$ rpki-client -vvf rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft File: s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft (raw, json) Hash identifier: BwWq3ZDW9EQSpIzXmIbxdunaFd02MgGI4OoympWLtwc= Subject key identifier: A1:C2:CA:FA:91:26:ED:B4:FA:BD:8D:C6:F8:AE:15:46:B3:67:9F:49 Authority key identifier: B3:98:66:A9:9D:1C:D9:F4:E7:E8:F5:3C:88:AD:14:DA:89:A1:86:25 Certificate issuer: /CN=A91964B3/serialNumber=B39866A99D1CD9F4E7E8F53C88AD14DA89A18625 Certificate serial: 36F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft Manifest number: 35E8 Signing time: Sun 10 Aug 2025 14:24:33 +0000 Manifest this update: Sun 10 Aug 2025 14:24:33 +0000 Manifest next update: Sun 17 Aug 2025 14:24:33 +0000 Files and hashes: 1: s5hmqZ0c2fTn6PU8iK0U2omhhiU.crl (hash: Y7z95cbsRgPGib6vtV98m5k7RktDcFEx5SFlIoWqnTM=) 2: B36EA83C70B111E98CFFF710C4F9AE02.roa (hash: YPxJgAFP2pm+e64iG82yJRkFHNHfja4F2rH7VSVuFpA=) 3: 160B219870BA11E99E0F6D2DC4F9AE02.roa (hash: 3QqIb/PpEMe7CSOMb9cfzIUcXW1tet3HABkiD8A3zkU=) 4: 26A143C291EB11EF8A024083C4F9AE02.roa (hash: apyNb0gzlP7QIPlzF+1SGVtUOjpAimi2EUrocnrYZRM=) 5: 18F4FD76918111EC93DCA42AC4F9AE02.roa (hash: 8JKaEfgtThOrevd/FI1wUsWQCsjDZCsWDfH4rtPvYOM=) 6: B0EB27B470B811E9B32F6726C4F9AE02.roa (hash: Yn6iyp3sOHzht7NrUVV1K95CTLrIyR+zeCU6DhPlbi0=) 7: 19023FA6609D11F0B3074125C4F9AE02.roa (hash: r59jzs4rijH2goehHpOaQnkpMaKez0/FIlJNjpMlzq4=) 8: 9538F912A09511EE9616A86EC4F9AE02.roa (hash: UIhH1UdXX1/WldxbBw/5eFdUsW8H5rv3xowCVi4x/js=) 9: 71D60BC2F6BA11EB865C4246C4F9AE02.roa (hash: E9Q0DLQxOx2PNLNxJzUPOmEekE0nfR8RNH8+NziMkYc=) 10: 9AF37E96D71B11EA9532F30CC4F9AE02.roa (hash: UB9M+LLNN3sS8I2EFsp8N9BHGeanS2Z+lbFEvYsOTeM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.crl rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14064 (0x36f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91964B3, serialNumber=B39866A99D1CD9F4E7E8F53C88AD14DA89A18625 Validity Not Before: Aug 10 14:24:33 2025 GMT Not After : Aug 17 14:24:33 2025 GMT Subject: CN=6898aba1-0451 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:3e:5a:40:2a:ed:8a:93:c6:2d:93:ee:16:31: 76:ee:82:8b:0e:ec:10:88:84:24:e4:63:a6:4b:53: 68:5f:81:76:0d:7e:d1:f8:2d:89:98:6d:2b:50:e7: 8e:18:10:4e:03:9c:89:3f:ed:8c:54:e6:85:05:e4: 00:2a:27:45:be:60:7c:5d:d8:51:a2:f6:2b:bf:7b: 89:0f:e1:90:74:41:31:d9:1f:93:9d:27:f8:c1:5f: 6e:99:6d:bb:af:6f:a5:2a:8b:c7:ac:a9:9c:80:04: dc:b7:a4:ff:21:e5:61:5d:19:0d:8a:a4:55:01:a0: a2:0b:79:42:6d:9a:18:ee:cd:9b:a6:ea:e7:fa:5c: bf:a0:66:9d:7d:fe:08:c5:26:ee:43:04:d8:f7:e8: 72:6f:ab:f7:c0:df:96:38:1c:81:2a:7f:46:c1:d9: 7e:b4:71:72:ac:b3:2b:b6:e4:e6:cc:39:87:24:d4: 3b:66:e1:5f:55:bb:55:25:41:e7:b2:e4:c3:22:f6: ab:d4:1d:5b:ca:9e:c6:3a:45:ca:0c:1e:10:5c:2a: 79:81:bc:17:c9:b6:16:ec:2f:cd:b8:10:6a:f5:c4: 68:7e:01:27:33:e8:55:01:eb:44:1f:61:64:e2:78: e9:00:36:8b:cf:7f:32:34:6b:0c:26:f4:c4:f0:d0: 0f:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:C2:CA:FA:91:26:ED:B4:FA:BD:8D:C6:F8:AE:15:46:B3:67:9F:49 X509v3 Authority Key Identifier: keyid:B3:98:66:A9:9D:1C:D9:F4:E7:E8:F5:3C:88:AD:14:DA:89:A1:86:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:1c:30:8e:23:c6:7d:2d:c3:31:44:90:57:9f:c9:02:0b:cb: e6:2a:98:81:cc:53:a5:94:33:80:48:f7:46:a1:16:32:56:d8: f7:de:48:5c:0b:fb:d2:eb:4f:d7:91:19:91:e7:a5:18:9e:c2: f5:0c:a5:58:9d:b0:97:51:0c:da:e2:f9:2f:b4:34:05:fd:88: a9:02:29:0f:48:9a:55:08:df:3a:00:4f:c6:6a:9e:0c:78:3d: 19:f6:b5:d6:0e:ac:d6:1b:a1:7d:cd:da:e2:dd:38:cd:5e:5f: 7e:56:71:4d:f2:da:f5:59:78:fb:56:56:f2:ea:16:e1:f9:a7: 80:e1:99:81:07:13:f7:3d:9d:2d:db:38:b5:67:3b:9a:80:4c: 31:47:79:14:be:ee:07:29:7b:54:3d:3b:ad:77:6f:7d:dc:a5: 5f:e6:0e:c8:df:2d:2d:c8:36:c6:6a:0f:ec:83:ea:2d:ad:53: 8f:ec:4d:b5:23:e6:81:b2:8f:d1:0d:74:b6:17:0a:85:b4:ed: d5:f2:ad:65:ce:aa:04:fe:d5:b2:1c:af:bf:01:e0:a7:fa:8d: 21:e2:20:c4:62:1f:38:5a:ad:0f:f3:e0:fe:28:bc:56:9a:4d: 45:76:58:5a:c3:5b:15:52:71:dd:40:fd:52:af:29:b4:6a:bc: 02:e6:05:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNvAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY0QjMxMTAvBgNVBAUTKEIzOTg2NkE5OUQxQ0Q5RjRFN0U4RjUzQzg4QUQxNERB ODlBMTg2MjUwHhcNMjUwODEwMTQyNDMzWhcNMjUwODE3MTQyNDMzWjAYMRYwFAYD VQQDEw02ODk4YWJhMS0wNDUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsj5aQCrtipPGLZPuFjF27oKLDuwQiIQk5GOmS1NoX4F2DX7R+C2JmG0rUOeO GBBOA5yJP+2MVOaFBeQAKidFvmB8XdhRovYrv3uJD+GQdEEx2R+TnSf4wV9umW27 r2+lKovHrKmcgATct6T/IeVhXRkNiqRVAaCiC3lCbZoY7s2bpurn+ly/oGadff4I xSbuQwTY9+hyb6v3wN+WOByBKn9Gwdl+tHFyrLMrtuTmzDmHJNQ7ZuFfVbtVJUHn suTDIvar1B1byp7GOkXKDB4QXCp5gbwXybYW7C/NuBBq9cRofgEnM+hVAetEH2Fk 4njpADaLz38yNGsMJvTE8NAPmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKHCyvqR Ju20+r2NxviuFUazZ59JMB8GA1UdIwQYMBaAFLOYZqmdHNn05+j1PIitFNqJoYYl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjRCMy9FNjU4NTExMjFE ODQxMUUyQTFCQTMwREIwOEIwMkNEMi9zNWhtcVowYzJmVG42UFU4aUswVTJvbWho aVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M1aG1xWjBjMmZUbjZQVThpSzBVMm9taGhpVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjRCMy9FNjU4NTExMjFEODQxMUUyQTFCQTMwREIwOEIwMkNEMi9zNWhtcVowYzJm VG42UFU4aUswVTJvbWhoaVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+HDCOI8Z9LcMxRJBXn8kCC8vmKpiBzFOllDOASPdGoRYyVtj33khc C/vS60/XkRmR56UYnsL1DKVYnbCXUQza4vkvtDQF/YipAikPSJpVCN86AE/Gap4M eD0Z9rXWDqzWG6F9zdri3TjNXl9+VnFN8tr1WXj7Vlby6hbh+aeA4ZmBBxP3PZ0t 2zi1ZzuagEwxR3kUvu4HKXtUPTutd2993KVf5g7I3y0tyDbGag/sg+otrVOP7E21 I+aBso/RDXS2FwqFtO3V8q1lzqoE/tWyHK+/AeCn+o0h4iDEYh84Wq0P8+D+KLxW mk1Fdlhaw1sVUnHdQP1Srym0arwC5gUB -----END CERTIFICATE-----Generated at Mon Aug 11 04:30:43 2025 by rpki-client