$ rpki-client -vvf rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.mft File: 5vEsD995brDfK2AuWsQsy4OyLhg.mft (raw, json) Hash identifier: bY5ABVsz3M4xk+AjsQu3+wkfydbOT+rc/MeOP5Bp+lA= Subject key identifier: 86:8F:A9:43:D0:9C:C8:9F:04:C4:E0:AF:41:31:28:6A:09:38:4A:E9 Authority key identifier: E6:F1:2C:0F:DF:79:6E:B0:DF:2B:60:2E:5A:C4:2C:CB:83:B2:2E:18 Certificate issuer: /CN=A914E3B7/serialNumber=E6F12C0FDF796EB0DF2B602E5AC42CCB83B22E18 Certificate serial: 34A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vEsD995brDfK2AuWsQsy4OyLhg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.mft Manifest number: 34A5 Signing time: Sun 10 Aug 2025 15:07:39 +0000 Manifest this update: Sun 10 Aug 2025 15:07:39 +0000 Manifest next update: Sun 17 Aug 2025 15:07:39 +0000 Files and hashes: 1: 5vEsD995brDfK2AuWsQsy4OyLhg.crl (hash: F4yyvfacbkNIFA5xRpNqrH//VuiDAWB5kNt1aH13j64=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.crl rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vEsD995brDfK2AuWsQsy4OyLhg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13480 (0x34a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E3B7, serialNumber=E6F12C0FDF796EB0DF2B602E5AC42CCB83B22E18 Validity Not Before: Aug 10 15:07:39 2025 GMT Not After : Aug 17 15:07:39 2025 GMT Subject: CN=6898b5bb-373f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:04:e6:2c:9c:36:46:4f:04:40:c6:ca:ba:37: 5c:04:ae:9d:62:f9:fc:ec:79:21:e5:de:5e:65:7e: 33:a2:2f:65:66:d7:df:b4:1c:39:de:78:e6:62:83: 35:0d:ac:4e:0c:03:01:6f:74:30:7c:1f:15:b1:19: 46:57:2c:1a:7c:03:e3:9a:29:46:2d:06:e8:e2:a4: 18:ec:0f:61:b1:70:77:02:ae:f5:fe:a6:13:31:b1: fc:1f:a1:0a:09:8c:1f:4a:1c:94:c7:52:b7:01:c5: de:7b:c7:f7:22:92:25:a6:c9:f6:47:03:30:34:ba: fe:8e:02:cb:fe:9d:79:68:af:6d:0d:28:4b:87:26: 2b:6e:a9:d4:db:6a:6a:64:83:99:39:39:88:fd:4b: d8:28:32:4b:cf:21:24:cb:c4:98:21:20:48:dc:f0: cb:02:31:60:10:70:f9:69:ef:17:c2:18:01:10:7b: db:5a:2d:af:03:7a:ea:f4:ad:b9:5d:ff:52:52:e1: 5a:e5:2d:e3:1d:1c:3c:1e:f9:0a:04:6e:ce:25:d3: 94:3d:f0:0b:48:4f:e2:e1:d6:72:34:21:f1:fe:d0: 54:cf:69:97:5d:43:50:2b:09:b2:af:17:00:92:ef: 0f:6c:b8:95:76:8f:85:62:87:e6:18:55:fc:a6:0c: a7:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:8F:A9:43:D0:9C:C8:9F:04:C4:E0:AF:41:31:28:6A:09:38:4A:E9 X509v3 Authority Key Identifier: keyid:E6:F1:2C:0F:DF:79:6E:B0:DF:2B:60:2E:5A:C4:2C:CB:83:B2:2E:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vEsD995brDfK2AuWsQsy4OyLhg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:2d:01:41:20:35:6f:8e:a5:ad:7e:cc:a1:b3:fd:6e:8c:f4: 8e:0b:12:3a:97:0a:9f:6b:d6:4c:34:78:5f:4c:dd:e4:94:42: 1e:61:2b:50:63:79:d1:91:95:4f:93:e0:a5:2a:5c:43:82:1b: 8b:1d:5f:a6:63:ab:00:20:05:db:78:8e:7a:79:c9:8c:9c:09: c5:a2:76:e1:32:bd:0c:0d:0b:58:0a:b6:47:f7:75:81:99:04: 13:07:7f:5d:2d:16:42:a0:91:4c:dd:5f:c3:66:97:e2:13:0f: 5f:28:4a:b6:7a:51:d8:5f:7a:15:bb:b9:b5:fe:bb:f6:61:14: 32:5b:31:4f:39:76:5c:ff:20:8e:eb:de:e2:68:4b:bb:10:91: 6e:33:81:d0:52:ba:cd:ba:2a:b1:0d:01:fe:5e:61:ed:e1:14: 0d:68:47:2f:a3:79:8f:9d:92:48:d7:59:7b:4d:b6:23:4b:64: f9:a7:8e:aa:f3:53:d8:2c:a9:e9:31:ed:92:d3:10:ef:cf:a6: 20:4f:aa:1d:ef:90:3d:fb:3e:a0:65:1e:3e:70:35:b4:30:6e: c7:13:0f:ed:cb:a9:b8:bc:91:d8:b5:25:74:0c:dc:a8:85:a5: 50:cd:73:6e:0c:a6:0a:c5:a9:27:26:c2:b8:d9:c2:78:1c:e8: 59:e8:1d:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUzQjcxMTAvBgNVBAUTKEU2RjEyQzBGREY3OTZFQjBERjJCNjAyRTVBQzQyQ0NC ODNCMjJFMTgwHhcNMjUwODEwMTUwNzM5WhcNMjUwODE3MTUwNzM5WjAYMRYwFAYD VQQDEw02ODk4YjViYi0zNzNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAngTmLJw2Rk8EQMbKujdcBK6dYvn87Hkh5d5eZX4zoi9lZtfftBw53njmYoM1 DaxODAMBb3QwfB8VsRlGVywafAPjmilGLQbo4qQY7A9hsXB3Aq71/qYTMbH8H6EK CYwfShyUx1K3AcXee8f3IpIlpsn2RwMwNLr+jgLL/p15aK9tDShLhyYrbqnU22pq ZIOZOTmI/UvYKDJLzyEky8SYISBI3PDLAjFgEHD5ae8XwhgBEHvbWi2vA3rq9K25 Xf9SUuFa5S3jHRw8HvkKBG7OJdOUPfALSE/i4dZyNCHx/tBUz2mXXUNQKwmyrxcA ku8PbLiVdo+FYofmGFX8pgynzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIaPqUPQ nMifBMTgr0ExKGoJOErpMB8GA1UdIwQYMBaAFObxLA/feW6w3ytgLlrELMuDsi4Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTNCNy85RkFFODRGQTFE QTQxMUUyQUMyQkFGOUEwOEIwMkNEMi81dkVzRDk5NWJyRGZLMkF1V3NRc3k0T3lM aGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzV2RXNEOTk1YnJEZksyQXVXc1FzeTRPeUxoZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTNCNy85RkFFODRGQTFEQTQxMUUyQUMyQkFGOUEwOEIwMkNEMi81dkVzRDk5NWJy RGZLMkF1V3NRc3k0T3lMaGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMLQFBIDVvjqWtfsyhs/1ujPSOCxI6lwqfa9ZMNHhfTN3klEIeYStQ Y3nRkZVPk+ClKlxDghuLHV+mY6sAIAXbeI56ecmMnAnFonbhMr0MDQtYCrZH93WB mQQTB39dLRZCoJFM3V/DZpfiEw9fKEq2elHYX3oVu7m1/rv2YRQyWzFPOXZc/yCO 697iaEu7EJFuM4HQUrrNuiqxDQH+XmHt4RQNaEcvo3mPnZJI11l7TbYjS2T5p46q 81PYLKnpMe2S0xDvz6YgT6od75A9+z6gZR4+cDW0MG7HEw/ty6m4vJHYtSV0DNyo haVQzXNuDKYKxaknJsK42cJ4HOhZ6B2m -----END CERTIFICATE-----Generated at Mon Aug 11 07:26:38 2025 by rpki-client