$ rpki-client -vvf rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft File: 5igiDz_QD0F7mXLh1KD2QWlueZk.mft (raw, json) Hash identifier: /gliLROdPpCdmtSjgwjKLvC5SYSQru979/N6Qq6smx4= Subject key identifier: 43:79:D0:74:9B:6A:88:3C:70:24:69:D6:6F:68:A1:35:10:AE:CF:5A Authority key identifier: E6:28:22:0F:3F:D0:0F:41:7B:99:72:E1:D4:A0:F6:41:69:6E:79:99 Certificate issuer: /CN=A912E31D/serialNumber=E628220F3FD00F417B9972E1D4A0F641696E7999 Certificate serial: 81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5igiDz_QD0F7mXLh1KD2QWlueZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft Manifest number: 7F Signing time: Mon 03 Nov 2025 06:44:06 +0000 Manifest this update: Mon 03 Nov 2025 06:44:05 +0000 Manifest next update: Mon 10 Nov 2025 06:44:05 +0000 Files and hashes: 1: 5igiDz_QD0F7mXLh1KD2QWlueZk.crl (hash: 3EVbbHHFm+9niwmwYBO8i1uMOpuHLhbIPWF9ZCqgc2g=) 2: 9CDF0C0CFA4311EFAEC6A81AC4F9AE02.roa (hash: A659tR0soBiQRXoeD1FPvGrYfSs+v9kVVN6MSoHXtyU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.crl rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5igiDz_QD0F7mXLh1KD2QWlueZk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 129 (0x81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E31D, serialNumber=E628220F3FD00F417B9972E1D4A0F641696E7999 Validity Not Before: Nov 3 06:44:05 2025 GMT Not After : Nov 10 06:44:05 2025 GMT Subject: CN=69084f36-d5e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a9:7d:dd:a3:86:1c:51:d5:2b:2a:f9:d9:45: 4a:9c:cb:34:ab:0b:df:44:1a:94:39:7e:e6:17:ca: 89:61:3b:33:ce:f3:79:08:b5:36:ce:e2:06:c1:db: 9a:22:16:bc:7c:40:46:b5:a5:08:84:18:04:c9:c1: 94:45:45:be:d4:d1:7a:28:65:ae:f0:b1:23:bf:15: b6:65:17:22:84:53:4a:51:d6:d7:47:e1:7a:e5:45: 86:b0:ca:5d:53:0b:73:5f:59:4d:d1:79:83:26:be: 38:04:bb:ae:e0:19:31:7a:d0:7f:46:23:e7:ac:4b: 3f:63:23:1c:46:4d:ce:d9:6e:a3:1f:a3:27:50:aa: 6c:0c:28:b4:f4:cb:fa:25:43:82:70:c1:f5:bc:cb: 07:22:4d:88:9a:95:a5:d4:8a:76:27:cf:96:c7:3b: a8:95:b5:8f:24:09:ab:b6:af:02:f9:a0:fd:33:f1: 3b:5d:ea:20:1d:91:4c:55:93:1d:d3:e5:58:85:28: f8:86:21:99:cc:f5:00:60:8b:fd:8c:7d:fd:ec:66: 89:74:44:0c:d7:04:0b:2f:fa:cd:e1:ac:d2:de:cc: db:90:f6:2f:de:09:1c:29:1c:ee:36:d0:97:01:f6: 7e:54:95:76:47:da:29:0c:30:6e:d2:e7:f7:8a:54: a3:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:79:D0:74:9B:6A:88:3C:70:24:69:D6:6F:68:A1:35:10:AE:CF:5A X509v3 Authority Key Identifier: keyid:E6:28:22:0F:3F:D0:0F:41:7B:99:72:E1:D4:A0:F6:41:69:6E:79:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5igiDz_QD0F7mXLh1KD2QWlueZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:ca:a5:12:35:87:94:f6:84:ad:44:04:31:4b:1a:cc:08:0c: a6:ee:9e:ac:45:77:52:de:fd:d6:27:e0:29:97:dd:3a:9b:ec: 9c:2e:60:ef:bc:b8:60:93:76:25:84:0e:10:b4:db:e7:56:97: 80:03:87:f5:d5:e3:71:00:69:0b:4a:5b:c1:aa:69:4d:c5:7a: 14:85:1b:39:95:73:2d:5e:40:43:09:26:f0:0c:f6:63:a7:36: 65:8f:df:21:62:ea:27:76:5f:97:59:3e:0f:61:e0:2b:8c:ed: 15:f0:79:b4:da:c2:23:dd:08:50:cb:9b:18:87:19:46:b8:af: ec:4e:34:cc:9a:93:0e:e5:be:bc:22:f8:99:e4:65:fb:cd:22: d2:f1:86:43:d5:3e:f1:44:80:93:7a:52:1d:e7:5b:dc:2d:8b: d3:a1:68:12:39:26:04:b3:f5:d5:cd:8e:29:e0:06:25:a8:dd: 59:0e:67:18:f8:ad:15:22:74:d3:e2:be:01:8f:d9:46:af:91: 44:a0:ac:af:2f:37:03:f9:9a:9e:0d:d3:29:39:e6:33:82:13: 71:ad:86:13:34:50:25:1e:30:9d:f4:e6:9b:84:9a:09:5b:aa: 5b:15:8a:dd:a3:59:09:d4:ef:97:21:34:21:70:96:3a:09:91: 1f:de:d6:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkUzMUQxMTAvBgNVBAUTKEU2MjgyMjBGM0ZEMDBGNDE3Qjk5NzJFMUQ0QTBGNjQx Njk2RTc5OTkwHhcNMjUxMTAzMDY0NDA1WhcNMjUxMTEwMDY0NDA1WjAYMRYwFAYD VQQDEw02OTA4NGYzNi1kNWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtKl93aOGHFHVKyr52UVKnMs0qwvfRBqUOX7mF8qJYTszzvN5CLU2zuIGwdua Iha8fEBGtaUIhBgEycGURUW+1NF6KGWu8LEjvxW2ZRcihFNKUdbXR+F65UWGsMpd UwtzX1lN0XmDJr44BLuu4BkxetB/RiPnrEs/YyMcRk3O2W6jH6MnUKpsDCi09Mv6 JUOCcMH1vMsHIk2ImpWl1Ip2J8+WxzuolbWPJAmrtq8C+aD9M/E7XeogHZFMVZMd 0+VYhSj4hiGZzPUAYIv9jH397GaJdEQM1wQLL/rN4azS3szbkPYv3gkcKRzuNtCX AfZ+VJV2R9opDDBu0uf3ilSj7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEN50HSb aog8cCRp1m9ooTUQrs9aMB8GA1UdIwQYMBaAFOYoIg8/0A9Be5ly4dSg9kFpbnmZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTMxRC8yQ0Y2QjhCMEY5 QzkxMUVGQTU0Rjc2MkFDNEY5QUUwMi81aWdpRHpfUUQwRjdtWExoMUtEMlFXbHVl WmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVpZ2lEel9RRDBGN21YTGgxS0QyUVdsdWVaay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RTMxRC8yQ0Y2QjhCMEY5QzkxMUVGQTU0Rjc2MkFDNEY5QUUwMi81aWdpRHpfUUQw RjdtWExoMUtEMlFXbHVlWmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/yqUSNYeU9oStRAQxSxrMCAym7p6sRXdS3v3WJ+Apl906m+ycLmDv vLhgk3YlhA4QtNvnVpeAA4f11eNxAGkLSlvBqmlNxXoUhRs5lXMtXkBDCSbwDPZj pzZlj98hYuondl+XWT4PYeArjO0V8Hm02sIj3QhQy5sYhxlGuK/sTjTMmpMO5b68 IviZ5GX7zSLS8YZD1T7xRICTelId51vcLYvToWgSOSYEs/XVzY4p4AYlqN1ZDmcY +K0VInTT4r4Bj9lGr5FEoKyvLzcD+ZqeDdMpOeYzghNxrYYTNFAlHjCd9OabhJoJ W6pbFYrdo1kJ1O+XITQhcJY6CZEf3taK -----END CERTIFICATE-----Generated at Tue Nov 4 02:15:01 2025 by rpki-client