$ rpki-client -vvf rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft File: 5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft (raw, json) Hash identifier: N7wG0BJAiZi6ZpJJUUBkVjp7UzfPlaVjJOi/5AMYx6U= Subject key identifier: 4D:32:66:E5:12:14:04:62:F7:84:DE:8B:A3:14:A1:18:5C:C9:10:F6 Authority key identifier: E4:7B:F7:02:54:53:26:97:D2:0D:0D:31:10:F6:25:37:0D:65:FA:83 Certificate issuer: /CN=A91B59E5/serialNumber=E47BF70254532697D20D0D3110F625370D65FA83 Certificate serial: 01FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft Manifest number: 01D2 Signing time: Wed 17 Sep 2025 04:05:28 +0000 Manifest this update: Wed 17 Sep 2025 04:05:28 +0000 Manifest next update: Wed 24 Sep 2025 04:05:28 +0000 Files and hashes: 1: 5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.crl (hash: iw7RzbQ3hGvsiziqU5xMYkeGxtKn/DguAfiQ+7FFiwk=) 2: 9EEE3C44D94F11EF916BCF23C4F9AE02.roa (hash: JTgCQ/a/n5QlsjMCTHDArlAgGVjedlWxdAR2U4v5LnA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.crl rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 04:05:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 511 (0x1ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B59E5, serialNumber=E47BF70254532697D20D0D3110F625370D65FA83 Validity Not Before: Sep 17 04:05:28 2025 GMT Not After : Sep 24 04:05:28 2025 GMT Subject: CN=68ca3388-89c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:dd:60:68:80:65:75:4b:01:ec:1f:f0:80:dd: c6:41:1c:b6:7b:76:2a:9b:38:e7:ee:0a:73:d8:a5: a2:78:cd:89:d5:c1:be:af:f2:75:de:8d:2a:5d:43: 9d:b5:40:53:fc:f4:79:22:62:53:c0:74:97:80:6a: 52:12:13:98:85:b8:93:a3:d0:63:0a:74:7f:1f:e1: da:b1:a1:5e:bb:b1:9f:11:68:67:40:61:5b:37:ac: a9:7c:55:bd:c0:8a:a8:9b:3a:9f:0f:44:8a:5d:1b: c3:2b:63:31:3e:37:71:5f:eb:8a:24:c8:b0:49:cd: 69:6d:a9:6c:ea:d6:5f:93:08:58:9f:d9:b7:31:88: 81:f8:2e:bd:dd:7f:58:23:ac:e3:0f:09:17:c8:09: ba:f8:07:f7:ba:8a:eb:b6:af:e0:82:04:e8:87:4f: a1:f8:77:09:91:4a:cb:02:af:9c:0f:e4:d6:89:a3: bb:55:df:3c:05:53:bc:2f:d0:40:c9:e4:1c:c3:a0: f1:94:a4:af:bf:c2:e3:b5:0c:da:56:c5:a2:65:28: a0:86:b5:b9:40:67:e5:25:76:f0:6c:be:74:f4:7a: 8a:5c:a9:b2:d0:a2:30:e5:67:e0:dd:63:c1:72:1c: db:db:f2:dd:be:7d:64:ff:67:f7:66:a9:60:bf:17: 44:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:32:66:E5:12:14:04:62:F7:84:DE:8B:A3:14:A1:18:5C:C9:10:F6 X509v3 Authority Key Identifier: keyid:E4:7B:F7:02:54:53:26:97:D2:0D:0D:31:10:F6:25:37:0D:65:FA:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:65:59:8a:1a:4a:03:08:f0:2f:ca:06:a4:f0:55:82:58:54: b8:1d:08:5b:45:86:45:57:0d:77:7e:bf:c1:6d:20:c4:9c:1b: 71:40:23:d0:69:d3:95:cc:e9:91:49:b8:17:f8:86:15:09:e3: 10:7a:3e:3b:2f:5f:70:8e:fe:30:9d:eb:fa:60:af:2c:59:75: 30:54:1a:f6:66:f0:43:17:21:9f:7a:d6:e7:98:35:db:0b:be: 39:aa:f8:72:d4:65:55:a2:c5:1e:60:34:cf:b9:7f:77:2c:10: 9e:db:12:8b:d0:97:35:b5:a3:83:17:a3:ee:17:7c:51:2c:ac: 6d:8f:f9:56:0e:2b:65:f3:3e:91:38:aa:6f:01:7f:d8:83:6b: b0:fe:5a:6e:a3:50:c9:97:46:50:f2:d1:58:bf:e7:75:dd:aa: a4:b1:9c:16:66:74:b8:e5:7e:c3:35:00:db:8d:94:0e:cb:7e: f0:bb:44:2e:ec:6a:d4:64:8a:ad:36:a1:d6:ac:a5:e1:cc:41: 62:da:42:be:9b:bb:70:89:0c:0c:c3:55:21:5a:30:e0:b4:b3: 7d:b9:0f:b6:b1:19:a6:b7:cf:4c:5e:bc:bb:74:46:31:5b:8e: 66:bf:78:7b:0a:b5:26:e7:d8:5d:0f:da:e0:c9:a1:91:01:f1: 9c:73:fc:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAf8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU5RTUxMTAvBgNVBAUTKEU0N0JGNzAyNTQ1MzI2OTdEMjBEMEQzMTEwRjYyNTM3 MEQ2NUZBODMwHhcNMjUwOTE3MDQwNTI4WhcNMjUwOTI0MDQwNTI4WjAYMRYwFAYD VQQDEw02OGNhMzM4OC04OWMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy91gaIBldUsB7B/wgN3GQRy2e3Yqmzjn7gpz2KWieM2J1cG+r/J13o0qXUOd tUBT/PR5ImJTwHSXgGpSEhOYhbiTo9BjCnR/H+HasaFeu7GfEWhnQGFbN6ypfFW9 wIqomzqfD0SKXRvDK2MxPjdxX+uKJMiwSc1pbals6tZfkwhYn9m3MYiB+C693X9Y I6zjDwkXyAm6+Af3uorrtq/gggToh0+h+HcJkUrLAq+cD+TWiaO7Vd88BVO8L9BA yeQcw6DxlKSvv8LjtQzaVsWiZSighrW5QGflJXbwbL509HqKXKmy0KIw5Wfg3WPB chzb2/Ldvn1k/2f3ZqlgvxdEvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE0yZuUS FARi94Tei6MUoRhcyRD2MB8GA1UdIwQYMBaAFOR79wJUUyaX0g0NMRD2JTcNZfqD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTlFNS9ERDlGMUY3QzND MDExMUVFOTFDQkUxNTdDNEY5QUUwMi81SHYzQWxSVEpwZlNEUTB4RVBZbE53MWwt b00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVIdjNBbFJUSnBmU0RRMHhFUFlsTncxbC1vTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTlFNS9ERDlGMUY3QzNDMDExMUVFOTFDQkUxNTdDNEY5QUUwMi81SHYzQWxSVEpw ZlNEUTB4RVBZbE53MWwtb00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIZVmKGkoDCPAvygak8FWCWFS4HQhbRYZFVw13fr/BbSDEnBtxQCPQ adOVzOmRSbgX+IYVCeMQej47L19wjv4wnev6YK8sWXUwVBr2ZvBDFyGfetbnmDXb C745qvhy1GVVosUeYDTPuX93LBCe2xKL0Jc1taODF6PuF3xRLKxtj/lWDitl8z6R OKpvAX/Yg2uw/lpuo1DJl0ZQ8tFYv+d13aqksZwWZnS45X7DNQDbjZQOy37wu0Qu 7GrUZIqtNqHWrKXhzEFi2kK+m7twiQwMw1UhWjDgtLN9uQ+2sRmmt89MXry7dEYx W45mv3h7CrUm59hdD9rgyaGRAfGcc/xy -----END CERTIFICATE-----Generated at Fri Sep 19 03:53:03 2025 by rpki-client