$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft File: 5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft (raw, json) Hash identifier: qJrr3wIUjZWktUByxf8IfqD/ZpRD4Y5qAgwTy0MtQf8= Subject key identifier: B0:A7:52:2C:3E:04:81:71:1F:A2:39:D5:F7:7E:4C:04:33:9E:A5:0C Authority key identifier: E4:5F:61:EF:BC:B2:E7:B1:E4:14:B2:CB:DC:34:50:F7:F8:46:18:9D Certificate issuer: /CN=A91E4ED1/serialNumber=E45F61EFBCB2E7B1E414B2CBDC3450F7F846189D Certificate serial: 0C4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5F9h77yy57HkFLLL3DRQ9_hGGJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft Manifest number: 0C49 Signing time: Wed 20 Aug 2025 18:37:10 +0000 Manifest this update: Wed 20 Aug 2025 18:37:10 +0000 Manifest next update: Wed 27 Aug 2025 18:37:10 +0000 Files and hashes: 1: 5F9h77yy57HkFLLL3DRQ9_hGGJ0.crl (hash: Ewi3yyPhjgVe28a4STiOWzxr+qwB5Yo8NLtGRkPAgKs=) 2: D77C5AC003E611F0A9F5535FC4F9AE02.roa (hash: C3dI3f47oUkTpODJD7lPzsLlPec49Cck1X3kjiuVXDM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.crl rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5F9h77yy57HkFLLL3DRQ9_hGGJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 18:37:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3147 (0xc4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4ED1, serialNumber=E45F61EFBCB2E7B1E414B2CBDC3450F7F846189D Validity Not Before: Aug 20 18:37:10 2025 GMT Not After : Aug 27 18:37:10 2025 GMT Subject: CN=68a615d6-fae9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:b9:67:d1:1b:4f:7d:5d:41:1c:75:f9:eb:ec: 69:b2:42:29:a8:e2:e2:3f:78:09:57:2f:2f:8f:7f: 9e:45:4f:6f:8a:1e:32:bb:19:75:c2:4a:14:3f:b1: 46:ef:cb:45:82:48:51:fd:a8:45:c8:23:4d:7e:bf: d4:0a:67:9d:35:e8:06:39:34:3b:28:f3:d9:6e:2b: 18:38:cd:9f:80:11:51:f4:a7:1a:b0:46:7f:7b:70: e6:5f:23:79:fa:76:81:2b:09:4e:65:73:84:fd:e8: 52:80:fc:f3:87:ea:b8:37:d0:e1:ab:22:4f:fc:e1: 94:ee:5c:d4:53:b9:90:ea:bb:72:44:ad:c7:93:e8: 48:24:ce:3f:ab:96:45:15:a1:94:ba:eb:d9:75:e5: 6e:2e:f3:65:97:b4:c6:9d:72:74:ef:31:13:b2:0d: 49:65:52:6d:cf:fd:6b:db:ad:8c:42:f2:3a:f8:19: a8:e1:10:bf:bd:6d:8e:0d:85:45:61:6c:f9:6e:e6: 11:3e:98:a4:92:0d:65:b1:2a:6b:30:81:d2:ec:ef: c5:8e:1c:0f:cb:59:86:f0:2f:61:a5:4b:d0:89:24: d9:6a:59:5d:b8:2a:42:fe:c6:1b:b3:92:6a:8d:a8: be:cd:09:69:b3:18:0c:89:bd:f1:42:0c:82:e1:80: d3:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:A7:52:2C:3E:04:81:71:1F:A2:39:D5:F7:7E:4C:04:33:9E:A5:0C X509v3 Authority Key Identifier: keyid:E4:5F:61:EF:BC:B2:E7:B1:E4:14:B2:CB:DC:34:50:F7:F8:46:18:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5F9h77yy57HkFLLL3DRQ9_hGGJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:17:9e:31:6b:b5:35:10:e5:93:96:d0:9e:26:bf:b2:15:71: 6b:82:47:90:7b:53:bf:e2:4b:d7:0b:d8:26:59:4f:1b:e6:76: 17:ba:d2:2f:67:3d:3e:61:72:e6:11:9b:00:64:1e:97:d6:f6: e1:0d:3f:09:05:e5:3f:91:83:89:2f:9e:64:d7:cc:8c:2b:c6: 01:d7:d5:0e:eb:c5:76:68:98:c7:44:a7:99:86:87:c1:64:8e: 9f:01:94:73:1e:49:be:3d:6d:ed:aa:1e:bc:16:37:70:a6:2e: f9:d5:b2:16:17:c3:0f:06:b3:1b:0a:0b:00:9c:88:24:2a:02: 39:27:a4:a8:2b:f4:fc:4a:22:f3:41:66:51:9c:33:20:49:d9: 48:73:af:5e:b9:bb:8f:0e:12:8f:0c:36:81:8a:b9:2f:c7:42: 5b:4c:1f:85:c5:9f:15:6e:ae:d1:7a:77:b3:c6:5f:23:b9:8d: 6e:b4:a5:77:97:f8:1a:26:28:07:33:5c:d8:be:59:85:b6:a4: 9b:b1:7e:3a:8f:bf:11:d0:48:02:90:33:5a:d3:42:f6:04:3d: 52:96:3b:52:17:18:6f:5e:30:e0:44:47:81:2a:bc:7e:bc:26: 6c:68:48:18:b0:54:d5:1e:50:0d:1f:8d:51:a8:37:1e:40:48: c7:36:70:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRFRDExMTAvBgNVBAUTKEU0NUY2MUVGQkNCMkU3QjFFNDE0QjJDQkRDMzQ1MEY3 Rjg0NjE4OUQwHhcNMjUwODIwMTgzNzEwWhcNMjUwODI3MTgzNzEwWjAYMRYwFAYD VQQDEw02OGE2MTVkNi1mYWU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8bln0RtPfV1BHHX56+xpskIpqOLiP3gJVy8vj3+eRU9vih4yuxl1wkoUP7FG 78tFgkhR/ahFyCNNfr/UCmedNegGOTQ7KPPZbisYOM2fgBFR9KcasEZ/e3DmXyN5 +naBKwlOZXOE/ehSgPzzh+q4N9DhqyJP/OGU7lzUU7mQ6rtyRK3Hk+hIJM4/q5ZF FaGUuuvZdeVuLvNll7TGnXJ07zETsg1JZVJtz/1r262MQvI6+Bmo4RC/vW2ODYVF YWz5buYRPpikkg1lsSprMIHS7O/FjhwPy1mG8C9hpUvQiSTZallduCpC/sYbs5Jq jai+zQlpsxgMib3xQgyC4YDTvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLCnUiw+ BIFxH6I51fd+TAQznqUMMB8GA1UdIwQYMBaAFORfYe+8suex5BSyy9w0UPf4Rhid MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEVEMS81RkRENzhCMjBC NjQxMUVBOTA5MjMwNjZDNEY5QUUwMi81RjloNzd5eTU3SGtGTExMM0RSUTlfaEdH SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVGOWg3N3l5NTdIa0ZMTEwzRFJROV9oR0dKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEVEMS81RkRENzhCMjBCNjQxMUVBOTA5MjMwNjZDNEY5QUUwMi81RjloNzd5eTU3 SGtGTExMM0RSUTlfaEdHSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzF54xa7U1EOWTltCeJr+yFXFrgkeQe1O/4kvXC9gmWU8b5nYXutIv Zz0+YXLmEZsAZB6X1vbhDT8JBeU/kYOJL55k18yMK8YB19UO68V2aJjHRKeZhofB ZI6fAZRzHkm+PW3tqh68Fjdwpi751bIWF8MPBrMbCgsAnIgkKgI5J6SoK/T8SiLz QWZRnDMgSdlIc69eubuPDhKPDDaBirkvx0JbTB+FxZ8Vbq7Renezxl8juY1utKV3 l/gaJigHM1zYvlmFtqSbsX46j78R0EgCkDNa00L2BD1SljtSFxhvXjDgREeBKrx+ vCZsaEgYsFTVHlANH41RqDceQEjHNnBa -----END CERTIFICATE-----Generated at Thu Aug 21 08:30:14 2025 by rpki-client