$ rpki-client -vvf rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/5cOmhsg97m0zv-xUHqy0pKCJknk.mft File: 5cOmhsg97m0zv-xUHqy0pKCJknk.mft (raw, json) Hash identifier: Awn1BixwT4TdzMXpUPjCipOBXwpL0YK0/U7EoMQLrvM= Subject key identifier: 5C:28:C1:AC:B5:77:66:90:0D:B7:CB:C7:2F:28:CD:03:04:A0:29:6B Authority key identifier: E5:C3:A6:86:C8:3D:EE:6D:33:BF:EC:54:1E:AC:B4:A4:A0:89:92:79 Certificate issuer: /CN=A9153AA6/serialNumber=E5C3A686C83DEE6D33BFEC541EACB4A4A0899279 Certificate serial: 16F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5cOmhsg97m0zv-xUHqy0pKCJknk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/5cOmhsg97m0zv-xUHqy0pKCJknk.mft Manifest number: 16EB Signing time: Sun 10 Aug 2025 16:37:42 +0000 Manifest this update: Sun 10 Aug 2025 16:37:42 +0000 Manifest next update: Sun 17 Aug 2025 16:37:42 +0000 Files and hashes: 1: 5cOmhsg97m0zv-xUHqy0pKCJknk.crl (hash: Nmoy1OGr8BQ4AZEDYCnAO4W7ddQT/c+kwXRPKOv1RG4=) 2: 99C6F94CF52511E7948D5A0BC4F9AE02.roa (hash: aM0yH97r/h3xu615cUuk5zwsCFMLHVQ8whXpoG1e1kM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/5cOmhsg97m0zv-xUHqy0pKCJknk.crl rsync://rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/5cOmhsg97m0zv-xUHqy0pKCJknk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5cOmhsg97m0zv-xUHqy0pKCJknk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5877 (0x16f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153AA6, serialNumber=E5C3A686C83DEE6D33BFEC541EACB4A4A0899279 Validity Not Before: Aug 10 16:37:42 2025 GMT Not After : Aug 17 16:37:42 2025 GMT Subject: CN=6898cad6-052a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:b1:7e:84:19:c3:92:7e:c2:72:b2:c6:0d:05: 8c:f6:28:a0:35:27:9e:8a:9e:9b:6c:a5:72:57:41: 1e:ae:53:d3:7d:3f:d2:1f:97:f4:99:d3:00:85:d9: 4c:4c:c4:19:7b:d0:44:9d:d7:e1:9e:8b:10:d5:d4: b8:17:37:eb:b7:db:7b:ea:aa:51:c1:41:1d:b1:c2: a3:f0:ca:5b:32:88:cc:16:87:3f:21:1c:34:f1:f4: e1:9a:29:b9:f6:34:7b:d3:37:b1:9f:c3:bd:04:49: ec:05:2b:46:05:c0:48:cb:b6:b8:59:e9:34:c8:3e: ff:2f:ef:26:29:5f:c7:e7:14:9f:c4:e2:c9:d5:6c: 94:a0:1d:46:9f:5c:d6:25:19:a6:06:48:05:3f:53: 7b:ed:8d:61:5d:e5:85:55:cc:30:e8:9c:8e:39:6b: 30:22:fe:57:3d:98:b2:ed:73:0d:24:f4:2c:19:c5: 21:f0:fa:a4:c7:db:6d:e9:0b:5f:4c:66:11:a7:1a: 45:19:4b:4a:b8:58:90:f6:d9:ff:19:79:56:8d:6a: 73:84:ff:95:cf:0d:6d:00:80:f7:7a:3f:24:a0:f1: fa:a2:7a:6d:06:ed:b0:50:90:3c:71:18:f8:99:02: 4c:43:97:31:91:d0:2c:82:e6:c2:c6:69:90:3d:81: 07:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:28:C1:AC:B5:77:66:90:0D:B7:CB:C7:2F:28:CD:03:04:A0:29:6B X509v3 Authority Key Identifier: keyid:E5:C3:A6:86:C8:3D:EE:6D:33:BF:EC:54:1E:AC:B4:A4:A0:89:92:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/5cOmhsg97m0zv-xUHqy0pKCJknk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5cOmhsg97m0zv-xUHqy0pKCJknk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/5cOmhsg97m0zv-xUHqy0pKCJknk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:87:c3:dc:6e:4f:6c:26:18:77:fe:b7:40:b4:d3:2e:48:93: bf:f5:57:93:f3:e1:66:1a:ba:5d:7a:1f:29:fe:d8:ba:48:59: 1b:46:6c:c1:6a:1f:68:9a:57:de:26:cd:af:ae:f4:fe:6c:22: 2b:a4:5d:d1:b9:b4:f1:2b:47:37:30:f9:93:05:c6:a8:af:fe: 02:90:71:02:14:ce:9e:6b:d8:96:a7:f7:5f:91:43:5c:33:c8: 7e:b7:2a:8b:dc:b7:51:33:15:75:b0:6c:82:91:de:ef:48:fa: 8b:8d:66:3d:7f:39:af:5c:ed:59:67:43:fe:3a:a5:2a:1c:0e: ff:d8:ca:04:a2:29:0e:1b:03:69:d3:06:e8:0a:c3:19:46:2f: bf:3d:d8:34:e0:4f:69:d6:6b:69:9e:b6:f2:17:d9:dc:23:90: c7:71:4f:b1:a1:ee:cd:ad:1f:9f:dd:e8:6a:84:88:fd:cb:4b: d3:f8:ea:ae:44:67:0c:bf:dd:2a:0e:e7:1e:04:30:84:16:21: 46:bc:3d:75:21:d3:38:77:02:79:f8:13:5b:09:a2:6d:01:c2: bd:f6:61:04:df:e5:4c:b5:bb:30:09:2f:f0:ca:2d:74:51:f6: 2b:56:45:85:0f:b4:f2:fe:81:53:07:a1:c2:9c:76:2b:23:ee: 9c:c1:c0:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFvUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNBQTYxMTAvBgNVBAUTKEU1QzNBNjg2QzgzREVFNkQzM0JGRUM1NDFFQUNCNEE0 QTA4OTkyNzkwHhcNMjUwODEwMTYzNzQyWhcNMjUwODE3MTYzNzQyWjAYMRYwFAYD VQQDEw02ODk4Y2FkNi0wNTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA37F+hBnDkn7CcrLGDQWM9iigNSeeip6bbKVyV0EerlPTfT/SH5f0mdMAhdlM TMQZe9BEndfhnosQ1dS4Fzfrt9t76qpRwUEdscKj8MpbMojMFoc/IRw08fThmim5 9jR70zexn8O9BEnsBStGBcBIy7a4Wek0yD7/L+8mKV/H5xSfxOLJ1WyUoB1Gn1zW JRmmBkgFP1N77Y1hXeWFVcww6JyOOWswIv5XPZiy7XMNJPQsGcUh8Pqkx9tt6Qtf TGYRpxpFGUtKuFiQ9tn/GXlWjWpzhP+Vzw1tAID3ej8koPH6onptBu2wUJA8cRj4 mQJMQ5cxkdAsgubCxmmQPYEHzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFwoway1 d2aQDbfLxy8ozQMEoClrMB8GA1UdIwQYMBaAFOXDpobIPe5tM7/sVB6stKSgiZJ5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0FBNi85QzNEODdFNkY1 MjQxMUU3OTY0NEIwMDlDNEY5QUUwMi81Y09taHNnOTdtMHp2LXhVSHF5MHBLQ0pr bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVjT21oc2c5N20wenYteFVIcXkwcEtDSmtuay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0FBNi85QzNEODdFNkY1MjQxMUU3OTY0NEIwMDlDNEY5QUUwMi81Y09taHNnOTdt MHp2LXhVSHF5MHBLQ0prbmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACh8Pcbk9sJhh3/rdAtNMuSJO/9VeT8+FmGrpdeh8p/ti6SFkbRmzB ah9omlfeJs2vrvT+bCIrpF3RubTxK0c3MPmTBcaor/4CkHECFM6ea9iWp/dfkUNc M8h+tyqL3LdRMxV1sGyCkd7vSPqLjWY9fzmvXO1ZZ0P+OqUqHA7/2MoEoikOGwNp 0wboCsMZRi+/Pdg04E9p1mtpnrbyF9ncI5DHcU+xoe7NrR+f3ehqhIj9y0vT+Oqu RGcMv90qDuceBDCEFiFGvD11IdM4dwJ5+BNbCaJtAcK99mEE3+VMtbswCS/wyi10 UfYrVkWFD7Ty/oFTB6HCnHYrI+6cwcDx -----END CERTIFICATE-----Generated at Mon Aug 11 04:25:52 2025 by rpki-client