$ rpki-client -vvf rpki.apnic.net/member_repository/A91B861D/D2997F60ABE311EB9C2B1156C4F9AE02/5hI_ServZkwi-UzV67rqztOHoW8.mft File: 5hI_ServZkwi-UzV67rqztOHoW8.mft (raw, json) Hash identifier: xTmg8ZtaiG5VL/UZ8QCmyvSL2MfaDVbNfpnChv1WrOs= Subject key identifier: AE:5C:03:4D:6F:EC:13:A5:8E:21:0C:F9:C3:8B:6C:93:01:A6:E5:72 Authority key identifier: E6:12:3F:49:EA:EF:66:4C:22:F9:4C:D5:EB:BA:EA:CE:D3:87:A1:6F Certificate issuer: /CN=A91B861D/serialNumber=E6123F49EAEF664C22F94CD5EBBAEACED387A16F Certificate serial: 0627 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5hI_ServZkwi-UzV67rqztOHoW8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B861D/D2997F60ABE311EB9C2B1156C4F9AE02/5hI_ServZkwi-UzV67rqztOHoW8.mft Manifest number: 0620 Signing time: Sun 10 Aug 2025 22:51:24 +0000 Manifest this update: Sun 10 Aug 2025 22:51:23 +0000 Manifest next update: Sun 17 Aug 2025 22:51:23 +0000 Files and hashes: 1: 5hI_ServZkwi-UzV67rqztOHoW8.crl (hash: VjfAaxo/oHtuw2lxiFJZrUkOWLpR0i9JUDxxR+reEJ0=) 2: 1D0BA0FC57EB11F096357F7CC4F9AE02.roa (hash: Njg0pVJ4I7URnxza7bv42AK9X5Mt3J26B9EOz9eASoo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B861D/D2997F60ABE311EB9C2B1156C4F9AE02/5hI_ServZkwi-UzV67rqztOHoW8.crl rsync://rpki.apnic.net/member_repository/A91B861D/D2997F60ABE311EB9C2B1156C4F9AE02/5hI_ServZkwi-UzV67rqztOHoW8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5hI_ServZkwi-UzV67rqztOHoW8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1575 (0x627) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B861D, serialNumber=E6123F49EAEF664C22F94CD5EBBAEACED387A16F Validity Not Before: Aug 10 22:51:23 2025 GMT Not After : Aug 17 22:51:23 2025 GMT Subject: CN=6899226c-fdc5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:23:64:41:5f:42:db:00:f4:a5:8f:aa:2c:15: 2d:41:07:90:42:59:64:dd:b9:2d:0b:e0:ed:6e:ff: e9:80:ec:e0:9d:0f:1e:ee:c8:83:ab:2d:48:92:0f: b1:08:8c:09:59:bb:55:d8:a1:b8:4b:4e:f7:da:95: f3:7e:8c:7f:3f:85:56:7e:82:23:21:94:b4:93:d0: eb:48:94:19:af:ab:5f:59:e1:20:35:5e:89:6f:be: 46:25:d3:28:99:11:fd:99:0f:70:ee:b3:d4:51:b7: a2:06:5f:b6:1c:ed:13:7e:c6:3f:7e:84:31:d8:78: 98:00:9a:89:2b:a5:db:4e:2f:11:58:92:55:95:f1: e2:bc:89:e7:ee:f0:50:d9:2a:3d:bb:12:5d:7b:28: 5e:e4:c1:d9:47:94:c1:5a:32:3f:78:02:7f:d9:d3: 7a:65:94:b5:58:4f:e8:6b:1d:18:aa:eb:62:d4:7b: 7d:3f:91:44:be:36:37:62:ac:c9:01:fc:e3:06:1b: f6:07:30:4e:d2:9d:96:bd:8a:57:49:99:1c:eb:e6: ff:a0:f7:47:1f:58:b4:0e:c6:f6:bf:77:5f:2c:5d: a3:79:c9:a6:61:e6:1e:45:43:15:e3:6f:21:b4:33: 18:b1:95:0c:0b:32:bf:51:0d:7a:19:e8:ae:8d:f3: 11:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:5C:03:4D:6F:EC:13:A5:8E:21:0C:F9:C3:8B:6C:93:01:A6:E5:72 X509v3 Authority Key Identifier: keyid:E6:12:3F:49:EA:EF:66:4C:22:F9:4C:D5:EB:BA:EA:CE:D3:87:A1:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B861D/D2997F60ABE311EB9C2B1156C4F9AE02/5hI_ServZkwi-UzV67rqztOHoW8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5hI_ServZkwi-UzV67rqztOHoW8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B861D/D2997F60ABE311EB9C2B1156C4F9AE02/5hI_ServZkwi-UzV67rqztOHoW8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:21:b5:ac:b8:c7:3d:c5:e2:c8:18:32:28:49:06:02:25:40: b8:f6:10:89:65:9c:88:3a:8d:b9:8f:a4:fa:51:ca:5c:5a:09: bf:c5:e1:69:25:93:81:cb:69:06:cb:9e:6b:16:10:f4:9b:3e: 5d:9c:d4:c4:f9:d8:29:ea:39:e1:44:82:73:a6:e3:89:a2:be: c6:40:45:c3:da:aa:1e:ff:fc:2a:bc:48:7e:2d:24:1c:a8:00: dd:52:7f:00:be:34:1d:a8:75:39:05:55:1e:34:8a:4b:b7:ce: 80:19:bc:ca:28:f6:16:e8:6d:be:ed:4a:07:c5:a3:85:7c:0a: fd:35:12:f6:7f:01:fe:b6:7d:4e:6a:78:4b:42:a8:87:02:2e: 81:f0:5d:e5:eb:84:e7:fd:41:66:8b:ba:d8:a9:93:c2:a5:7f: 40:04:50:32:60:b3:58:1b:4f:eb:d7:ee:fa:6f:ca:5d:85:61: 72:8d:dd:ad:e3:30:b8:29:74:21:18:1b:ea:8d:01:36:b3:d5: 04:17:7c:bd:e2:49:8b:c6:13:9a:9f:f6:81:0b:b9:29:cb:9d: 1a:98:f8:a3:18:eb:4a:f9:c7:3b:38:cc:e1:f4:05:85:45:54: c1:0e:17:8f:99:01:ee:51:4e:1a:e8:c7:f5:1c:46:bb:c7:08: 2f:de:5c:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBicwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjg2MUQxMTAvBgNVBAUTKEU2MTIzRjQ5RUFFRjY2NEMyMkY5NENENUVCQkFFQUNF RDM4N0ExNkYwHhcNMjUwODEwMjI1MTIzWhcNMjUwODE3MjI1MTIzWjAYMRYwFAYD VQQDEw02ODk5MjI2Yy1mZGM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0iNkQV9C2wD0pY+qLBUtQQeQQllk3bktC+Dtbv/pgOzgnQ8e7siDqy1Ikg+x CIwJWbtV2KG4S0732pXzfox/P4VWfoIjIZS0k9DrSJQZr6tfWeEgNV6Jb75GJdMo mRH9mQ9w7rPUUbeiBl+2HO0TfsY/foQx2HiYAJqJK6XbTi8RWJJVlfHivInn7vBQ 2So9uxJdeyhe5MHZR5TBWjI/eAJ/2dN6ZZS1WE/oax0Yquti1Ht9P5FEvjY3YqzJ AfzjBhv2BzBO0p2WvYpXSZkc6+b/oPdHH1i0Dsb2v3dfLF2jecmmYeYeRUMV428h tDMYsZUMCzK/UQ16GeiujfMR1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK5cA01v 7BOljiEM+cOLbJMBpuVyMB8GA1UdIwQYMBaAFOYSP0nq72ZMIvlM1eu66s7Th6Fv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODYxRC9EMjk5N0Y2MEFC RTMxMUVCOUMyQjExNTZDNEY5QUUwMi81aElfU2Vydlprd2ktVXpWNjdycXp0T0hv VzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVoSV9TZXJ2Wmt3aS1VelY2N3JxenRPSG9XOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODYxRC9EMjk5N0Y2MEFCRTMxMUVCOUMyQjExNTZDNEY5QUUwMi81aElfU2Vydlpr d2ktVXpWNjdycXp0T0hvVzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3IbWsuMc9xeLIGDIoSQYCJUC49hCJZZyIOo25j6T6UcpcWgm/xeFp JZOBy2kGy55rFhD0mz5dnNTE+dgp6jnhRIJzpuOJor7GQEXD2qoe//wqvEh+LSQc qADdUn8AvjQdqHU5BVUeNIpLt86AGbzKKPYW6G2+7UoHxaOFfAr9NRL2fwH+tn1O anhLQqiHAi6B8F3l64Tn/UFmi7rYqZPCpX9ABFAyYLNYG0/r1+76b8pdhWFyjd2t 4zC4KXQhGBvqjQE2s9UEF3y94kmLxhOan/aBC7kpy50amPijGOtK+cc7OMzh9AWF RVTBDhePmQHuUU4a6Mf1HEa7xwgv3lw4 -----END CERTIFICATE-----Generated at Mon Aug 11 01:53:21 2025 by rpki-client