$ rpki-client -vvf rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft File: 5igiDz_QD0F7mXLh1KD2QWlueZk.mft (raw, json) Hash identifier: ddqwiooIUenAQXb9QzCintTlBIfu3lmo6CFutVYAsxw= Subject key identifier: 8A:39:14:34:68:AA:3E:53:8A:78:E6:13:A6:58:8B:A0:A4:EB:27:97 Authority key identifier: E6:28:22:0F:3F:D0:0F:41:7B:99:72:E1:D4:A0:F6:41:69:6E:79:99 Certificate issuer: /CN=A912E31D/serialNumber=E628220F3FD00F417B9972E1D4A0F641696E7999 Certificate serial: 57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5igiDz_QD0F7mXLh1KD2QWlueZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft Manifest number: 55 Signing time: Mon 11 Aug 2025 07:30:16 +0000 Manifest this update: Mon 11 Aug 2025 07:30:15 +0000 Manifest next update: Mon 18 Aug 2025 07:30:15 +0000 Files and hashes: 1: 5igiDz_QD0F7mXLh1KD2QWlueZk.crl (hash: dZUIYLbZHBhRJcqmtH7iAZgbQ0As9++vQNxttpI0DIA=) 2: 9CDF0C0CFA4311EFAEC6A81AC4F9AE02.roa (hash: A659tR0soBiQRXoeD1FPvGrYfSs+v9kVVN6MSoHXtyU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.crl rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5igiDz_QD0F7mXLh1KD2QWlueZk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 87 (0x57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E31D, serialNumber=E628220F3FD00F417B9972E1D4A0F641696E7999 Validity Not Before: Aug 11 07:30:15 2025 GMT Not After : Aug 18 07:30:15 2025 GMT Subject: CN=68999c07-1823 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:e4:10:28:3d:40:be:a6:49:10:cc:43:72:fe: 56:fe:b8:21:1a:f4:08:72:05:c7:9d:f3:45:7c:33: 1d:b7:4c:34:c3:20:48:f6:f6:ea:45:94:f3:8b:7f: a5:c7:e2:b2:0e:71:19:73:e8:f7:44:a2:73:78:b6: f3:86:30:0e:68:3f:21:27:ad:60:c8:15:78:03:9a: fc:b6:66:e0:c1:e4:8e:7d:74:b1:89:c8:30:f4:99: 72:7e:53:a4:c2:66:ea:a3:4c:15:9a:c0:e1:3b:cb: a7:9b:48:62:87:b6:6b:3b:e1:32:59:4d:b5:74:63: fb:4f:1c:fa:d0:8a:74:84:21:c0:cb:98:23:40:a8: bf:23:f4:e3:f9:52:72:3c:67:e6:ce:63:2a:be:ff: 38:ff:70:fe:bf:75:7e:6e:1a:a7:f8:79:7a:49:c2: 07:27:b6:e3:ab:49:2b:cb:e2:c0:ff:6b:91:56:5d: c1:0f:47:ab:15:9d:74:37:9f:d9:fe:5a:88:ef:bb: c4:dc:44:8c:da:62:12:e7:50:cb:e8:2c:49:05:d3: 93:b5:48:86:50:21:18:8b:c4:01:57:ab:5f:79:ea: fc:56:60:b7:05:67:a1:8d:62:57:5e:74:51:d4:35: 1f:ba:cb:26:9f:a6:c0:c5:00:99:0e:56:d1:89:b4: 5b:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:39:14:34:68:AA:3E:53:8A:78:E6:13:A6:58:8B:A0:A4:EB:27:97 X509v3 Authority Key Identifier: keyid:E6:28:22:0F:3F:D0:0F:41:7B:99:72:E1:D4:A0:F6:41:69:6E:79:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5igiDz_QD0F7mXLh1KD2QWlueZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:25:59:a6:37:01:a4:0a:fa:e5:37:48:f4:c2:4e:00:21:93: f7:c5:6d:98:2a:09:a6:b0:a3:1f:e0:54:31:bc:a4:38:a5:16: fb:43:d3:e2:5d:dc:a3:81:7f:57:cf:6f:85:59:33:c3:b4:13: 15:81:4e:e9:af:74:7b:95:e3:eb:02:7b:7c:41:c6:26:dc:c8: c3:ba:d5:26:df:66:23:51:fa:af:17:38:d6:27:ed:f2:5c:04: 1c:6c:f7:a9:cb:e2:af:19:82:d0:a1:16:53:78:e6:32:45:33: 68:02:91:07:69:f0:a6:4d:3f:c1:14:21:31:5b:fc:ff:7d:47: 36:77:89:41:fc:05:0e:89:a8:9f:bb:ce:cc:f1:b9:aa:10:a8: 1f:50:39:9e:43:88:79:0f:a7:f0:39:43:e1:59:29:b2:17:19: d0:22:91:76:d4:f4:c3:7a:07:23:3b:eb:ec:c3:f3:ca:0a:80: e2:25:83:37:3c:a4:88:df:ef:bb:b0:ca:7c:34:04:76:97:36: d3:58:a3:b9:26:a8:18:42:54:72:63:91:13:82:b5:5d:b9:3f: 95:33:ac:1e:4f:bb:c6:9e:c5:90:5a:d6:eb:3b:fc:33:2e:6d: 3c:85:55:86:86:c1:d1:67:b8:8c:5b:76:f0:2f:1a:83:fc:45: 10:5c:91:86 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy RTMxRDExMC8GA1UEBRMoRTYyODIyMEYzRkQwMEY0MTdCOTk3MkUxRDRBMEY2NDE2 OTZFNzk5OTAeFw0yNTA4MTEwNzMwMTVaFw0yNTA4MTgwNzMwMTVaMBgxFjAUBgNV BAMTDTY4OTk5YzA3LTE4MjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDM5BAoPUC+pkkQzENy/lb+uCEa9AhyBced80V8Mx23TDTDIEj29upFlPOLf6XH 4rIOcRlz6PdEonN4tvOGMA5oPyEnrWDIFXgDmvy2ZuDB5I59dLGJyDD0mXJ+U6TC ZuqjTBWawOE7y6ebSGKHtms74TJZTbV0Y/tPHPrQinSEIcDLmCNAqL8j9OP5UnI8 Z+bOYyq+/zj/cP6/dX5uGqf4eXpJwgcntuOrSSvL4sD/a5FWXcEPR6sVnXQ3n9n+ Wojvu8TcRIzaYhLnUMvoLEkF05O1SIZQIRiLxAFXq1956vxWYLcFZ6GNYldedFHU NR+6yyafpsDFAJkOVtGJtFslAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUijkUNGiq PlOKeOYTpliLoKTrJ5cwHwYDVR0jBBgwFoAU5igiDz/QD0F7mXLh1KD2QWlueZkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJFMzFELzJDRjZCOEIwRjlD OTExRUZBNTRGNzYyQUM0RjlBRTAyLzVpZ2lEel9RRDBGN21YTGgxS0QyUVdsdWVa ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNWlnaUR6X1FEMEY3bVhMaDFLRDJRV2x1ZVprLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJF MzFELzJDRjZCOEIwRjlDOTExRUZBNTRGNzYyQUM0RjlBRTAyLzVpZ2lEel9RRDBG N21YTGgxS0QyUVdsdWVaay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACwlWaY3AaQK+uU3SPTCTgAhk/fFbZgqCaawox/gVDG8pDilFvtD0+Jd 3KOBf1fPb4VZM8O0ExWBTumvdHuV4+sCe3xBxibcyMO61SbfZiNR+q8XONYn7fJc BBxs96nL4q8ZgtChFlN45jJFM2gCkQdp8KZNP8EUITFb/P99RzZ3iUH8BQ6JqJ+7 zszxuaoQqB9QOZ5DiHkPp/A5Q+FZKbIXGdAikXbU9MN6ByM76+zD88oKgOIlgzc8 pIjf77uwynw0BHaXNtNYo7kmqBhCVHJjkROCtV25P5UzrB5Pu8aexZBa1us7/DMu bTyFVYaGwdFnuIxbdvAvGoP8RRBckYY= -----END CERTIFICATE-----Generated at Mon Aug 11 09:02:48 2025 by rpki-client