$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft File: 5bRMaejecz32GWYFbn5BXsfHDSo.mft (raw, json) Hash identifier: 8aJ7+ZA9hsWfXogmOss0Th+TdAaSsrhri1CtyYP+tT0= Subject key identifier: C4:BE:44:CF:11:C6:A2:43:02:40:D2:A5:98:60:F6:93:30:FB:98:E0 Authority key identifier: E5:B4:4C:69:E8:DE:73:3D:F6:19:66:05:6E:7E:41:5E:C7:C7:0D:2A Certificate issuer: /CN=A91B4873/serialNumber=E5B44C69E8DE733DF61966056E7E415EC7C70D2A Certificate serial: DF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5bRMaejecz32GWYFbn5BXsfHDSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft Manifest number: DD Signing time: Fri 05 Sep 2025 05:54:06 +0000 Manifest this update: Fri 05 Sep 2025 05:54:06 +0000 Manifest next update: Fri 12 Sep 2025 05:54:06 +0000 Files and hashes: 1: 5bRMaejecz32GWYFbn5BXsfHDSo.crl (hash: qZeAO9AwSM89iJ5QM67FNWj/svVTK+LdjlCBapGU3b4=) 2: 01F62A6438F011EF9A82662BC4F9AE02.roa (hash: qNBV2PTtzm82Ja2P5dgUf+ogJinB9ZCYKNbddsnAs34=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.crl rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5bRMaejecz32GWYFbn5BXsfHDSo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 05:54:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 223 (0xdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4873, serialNumber=E5B44C69E8DE733DF61966056E7E415EC7C70D2A Validity Not Before: Sep 5 05:54:06 2025 GMT Not After : Sep 12 05:54:06 2025 GMT Subject: CN=68ba7afe-daf3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:00:aa:64:bd:bb:da:bf:88:65:dc:63:a8:8c: db:c0:a5:2b:3f:19:4e:42:c2:29:56:04:7f:21:eb: 05:ef:07:5f:b7:45:24:dd:b3:68:34:20:44:35:27: e6:df:17:30:c7:3a:bc:6b:1e:67:8d:28:8b:af:f0: 66:d1:0e:fc:35:a4:8f:85:c8:0f:97:8f:75:d3:92: 66:2a:07:73:5a:55:06:e6:18:82:9c:03:7c:f9:44: 1f:61:56:66:c7:38:b5:8d:c9:a4:ee:f9:3e:8e:b5: a6:e0:28:4a:c3:a8:31:2d:8e:6a:77:9f:3e:a8:2a: 12:3d:eb:7a:c7:5a:d8:dd:33:e0:c3:f7:8a:a9:1e: 55:bc:8a:ee:60:e5:66:58:60:55:3f:9c:7a:d4:c7: 2f:51:b6:48:6a:e8:75:17:8a:82:ae:4b:fe:52:09: 87:1f:c3:12:d1:43:b5:aa:03:e0:b6:71:70:2b:b0: 63:98:42:4a:6f:b3:ae:af:8f:a4:09:0c:35:3f:8b: c3:45:d2:dd:fe:73:cd:c8:4c:da:6a:8a:2b:fa:3e: ee:2e:fa:18:e1:67:d8:39:3c:c0:b1:11:d5:fd:63: 91:4b:83:85:b8:a2:f3:66:25:41:d8:89:3e:74:22: 8e:8c:80:2e:e7:86:12:ce:96:06:1d:39:db:c9:a4: 29:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:BE:44:CF:11:C6:A2:43:02:40:D2:A5:98:60:F6:93:30:FB:98:E0 X509v3 Authority Key Identifier: keyid:E5:B4:4C:69:E8:DE:73:3D:F6:19:66:05:6E:7E:41:5E:C7:C7:0D:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5bRMaejecz32GWYFbn5BXsfHDSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:f7:f4:c7:b8:5a:be:3d:a6:38:2e:bd:74:55:cc:69:61:c6: 77:9a:53:fe:2a:f1:22:68:fa:bd:c7:10:bb:95:2d:09:af:e4: f0:10:5e:9f:80:da:13:3f:9e:76:80:e3:70:1f:e0:e1:75:e7: 24:33:cf:fc:57:0d:9e:39:f8:38:09:a8:b9:35:f6:dc:b9:6b: 8c:53:e4:65:c9:d1:4a:bc:d2:ff:cd:2e:d9:77:e1:07:76:70: 0e:9d:07:90:65:4a:6d:fd:1a:fb:66:4e:dc:ee:46:56:ea:2e: fe:d5:7c:92:9f:65:32:ed:93:5e:55:4d:d4:c2:ae:5b:4b:a8: 4e:0c:54:e7:e9:21:d8:1b:42:93:84:15:c5:0e:11:eb:a6:27: 28:e2:92:12:a5:5f:5c:8f:80:5d:22:28:30:75:db:1e:ab:91: a2:00:b1:59:c3:46:f7:b0:0c:73:29:66:f5:5a:28:7d:67:32: 22:36:96:d6:20:97:e5:39:99:7c:f6:fc:1a:c5:2b:d6:9d:97: 94:ef:df:c9:1b:e2:0d:f7:10:ce:f2:9d:9a:b0:e7:ab:d2:08: 1a:4f:c1:f6:eb:5a:52:f2:2e:54:70:be:2b:f4:8b:26:2a:d4: 14:53:13:6a:75:e1:8d:e6:1f:eb:27:9e:86:51:3a:8a:d5:1e: 13:69:8d:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ4NzMxMTAvBgNVBAUTKEU1QjQ0QzY5RThERTczM0RGNjE5NjYwNTZFN0U0MTVF QzdDNzBEMkEwHhcNMjUwOTA1MDU1NDA2WhcNMjUwOTEyMDU1NDA2WjAYMRYwFAYD VQQDEw02OGJhN2FmZS1kYWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2ACqZL272r+IZdxjqIzbwKUrPxlOQsIpVgR/IesF7wdft0Uk3bNoNCBENSfm 3xcwxzq8ax5njSiLr/Bm0Q78NaSPhcgPl49105JmKgdzWlUG5hiCnAN8+UQfYVZm xzi1jcmk7vk+jrWm4ChKw6gxLY5qd58+qCoSPet6x1rY3TPgw/eKqR5VvIruYOVm WGBVP5x61McvUbZIauh1F4qCrkv+UgmHH8MS0UO1qgPgtnFwK7BjmEJKb7Our4+k CQw1P4vDRdLd/nPNyEzaaoor+j7uLvoY4WfYOTzAsRHV/WORS4OFuKLzZiVB2Ik+ dCKOjIAu54YSzpYGHTnbyaQp9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMS+RM8R xqJDAkDSpZhg9pMw+5jgMB8GA1UdIwQYMBaAFOW0TGno3nM99hlmBW5+QV7Hxw0q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDg3My80RTI1QzhCQzM4 RTcxMUVGODQ0QjRGNjVDNEY5QUUwMi81YlJNYWVqZWN6MzJHV1lGYm41QlhzZkhE U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzViUk1hZWplY3ozMkdXWUZibjVCWHNmSERTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDg3My80RTI1QzhCQzM4RTcxMUVGODQ0QjRGNjVDNEY5QUUwMi81YlJNYWVqZWN6 MzJHV1lGYm41QlhzZkhEU28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBe9/THuFq+PaY4Lr10VcxpYcZ3mlP+KvEiaPq9xxC7lS0Jr+TwEF6f gNoTP552gONwH+DhdeckM8/8Vw2eOfg4Cai5NfbcuWuMU+RlydFKvNL/zS7Zd+EH dnAOnQeQZUpt/Rr7Zk7c7kZW6i7+1XySn2Uy7ZNeVU3Uwq5bS6hODFTn6SHYG0KT hBXFDhHrpico4pISpV9cj4BdIigwddseq5GiALFZw0b3sAxzKWb1Wih9ZzIiNpbW IJflOZl89vwaxSvWnZeU79/JG+IN9xDO8p2asOer0ggaT8H261pS8i5UcL4r9Ism KtQUUxNqdeGN5h/rJ56GUTqK1R4TaY1M -----END CERTIFICATE-----Generated at Sat Sep 6 15:16:16 2025 by rpki-client