: p6qjFKT3fsq0ACTmbgUERMJ3x+2rL60tWbTE70DkSaE=) 2: 1B299892726F11EEB1217365C4F9AE02.roa (hash: 6cDYRuNREDOcfjp20jGUwg25me6jxHxjZr5vSBlmhG8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A362/7CBA4C4C726E11EE9FE35061C4F9AE02/5sRskdEtWFoSsFVpYh3uGtP4kI4.crl rsync://rpki.apnic.net/member_repository/A917A362/7CBA4C4C726E11EE9FE35061C4F9AE02/5sRskdEtWFoSsFVpYh3uGtP4kI4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5sRskdEtWFoSsFVpYh3uGtP4kI4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 04:04:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 356 (0x164) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A362, serialNumber=E6C46C91D12D585A12B05569621DEE1AD3F8908E Validity Not Before: Sep 9 04:04:50 2025 GMT Not After : Sep 16 04:04:50 2025 GMT Subject: CN=68bfa762-7bd1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:9a:7d:48:22:9a:6b:7d:96:8b:90:6a:85:b9: 19:b0:c3:48:73:ec:b6:1e:be:d8:3f:f8:3e:f2:08: a0:c4:47:2d:d9:88:77:77:79:99:42:a1:d3:ac:68: c4:0e:0e:e0:bf:de:f3:51:8d:fb:1a:a4:3c:7e:ea: de:a5:e2:f0:a6:19:9c:c3:bf:46:7f:25:7e:7d:1f: 0d:dc:6d:ac:d5:07:0e:fc:14:95:48:15:4d:0c:d2: 31:a6:d2:95:0c:60:4e:67:1a:09:60:4a:2f:c8:b4: 0e:85:c3:ae:8d:a3:ac:e6:5b:b0:4f:68:3b:58:9c: 5d:5d:bb:f7:20:bb:15:4a:b4:51:0d:e0:df:a0:56: d1:c9:8c:1c:2e:88:57:43:b3:63:cf:4f:58:58:79: da:ba:a3:f8:a4:c2:82:59:2f:24:26:19:db:d0:3c: cd:35:9c:6f:2a:df:c5:95:e5:05:77:b8:6c:79:da: 08:ba:6e:62:16:7c:f2:75:fd:4a:fb:b2:02:ab:cd: c8:a8:22:b8:26:dd:73:9a:bf:39:a6:6c:78:0d:ad: ea:f0:6a:91:5d:6f:e9:a6:54:6b:cb:6e:52:86:01: 97:cb:88:ed:43:3b:8a:be:80:a6:9f:66:d8:df:8f: c8:f5:28:97:79:eb:e1:bf:14:fe:47:ce:5f:f6:51: 68:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:15:26:3D:F2:02:42:AE:8E:5C:44:47:25:1F:32:06:B5:48:55:96 X509v3 Authority Key Identifier: keyid:E6:C4:6C:91:D1:2D:58:5A:12:B0:55:69:62:1D:EE:1A:D3:F8:90:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A362/7CBA4C4C726E11EE9FE35061C4F9AE02/5sRskdEtWFoSsFVpYh3uGtP4kI4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5sRskdEtWFoSsFVpYh3uGtP4kI4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A362/7CBA4C4C726E11EE9FE35061C4F9AE02/5sRskdEtWFoSsFVpYh3uGtP4kI4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:31:1b:43:6b:b3:96:2b:cc:c8:43:9c:e3:4e:50:ee:3e:eb: 02:f5:12:81:3a:ee:9a:64:6a:ef:3c:53:28:ae:43:dd:ad:d4: 5b:cc:5c:03:aa:2a:01:d5:6c:48:64:dd:82:44:aa:d6:9a:57: 95:e8:13:d9:08:b6:67:0b:77:27:a9:04:7b:42:f2:24:6e:52: 73:e5:8a:c0:d3:b4:d4:6f:20:1f:1d:83:96:52:ab:1f:39:eb: 17:ad:ef:d1:e8:45:6e:c2:e5:2f:2d:ef:d9:82:ad:12:ef:d0: 68:80:6b:46:ca:05:b5:44:ad:53:6b:23:ce:e2:c7:ef:9b:bd: 55:e0:54:c0:25:9e:58:70:59:2f:ac:58:05:94:b3:ff:d2:68: c4:5a:54:b6:ff:cb:b8:df:4e:fd:ed:4d:b3:9d:a6:13:83:b6: db:bf:42:c8:91:58:5e:be:2f:e3:fa:31:b0:ff:3c:0a:c1:44: 4f:a4:6d:3f:f6:42:ee:f9:e6:1c:ba:f4:85:96:70:88:25:b3: 6b:7f:82:8e:a0:7a:63:b0:e0:9c:fc:99:aa:7a:93:54:a5:5e: b9:e4:d0:f1:a8:54:8e:fd:6c:a1:bb:6f:e7:cc:e5:08:81:20: 0a:82:83:42:85:b3:b1:78:00:ca:2e:c3:37:72:69:31:b9:4c: 4b:38:4f:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0EzNjIxMTAvBgNVBAUTKEU2QzQ2QzkxRDEyRDU4NUExMkIwNTU2OTYyMURFRTFB RDNGODkwOEUwHhcNMjUwOTA5MDQwNDUwWhcNMjUwOTE2MDQwNDUwWjAYMRYwFAYD VQQDEw02OGJmYTc2Mi03YmQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6Jp9SCKaa32Wi5BqhbkZsMNIc+y2Hr7YP/g+8gigxEct2Yh3d3mZQqHTrGjE Dg7gv97zUY37GqQ8furepeLwphmcw79GfyV+fR8N3G2s1QcO/BSVSBVNDNIxptKV DGBOZxoJYEovyLQOhcOujaOs5luwT2g7WJxdXbv3ILsVSrRRDeDfoFbRyYwcLohX Q7Njz09YWHnauqP4pMKCWS8kJhnb0DzNNZxvKt/FleUFd7hsedoIum5iFnzydf1K +7ICq83IqCK4Jt1zmr85pmx4Da3q8GqRXW/pplRry25ShgGXy4jtQzuKvoCmn2bY 34/I9SiXeevhvxT+R85f9lFolQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLMVJj3y AkKujlxERyUfMga1SFWWMB8GA1UdIwQYMBaAFObEbJHRLVhaErBVaWId7hrT+JCO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTM2Mi83Q0JBNEM0Qzcy NkUxMUVFOUZFMzUwNjFDNEY5QUUwMi81c1Jza2RFdFdGb1NzRlZwWWgzdUd0UDRr STQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVzUnNrZEV0V0ZvU3NGVnBZaDN1R3RQNGtJNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTM2Mi83Q0JBNEM0QzcyNkUxMUVFOUZFMzUwNjFDNEY5QUUwMi81c1Jza2RFdFdG b1NzRlZwWWgzdUd0UDRrSTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGMRtDa7OWK8zIQ5zjTlDuPusC9RKBOu6aZGrvPFMorkPdrdRbzFwD qioB1WxIZN2CRKrWmleV6BPZCLZnC3cnqQR7QvIkblJz5YrA07TUbyAfHYOWUqsf OesXre/R6EVuwuUvLe/Zgq0S79BogGtGygW1RK1TayPO4sfvm71V4FTAJZ5YcFkv rFgFlLP/0mjEWlS2/8u430797U2znaYTg7bbv0LIkVhevi/j+jGw/zwKwURPpG0/ 9kLu+eYcuvSFlnCIJbNrf4KOoHpjsOCc/JmqepNUpV655NDxqFSO/Wyhu2/nzOUI gSAKgoNChbOxeADKLsM3cmkxuUxLOE9v -----END CERTIFICATE-----Generated at Wed Sep 10 19:30:02 2025 by rpki-client