$ rpki-client -vvf rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft File: 5S3osZGTOKPiVWZOiASKVpihINA.mft (raw, json) Hash identifier: rJHb3Pboiuqtrbl9ykjOPzIiUUc859nzoKfUyY/VNhg= Subject key identifier: 87:11:C4:E0:A1:2D:3D:E1:6E:4F:4C:E2:54:EF:CB:16:F1:19:F7:2A Authority key identifier: E5:2D:E8:B1:91:93:38:A3:E2:55:66:4E:88:04:8A:56:98:A1:20:D0 Certificate issuer: /CN=A9160701/serialNumber=E52DE8B1919338A3E255664E88048A5698A120D0 Certificate serial: 0B95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S3osZGTOKPiVWZOiASKVpihINA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft Manifest number: 0B8B Signing time: Sat 02 Aug 2025 19:13:13 +0000 Manifest this update: Sat 02 Aug 2025 19:13:13 +0000 Manifest next update: Sat 09 Aug 2025 19:13:13 +0000 Files and hashes: 1: 5S3osZGTOKPiVWZOiASKVpihINA.crl (hash: hiS1CE6GjyqLjIMHa1wBF/FRfRHrggm39YTcPMAqoEc=) 2: 6DCC06C231BC11EA9AACCA4BC4F9AE02.roa (hash: 3rmLILbAM/KMJx9b9ZtmiW/UU8JiAcyOhmtpDcFmRPg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.crl rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S3osZGTOKPiVWZOiASKVpihINA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 19:13:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2965 (0xb95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160701, serialNumber=E52DE8B1919338A3E255664E88048A5698A120D0 Validity Not Before: Aug 2 19:13:13 2025 GMT Not After : Aug 9 19:13:13 2025 GMT Subject: CN=688e6349-d9c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:74:8f:12:b6:54:1b:b3:1a:ec:b4:42:1d:d6: b2:9e:9f:6a:03:52:ad:58:e1:3a:70:95:e3:e1:04: 33:ce:eb:f4:72:6c:8d:02:53:79:76:e1:ab:72:3f: b5:18:63:7b:30:1b:3f:e8:8c:47:a2:3b:ce:05:d5: 08:b1:58:9c:d1:a5:a3:1e:cf:a1:17:00:fc:77:58: 9a:9f:aa:9c:7e:66:58:18:81:83:f6:5f:97:e2:6d: bb:b6:6f:b0:94:13:f3:94:59:34:c8:ff:9b:89:de: 25:45:72:2d:ae:8e:46:f1:52:ba:02:c2:d6:55:2b: 60:b0:c6:bf:f0:7e:1a:19:5b:df:21:dd:7b:07:8b: dd:e3:ca:a0:18:da:2e:4e:1b:21:a9:07:b7:ec:e4: 1f:c9:8a:e8:c1:8a:3b:bc:b4:a1:db:9b:5f:7b:a5: 77:58:0b:09:d5:7b:c8:51:99:77:7c:70:7f:9b:91: e2:d9:57:3c:a0:10:3d:f5:74:a8:05:04:fc:e6:53: ab:93:fe:4f:80:47:9a:4d:e4:74:a8:15:1e:12:c6: 1d:d8:8a:90:e0:49:94:d6:7c:bc:16:5a:11:02:d4: 9b:9f:5a:c3:9f:11:dd:5d:df:38:9e:99:3d:f0:55: 85:1e:a0:d2:95:97:13:95:66:64:1b:91:17:68:8b: bb:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:11:C4:E0:A1:2D:3D:E1:6E:4F:4C:E2:54:EF:CB:16:F1:19:F7:2A X509v3 Authority Key Identifier: keyid:E5:2D:E8:B1:91:93:38:A3:E2:55:66:4E:88:04:8A:56:98:A1:20:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S3osZGTOKPiVWZOiASKVpihINA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:43:64:02:bb:a8:21:79:e9:e3:68:36:86:62:a3:cb:d0:98: 5a:39:8e:28:3e:b9:bc:14:4d:6f:79:9a:f2:bc:34:49:e8:27: 3b:e8:53:ae:57:b3:42:20:4e:d6:2f:e6:91:86:a7:ef:e7:e9: d8:f5:95:d1:da:09:24:d8:f4:3f:28:33:69:de:b4:e1:a2:89: 20:d3:98:74:d4:e1:40:9c:1d:c2:2c:c0:ee:8f:e9:f6:dd:36: b3:98:fa:f3:02:76:d0:3d:67:bd:8d:30:b3:5a:75:a2:9c:cd: 2f:04:c7:70:07:8a:da:65:af:8d:19:62:89:0a:58:db:2b:f9: 73:1a:05:a2:c4:15:2b:24:0a:c3:2a:07:37:59:67:8f:dc:87: 46:75:5c:1d:fa:b1:a3:35:d4:ba:d5:33:85:9b:11:00:ad:6c: 8d:22:7e:71:32:95:2a:04:16:1e:3f:4b:25:50:07:e3:48:0b: 29:da:9a:95:aa:09:f3:bc:52:af:c4:17:71:b6:1c:fc:ae:96: b0:77:60:77:d7:12:b0:ce:67:af:30:f3:86:16:32:b6:93:8d: 2b:d8:30:b0:c4:31:c1:ff:62:73:09:55:5b:31:bb:b4:f7:6f: 92:51:24:96:cd:7e:9d:4d:f7:6a:54:6b:a0:18:6d:f8:13:4c: 4d:eb:54:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC5UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA3MDExMTAvBgNVBAUTKEU1MkRFOEIxOTE5MzM4QTNFMjU1NjY0RTg4MDQ4QTU2 OThBMTIwRDAwHhcNMjUwODAyMTkxMzEzWhcNMjUwODA5MTkxMzEzWjAYMRYwFAYD VQQDEw02ODhlNjM0OS1kOWM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAynSPErZUG7Ma7LRCHdaynp9qA1KtWOE6cJXj4QQzzuv0cmyNAlN5duGrcj+1 GGN7MBs/6IxHojvOBdUIsVic0aWjHs+hFwD8d1ian6qcfmZYGIGD9l+X4m27tm+w lBPzlFk0yP+bid4lRXItro5G8VK6AsLWVStgsMa/8H4aGVvfId17B4vd48qgGNou ThshqQe37OQfyYrowYo7vLSh25tfe6V3WAsJ1XvIUZl3fHB/m5Hi2Vc8oBA99XSo BQT85lOrk/5PgEeaTeR0qBUeEsYd2IqQ4EmU1ny8FloRAtSbn1rDnxHdXd84npk9 8FWFHqDSlZcTlWZkG5EXaIu70wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIcRxOCh LT3hbk9M4lTvyxbxGfcqMB8GA1UdIwQYMBaAFOUt6LGRkzij4lVmTogEilaYoSDQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDcwMS81NDAwQzQxODMw MzAxMUVBQTcyRjM2N0FDNEY5QUUwMi81UzNvc1pHVE9LUGlWV1pPaUFTS1ZwaWhJ TkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVTM29zWkdUT0tQaVZXWk9pQVNLVnBpaElOQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDcwMS81NDAwQzQxODMwMzAxMUVBQTcyRjM2N0FDNEY5QUUwMi81UzNvc1pHVE9L UGlWV1pPaUFTS1ZwaWhJTkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwQ2QCu6gheenjaDaGYqPL0JhaOY4oPrm8FE1veZryvDRJ6Cc76FOu V7NCIE7WL+aRhqfv5+nY9ZXR2gkk2PQ/KDNp3rThookg05h01OFAnB3CLMDuj+n2 3TazmPrzAnbQPWe9jTCzWnWinM0vBMdwB4raZa+NGWKJCljbK/lzGgWixBUrJArD Kgc3WWeP3IdGdVwd+rGjNdS61TOFmxEArWyNIn5xMpUqBBYeP0slUAfjSAsp2pqV qgnzvFKvxBdxthz8rpawd2B31xKwzmevMPOGFjK2k40r2DCwxDHB/2JzCVVbMbu0 92+SUSSWzX6dTfdqVGugGG34E0xN61T/ -----END CERTIFICATE-----Generated at Mon Aug 4 16:11:19 2025 by rpki-client