$ rpki-client -vvf rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/5nG8sr6VpsiFJxIdiBXovPGKoeI.mft File: 5nG8sr6VpsiFJxIdiBXovPGKoeI.mft (raw, json) Hash identifier: UF7Ogm9U8cqdtfRUzOwdLFZTUPguJEz638lCoBZwf9I= Subject key identifier: 92:25:AD:5C:AC:21:21:3A:0A:9D:C2:37:6E:98:FD:78:94:2F:0B:A4 Authority key identifier: E6:71:BC:B2:BE:95:A6:C8:85:27:12:1D:88:15:E8:BC:F1:8A:A1:E2 Certificate issuer: /CN=A9124926/serialNumber=E671BCB2BE95A6C88527121D8815E8BCF18AA1E2 Certificate serial: 09EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5nG8sr6VpsiFJxIdiBXovPGKoeI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/5nG8sr6VpsiFJxIdiBXovPGKoeI.mft Manifest number: 09E6 Signing time: Fri 08 Aug 2025 20:13:29 +0000 Manifest this update: Fri 08 Aug 2025 20:13:28 +0000 Manifest next update: Fri 15 Aug 2025 20:13:28 +0000 Files and hashes: 1: 5nG8sr6VpsiFJxIdiBXovPGKoeI.crl (hash: 7gmXg/FpQnpm2Ul/do56h240xyjO/2WEP0LZjLbyZt0=) 2: 209BA8B682DF11EAABBC5018C4F9AE02.roa (hash: BPcITeixSaXAriwkv0vsDzYrlqCAlvQdRZ4cRFHy1EA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/5nG8sr6VpsiFJxIdiBXovPGKoeI.crl rsync://rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/5nG8sr6VpsiFJxIdiBXovPGKoeI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5nG8sr6VpsiFJxIdiBXovPGKoeI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2543 (0x9ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9124926, serialNumber=E671BCB2BE95A6C88527121D8815E8BCF18AA1E2 Validity Not Before: Aug 8 20:13:28 2025 GMT Not After : Aug 15 20:13:28 2025 GMT Subject: CN=68965a68-3752 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:ed:0d:b5:7d:eb:cd:a1:52:df:5b:d3:00:22: 69:6a:3c:01:b4:67:4c:41:d1:01:b7:0e:60:a6:50: a6:cd:11:27:ef:c3:16:39:4b:13:c7:06:ad:9a:50: 63:2e:75:44:d4:10:e6:b6:18:5c:d4:35:c9:95:23: 55:23:45:03:4e:b7:ce:94:42:33:16:16:d7:1b:e3: 54:42:96:f7:65:2d:30:e3:8f:fe:ec:69:8f:60:6c: f2:5e:8e:a6:d6:41:91:53:42:c9:6e:6c:43:a7:e2: 4a:6f:77:7c:d3:d9:b7:65:16:71:c2:f8:3d:80:e6: 73:12:1d:c8:a2:0e:ee:bb:42:d9:27:f5:50:5c:d8: 45:51:10:2c:b2:37:ef:ac:2e:df:3f:6f:5a:ac:bf: dd:eb:cc:75:6f:46:56:9f:a9:78:c9:06:e1:27:20: 2d:8c:5b:f5:e9:91:76:8a:0b:70:3f:a2:37:a1:0a: 3c:c4:aa:ba:d6:da:ee:4e:fd:44:44:e1:6a:b2:03: 4b:4a:ac:b4:e3:5a:b4:0e:ed:dc:0c:04:0a:86:c3: 6b:17:db:a4:0f:09:57:a9:f9:f4:73:e4:44:4c:ef: 6e:e4:e8:fc:a6:71:a8:9a:8d:15:f0:30:df:f3:28: de:fa:ac:60:d5:36:57:82:15:7b:c5:47:4c:0a:8a: c2:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:25:AD:5C:AC:21:21:3A:0A:9D:C2:37:6E:98:FD:78:94:2F:0B:A4 X509v3 Authority Key Identifier: keyid:E6:71:BC:B2:BE:95:A6:C8:85:27:12:1D:88:15:E8:BC:F1:8A:A1:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/5nG8sr6VpsiFJxIdiBXovPGKoeI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5nG8sr6VpsiFJxIdiBXovPGKoeI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/5nG8sr6VpsiFJxIdiBXovPGKoeI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:d5:1d:8b:92:41:32:f8:86:68:0c:6d:ea:24:d6:5a:fd:06: e1:e2:50:5c:d8:2c:54:3a:12:af:be:bf:d4:2b:bd:0c:5e:ee: 77:79:40:a4:5e:76:b5:b4:78:ae:8a:e2:34:62:16:78:79:22: 5a:65:fe:df:26:c6:ec:d4:af:ff:11:52:5d:72:26:d5:31:06: 82:59:ad:37:70:37:08:c6:f2:fa:97:1e:c6:6c:0d:2c:a4:a6: 1f:ce:f6:f4:77:18:3c:f4:18:db:4b:0a:4a:30:f4:1a:13:3c: 26:9a:98:c6:23:29:44:2c:29:71:71:ce:9c:22:0f:20:d2:46: 04:24:06:13:84:0e:6b:84:e9:5c:a5:62:a6:f4:89:e8:34:a3: a9:11:91:43:30:ac:ec:c2:cf:63:5c:7c:24:9e:4e:d9:a6:91: aa:8c:f2:e7:f6:0a:af:47:16:c8:5b:2d:f1:14:f5:33:fd:bb: b2:db:db:c2:4f:1c:07:16:12:a0:8d:ac:8d:12:56:ed:1b:82: 46:f9:43:dd:19:51:a5:bf:b6:80:b7:24:bb:dd:ec:7c:12:b9: c2:81:e5:00:61:70:0f:2d:e9:59:c6:cf:01:4a:9c:6c:4d:63: a6:49:72:ed:06:ba:79:ce:4b:e7:f3:01:51:3f:94:2e:c7:f2: 9d:3f:a5:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCe8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQ5MjYxMTAvBgNVBAUTKEU2NzFCQ0IyQkU5NUE2Qzg4NTI3MTIxRDg4MTVFOEJD RjE4QUExRTIwHhcNMjUwODA4MjAxMzI4WhcNMjUwODE1MjAxMzI4WjAYMRYwFAYD VQQDEw02ODk2NWE2OC0zNzUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6+0NtX3rzaFS31vTACJpajwBtGdMQdEBtw5gplCmzREn78MWOUsTxwatmlBj LnVE1BDmthhc1DXJlSNVI0UDTrfOlEIzFhbXG+NUQpb3ZS0w44/+7GmPYGzyXo6m 1kGRU0LJbmxDp+JKb3d809m3ZRZxwvg9gOZzEh3Iog7uu0LZJ/VQXNhFURAssjfv rC7fP29arL/d68x1b0ZWn6l4yQbhJyAtjFv16ZF2igtwP6I3oQo8xKq61truTv1E ROFqsgNLSqy041q0Du3cDAQKhsNrF9ukDwlXqfn0c+RETO9u5Oj8pnGomo0V8DDf 8yje+qxg1TZXghV7xUdMCorCXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJIlrVys ISE6Cp3CN26Y/XiULwukMB8GA1UdIwQYMBaAFOZxvLK+labIhScSHYgV6LzxiqHi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDkyNi9CMzg1NzhDNDgy RDkxMUVBQjlGQ0QyODVDNEY5QUUwMi81bkc4c3I2VnBzaUZKeElkaUJYb3ZQR0tv ZUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVuRzhzcjZWcHNpRkp4SWRpQlhvdlBHS29lSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NDkyNi9CMzg1NzhDNDgyRDkxMUVBQjlGQ0QyODVDNEY5QUUwMi81bkc4c3I2VnBz aUZKeElkaUJYb3ZQR0tvZUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBC1R2LkkEy+IZoDG3qJNZa/Qbh4lBc2CxUOhKvvr/UK70MXu53eUCk Xna1tHiuiuI0YhZ4eSJaZf7fJsbs1K//EVJdcibVMQaCWa03cDcIxvL6lx7GbA0s pKYfzvb0dxg89BjbSwpKMPQaEzwmmpjGIylELClxcc6cIg8g0kYEJAYThA5rhOlc pWKm9InoNKOpEZFDMKzsws9jXHwknk7ZppGqjPLn9gqvRxbIWy3xFPUz/buy29vC TxwHFhKgjayNElbtG4JG+UPdGVGlv7aAtyS73ex8ErnCgeUAYXAPLelZxs8BSpxs TWOmSXLtBrp5zkvn8wFRP5Qux/KdP6VC -----END CERTIFICATE-----Generated at Sun Aug 10 18:48:32 2025 by rpki-client