$ rpki-client -vvf rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft File: 5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft (raw, json) Hash identifier: h9YusTIPyh1DL0uG2Tm0JtcKl858j0s1CzK8xePPujI= Subject key identifier: 44:48:53:68:70:B0:F4:A1:3F:D1:12:1D:5E:07:04:BB:81:1E:5A:62 Authority key identifier: E4:7B:F7:02:54:53:26:97:D2:0D:0D:31:10:F6:25:37:0D:65:FA:83 Certificate issuer: /CN=A91B59E5/serialNumber=E47BF70254532697D20D0D3110F625370D65FA83 Certificate serial: 01E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft Manifest number: 01BC Signing time: Tue 05 Aug 2025 04:13:48 +0000 Manifest this update: Tue 05 Aug 2025 04:13:48 +0000 Manifest next update: Tue 12 Aug 2025 04:13:48 +0000 Files and hashes: 1: 5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.crl (hash: u5pihUJsi+UIY7Sm3+WgBV39miH3iphWiyNzCmX9vSI=) 2: 9EEE3C44D94F11EF916BCF23C4F9AE02.roa (hash: JTgCQ/a/n5QlsjMCTHDArlAgGVjedlWxdAR2U4v5LnA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.crl rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 04:13:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 489 (0x1e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B59E5, serialNumber=E47BF70254532697D20D0D3110F625370D65FA83 Validity Not Before: Aug 5 04:13:48 2025 GMT Not After : Aug 12 04:13:48 2025 GMT Subject: CN=689184fc-85d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:b2:90:c5:d6:29:7e:ca:80:68:ca:0b:29:ac: d8:db:10:ca:3e:7d:22:bb:e6:69:55:61:e6:cc:74: 20:48:24:e4:50:32:d0:0d:d1:21:7d:ab:41:89:df: cc:08:13:7e:50:8b:23:0a:17:40:1f:ca:f8:b5:3d: 44:90:fd:78:b5:b8:aa:e3:48:a6:d9:5d:94:a8:e0: 64:89:5b:c6:03:82:ff:f1:ba:fd:a8:0f:55:27:c9: 74:0c:da:8a:8d:81:54:39:51:b1:4c:c4:e8:68:e9: de:28:9f:b4:8f:0a:26:7c:f3:bb:43:5f:76:25:40: bc:c5:ed:b7:97:22:57:30:d0:81:ba:55:8a:5f:7f: f7:4b:db:c7:3f:38:e3:92:fd:17:51:85:e2:ca:42: fe:dd:24:7e:ab:29:8f:ee:f7:fe:f1:7b:44:90:fe: 36:0f:09:f5:be:cd:00:f1:7b:c0:b4:4e:b9:75:2d: 16:8f:38:8d:7c:b2:27:9e:e9:bc:6d:ff:9c:3f:bf: ee:2d:8d:5a:bc:43:43:5f:30:4e:79:bd:f3:84:c7: b9:0f:aa:20:8f:25:ce:47:d2:cb:eb:fa:60:ab:e5: 08:7e:7b:f5:d6:ab:58:9d:01:6c:99:77:95:3e:30: c0:0e:c8:e7:6a:6c:35:99:7e:86:f5:3d:35:3f:44: 9b:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:48:53:68:70:B0:F4:A1:3F:D1:12:1D:5E:07:04:BB:81:1E:5A:62 X509v3 Authority Key Identifier: keyid:E4:7B:F7:02:54:53:26:97:D2:0D:0D:31:10:F6:25:37:0D:65:FA:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:47:65:fa:75:ef:0c:5c:be:b4:ff:22:19:39:66:9e:54:fd: ef:5a:29:f4:17:1b:5b:96:c1:ba:72:f9:af:03:2c:2f:86:c5: a4:89:69:ff:ec:df:4a:7f:bc:30:4a:87:ad:67:3e:79:a5:70: 0b:e3:a4:eb:aa:c8:a9:18:70:b7:e8:1b:bb:ee:e8:a5:51:b8: 21:f9:b8:35:84:b1:e1:8d:4a:af:be:a9:a9:e3:f8:d3:c8:27: 94:87:3d:d3:61:9f:68:e6:6f:c8:d5:3c:77:51:f4:0d:dc:71: c4:46:82:20:a7:e5:e1:f2:c5:ca:5c:ec:7f:ea:cf:32:f0:87: 04:21:f7:ef:39:45:da:22:bf:99:a1:f7:a9:79:90:8c:bc:c8: 77:66:52:14:a5:83:d3:f2:dc:70:32:dd:da:e3:83:c2:d3:7e: 07:f0:11:af:93:c5:0f:ad:59:d7:e1:0b:22:41:61:86:29:2f: 3a:db:6f:d2:bc:2c:76:6f:0b:dc:0a:ff:4e:16:03:54:9e:3b: 3b:93:fa:e6:1b:1e:93:1d:da:08:01:07:29:14:4e:df:77:20: c8:05:e5:20:f0:0c:c0:ef:a9:48:75:9d:cd:62:1d:45:ff:96: a0:53:fd:98:e2:3a:49:51:f8:18:fd:2d:f3:4e:ab:8b:71:08: 58:95:81:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAekwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU5RTUxMTAvBgNVBAUTKEU0N0JGNzAyNTQ1MzI2OTdEMjBEMEQzMTEwRjYyNTM3 MEQ2NUZBODMwHhcNMjUwODA1MDQxMzQ4WhcNMjUwODEyMDQxMzQ4WjAYMRYwFAYD VQQDEw02ODkxODRmYy04NWQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxLKQxdYpfsqAaMoLKazY2xDKPn0iu+ZpVWHmzHQgSCTkUDLQDdEhfatBid/M CBN+UIsjChdAH8r4tT1EkP14tbiq40im2V2UqOBkiVvGA4L/8br9qA9VJ8l0DNqK jYFUOVGxTMToaOneKJ+0jwomfPO7Q192JUC8xe23lyJXMNCBulWKX3/3S9vHPzjj kv0XUYXiykL+3SR+qymP7vf+8XtEkP42Dwn1vs0A8XvAtE65dS0WjziNfLInnum8 bf+cP7/uLY1avENDXzBOeb3zhMe5D6ogjyXOR9LL6/pgq+UIfnv11qtYnQFsmXeV PjDADsjnamw1mX6G9T01P0SbPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFERIU2hw sPShP9ESHV4HBLuBHlpiMB8GA1UdIwQYMBaAFOR79wJUUyaX0g0NMRD2JTcNZfqD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTlFNS9ERDlGMUY3QzND MDExMUVFOTFDQkUxNTdDNEY5QUUwMi81SHYzQWxSVEpwZlNEUTB4RVBZbE53MWwt b00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVIdjNBbFJUSnBmU0RRMHhFUFlsTncxbC1vTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTlFNS9ERDlGMUY3QzNDMDExMUVFOTFDQkUxNTdDNEY5QUUwMi81SHYzQWxSVEpw ZlNEUTB4RVBZbE53MWwtb00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzR2X6de8MXL60/yIZOWaeVP3vWin0FxtblsG6cvmvAywvhsWkiWn/ 7N9Kf7wwSoetZz55pXAL46TrqsipGHC36Bu77uilUbgh+bg1hLHhjUqvvqmp4/jT yCeUhz3TYZ9o5m/I1Tx3UfQN3HHERoIgp+Xh8sXKXOx/6s8y8IcEIffvOUXaIr+Z ofepeZCMvMh3ZlIUpYPT8txwMt3a44PC034H8BGvk8UPrVnX4QsiQWGGKS8622/S vCx2bwvcCv9OFgNUnjs7k/rmGx6THdoIAQcpFE7fdyDIBeUg8AzA76lIdZ3NYh1F /5agU/2Y4jpJUfgY/S3zTquLcQhYlYFw -----END CERTIFICATE-----Generated at Thu Aug 7 04:23:59 2025 by rpki-client