$ rpki-client -vvf rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.mft File: 5IPa-2wrg71IK24pCn5AU1W1Ltk.mft (raw, json) Hash identifier: OfmG/c6fEyoE9p+ibboC6bf5YCcu6HPRypliJ8vvXEY= Subject key identifier: D0:7B:D6:67:5F:7B:95:BD:11:C7:5D:0B:D0:39:71:0D:1C:B3:8D:7A Authority key identifier: E4:83:DA:FB:6C:2B:83:BD:48:2B:6E:29:0A:7E:40:53:55:B5:2E:D9 Certificate issuer: /CN=A919136B/serialNumber=E483DAFB6C2B83BD482B6E290A7E405355B52ED9 Certificate serial: 108D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5IPa-2wrg71IK24pCn5AU1W1Ltk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.mft Manifest number: 1081 Signing time: Sat 06 Sep 2025 17:28:58 +0000 Manifest this update: Sat 06 Sep 2025 17:28:58 +0000 Manifest next update: Sat 13 Sep 2025 17:28:58 +0000 Files and hashes: 1: 5IPa-2wrg71IK24pCn5AU1W1Ltk.crl (hash: iF6zByAvSM+vBNYg6SsmnmuArknD9DtFydul2oYrtN4=) 2: 99B6039C215311EA86E1E020C4F9AE02.roa (hash: GBYQ/lKi3z5roPUPwktfDVMLitw965pomXZAG5jfako=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.crl rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5IPa-2wrg71IK24pCn5AU1W1Ltk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 17:28:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4237 (0x108d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919136B, serialNumber=E483DAFB6C2B83BD482B6E290A7E405355B52ED9 Validity Not Before: Sep 6 17:28:58 2025 GMT Not After : Sep 13 17:28:58 2025 GMT Subject: CN=68bc6f5a-b498 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:8b:90:8a:42:d3:2a:83:9a:38:3e:50:2e:22: 0b:cb:f0:b3:58:01:0f:44:ed:8f:e2:40:b7:6a:c0: a8:c6:6b:c4:ce:90:e5:b4:bc:22:ee:f6:41:9b:50: 19:c2:12:92:83:d5:44:2d:96:68:31:16:48:cd:88: f2:1f:87:65:b3:19:4d:81:68:b4:36:02:a0:62:83: c0:e3:32:de:51:60:8a:ce:f8:e0:54:85:8b:0c:2f: 33:f4:93:41:d2:2e:82:0f:29:c0:07:32:20:91:3a: 8c:47:5f:19:16:42:52:67:ec:65:00:a8:5d:e0:45: 10:f2:8c:97:6f:25:8e:84:c0:87:72:86:57:93:bd: 93:41:9c:da:83:61:dd:66:fb:e9:c6:5e:c2:5d:f2: 07:1b:7e:54:c3:b9:a4:ff:2a:4b:d2:b5:d5:04:d8: f9:f3:57:9f:01:40:f4:64:49:d6:a5:ad:27:10:19: ef:c9:85:6c:58:8b:39:e4:97:c5:c7:c4:54:b1:0e: 0c:72:0b:c0:88:d8:89:ed:04:74:2a:ed:e8:20:6d: 73:87:29:2b:68:42:a5:0f:7b:d0:53:f8:24:92:ca: 87:8b:78:54:f8:37:96:36:4e:92:29:96:ed:f2:0e: 03:46:af:f9:89:5a:81:74:ea:48:01:3e:9a:f2:a8: 7a:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:7B:D6:67:5F:7B:95:BD:11:C7:5D:0B:D0:39:71:0D:1C:B3:8D:7A X509v3 Authority Key Identifier: keyid:E4:83:DA:FB:6C:2B:83:BD:48:2B:6E:29:0A:7E:40:53:55:B5:2E:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5IPa-2wrg71IK24pCn5AU1W1Ltk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:e0:3a:8c:ff:68:35:a4:2a:18:04:c4:39:89:f5:ac:b3:82: 95:a0:92:0e:6b:bb:90:6d:0e:5f:9e:cb:45:0c:02:a1:ae:af: 89:b5:64:f3:42:b9:92:12:6e:a5:30:ea:a8:91:9d:92:8a:9a: 99:1a:f7:09:1e:8e:c9:14:14:2b:9e:11:ec:7b:56:2a:b0:3e: cf:8f:64:5a:f0:cd:fd:51:3e:8f:4a:9e:8c:f1:45:0a:e9:90: 2f:45:71:24:90:83:fc:cc:73:9c:c9:32:8a:87:9e:e2:de:43: 31:4e:42:69:18:bf:9d:8d:62:35:5b:d7:7d:1a:03:5c:b0:4f: 45:52:d2:c8:b4:b5:9d:3e:e2:5a:55:1d:12:a5:eb:f8:c0:32: 33:b0:75:91:74:ad:1a:79:12:29:5d:73:f4:78:62:02:16:a9: f5:59:cd:23:ab:54:34:c0:3f:73:f0:84:01:79:81:e5:9e:b2: 91:16:b2:29:8a:3f:a0:97:f6:6d:da:29:7d:66:69:22:e2:48: b9:1b:3e:57:53:88:9b:ba:33:93:00:da:db:3d:2d:e4:e2:7c: c1:e9:61:24:55:ed:34:6e:bb:6b:d6:f0:fa:47:9b:c4:40:fb: f7:e7:fe:e6:8b:11:ca:a8:41:f8:89:ef:ed:2d:5b:bf:76:10: 3f:84:2f:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTEzNkIxMTAvBgNVBAUTKEU0ODNEQUZCNkMyQjgzQkQ0ODJCNkUyOTBBN0U0MDUz NTVCNTJFRDkwHhcNMjUwOTA2MTcyODU4WhcNMjUwOTEzMTcyODU4WjAYMRYwFAYD VQQDEw02OGJjNmY1YS1iNDk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnIuQikLTKoOaOD5QLiILy/CzWAEPRO2P4kC3asCoxmvEzpDltLwi7vZBm1AZ whKSg9VELZZoMRZIzYjyH4dlsxlNgWi0NgKgYoPA4zLeUWCKzvjgVIWLDC8z9JNB 0i6CDynABzIgkTqMR18ZFkJSZ+xlAKhd4EUQ8oyXbyWOhMCHcoZXk72TQZzag2Hd Zvvpxl7CXfIHG35Uw7mk/ypL0rXVBNj581efAUD0ZEnWpa0nEBnvyYVsWIs55JfF x8RUsQ4McgvAiNiJ7QR0Ku3oIG1zhykraEKlD3vQU/gkksqHi3hU+DeWNk6SKZbt 8g4DRq/5iVqBdOpIAT6a8qh65QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNB71mdf e5W9EcddC9A5cQ0cs416MB8GA1UdIwQYMBaAFOSD2vtsK4O9SCtuKQp+QFNVtS7Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTM2Qi9GN0M4N0U4NDNB N0IxMUU5QUNCQzZBMThDNEY5QUUwMi81SVBhLTJ3cmc3MUlLMjRwQ241QVUxVzFM dGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVJUGEtMndyZzcxSUsyNHBDbjVBVTFXMUx0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MTM2Qi9GN0M4N0U4NDNBN0IxMUU5QUNCQzZBMThDNEY5QUUwMi81SVBhLTJ3cmc3 MUlLMjRwQ241QVUxVzFMdGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBI4DqM/2g1pCoYBMQ5ifWss4KVoJIOa7uQbQ5fnstFDAKhrq+JtWTz QrmSEm6lMOqokZ2SipqZGvcJHo7JFBQrnhHse1YqsD7Pj2Ra8M39UT6PSp6M8UUK 6ZAvRXEkkIP8zHOcyTKKh57i3kMxTkJpGL+djWI1W9d9GgNcsE9FUtLItLWdPuJa VR0Spev4wDIzsHWRdK0aeRIpXXP0eGICFqn1Wc0jq1Q0wD9z8IQBeYHlnrKRFrIp ij+gl/Zt2il9Zmki4ki5Gz5XU4ibujOTANrbPS3k4nzB6WEkVe00brtr1vD6R5vE QPv35/7mixHKqEH4ie/tLVu/dhA/hC8v -----END CERTIFICATE-----Generated at Mon Sep 8 17:55:04 2025 by rpki-client