$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8B0B/5AEB5EB2FCC511E99858A91EC4F9AE02/5Otd-leSQpC7j-xFuZd_xsf2-jc.mft File: 5Otd-leSQpC7j-xFuZd_xsf2-jc.mft (raw, json) Hash identifier: BNggkcA1hyC2fKpa1mvlGL3CeKKWWHngE/1NM5wZNgo= Subject key identifier: 74:49:6D:BD:E5:36:A5:A8:77:2F:65:A6:DB:15:43:DF:88:25:B5:C3 Authority key identifier: E4:EB:5D:FA:57:92:42:90:BB:8F:EC:45:B9:97:7F:C6:C7:F6:FA:37 Certificate issuer: /CN=A91A8B0B/serialNumber=E4EB5DFA57924290BB8FEC45B9977FC6C7F6FA37 Certificate serial: 0CB1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Otd-leSQpC7j-xFuZd_xsf2-jc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8B0B/5AEB5EB2FCC511E99858A91EC4F9AE02/5Otd-leSQpC7j-xFuZd_xsf2-jc.mft Manifest number: 0C9D Signing time: Sat 02 Aug 2025 18:24:47 +0000 Manifest this update: Sat 02 Aug 2025 18:24:46 +0000 Manifest next update: Sat 09 Aug 2025 18:24:46 +0000 Files and hashes: 1: 5Otd-leSQpC7j-xFuZd_xsf2-jc.crl (hash: c/r1OJFdkc1ur4dy5NbJ0uUhASRzM2gxLYX1SaA9nhc=) 2: 5842DDF0FCE511E9BFA4B27AC4F9AE02.roa (hash: 6JiNuWz5Fkw8aMu3lON6uTLPgLOG+xf9uCqK1rE3Qew=) 3: EA17F65E6C6711ECB7C0925AC4F9AE02.roa (hash: 80MLiBcpNIycThAKM26TDicBsDE58l79IER/QoSPi08=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8B0B/5AEB5EB2FCC511E99858A91EC4F9AE02/5Otd-leSQpC7j-xFuZd_xsf2-jc.crl rsync://rpki.apnic.net/member_repository/A91A8B0B/5AEB5EB2FCC511E99858A91EC4F9AE02/5Otd-leSQpC7j-xFuZd_xsf2-jc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Otd-leSQpC7j-xFuZd_xsf2-jc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 18:24:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3249 (0xcb1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8B0B, serialNumber=E4EB5DFA57924290BB8FEC45B9977FC6C7F6FA37 Validity Not Before: Aug 2 18:24:46 2025 GMT Not After : Aug 9 18:24:46 2025 GMT Subject: CN=688e57ee-68ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:4b:47:7c:74:10:d4:ce:c9:25:7a:70:a6:d0: 75:bf:23:1c:cd:b4:cd:3d:ed:e8:68:e6:25:28:bf: 91:2d:e8:9a:61:ab:37:8b:e5:90:8f:b7:29:93:59: 1a:cf:f6:b2:9f:23:30:86:c6:2e:74:d7:64:bb:e5: 91:08:7b:65:05:3e:05:16:8b:59:08:4a:11:50:3a: 58:77:df:55:55:3d:18:76:02:51:a8:b2:ee:7d:85: 40:84:7f:3c:20:58:ae:a1:a0:e0:19:8f:22:c6:35: ab:b8:f4:c8:8a:24:92:47:c1:1b:23:a3:26:4f:10: b1:db:f8:77:39:60:77:c6:86:0f:7a:54:ba:39:20: 78:c9:8e:a6:12:69:0b:0f:31:15:ce:f9:b7:c3:54: 26:cc:f0:6b:af:39:b1:3e:39:d8:f7:13:21:dc:46: c7:25:93:82:48:9a:f9:b6:ed:81:86:0d:45:48:1e: 53:0a:ab:fd:5d:92:9e:e8:c2:b6:e2:e9:38:a8:9d: fe:f4:47:bc:38:86:73:31:a1:54:30:43:47:1b:ff: 6d:d8:fc:ef:18:b2:97:10:1b:3b:f5:ef:1d:f1:c5: 9d:e9:d2:73:03:d5:be:ef:09:0d:9f:fb:16:94:c3: cb:f9:38:70:e6:ee:bf:74:80:1a:be:5a:2f:51:a7: 89:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:49:6D:BD:E5:36:A5:A8:77:2F:65:A6:DB:15:43:DF:88:25:B5:C3 X509v3 Authority Key Identifier: keyid:E4:EB:5D:FA:57:92:42:90:BB:8F:EC:45:B9:97:7F:C6:C7:F6:FA:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8B0B/5AEB5EB2FCC511E99858A91EC4F9AE02/5Otd-leSQpC7j-xFuZd_xsf2-jc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Otd-leSQpC7j-xFuZd_xsf2-jc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8B0B/5AEB5EB2FCC511E99858A91EC4F9AE02/5Otd-leSQpC7j-xFuZd_xsf2-jc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:ed:0b:a6:9a:ad:d6:63:72:47:aa:62:8d:52:a6:00:33:84: ca:8c:09:7a:e0:7f:fa:6a:6f:13:6d:22:78:69:c6:da:1a:0b: 75:fd:96:99:d1:1f:ef:26:93:b7:3a:9b:c0:ea:87:18:5d:d1: 74:73:df:24:98:a5:5d:40:f8:89:75:71:e8:25:a6:e3:55:c4: 0c:93:b9:8e:25:a6:07:3a:60:6c:b2:73:b5:6c:0e:59:25:9c: 5d:83:12:5f:5b:1f:f3:3d:bf:c6:1d:90:1c:df:23:ad:2a:92: ea:16:25:58:da:74:39:41:33:bc:b3:a0:c8:bc:43:96:c8:14: 41:86:d0:f6:6e:0e:e1:b8:f8:dd:5b:29:2a:8b:08:fa:a1:a3: 45:83:02:c2:81:13:2a:0b:ee:8f:c7:b7:dd:fc:0d:90:f2:5e: b7:42:14:09:1e:ff:46:66:57:a5:a4:b8:6d:6b:23:f3:da:e5: 07:aa:11:7c:65:ad:0b:44:5e:3b:40:ac:26:57:12:d0:48:a1: 07:b0:15:62:89:9f:45:13:34:09:62:f3:4f:63:21:38:d6:29: d2:26:5d:12:a1:e3:85:2b:b3:c2:f1:76:2d:43:83:99:a1:da: c5:b6:52:bf:30:33:f4:74:40:01:64:e6:c1:8a:ad:2a:5b:f3: 04:be:23:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDLEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThCMEIxMTAvBgNVBAUTKEU0RUI1REZBNTc5MjQyOTBCQjhGRUM0NUI5OTc3RkM2 QzdGNkZBMzcwHhcNMjUwODAyMTgyNDQ2WhcNMjUwODA5MTgyNDQ2WjAYMRYwFAYD VQQDEw02ODhlNTdlZS02OGVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqEtHfHQQ1M7JJXpwptB1vyMczbTNPe3oaOYlKL+RLeiaYas3i+WQj7cpk1ka z/aynyMwhsYudNdku+WRCHtlBT4FFotZCEoRUDpYd99VVT0YdgJRqLLufYVAhH88 IFiuoaDgGY8ixjWruPTIiiSSR8EbI6MmTxCx2/h3OWB3xoYPelS6OSB4yY6mEmkL DzEVzvm3w1QmzPBrrzmxPjnY9xMh3EbHJZOCSJr5tu2Bhg1FSB5TCqv9XZKe6MK2 4uk4qJ3+9Ee8OIZzMaFUMENHG/9t2PzvGLKXEBs79e8d8cWd6dJzA9W+7wkNn/sW lMPL+Thw5u6/dIAavlovUaeJHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHRJbb3l NqWody9lptsVQ9+IJbXDMB8GA1UdIwQYMBaAFOTrXfpXkkKQu4/sRbmXf8bH9vo3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEIwQi81QUVCNUVCMkZD QzUxMUU5OTg1OEE5MUVDNEY5QUUwMi81T3RkLWxlU1FwQzdqLXhGdVpkX3hzZjIt amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVPdGQtbGVTUXBDN2oteEZ1WmRfeHNmMi1qYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEIwQi81QUVCNUVCMkZDQzUxMUU5OTg1OEE5MUVDNEY5QUUwMi81T3RkLWxlU1Fw QzdqLXhGdVpkX3hzZjItamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCa7Qummq3WY3JHqmKNUqYAM4TKjAl64H/6am8TbSJ4acbaGgt1/ZaZ 0R/vJpO3OpvA6ocYXdF0c98kmKVdQPiJdXHoJabjVcQMk7mOJaYHOmBssnO1bA5Z JZxdgxJfWx/zPb/GHZAc3yOtKpLqFiVY2nQ5QTO8s6DIvEOWyBRBhtD2bg7huPjd Wykqiwj6oaNFgwLCgRMqC+6Px7fd/A2Q8l63QhQJHv9GZlelpLhtayPz2uUHqhF8 Za0LRF47QKwmVxLQSKEHsBViiZ9FEzQJYvNPYyE41inSJl0SoeOFK7PC8XYtQ4OZ odrFtlK/MDP0dEABZObBiq0qW/MEviM7 -----END CERTIFICATE-----Generated at Mon Aug 4 18:30:56 2025 by rpki-client