$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF064/FC2FF9C644E211EFB13F2214C4F9AE02/5jRJcTfNjgmazQdoyBzzu0QmUbo.mft File: 5jRJcTfNjgmazQdoyBzzu0QmUbo.mft (raw, json) Hash identifier: ZBEj3YcNQn4XxVDvyZQFtHxpwuK8t+qX6HVvlUNQPxM= Subject key identifier: D9:8A:27:68:D9:71:73:01:05:1C:16:9E:43:66:12:A7:FA:9E:0A:09 Authority key identifier: E6:34:49:71:37:CD:8E:09:9A:CD:07:68:C8:1C:F3:BB:44:26:51:BA Certificate issuer: /CN=A91CF064/serialNumber=E634497137CD8E099ACD0768C81CF3BB442651BA Certificate serial: CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5jRJcTfNjgmazQdoyBzzu0QmUbo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF064/FC2FF9C644E211EFB13F2214C4F9AE02/5jRJcTfNjgmazQdoyBzzu0QmUbo.mft Manifest number: CD Signing time: Thu 21 Aug 2025 05:51:54 +0000 Manifest this update: Thu 21 Aug 2025 05:51:54 +0000 Manifest next update: Thu 28 Aug 2025 05:51:54 +0000 Files and hashes: 1: 5jRJcTfNjgmazQdoyBzzu0QmUbo.crl (hash: k3DQtJEJuy6y434PeJ4Q74v0jzfaVaedzXrJa2dPpIE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF064/FC2FF9C644E211EFB13F2214C4F9AE02/5jRJcTfNjgmazQdoyBzzu0QmUbo.crl rsync://rpki.apnic.net/member_repository/A91CF064/FC2FF9C644E211EFB13F2214C4F9AE02/5jRJcTfNjgmazQdoyBzzu0QmUbo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5jRJcTfNjgmazQdoyBzzu0QmUbo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 05:51:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 205 (0xcd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF064, serialNumber=E634497137CD8E099ACD0768C81CF3BB442651BA Validity Not Before: Aug 21 05:51:54 2025 GMT Not After : Aug 28 05:51:54 2025 GMT Subject: CN=68a6b3fa-4cd9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:83:80:53:95:4a:3b:f8:f8:d8:e4:0d:75:8b: 77:df:e0:f9:1e:f1:3d:93:a8:13:0d:e0:39:3c:6e: 05:1f:3d:0d:81:52:2d:db:e0:3d:f8:4f:88:12:69: 5c:16:c9:db:9f:fd:c0:3d:58:42:6a:de:30:94:ce: f8:34:01:3e:ef:25:d6:e3:98:8e:f7:2f:10:0e:4b: 32:13:cc:7c:e3:0e:71:3e:83:e5:dd:08:ea:01:75: 81:bb:2c:7b:18:26:37:3b:98:d1:a2:1d:15:ee:6d: 65:47:52:0a:28:54:e4:11:f5:77:84:72:4a:ff:b1: 0b:c1:2d:b8:22:91:91:0b:b1:3c:08:95:4c:b2:1b: 0f:a5:e6:aa:ab:9d:06:b2:56:c3:e6:8f:32:c2:b1: 19:ac:30:2e:02:f2:7a:b1:73:84:54:ae:67:0e:f1: 4f:f9:df:e0:c2:36:07:bd:49:45:f3:b8:66:4d:2e: 16:70:2f:c0:53:fb:d0:13:fb:d4:dc:2a:18:3e:17: ff:bf:63:3f:5f:2a:be:16:cc:dc:3b:93:9a:21:93: 71:bc:6b:f1:bb:ed:7d:cc:30:de:7d:2f:7f:7c:e5: 89:7a:60:47:29:d1:57:97:fc:81:c0:23:e9:97:f1: bd:db:3d:98:07:e3:5d:bc:6f:81:31:0b:a3:01:c0: a5:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:8A:27:68:D9:71:73:01:05:1C:16:9E:43:66:12:A7:FA:9E:0A:09 X509v3 Authority Key Identifier: keyid:E6:34:49:71:37:CD:8E:09:9A:CD:07:68:C8:1C:F3:BB:44:26:51:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF064/FC2FF9C644E211EFB13F2214C4F9AE02/5jRJcTfNjgmazQdoyBzzu0QmUbo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5jRJcTfNjgmazQdoyBzzu0QmUbo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF064/FC2FF9C644E211EFB13F2214C4F9AE02/5jRJcTfNjgmazQdoyBzzu0QmUbo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:48:a6:95:93:2b:14:4b:51:e6:2f:9e:b5:61:8f:15:47:4a: 1f:20:89:a9:81:00:48:72:8d:da:c1:f3:6c:e8:9f:3f:0d:93: 3a:09:ea:3f:cb:53:cc:3f:0b:80:6c:5b:8b:07:27:b2:c6:9c: 4d:60:fb:97:57:df:e7:d9:bc:ff:03:d4:3c:27:aa:86:a7:d2: dd:bb:54:11:ef:df:18:b2:34:27:ef:c8:66:97:ac:d4:6a:a6: 95:87:f5:f3:a1:96:4a:ee:fe:00:76:07:94:ab:22:62:01:b0: 2e:ef:cb:12:da:09:ee:eb:e7:cb:ac:f7:19:07:95:6f:94:8f: 5a:17:98:57:d6:60:79:3b:27:3f:14:22:6c:2a:46:58:b2:d1: d1:55:ec:48:8d:d2:e2:fd:34:70:1f:21:2c:97:de:a4:d0:c1: d5:5d:48:44:eb:22:87:10:c4:74:93:a8:f1:1a:b0:50:34:c9: 3b:d2:22:db:c5:0f:d6:c3:2f:4d:a0:8d:83:40:d6:7e:f3:68: 9c:42:1f:02:2c:70:f3:0e:5d:27:18:ad:23:c7:85:9c:7b:a1: 39:33:7e:35:8d:fa:86:7e:17:a3:c5:cd:b2:91:3a:aa:89:b3: 71:99:52:d0:ea:58:e3:78:76:74:55:8c:ef:a5:2f:c5:5d:08: 1d:54:de:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0YwNjQxMTAvBgNVBAUTKEU2MzQ0OTcxMzdDRDhFMDk5QUNEMDc2OEM4MUNGM0JC NDQyNjUxQkEwHhcNMjUwODIxMDU1MTU0WhcNMjUwODI4MDU1MTU0WjAYMRYwFAYD VQQDEw02OGE2YjNmYS00Y2Q5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl4OAU5VKO/j42OQNdYt33+D5HvE9k6gTDeA5PG4FHz0NgVIt2+A9+E+IEmlc Fsnbn/3APVhCat4wlM74NAE+7yXW45iO9y8QDksyE8x84w5xPoPl3QjqAXWBuyx7 GCY3O5jRoh0V7m1lR1IKKFTkEfV3hHJK/7ELwS24IpGRC7E8CJVMshsPpeaqq50G slbD5o8ywrEZrDAuAvJ6sXOEVK5nDvFP+d/gwjYHvUlF87hmTS4WcC/AU/vQE/vU 3CoYPhf/v2M/Xyq+FszcO5OaIZNxvGvxu+19zDDefS9/fOWJemBHKdFXl/yBwCPp l/G92z2YB+NdvG+BMQujAcClNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNmKJ2jZ cXMBBRwWnkNmEqf6ngoJMB8GA1UdIwQYMBaAFOY0SXE3zY4Jms0HaMgc87tEJlG6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjA2NC9GQzJGRjlDNjQ0 RTIxMUVGQjEzRjIyMTRDNEY5QUUwMi81alJKY1RmTmpnbWF6UWRveUJ6enUwUW1V Ym8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVqUkpjVGZOamdtYXpRZG95Qnp6dTBRbVViby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RjA2NC9GQzJGRjlDNjQ0RTIxMUVGQjEzRjIyMTRDNEY5QUUwMi81alJKY1RmTmpn bWF6UWRveUJ6enUwUW1VYm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWSKaVkysUS1HmL561YY8VR0ofIImpgQBIco3awfNs6J8/DZM6Ceo/ y1PMPwuAbFuLByeyxpxNYPuXV9/n2bz/A9Q8J6qGp9Ldu1QR798YsjQn78hml6zU aqaVh/XzoZZK7v4AdgeUqyJiAbAu78sS2gnu6+fLrPcZB5VvlI9aF5hX1mB5Oyc/ FCJsKkZYstHRVexIjdLi/TRwHyEsl96k0MHVXUhE6yKHEMR0k6jxGrBQNMk70iLb xQ/Wwy9NoI2DQNZ+82icQh8CLHDzDl0nGK0jx4Wce6E5M341jfqGfhejxc2ykTqq ibNxmVLQ6ljjeHZ0VYzvpS/FXQgdVN7m -----END CERTIFICATE-----Generated at Fri Aug 22 16:31:41 2025 by rpki-client