$ rpki-client -vvf rpki.apnic.net/member_repository/A9159DCD/A00D70062C2411EEAB978F0FC4F9AE02/V5NDbSKpagYTaFEgO7clmE1wsBc.mft File: V5NDbSKpagYTaFEgO7clmE1wsBc.mft (raw, json) Hash identifier: SAwlp8buH/l0ceX/WIz4qLhT6e6GZxdwBMcV5ackK2g= Subject key identifier: 98:AB:7A:56:F9:AF:11:A4:2D:A4:72:65:F5:20:AA:18:0B:13:B9:D6 Authority key identifier: 57:93:43:6D:22:A9:6A:06:13:68:51:20:3B:B7:25:98:4D:70:B0:17 Certificate issuer: /CN=A9159DCD/serialNumber=5793436D22A96A06136851203BB725984D70B017 Certificate serial: 0184 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V5NDbSKpagYTaFEgO7clmE1wsBc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159DCD/A00D70062C2411EEAB978F0FC4F9AE02/V5NDbSKpagYTaFEgO7clmE1wsBc.mft Manifest number: 0180 Signing time: Sat 09 Aug 2025 04:01:24 +0000 Manifest this update: Sat 09 Aug 2025 04:01:24 +0000 Manifest next update: Sat 16 Aug 2025 04:01:24 +0000 Files and hashes: 1: V5NDbSKpagYTaFEgO7clmE1wsBc.crl (hash: ADYwYDMJC7VSVkLqyu5Wiry16p+UTZUkHxGGNVO+s1I=) 2: 29D600062C3311EEBFF69B6CC4F9AE02.roa (hash: hskv6e7Ag+5HAqH/N4O5ItTvOGPOLGR+/yJDzJO0d+k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159DCD/A00D70062C2411EEAB978F0FC4F9AE02/V5NDbSKpagYTaFEgO7clmE1wsBc.crl rsync://rpki.apnic.net/member_repository/A9159DCD/A00D70062C2411EEAB978F0FC4F9AE02/V5NDbSKpagYTaFEgO7clmE1wsBc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V5NDbSKpagYTaFEgO7clmE1wsBc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 388 (0x184) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159DCD, serialNumber=5793436D22A96A06136851203BB725984D70B017 Validity Not Before: Aug 9 04:01:24 2025 GMT Not After : Aug 16 04:01:24 2025 GMT Subject: CN=6896c814-b136 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:5e:e5:de:0e:7b:00:85:a1:4b:36:c4:a8:32: aa:ac:96:6e:a1:89:c0:ec:72:1b:49:d0:ce:fe:c4: 21:ee:09:00:56:70:65:5d:eb:79:1a:4a:21:ff:d8: 11:3f:9a:57:c3:66:e6:a9:28:37:28:f8:e9:04:44: d6:76:44:4a:24:59:a0:3f:70:e4:38:96:c1:aa:83: 02:fc:00:aa:95:a3:ce:28:b2:8b:fc:6a:b1:88:6e: 33:0a:ae:59:b8:68:ed:6e:4c:57:1b:4d:29:11:ca: b3:80:89:c5:34:d4:6b:73:79:b0:b2:c0:f8:60:5e: ae:2e:4a:dc:68:e8:27:94:00:ea:34:7f:d5:14:03: ad:7f:f2:2d:ea:29:04:ab:64:cd:f2:81:c6:e0:77: 11:d5:7c:bb:ba:8c:7d:f8:29:da:4a:71:b1:44:8e: e8:6b:ee:f0:d2:04:fd:ce:35:77:5c:17:d8:93:7c: aa:56:fd:37:a6:e8:15:fc:b5:c5:f4:e4:de:b5:95: 70:ac:30:2d:10:37:e7:06:86:75:bb:19:a6:73:2b: 01:47:c5:9d:8b:b7:fe:e3:57:19:69:45:5b:ff:e6: 0f:39:60:ab:72:30:6a:28:9f:13:9b:4d:db:5f:31: c7:1a:90:86:94:3c:26:1d:05:93:74:de:3c:f5:1e: cf:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:AB:7A:56:F9:AF:11:A4:2D:A4:72:65:F5:20:AA:18:0B:13:B9:D6 X509v3 Authority Key Identifier: keyid:57:93:43:6D:22:A9:6A:06:13:68:51:20:3B:B7:25:98:4D:70:B0:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159DCD/A00D70062C2411EEAB978F0FC4F9AE02/V5NDbSKpagYTaFEgO7clmE1wsBc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V5NDbSKpagYTaFEgO7clmE1wsBc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159DCD/A00D70062C2411EEAB978F0FC4F9AE02/V5NDbSKpagYTaFEgO7clmE1wsBc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:be:15:69:62:5e:76:3e:27:07:8d:62:d7:27:d4:c4:51:b9: d1:c8:63:7e:84:07:f6:4e:8a:17:78:77:d4:9e:85:b2:3d:d2: 21:d0:f6:e4:a3:25:1c:96:ce:db:97:76:b5:49:63:56:28:68: 7d:81:1f:31:c5:36:f7:be:db:2b:f5:18:20:5e:3e:4c:4c:3a: 6a:24:c9:fc:8e:37:85:9b:e9:b6:d8:f1:2f:d9:cd:11:6d:aa: 86:9b:b9:ed:1b:b5:b8:74:43:70:d4:5f:2c:a4:1f:36:bb:0c: 9a:cf:5b:3f:5e:5e:a0:23:b6:03:80:bb:bc:84:20:7b:d1:5e: 36:7a:d6:57:ee:08:92:ef:b9:e8:6b:5a:65:ad:7d:06:51:3e: c3:fb:8e:2a:77:01:2f:85:f7:9b:e7:8e:71:ce:37:91:51:cb: 9b:ce:d0:03:e6:76:d9:85:60:11:f1:0e:08:a6:37:39:4e:4f: 7b:0d:7a:16:c1:c3:4e:8c:c3:78:2d:f1:82:9a:7b:fe:f1:68: cb:61:cb:12:91:ed:79:69:b7:c1:96:63:13:f5:7c:96:ff:8f: b3:54:16:b8:c9:67:70:e2:92:4f:10:2d:a8:85:93:29:ad:30: 13:5d:b0:46:88:16:5a:9a:fd:cc:66:49:5a:97:52:e6:b0:b1: 6f:41:e4:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTlEQ0QxMTAvBgNVBAUTKDU3OTM0MzZEMjJBOTZBMDYxMzY4NTEyMDNCQjcyNTk4 NEQ3MEIwMTcwHhcNMjUwODA5MDQwMTI0WhcNMjUwODE2MDQwMTI0WjAYMRYwFAYD VQQDEw02ODk2YzgxNC1iMTM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtF7l3g57AIWhSzbEqDKqrJZuoYnA7HIbSdDO/sQh7gkAVnBlXet5Gkoh/9gR P5pXw2bmqSg3KPjpBETWdkRKJFmgP3DkOJbBqoMC/ACqlaPOKLKL/GqxiG4zCq5Z uGjtbkxXG00pEcqzgInFNNRrc3mwssD4YF6uLkrcaOgnlADqNH/VFAOtf/It6ikE q2TN8oHG4HcR1Xy7uox9+CnaSnGxRI7oa+7w0gT9zjV3XBfYk3yqVv03pugV/LXF 9OTetZVwrDAtEDfnBoZ1uxmmcysBR8Wdi7f+41cZaUVb/+YPOWCrcjBqKJ8Tm03b XzHHGpCGlDwmHQWTdN489R7PPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJirelb5 rxGkLaRyZfUgqhgLE7nWMB8GA1UdIwQYMBaAFFeTQ20iqWoGE2hRIDu3JZhNcLAX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OURDRC9BMDBENzAwNjJD MjQxMUVFQUI5NzhGMEZDNEY5QUUwMi9WNU5EYlNLcGFnWVRhRkVnTzdjbG1FMXdz QmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Y1TkRiU0twYWdZVGFGRWdPN2NsbUUxd3NCYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OURDRC9BMDBENzAwNjJDMjQxMUVFQUI5NzhGMEZDNEY5QUUwMi9WNU5EYlNLcGFn WVRhRkVnTzdjbG1FMXdzQmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKvhVpYl52PicHjWLXJ9TEUbnRyGN+hAf2TooXeHfUnoWyPdIh0Pbk oyUcls7bl3a1SWNWKGh9gR8xxTb3vtsr9RggXj5MTDpqJMn8jjeFm+m22PEv2c0R baqGm7ntG7W4dENw1F8spB82uwyaz1s/Xl6gI7YDgLu8hCB70V42etZX7giS77no a1plrX0GUT7D+44qdwEvhfeb545xzjeRUcubztAD5nbZhWAR8Q4Ipjc5Tk97DXoW wcNOjMN4LfGCmnv+8WjLYcsSke15abfBlmMT9XyW/4+zVBa4yWdw4pJPEC2ohZMp rTATXbBGiBZamv3MZklal1LmsLFvQeRC -----END CERTIFICATE-----Generated at Sat Aug 9 10:37:08 2025 by rpki-client