$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/5vZdIhtZX2uhPrMU3uM4yiQeJyA.mft File: 5vZdIhtZX2uhPrMU3uM4yiQeJyA.mft (raw, json) Hash identifier: ol+jBeYVd9V3P/rPJUewBG2LaZHTttDVZZsn6WDfiRA= Subject key identifier: D5:98:82:82:A3:2D:02:47:60:DA:71:17:2B:39:44:09:01:31:66:7E Authority key identifier: E6:F6:5D:22:1B:59:5F:6B:A1:3E:B3:14:DE:E3:38:CA:24:1E:27:20 Certificate issuer: /CN=A91D2B62/serialNumber=E6F65D221B595F6BA13EB314DEE338CA241E2720 Certificate serial: CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vZdIhtZX2uhPrMU3uM4yiQeJyA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/5vZdIhtZX2uhPrMU3uM4yiQeJyA.mft Manifest number: CA Signing time: Tue 09 Sep 2025 05:48:42 +0000 Manifest this update: Tue 09 Sep 2025 05:48:41 +0000 Manifest next update: Tue 16 Sep 2025 05:48:41 +0000 Files and hashes: 1: 5vZdIhtZX2uhPrMU3uM4yiQeJyA.crl (hash: cjq+Aau9F1XiZzDyDkygADYI60c4mGU6w+HtA5WBlxU=) 2: F47CB05C5AE011EFB4CD7428C4F9AE02.roa (hash: dP/ms8awhu5P0L5X1kq3UaHwPpJfEdsfRvw8IFgrpFk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/5vZdIhtZX2uhPrMU3uM4yiQeJyA.crl rsync://rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/5vZdIhtZX2uhPrMU3uM4yiQeJyA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vZdIhtZX2uhPrMU3uM4yiQeJyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 05:48:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 204 (0xcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2B62, serialNumber=E6F65D221B595F6BA13EB314DEE338CA241E2720 Validity Not Before: Sep 9 05:48:41 2025 GMT Not After : Sep 16 05:48:41 2025 GMT Subject: CN=68bfbfba-fa99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:08:a4:85:2d:43:2b:5e:74:af:bb:1d:fd:aa: 76:0b:ff:4a:53:8a:8a:f7:58:11:83:87:95:82:bc: 4d:49:28:a1:23:43:0f:47:aa:51:55:d8:90:16:51: 86:2f:ea:c4:5c:c1:e8:59:e2:d4:81:8b:78:8e:92: 9c:e1:81:7f:44:1f:73:cd:db:2c:dd:dd:ee:10:56: ed:07:01:bc:e1:74:96:1c:6e:79:63:3f:c1:5e:21: 7f:26:62:fc:d1:41:ee:89:54:11:47:55:58:3a:fc: 21:0d:d4:b3:a7:98:25:52:cd:3b:62:b6:93:19:eb: b5:1a:8b:0c:ba:b8:bf:88:de:6d:3a:4c:a9:7c:29: 81:19:5c:70:b9:8b:dc:5c:c4:bb:ee:62:2d:22:f7: ad:fe:42:f5:f2:ff:c0:da:32:c2:71:ba:c9:72:61: 35:2f:24:37:12:94:86:b4:d8:21:dd:78:ee:b6:d8: 9b:02:0e:4f:6d:ab:6b:e4:53:f7:5a:85:df:aa:99: 5b:6a:3a:70:66:21:ce:a5:c8:26:2b:33:d9:fc:0c: 70:07:83:44:df:c7:08:37:e7:98:e8:71:4c:68:da: 43:2a:82:6e:10:7b:75:ab:2a:53:bb:69:d3:08:53: 84:de:0a:58:bf:96:72:d0:f6:0f:03:4a:bb:c4:08: 98:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:98:82:82:A3:2D:02:47:60:DA:71:17:2B:39:44:09:01:31:66:7E X509v3 Authority Key Identifier: keyid:E6:F6:5D:22:1B:59:5F:6B:A1:3E:B3:14:DE:E3:38:CA:24:1E:27:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/5vZdIhtZX2uhPrMU3uM4yiQeJyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vZdIhtZX2uhPrMU3uM4yiQeJyA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/5vZdIhtZX2uhPrMU3uM4yiQeJyA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:28:fb:82:95:82:9e:9b:da:3b:b4:db:94:13:a0:51:96:20: b6:7a:43:c9:cb:44:7e:82:4d:34:5b:d1:0f:2f:97:ae:a8:66: d7:a3:b3:1f:b9:d4:b4:db:0c:bd:96:89:cb:93:5f:dd:6f:73: 38:91:b5:0b:31:2c:18:3b:bc:dd:2d:ff:d2:bb:ad:aa:d8:7b: 61:a3:12:d6:67:8b:b6:c9:68:f5:6d:d7:29:3b:15:99:44:77: 9e:91:29:a2:c9:d4:98:51:d9:64:07:7b:51:71:27:ef:d0:97: 6f:14:d1:6f:8f:a8:01:a3:b8:0a:96:5c:2b:1c:bf:45:6f:b8: d4:ea:6a:b1:bb:01:90:df:32:cb:35:99:76:f3:56:ff:7a:84: 24:6c:ad:b7:86:57:f7:d2:dd:ce:95:59:d3:2a:4d:55:56:f5: b2:0d:ec:65:ea:54:cd:1d:91:d7:92:b0:6a:d6:c1:56:cf:e0: 15:36:35:d5:b9:cd:eb:48:7f:c4:9a:36:8b:27:d8:c7:ac:e2: 48:8b:45:1e:70:cc:ba:ba:96:bf:31:e5:3e:2b:db:63:06:fc: 2b:6e:bc:a4:9d:5d:5f:97:0a:41:1d:09:a7:21:01:ea:8f:25: 49:ee:e5:e0:e4:a5:a2:c2:65:ef:37:02:13:f3:0d:1a:9e:25: 77:c3:2a:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJCNjIxMTAvBgNVBAUTKEU2RjY1RDIyMUI1OTVGNkJBMTNFQjMxNERFRTMzOENB MjQxRTI3MjAwHhcNMjUwOTA5MDU0ODQxWhcNMjUwOTE2MDU0ODQxWjAYMRYwFAYD VQQDEw02OGJmYmZiYS1mYTk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxwikhS1DK150r7sd/ap2C/9KU4qK91gRg4eVgrxNSSihI0MPR6pRVdiQFlGG L+rEXMHoWeLUgYt4jpKc4YF/RB9zzdss3d3uEFbtBwG84XSWHG55Yz/BXiF/JmL8 0UHuiVQRR1VYOvwhDdSzp5glUs07YraTGeu1GosMuri/iN5tOkypfCmBGVxwuYvc XMS77mItIvet/kL18v/A2jLCcbrJcmE1LyQ3EpSGtNgh3XjuttibAg5Pbatr5FP3 WoXfqplbajpwZiHOpcgmKzPZ/AxwB4NE38cIN+eY6HFMaNpDKoJuEHt1qypTu2nT CFOE3gpYv5Zy0PYPA0q7xAiYGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNWYgoKj LQJHYNpxFys5RAkBMWZ+MB8GA1UdIwQYMBaAFOb2XSIbWV9roT6zFN7jOMokHicg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkI2Mi9CRDI5QjgxNjVB RTAxMUVGODY1MUI2MUJDNEY5QUUwMi81dlpkSWh0WlgydWhQck1VM3VNNHlpUWVK eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzV2WmRJaHRaWDJ1aFByTVUzdU00eWlRZUp5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MkI2Mi9CRDI5QjgxNjVBRTAxMUVGODY1MUI2MUJDNEY5QUUwMi81dlpkSWh0Wlgy dWhQck1VM3VNNHlpUWVKeUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVKPuClYKem9o7tNuUE6BRliC2ekPJy0R+gk00W9EPL5euqGbXo7Mf udS02wy9lonLk1/db3M4kbULMSwYO7zdLf/Su62q2HthoxLWZ4u2yWj1bdcpOxWZ RHeekSmiydSYUdlkB3tRcSfv0JdvFNFvj6gBo7gKllwrHL9Fb7jU6mqxuwGQ3zLL NZl281b/eoQkbK23hlf30t3OlVnTKk1VVvWyDexl6lTNHZHXkrBq1sFWz+AVNjXV uc3rSH/EmjaLJ9jHrOJIi0UecMy6upa/MeU+K9tjBvwrbryknV1flwpBHQmnIQHq jyVJ7uXg5KWiwmXvNwIT8w0aniV3wyop -----END CERTIFICATE-----Generated at Tue Sep 9 14:10:42 2025 by rpki-client