$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft File: 5bRMaejecz32GWYFbn5BXsfHDSo.mft (raw, json) Hash identifier: TNvr75fwiyH6wjmFgOUOCcFPuJpfsEXkVL/iMDAGjqE= Subject key identifier: 62:0D:E9:FF:02:CB:9E:E6:5A:66:BA:5D:A1:08:E9:79:D9:B1:2D:DB Authority key identifier: E5:B4:4C:69:E8:DE:73:3D:F6:19:66:05:6E:7E:41:5E:C7:C7:0D:2A Certificate issuer: /CN=A91B4873/serialNumber=E5B44C69E8DE733DF61966056E7E415EC7C70D2A Certificate serial: D1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5bRMaejecz32GWYFbn5BXsfHDSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft Manifest number: CF Signing time: Sat 09 Aug 2025 06:04:23 +0000 Manifest this update: Sat 09 Aug 2025 06:04:22 +0000 Manifest next update: Sat 16 Aug 2025 06:04:22 +0000 Files and hashes: 1: 5bRMaejecz32GWYFbn5BXsfHDSo.crl (hash: 3RlqtmFQeDdW/YHqwLPWg1GPL83lUosNY3JAkGioziM=) 2: 01F62A6438F011EF9A82662BC4F9AE02.roa (hash: qNBV2PTtzm82Ja2P5dgUf+ogJinB9ZCYKNbddsnAs34=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.crl rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5bRMaejecz32GWYFbn5BXsfHDSo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 209 (0xd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4873, serialNumber=E5B44C69E8DE733DF61966056E7E415EC7C70D2A Validity Not Before: Aug 9 06:04:22 2025 GMT Not After : Aug 16 06:04:22 2025 GMT Subject: CN=6896e4e7-7bce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:9a:6c:11:25:c9:23:be:a4:f6:79:ef:8e:91: 06:47:3c:77:21:e0:b4:c9:7a:20:99:16:b8:35:3f: 26:63:6e:1c:35:9d:30:3b:2a:4a:7e:15:88:27:fa: e5:da:bd:2c:57:2c:f9:da:8b:fa:9b:fe:81:16:c1: 05:8d:01:8c:0c:9b:46:a7:b9:7f:13:7c:f9:5b:1f: 2a:2d:fc:fb:66:cd:6d:2e:a9:77:bf:ef:82:7b:cd: f1:e2:73:e2:5d:a5:98:a5:28:b7:df:1a:fe:8d:68: f3:3a:01:30:61:de:10:32:85:78:d8:da:e1:31:7e: 24:d9:ef:a7:b4:2c:8e:4a:05:e4:c0:d7:50:af:62: ca:5f:61:03:bb:71:db:0c:57:b4:16:a5:f3:17:aa: bb:9d:0d:cd:e6:80:a8:49:68:28:39:14:18:ee:d7: c2:c3:d4:f9:50:81:d4:52:24:88:b9:4c:7d:ee:a9: e7:58:bb:f0:b9:3b:93:32:44:2f:4c:43:76:1a:08: da:0a:52:fa:d7:03:cb:61:46:7b:18:70:c0:d8:9e: 00:06:13:d5:b3:fd:f1:76:2c:ec:5a:05:ed:a0:5d: 69:36:57:b7:cf:a0:23:3d:c5:05:07:00:8e:75:f8: fa:f4:8b:78:6f:82:2d:6f:d8:d3:66:b0:79:d0:e2: a1:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:0D:E9:FF:02:CB:9E:E6:5A:66:BA:5D:A1:08:E9:79:D9:B1:2D:DB X509v3 Authority Key Identifier: keyid:E5:B4:4C:69:E8:DE:73:3D:F6:19:66:05:6E:7E:41:5E:C7:C7:0D:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5bRMaejecz32GWYFbn5BXsfHDSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:79:c1:79:2e:0e:43:8e:f6:4b:cb:e3:1f:95:5a:24:0b:e7: 5d:45:1c:17:dd:bc:56:3e:42:84:1a:2a:39:1d:f5:88:b2:21: 86:7f:9b:f4:6d:f0:b3:6f:77:7b:78:dd:18:b2:00:a8:45:43: d4:f5:57:3c:bf:61:a0:ac:11:aa:3d:7e:69:85:ff:a2:6d:a9: 22:51:08:ea:99:38:9f:1a:10:fa:93:58:40:31:58:2c:4d:4d: 33:b3:b2:d4:d5:fb:9e:ae:09:cd:d3:0b:ed:51:69:dc:56:23: a6:a8:93:db:a7:77:66:db:73:67:fa:77:30:48:c5:c0:0d:b7: 90:76:f4:03:e6:da:c0:1e:14:da:f5:26:34:2d:4d:3b:7e:99: a3:33:97:ff:a2:5f:0d:1c:0d:89:7f:7f:31:99:7b:32:ff:a3: 9c:7f:f0:5f:4d:69:32:ba:0a:8b:02:8e:f8:e9:04:9f:ee:32: f0:4d:c8:66:15:cd:40:88:2e:08:a4:37:cb:b7:ea:ce:df:3c: 12:60:ff:5e:a5:cf:6d:cd:ac:5d:9a:f7:0f:61:ca:5c:7e:7d: 47:39:ab:5f:2c:6b:e5:6d:cf:f9:6f:ff:15:9b:cb:aa:cb:dd: 40:24:03:e9:65:93:59:1d:0b:68:bb:8b:87:0a:78:f2:56:8a: f3:64:ee:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ4NzMxMTAvBgNVBAUTKEU1QjQ0QzY5RThERTczM0RGNjE5NjYwNTZFN0U0MTVF QzdDNzBEMkEwHhcNMjUwODA5MDYwNDIyWhcNMjUwODE2MDYwNDIyWjAYMRYwFAYD VQQDEw02ODk2ZTRlNy03YmNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy5psESXJI76k9nnvjpEGRzx3IeC0yXogmRa4NT8mY24cNZ0wOypKfhWIJ/rl 2r0sVyz52ov6m/6BFsEFjQGMDJtGp7l/E3z5Wx8qLfz7Zs1tLql3v++Ce83x4nPi XaWYpSi33xr+jWjzOgEwYd4QMoV42NrhMX4k2e+ntCyOSgXkwNdQr2LKX2EDu3Hb DFe0FqXzF6q7nQ3N5oCoSWgoORQY7tfCw9T5UIHUUiSIuUx97qnnWLvwuTuTMkQv TEN2GgjaClL61wPLYUZ7GHDA2J4ABhPVs/3xdizsWgXtoF1pNle3z6AjPcUFBwCO dfj69It4b4Itb9jTZrB50OKhLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGIN6f8C y57mWma6XaEI6XnZsS3bMB8GA1UdIwQYMBaAFOW0TGno3nM99hlmBW5+QV7Hxw0q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDg3My80RTI1QzhCQzM4 RTcxMUVGODQ0QjRGNjVDNEY5QUUwMi81YlJNYWVqZWN6MzJHV1lGYm41QlhzZkhE U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzViUk1hZWplY3ozMkdXWUZibjVCWHNmSERTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDg3My80RTI1QzhCQzM4RTcxMUVGODQ0QjRGNjVDNEY5QUUwMi81YlJNYWVqZWN6 MzJHV1lGYm41QlhzZkhEU28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWecF5Lg5DjvZLy+MflVokC+ddRRwX3bxWPkKEGio5HfWIsiGGf5v0 bfCzb3d7eN0YsgCoRUPU9Vc8v2GgrBGqPX5phf+ibakiUQjqmTifGhD6k1hAMVgs TU0zs7LU1fuergnN0wvtUWncViOmqJPbp3dm23Nn+ncwSMXADbeQdvQD5trAHhTa 9SY0LU07fpmjM5f/ol8NHA2Jf38xmXsy/6Ocf/BfTWkyugqLAo746QSf7jLwTchm Fc1AiC4IpDfLt+rO3zwSYP9epc9tzaxdmvcPYcpcfn1HOatfLGvlbc/5b/8Vm8uq y91AJAPpZZNZHQtou4uHCnjyVorzZO6m -----END CERTIFICATE-----Generated at Mon Aug 11 01:52:03 2025 by rpki-client