$ rpki-client -vvf rpki.apnic.net/member_repository/A91F08FA/D37F625CE73D11EF8A046217C4F9AE02/C5I347CGtYw82c5v1JrCYffVJaM.mft File: C5I347CGtYw82c5v1JrCYffVJaM.mft (raw, json) Hash identifier: UFdqKN1nC4o/Mbkuzz3Cxgm6PMoVm7aUXT+DV5cWsoU= Subject key identifier: E0:FF:7A:11:5C:95:60:29:DA:9A:B3:A5:1F:C1:DE:6F:7F:33:0D:A1 Authority key identifier: 0B:92:37:E3:B0:86:B5:8C:3C:D9:CE:6F:D4:9A:C2:61:F7:D5:25:A3 Certificate issuer: /CN=A91F08FA/serialNumber=0B9237E3B086B58C3CD9CE6FD49AC261F7D525A3 Certificate serial: 6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C5I347CGtYw82c5v1JrCYffVJaM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F08FA/D37F625CE73D11EF8A046217C4F9AE02/C5I347CGtYw82c5v1JrCYffVJaM.mft Manifest number: 66 Signing time: Tue 19 Aug 2025 07:31:23 +0000 Manifest this update: Tue 19 Aug 2025 07:31:22 +0000 Manifest next update: Tue 26 Aug 2025 07:31:22 +0000 Files and hashes: 1: C5I347CGtYw82c5v1JrCYffVJaM.crl (hash: P2aIJRcZq/dqaZjF946z6pj1IdlsAGKIyBKOMBzjc50=) 2: B4F27262FA2911EFA783CE2DC4F9AE02.roa (hash: bP9/t2AlBY53g2t6Q5eQ3rldZs73eo2gwKpDvHbyV4Y=) 3: 9C9C1046F7CD11EF9245601CC4F9AE02.roa (hash: DqTJbrCn4Uj3CYLjBwjQvRunEdKhXtsy8A7Y63yZ9r4=) 4: 24E20F9E6B7011F0ACA1BB56C4F9AE02.roa (hash: LBvJJ/XeKAW7YpPt8QijWt6ARJJn+Uyg1XhvCYuwjks=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F08FA/D37F625CE73D11EF8A046217C4F9AE02/C5I347CGtYw82c5v1JrCYffVJaM.crl rsync://rpki.apnic.net/member_repository/A91F08FA/D37F625CE73D11EF8A046217C4F9AE02/C5I347CGtYw82c5v1JrCYffVJaM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C5I347CGtYw82c5v1JrCYffVJaM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 07:31:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 106 (0x6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F08FA, serialNumber=0B9237E3B086B58C3CD9CE6FD49AC261F7D525A3 Validity Not Before: Aug 19 07:31:22 2025 GMT Not After : Aug 26 07:31:22 2025 GMT Subject: CN=68a4284a-e4f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:af:90:96:26:f9:0b:14:b0:3c:a4:1d:cd:fd: 01:49:e6:43:f2:7a:13:40:48:90:52:8e:98:ae:9b: 63:b3:d3:ab:6d:14:85:05:bc:81:c8:23:67:00:4f: f4:ca:f8:7e:06:e9:09:04:96:79:73:6d:9e:14:19: 0d:1d:c8:d4:c4:88:60:e3:ec:ac:41:39:32:78:5b: a3:2d:d2:98:ec:b4:2e:41:aa:b9:a5:39:12:23:63: 2b:67:83:86:6c:c6:30:d6:38:3e:36:81:41:8c:be: 9a:7b:5c:42:1d:1b:6f:1e:54:3c:1f:32:69:07:8c: a4:fa:3f:b2:98:83:6e:a1:a9:d7:50:78:b9:86:ad: 5f:1f:76:9c:21:48:a2:2a:ea:83:cc:8d:9f:76:54: 19:bf:7e:a5:1a:fc:1d:2a:70:ab:c0:09:17:f0:ff: d5:bc:2a:a7:c2:b1:61:f5:5f:ef:60:11:da:4e:06: 11:f3:58:d7:7a:81:0b:80:a5:42:d4:fb:05:3d:42: 1e:a0:12:be:08:ee:d6:60:c0:01:4d:29:32:fc:14: 79:28:3e:39:52:0e:9c:96:55:93:f6:eb:b2:c8:6f: b7:7e:ba:59:3c:dc:4b:77:38:3c:42:b9:4a:08:53: c7:e5:2b:31:d0:bf:b9:74:96:eb:dc:6b:67:3b:e8: 0c:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:FF:7A:11:5C:95:60:29:DA:9A:B3:A5:1F:C1:DE:6F:7F:33:0D:A1 X509v3 Authority Key Identifier: keyid:0B:92:37:E3:B0:86:B5:8C:3C:D9:CE:6F:D4:9A:C2:61:F7:D5:25:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F08FA/D37F625CE73D11EF8A046217C4F9AE02/C5I347CGtYw82c5v1JrCYffVJaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C5I347CGtYw82c5v1JrCYffVJaM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F08FA/D37F625CE73D11EF8A046217C4F9AE02/C5I347CGtYw82c5v1JrCYffVJaM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:96:52:c2:0d:64:00:07:5a:c1:8b:99:c1:2e:51:4b:f9:98: 53:ff:3d:3c:1e:3b:28:ee:f2:8a:03:02:b0:25:cd:6f:19:e8: eb:d5:cb:e9:ba:18:12:19:ca:ae:22:f1:f5:07:31:07:53:e3: f4:cd:0f:ae:3a:a9:2e:09:5d:6e:05:58:9e:d6:75:a2:95:de: c8:b5:76:e9:0e:63:e0:66:50:d3:50:28:6d:0b:9c:6d:11:07: ed:cc:e9:ef:08:8b:d5:6b:0f:63:b1:4c:f3:36:e9:89:f7:60: f9:c1:b1:19:b2:46:86:66:4f:78:77:35:c6:e1:a7:14:22:95: 95:a2:4f:88:45:d0:cb:fd:5e:72:a3:34:eb:ef:cb:e5:dc:04: bc:52:b0:da:40:fa:3b:1f:ae:bd:8d:a0:21:e0:a0:5f:73:fc: 28:0f:4d:d5:d4:a7:0d:d0:b0:e9:92:a8:51:e1:10:7a:9f:91: 24:ba:a1:10:07:55:3f:9c:18:eb:92:5a:e4:59:e7:1f:1e:1b: 3f:07:2e:0b:ea:8e:aa:f9:34:ea:a0:6a:e1:7b:72:15:38:2c: aa:88:2a:d4:48:e5:2b:c9:95:67:c1:c0:bd:74:af:43:69:4f: c1:da:03:5f:15:c1:64:7c:a7:6f:6f:75:e7:84:84:de:04:ce: 05:cf:f3:d7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBajANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MDhGQTExMC8GA1UEBRMoMEI5MjM3RTNCMDg2QjU4QzNDRDlDRTZGRDQ5QUMyNjFG N0Q1MjVBMzAeFw0yNTA4MTkwNzMxMjJaFw0yNTA4MjYwNzMxMjJaMBgxFjAUBgNV BAMTDTY4YTQyODRhLWU0ZjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+r5CWJvkLFLA8pB3N/QFJ5kPyehNASJBSjpium2Oz06ttFIUFvIHII2cAT/TK +H4G6QkElnlzbZ4UGQ0dyNTEiGDj7KxBOTJ4W6Mt0pjstC5BqrmlORIjYytng4Zs xjDWOD42gUGMvpp7XEIdG28eVDwfMmkHjKT6P7KYg26hqddQeLmGrV8fdpwhSKIq 6oPMjZ92VBm/fqUa/B0qcKvACRfw/9W8KqfCsWH1X+9gEdpOBhHzWNd6gQuApULU +wU9Qh6gEr4I7tZgwAFNKTL8FHkoPjlSDpyWVZP267LIb7d+ulk83Et3ODxCuUoI U8flKzHQv7l0luvca2c76AyLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU4P96EVyV YCnamrOlH8Heb38zDaEwHwYDVR0jBBgwFoAUC5I347CGtYw82c5v1JrCYffVJaMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYwOEZBL0QzN0Y2MjVDRTcz RDExRUY4QTA0NjIxN0M0RjlBRTAyL0M1STM0N0NHdFl3ODJjNXYxSnJDWWZmVkph TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQzVJMzQ3Q0d0WXc4MmM1djFKckNZZmZWSmFNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYw OEZBL0QzN0Y2MjVDRTczRDExRUY4QTA0NjIxN0M0RjlBRTAyL0M1STM0N0NHdFl3 ODJjNXYxSnJDWWZmVkphTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJeWUsINZAAHWsGLmcEuUUv5mFP/PTweOyju8ooDArAlzW8Z6OvVy+m6 GBIZyq4i8fUHMQdT4/TND646qS4JXW4FWJ7WdaKV3si1dukOY+BmUNNQKG0LnG0R B+3M6e8Ii9VrD2OxTPM26Yn3YPnBsRmyRoZmT3h3NcbhpxQilZWiT4hF0Mv9XnKj NOvvy+XcBLxSsNpA+jsfrr2NoCHgoF9z/CgPTdXUpw3QsOmSqFHhEHqfkSS6oRAH VT+cGOuSWuRZ5x8eGz8HLgvqjqr5NOqgauF7chU4LKqIKtRI5SvJlWfBwL10r0Np T8HaA18VwWR8p29vdeeEhN4EzgXP89c= -----END CERTIFICATE-----Generated at Wed Aug 20 15:33:16 2025 by rpki-client