$ rpki-client -vvf rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft File: 5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft (raw, json) Hash identifier: mm3gbHb5GKwkMQQQqcyPwKoGMibd364BCktMcYoVdDA= Subject key identifier: E4:AF:C2:B9:5D:94:B8:38:50:10:5F:90:19:EB:1E:0B:38:FD:7F:10 Authority key identifier: E4:62:3C:FD:44:3E:62:32:F2:6C:23:E8:1F:DF:97:58:B2:6F:3B:2C Certificate issuer: /CN=A914F3BA/serialNumber=E4623CFD443E6232F26C23E81FDF9758B26F3B2C Certificate serial: 07D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5GI8_UQ-YjLybCPoH9-XWLJvOyw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft Manifest number: 07CE Signing time: Fri 08 Aug 2025 21:28:36 +0000 Manifest this update: Fri 08 Aug 2025 21:28:36 +0000 Manifest next update: Fri 15 Aug 2025 21:28:36 +0000 Files and hashes: 1: 5GI8_UQ-YjLybCPoH9-XWLJvOyw.crl (hash: 6F3FXOj+TWdYtBTPTUJ+m2LkLrrNUBS+qnwvMIPX51o=) 2: D0D7EE48343211EFBF2C280DC4F9AE02.roa (hash: hbQmOshNkorS1/g78QiEhSVwbWUn9A8H0a6ZSzOWB98=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.crl rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5GI8_UQ-YjLybCPoH9-XWLJvOyw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2001 (0x7d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F3BA, serialNumber=E4623CFD443E6232F26C23E81FDF9758B26F3B2C Validity Not Before: Aug 8 21:28:36 2025 GMT Not After : Aug 15 21:28:36 2025 GMT Subject: CN=68966c04-a6ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:d7:d9:74:0f:a9:cd:9a:a3:e6:66:26:20:4a: d3:03:d1:50:df:ef:e4:df:1a:ff:3b:8e:5b:dd:bb: ee:40:3b:4f:8e:34:32:8c:90:e0:64:c4:28:8a:3e: bc:00:6e:cb:62:73:a8:30:31:3c:c8:a7:0c:3c:7b: 16:bf:ed:4b:93:ce:03:db:8a:5c:47:03:da:db:ae: fe:bd:b0:ff:83:68:05:ec:c6:23:8f:0e:86:bc:77: 9b:8b:aa:b0:fe:3f:c3:23:99:dd:ec:4d:80:d4:53: 4e:d6:9d:2c:cf:43:6e:b1:6d:5c:0b:4e:5d:b9:51: 93:ee:a0:a4:a9:2d:c7:83:9b:19:07:f4:a5:15:97: 97:01:8f:54:f5:70:d2:89:a4:2e:7e:10:f9:2f:4f: cf:eb:d7:e8:b4:9b:11:7c:24:a2:03:e8:ef:11:5b: 5a:18:c9:39:51:00:a0:c4:49:d5:bb:e9:9d:35:69: c2:f2:10:ba:21:c9:39:58:a8:ef:3d:99:2d:46:74: f5:86:99:6b:6c:83:e4:22:e8:00:48:70:68:52:a8: 4b:55:08:29:c9:86:05:4a:9a:d0:4b:6e:25:12:ac: 08:ee:26:ef:d5:0b:d8:51:59:eb:ac:ef:ee:dd:96: 37:62:7f:c5:cf:85:27:c5:19:fc:be:05:4b:1b:f8: 65:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:AF:C2:B9:5D:94:B8:38:50:10:5F:90:19:EB:1E:0B:38:FD:7F:10 X509v3 Authority Key Identifier: keyid:E4:62:3C:FD:44:3E:62:32:F2:6C:23:E8:1F:DF:97:58:B2:6F:3B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5GI8_UQ-YjLybCPoH9-XWLJvOyw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:56:87:36:92:93:3a:82:05:99:98:b7:7c:d2:82:df:64:88: b5:b4:45:6e:b8:21:78:c5:ae:44:08:c1:89:58:4c:a3:61:47: 6d:4c:1e:ce:41:8b:15:f1:b5:a4:06:8d:71:f4:21:8a:3c:e1: 8b:f9:97:e3:16:b4:11:76:49:a0:13:4e:5c:a3:2d:c2:11:2f: 0e:8f:98:84:3a:94:27:2b:3e:ee:3b:ba:9c:88:c0:b4:c6:41: dc:6c:82:39:1c:37:2f:8e:fe:8e:d5:8b:e8:29:20:b3:f0:b6: 04:1a:ab:05:15:3e:4d:18:a4:5c:f9:27:04:55:4e:b2:f4:ce: 15:e5:57:90:eb:fd:55:8c:de:37:35:ee:b1:c3:d4:ad:7f:a7: 00:96:1f:82:90:41:1d:dc:66:ac:c1:e8:d3:77:e1:17:62:6f: 91:f2:81:24:c9:74:07:75:59:cc:ca:ce:69:32:23:5e:80:5b: 6d:24:d0:ac:a9:61:a4:91:73:e7:35:5f:f9:0c:02:7d:ea:67: 36:89:b7:f9:52:a9:69:58:96:7b:43:d0:6f:b8:b9:a0:84:d3: 7a:fa:5d:63:26:0f:b2:f4:03:cd:5e:42:46:53:73:9b:09:1b: af:cf:1b:2c:0a:37:ed:2d:e1:35:32:fa:af:18:61:73:70:6a: 52:f0:5d:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEYzQkExMTAvBgNVBAUTKEU0NjIzQ0ZENDQzRTYyMzJGMjZDMjNFODFGREY5NzU4 QjI2RjNCMkMwHhcNMjUwODA4MjEyODM2WhcNMjUwODE1MjEyODM2WjAYMRYwFAYD VQQDEw02ODk2NmMwNC1hNmZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy9fZdA+pzZqj5mYmIErTA9FQ3+/k3xr/O45b3bvuQDtPjjQyjJDgZMQoij68 AG7LYnOoMDE8yKcMPHsWv+1Lk84D24pcRwPa267+vbD/g2gF7MYjjw6GvHebi6qw /j/DI5nd7E2A1FNO1p0sz0NusW1cC05duVGT7qCkqS3Hg5sZB/SlFZeXAY9U9XDS iaQufhD5L0/P69fotJsRfCSiA+jvEVtaGMk5UQCgxEnVu+mdNWnC8hC6Ick5WKjv PZktRnT1hplrbIPkIugASHBoUqhLVQgpyYYFSprQS24lEqwI7ibv1QvYUVnrrO/u 3ZY3Yn/Fz4UnxRn8vgVLG/hllwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOSvwrld lLg4UBBfkBnrHgs4/X8QMB8GA1UdIwQYMBaAFORiPP1EPmIy8mwj6B/fl1iybzss MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjNCQS9GRjIwRUJEQzAx M0QxMUVCQTAwMDEyNkJDNEY5QUUwMi81R0k4X1VRLVlqTHliQ1BvSDktWFdMSnZP eXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVHSThfVVEtWWpMeWJDUG9IOS1YV0xKdk95dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjNCQS9GRjIwRUJEQzAxM0QxMUVCQTAwMDEyNkJDNEY5QUUwMi81R0k4X1VRLVlq THliQ1BvSDktWFdMSnZPeXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJVoc2kpM6ggWZmLd80oLfZIi1tEVuuCF4xa5ECMGJWEyjYUdtTB7O QYsV8bWkBo1x9CGKPOGL+ZfjFrQRdkmgE05coy3CES8Oj5iEOpQnKz7uO7qciMC0 xkHcbII5HDcvjv6O1YvoKSCz8LYEGqsFFT5NGKRc+ScEVU6y9M4V5VeQ6/1VjN43 Ne6xw9Stf6cAlh+CkEEd3GaswejTd+EXYm+R8oEkyXQHdVnMys5pMiNegFttJNCs qWGkkXPnNV/5DAJ96mc2ibf5UqlpWJZ7Q9BvuLmghNN6+l1jJg+y9APNXkJGU3Ob CRuvzxssCjftLeE1MvqvGGFzcGpS8F3y -----END CERTIFICATE-----Generated at Sun Aug 10 03:55:59 2025 by rpki-client