$ rpki-client -vvf rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft File: 5esYDNbcUWxm01KwR7npxaUCcOM.mft (raw, json) Hash identifier: c+XmxWEadzPzqX1YLCq6eyjWNHQuEKNKbQEJY/w+Y7U= Subject key identifier: 3C:DC:04:A7:64:20:04:54:8F:F5:8B:BC:32:39:3F:E6:8D:1E:BD:06 Authority key identifier: E5:EB:18:0C:D6:DC:51:6C:66:D3:52:B0:47:B9:E9:C5:A5:02:70:E3 Certificate issuer: /CN=A91ABFD9/serialNumber=E5EB180CD6DC516C66D352B047B9E9C5A50270E3 Certificate serial: 08FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft Manifest number: 08D9 Signing time: Sat 06 Sep 2025 20:36:52 +0000 Manifest this update: Sat 06 Sep 2025 20:36:51 +0000 Manifest next update: Sat 13 Sep 2025 20:36:51 +0000 Files and hashes: 1: 5esYDNbcUWxm01KwR7npxaUCcOM.crl (hash: 40Hy4AEVTH5mii7TtFNSv4Kvw/lcAcItmcJnXw7bf/M=) 2: E2E21364C4F811EAB8D31113C4F9AE02.roa (hash: DP8lG9el46NF03CMOLzrMzttp6pe74xkZuZziqnxmJ4=) 3: F1A54AC47A5611EB876D281FC4F9AE02.roa (hash: mYMneOcMzVSjWOSfz2l4H7HMRndq3Nml1V+jd7+ZSu8=) 4: 36945EC2232711EBA0F14F17C4F9AE02.roa (hash: EeEFahw1S1xzRQMqYweCJnCU9S+/LW0T/PuPJ3E+UWM=) 5: 6AE50E1C21E011EBBF36CD21C4F9AE02.roa (hash: LdDw24/Or3M92peybKBWsStvdJIFCX02q7LqBzB3QW8=) 6: E22ECDEAC4F811EAB8D31113C4F9AE02.roa (hash: 1QX8DyT1A4CiikAaWBicwaY94hYcJgWNUoKN7UlLwiU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.crl rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 20:36:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2298 (0x8fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ABFD9, serialNumber=E5EB180CD6DC516C66D352B047B9E9C5A50270E3 Validity Not Before: Sep 6 20:36:51 2025 GMT Not After : Sep 13 20:36:51 2025 GMT Subject: CN=68bc9b64-f7c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:16:5b:0f:86:b3:3a:06:94:95:bf:f3:4d:13: a5:d3:f5:30:ff:f4:29:6c:a2:ef:98:92:9b:96:96: 3d:f8:c3:90:87:34:11:1b:32:a2:e5:62:da:e9:c5: 3c:d9:81:8e:e2:21:78:82:a9:c9:3b:14:12:2b:90: d6:c8:cf:2d:05:89:eb:21:4f:4d:d6:95:28:2d:a7: 75:27:eb:29:49:f3:d1:14:7e:b3:d1:cc:d4:b2:9e: 09:dc:a5:e3:34:79:d6:e5:91:0d:dc:24:f7:08:b5: e4:61:13:60:70:9b:e3:17:bb:1a:8b:98:5c:8b:8a: b5:1e:bd:b7:d0:30:e0:9b:44:21:fc:ce:95:df:07: ab:43:6e:1f:ce:57:f9:b5:e8:d3:e8:a1:5c:37:9a: 6c:a8:d1:3b:20:b5:db:d3:df:d8:60:05:c7:a7:f5: 1a:72:e1:dc:1b:c0:a5:19:48:73:f1:b3:a8:2e:15: 8c:44:c8:6f:9e:48:7a:db:c5:9d:5a:6a:52:ae:49: 29:cb:fb:fd:b0:a8:4f:da:2d:c7:af:db:48:f2:20: 93:7e:eb:c0:30:ed:b4:10:67:e0:84:14:d7:c2:95: 7b:a2:17:8f:33:b9:ea:37:93:a6:45:0c:65:f0:d0: 77:44:41:be:69:c5:25:61:db:69:e6:cf:40:36:6b: 82:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:DC:04:A7:64:20:04:54:8F:F5:8B:BC:32:39:3F:E6:8D:1E:BD:06 X509v3 Authority Key Identifier: keyid:E5:EB:18:0C:D6:DC:51:6C:66:D3:52:B0:47:B9:E9:C5:A5:02:70:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:b2:7c:e2:49:06:da:3a:db:1c:c4:63:27:d2:6b:05:3c:b5: cc:58:70:ff:75:a4:91:ea:e2:d5:f2:1c:ae:55:19:a9:3c:1f: 4e:ab:6e:c4:e1:40:e7:bc:79:07:f3:0f:a8:0d:b7:f6:5f:f4: ca:66:0b:9b:de:bd:f4:39:4f:fd:f5:02:f8:38:bb:85:e0:89: 2e:4f:04:0a:7c:ee:58:70:cf:54:6d:d5:37:0a:ed:bb:e3:97: 23:63:44:4c:e0:9a:17:0e:5d:36:5c:51:17:4b:37:c2:1f:1a: 39:1b:8a:8b:ec:bb:05:35:24:9f:12:a4:64:bf:ff:1c:7d:1c: 30:f1:e5:84:c4:e5:37:3d:47:4a:f9:3e:e8:37:04:4c:45:7a: 52:3d:3f:8c:c0:76:5f:05:49:8b:0e:55:ad:e2:f4:c5:a4:75: af:9e:ab:4e:22:de:c1:b8:fc:8a:83:fa:78:64:e3:49:3d:0c: 0d:12:e5:7c:c8:fa:30:75:4b:41:a5:4d:70:51:5e:e7:91:f2: 32:87:1e:23:d8:0d:74:6b:40:df:da:95:be:c9:53:58:01:0e: 27:8a:ec:eb:f1:62:b9:43:9a:64:74:f0:15:39:73:49:12:05: fe:de:cf:69:2a:f6:90:34:19:51:d6:6c:64:1a:eb:5f:6a:b9: a6:50:5c:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCPowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUJGRDkxMTAvBgNVBAUTKEU1RUIxODBDRDZEQzUxNkM2NkQzNTJCMDQ3QjlFOUM1 QTUwMjcwRTMwHhcNMjUwOTA2MjAzNjUxWhcNMjUwOTEzMjAzNjUxWjAYMRYwFAYD VQQDEw02OGJjOWI2NC1mN2MzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnRZbD4azOgaUlb/zTROl0/Uw//QpbKLvmJKblpY9+MOQhzQRGzKi5WLa6cU8 2YGO4iF4gqnJOxQSK5DWyM8tBYnrIU9N1pUoLad1J+spSfPRFH6z0czUsp4J3KXj NHnW5ZEN3CT3CLXkYRNgcJvjF7sai5hci4q1Hr230DDgm0Qh/M6V3werQ24fzlf5 tejT6KFcN5psqNE7ILXb09/YYAXHp/UacuHcG8ClGUhz8bOoLhWMRMhvnkh628Wd WmpSrkkpy/v9sKhP2i3Hr9tI8iCTfuvAMO20EGfghBTXwpV7ohePM7nqN5OmRQxl 8NB3REG+acUlYdtp5s9ANmuCDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDzcBKdk IARUj/WLvDI5P+aNHr0GMB8GA1UdIwQYMBaAFOXrGAzW3FFsZtNSsEe56cWlAnDj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQkZEOS80QUU4MDQxRUI5 RDcxMUVBOUNGNTFFNUZDNEY5QUUwMi81ZXNZRE5iY1VXeG0wMUt3UjducHhhVUNj T00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVlc1lETmJjVVd4bTAxS3dSN25weGFVQ2NPTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QkZEOS80QUU4MDQxRUI5RDcxMUVBOUNGNTFFNUZDNEY5QUUwMi81ZXNZRE5iY1VX eG0wMUt3UjducHhhVUNjT00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGsnziSQbaOtscxGMn0msFPLXMWHD/daSR6uLV8hyuVRmpPB9Oq27E 4UDnvHkH8w+oDbf2X/TKZgub3r30OU/99QL4OLuF4IkuTwQKfO5YcM9UbdU3Cu27 45cjY0RM4JoXDl02XFEXSzfCHxo5G4qL7LsFNSSfEqRkv/8cfRww8eWExOU3PUdK +T7oNwRMRXpSPT+MwHZfBUmLDlWt4vTFpHWvnqtOIt7BuPyKg/p4ZONJPQwNEuV8 yPowdUtBpU1wUV7nkfIyhx4j2A10a0Df2pW+yVNYAQ4niuzr8WK5Q5pkdPAVOXNJ EgX+3s9pKvaQNBlR1mxkGutfarmmUFyB -----END CERTIFICATE-----Generated at Mon Sep 8 08:50:11 2025 by rpki-client