$ rpki-client -vvf rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft File: 5HfTiqrEo3zG3xZlvxyICvmbe08.mft (raw, json) Hash identifier: 76FiqlshwtuWom2+qyDlNDpdteyyYfI5/MBMMEA8pPo= Subject key identifier: 3F:64:7C:D6:B7:92:41:39:A0:37:7F:E5:DF:53:13:C2:CE:A4:59:A5 Authority key identifier: E4:77:D3:8A:AA:C4:A3:7C:C6:DF:16:65:BF:1C:88:0A:F9:9B:7B:4F Certificate issuer: /CN=A91E504E/serialNumber=E477D38AAAC4A37CC6DF1665BF1C880AF99B7B4F Certificate serial: 03F5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft Manifest number: 03E7 Signing time: Fri 05 Sep 2025 00:53:08 +0000 Manifest this update: Fri 05 Sep 2025 00:53:08 +0000 Manifest next update: Fri 12 Sep 2025 00:53:08 +0000 Files and hashes: 1: 5HfTiqrEo3zG3xZlvxyICvmbe08.crl (hash: BKt1C4dOXB50vhzvM5AVV2jCHy1GmctltYfcdWUtCvg=) 2: 5F9FA12E0CA411ED96936D79C4F9AE02.roa (hash: 1kY42j3eWLAd8yp1AvznjQwJBoHaBnQrkaPK6EtSCdQ=) 3: 06820D08961011ECA540626AC4F9AE02.roa (hash: XbxtLk1+2CfWndcMlMOnwCxgbfEchquqUDJGfTWj61E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.crl rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 00:53:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1013 (0x3f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E504E, serialNumber=E477D38AAAC4A37CC6DF1665BF1C880AF99B7B4F Validity Not Before: Sep 5 00:53:08 2025 GMT Not After : Sep 12 00:53:08 2025 GMT Subject: CN=68ba3474-a1fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e5:98:22:04:f2:15:06:ab:94:71:82:59:79: 4d:d3:07:b3:81:74:f3:e9:0a:3a:6e:3f:ca:67:9c: e0:07:9f:00:44:5a:3d:2b:44:7b:ed:c7:aa:c8:73: 6e:9e:ad:71:e0:8d:a8:93:1a:3d:15:ac:8b:dc:cb: 0a:d5:aa:fc:5a:8f:e5:36:d5:83:f5:13:2d:b5:9b: 35:5e:42:c7:8c:92:4f:a7:99:1b:f7:75:64:70:e9: ad:85:dd:7e:47:71:bd:b6:8e:88:5a:f8:71:47:30: f7:2e:1f:3a:e6:ed:c0:d8:7b:ab:94:32:e5:9d:06: fd:f8:cb:44:f0:aa:b7:39:84:97:df:13:6e:c0:96: 97:c1:0f:2c:ab:71:44:0a:cb:d8:05:63:fe:e3:f0: a5:78:c1:71:13:f4:5a:d2:e2:b5:b7:f2:0d:2e:6e: b1:00:1c:ed:60:ed:0b:36:ca:06:06:de:67:9c:06: 30:17:80:f9:d4:56:ee:83:90:32:97:d3:cf:87:72: 3d:13:19:7c:32:75:3e:03:86:95:d4:f7:51:96:db: a6:9a:5c:fb:f4:fc:90:1c:fb:e0:a5:9d:2b:28:60: f6:42:3f:dd:36:3b:f7:84:4c:0d:6a:42:68:8d:6d: b1:6e:aa:bd:84:c0:35:57:c6:74:8a:5f:04:7d:fc: 67:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:64:7C:D6:B7:92:41:39:A0:37:7F:E5:DF:53:13:C2:CE:A4:59:A5 X509v3 Authority Key Identifier: keyid:E4:77:D3:8A:AA:C4:A3:7C:C6:DF:16:65:BF:1C:88:0A:F9:9B:7B:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:7c:1b:74:1c:a9:35:b1:fc:88:9e:d0:92:6a:d3:d3:1b:d3: 87:db:62:fc:23:24:47:7c:92:74:9d:70:b4:25:4d:c1:6c:06: e7:2f:b0:9c:c6:3f:34:7f:d5:8c:b8:c5:30:11:59:bf:af:88: 91:73:5a:e6:31:04:be:f2:5c:01:ae:b9:e2:d2:52:d3:8b:3b: c8:e4:2c:4b:f5:b5:07:a8:9b:13:ee:2f:d8:96:33:ca:d0:1e: c7:02:be:23:59:f1:1a:41:ab:8d:a6:34:78:65:d5:87:5b:34: 4d:4d:22:e1:6e:d0:83:df:cf:e0:b5:4d:0d:2f:22:d0:5d:b2: cf:70:5d:56:f4:a0:02:97:84:52:79:fa:0a:81:d4:d4:99:d6: b4:44:4e:60:9a:a4:f3:fe:bd:8d:b1:e4:5a:ac:78:ee:83:81: 04:e3:68:27:04:9b:61:b2:fa:04:c2:15:6c:9c:38:09:1a:e0: b5:ad:ff:d2:db:a4:10:56:21:ca:65:4e:2b:26:77:e6:88:a3: e7:ef:f0:27:eb:93:d9:29:98:a7:94:79:72:4d:90:5b:17:6e: 77:2a:8c:87:3a:55:d5:17:95:f5:83:4e:c6:6e:3d:12:01:e7: 4b:4b:7e:cf:3c:6c:53:6a:4d:e8:9a:50:b9:dc:1b:6a:e8:c0: 7d:01:e7:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTUwNEUxMTAvBgNVBAUTKEU0NzdEMzhBQUFDNEEzN0NDNkRGMTY2NUJGMUM4ODBB Rjk5QjdCNEYwHhcNMjUwOTA1MDA1MzA4WhcNMjUwOTEyMDA1MzA4WjAYMRYwFAYD VQQDEw02OGJhMzQ3NC1hMWZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAteWYIgTyFQarlHGCWXlN0wezgXTz6Qo6bj/KZ5zgB58ARFo9K0R77ceqyHNu nq1x4I2okxo9FayL3MsK1ar8Wo/lNtWD9RMttZs1XkLHjJJPp5kb93VkcOmthd1+ R3G9to6IWvhxRzD3Lh865u3A2HurlDLlnQb9+MtE8Kq3OYSX3xNuwJaXwQ8sq3FE CsvYBWP+4/CleMFxE/Ra0uK1t/INLm6xABztYO0LNsoGBt5nnAYwF4D51Fbug5Ay l9PPh3I9Exl8MnU+A4aV1PdRltummlz79PyQHPvgpZ0rKGD2Qj/dNjv3hEwNakJo jW2xbqq9hMA1V8Z0il8EffxncwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD9kfNa3 kkE5oDd/5d9TE8LOpFmlMB8GA1UdIwQYMBaAFOR304qqxKN8xt8WZb8ciAr5m3tP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTA0RS80RTNFMzY3RTk2 MDgxMUVDQTA0QTAwODZDNEY5QUUwMi81SGZUaXFyRW8zekczeFpsdnh5SUN2bWJl MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzVIZlRpcXJFbzN6RzN4Wmx2eHlJQ3ZtYmUwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTA0RS80RTNFMzY3RTk2MDgxMUVDQTA0QTAwODZDNEY5QUUwMi81SGZUaXFyRW8z ekczeFpsdnh5SUN2bWJlMDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDAfBt0HKk1sfyIntCSatPTG9OH22L8IyRHfJJ0nXC0JU3BbAbnL7Cc xj80f9WMuMUwEVm/r4iRc1rmMQS+8lwBrrni0lLTizvI5CxL9bUHqJsT7i/YljPK 0B7HAr4jWfEaQauNpjR4ZdWHWzRNTSLhbtCD38/gtU0NLyLQXbLPcF1W9KACl4RS efoKgdTUmda0RE5gmqTz/r2NseRarHjug4EE42gnBJthsvoEwhVsnDgJGuC1rf/S 26QQViHKZU4rJnfmiKPn7/An65PZKZinlHlyTZBbF253KoyHOlXVF5X1g07Gbj0S AedLS37PPGxTak3omlC53Btq6MB9AedG -----END CERTIFICATE-----Generated at Sat Sep 6 21:09:08 2025 by rpki-client