$ rpki-client -vvf rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft File: 57DhU8QU0ThUitp16M0FzWk2cgY.mft (raw, json) Hash identifier: 2CS3Z1qdxgpTDJCP2sku+98s/QpzK7JXCxoWXjxV9ao= Subject key identifier: E6:2C:4A:55:CE:9B:29:00:D3:98:5C:DC:E3:10:89:E8:71:DC:E1:5C Authority key identifier: E7:B0:E1:53:C4:14:D1:38:54:8A:DA:75:E8:CD:05:CD:69:36:72:06 Certificate issuer: /CN=A91B42CA/serialNumber=E7B0E153C414D138548ADA75E8CD05CD69367206 Certificate serial: 34B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57DhU8QU0ThUitp16M0FzWk2cgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft Manifest number: 5305 Signing time: Sun 24 Aug 2025 15:03:49 +0000 Manifest this update: Sun 24 Aug 2025 15:03:49 +0000 Manifest next update: Sun 31 Aug 2025 15:03:49 +0000 Files and hashes: 1: 57DhU8QU0ThUitp16M0FzWk2cgY.crl (hash: zBKs58HmrGh72c+Cmdi8Z1IACg2/f0frIgD8wOkYfco=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.crl rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57DhU8QU0ThUitp16M0FzWk2cgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 15:03:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13490 (0x34b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B42CA, serialNumber=E7B0E153C414D138548ADA75E8CD05CD69367206 Validity Not Before: Aug 24 15:03:49 2025 GMT Not After : Aug 31 15:03:49 2025 GMT Subject: CN=68ab29d5-c5f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:f9:46:87:34:3a:d5:66:5c:52:15:0a:c6:c6: 3f:30:3c:14:eb:0b:5a:5e:1d:28:4e:d5:42:58:9e: 88:63:8b:9a:d4:ab:f4:9f:32:6b:3c:db:19:e5:1d: 10:bb:16:92:58:ce:a7:d6:de:89:12:c2:00:69:f1: f7:61:23:bd:8d:0b:8a:60:a6:c3:71:82:69:ba:ef: 9a:d6:1d:2b:f2:43:06:53:85:ca:7b:fd:d8:85:a6: 93:89:5d:27:c4:17:10:93:74:a8:1b:d4:eb:af:e5: cb:7c:80:4c:63:84:5f:94:bf:67:23:31:b5:8e:dc: ab:68:07:d4:a6:04:4f:c0:5c:8e:1a:a5:fa:45:0a: ce:46:e9:39:7c:77:ec:3f:2c:97:4d:4d:d9:bb:a9: fc:8e:64:e1:b8:ec:5d:7c:75:13:59:62:e9:6a:4f: 87:c4:ff:df:e1:72:9b:92:d0:63:53:6f:f0:15:dc: 8b:10:6a:0f:bd:9a:9a:f5:6b:f5:45:50:42:17:e6: 01:fb:8c:b6:5f:da:5d:21:bd:63:35:e5:d0:20:8a: 3d:9e:eb:9d:db:01:8e:b5:81:1b:74:15:fc:38:e4: 02:c7:5f:01:8b:95:4d:ee:93:5a:98:91:53:7e:56: 54:04:dc:d4:c4:f8:ed:e9:89:0b:21:5e:76:7b:f7: ce:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:2C:4A:55:CE:9B:29:00:D3:98:5C:DC:E3:10:89:E8:71:DC:E1:5C X509v3 Authority Key Identifier: keyid:E7:B0:E1:53:C4:14:D1:38:54:8A:DA:75:E8:CD:05:CD:69:36:72:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57DhU8QU0ThUitp16M0FzWk2cgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:a7:a5:3d:3e:47:76:68:f4:ad:de:e1:8f:35:f1:4a:2e:84: e0:df:93:43:c9:37:8c:30:aa:e0:94:99:3c:d8:bf:68:29:cb: 0f:c4:89:3a:b6:e0:c8:8a:45:2f:50:d4:19:15:47:7c:a8:c9: 19:ad:e3:e7:c0:4a:10:3c:2b:e6:f1:08:c4:1e:2e:d5:0a:64: 90:bf:49:c7:20:3e:3c:e1:3f:ad:21:df:6c:ef:b5:bb:86:f6: 0c:c2:16:d5:e5:a1:fa:89:a1:5e:eb:ba:87:04:73:6c:89:e3: d4:f5:72:1f:97:08:e1:39:34:6d:ef:7b:a3:f4:b5:ce:44:2c: 40:9b:a1:d6:a6:f5:b2:f9:83:e4:5d:d4:96:41:4f:fd:7e:62: c8:b6:1c:ce:86:1a:8d:0a:8a:30:12:02:b7:d6:c4:4c:f7:4d: 8a:66:29:00:33:18:3e:f7:b3:78:74:8a:d5:41:81:a5:75:93: 6e:2e:8e:cf:29:25:c3:c9:fa:37:ce:aa:e0:eb:46:41:b1:d6: 32:cc:cf:c5:20:0f:c9:b6:ce:c4:a2:cb:b1:ad:34:50:61:9d: e2:bc:a6:5a:8a:a5:53:f1:44:af:08:c1:a4:5a:a9:d4:95:e8: 73:e5:f0:8e:83:ad:f8:d3:32:cc:67:ed:59:62:b9:77:33:b0: d8:bb:38:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQyQ0ExMTAvBgNVBAUTKEU3QjBFMTUzQzQxNEQxMzg1NDhBREE3NUU4Q0QwNUNE NjkzNjcyMDYwHhcNMjUwODI0MTUwMzQ5WhcNMjUwODMxMTUwMzQ5WjAYMRYwFAYD VQQDEw02OGFiMjlkNS1jNWY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1flGhzQ61WZcUhUKxsY/MDwU6wtaXh0oTtVCWJ6IY4ua1Kv0nzJrPNsZ5R0Q uxaSWM6n1t6JEsIAafH3YSO9jQuKYKbDcYJpuu+a1h0r8kMGU4XKe/3YhaaTiV0n xBcQk3SoG9Trr+XLfIBMY4RflL9nIzG1jtyraAfUpgRPwFyOGqX6RQrORuk5fHfs PyyXTU3Zu6n8jmThuOxdfHUTWWLpak+HxP/f4XKbktBjU2/wFdyLEGoPvZqa9Wv1 RVBCF+YB+4y2X9pdIb1jNeXQIIo9nuud2wGOtYEbdBX8OOQCx18Bi5VN7pNamJFT flZUBNzUxPjt6YkLIV52e/fOqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOYsSlXO mykA05hc3OMQiehx3OFcMB8GA1UdIwQYMBaAFOew4VPEFNE4VIradejNBc1pNnIG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDJDQS9EMzREQjk3RTFE QTAxMUUyODNBMTYxOTIwOEIwMkNEMi81N0RoVThRVTBUaFVpdHAxNk0wRnpXazJj Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzU3RGhVOFFVMFRoVWl0cDE2TTBGeldrMmNnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDJDQS9EMzREQjk3RTFEQTAxMUUyODNBMTYxOTIwOEIwMkNEMi81N0RoVThRVTBU aFVpdHAxNk0wRnpXazJjZ1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdp6U9Pkd2aPSt3uGPNfFKLoTg35NDyTeMMKrglJk82L9oKcsPxIk6 tuDIikUvUNQZFUd8qMkZrePnwEoQPCvm8QjEHi7VCmSQv0nHID484T+tId9s77W7 hvYMwhbV5aH6iaFe67qHBHNsiePU9XIflwjhOTRt73uj9LXORCxAm6HWpvWy+YPk XdSWQU/9fmLIthzOhhqNCoowEgK31sRM902KZikAMxg+97N4dIrVQYGldZNuLo7P KSXDyfo3zqrg60ZBsdYyzM/FIA/Jts7EosuxrTRQYZ3ivKZaiqVT8USvCMGkWqnU lehz5fCOg6340zLMZ+1ZYrl3M7DYuzix -----END CERTIFICATE-----Generated at Sun Aug 24 21:50:12 2025 by rpki-client