$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3ABA/985F0922354B11ECB62DBD48C4F9AE02/5ZkxVcREOi5WwN4jM6RLVsrUkZw.mft File: 5ZkxVcREOi5WwN4jM6RLVsrUkZw.mft (raw, json) Hash identifier: +faakaKeDFGt9uVM7h4cgQFmNyma2HLVGEpa9R2ob3s= Subject key identifier: 7A:7C:53:FB:4A:DB:AC:17:22:79:6D:23:44:93:C3:25:B1:42:D1:19 Authority key identifier: E5:99:31:55:C4:44:3A:2E:56:C0:DE:23:33:A4:4B:56:CA:D4:91:9C Certificate issuer: /CN=A91C3ABA/serialNumber=E5993155C4443A2E56C0DE2333A44B56CAD4919C Certificate serial: 04CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5ZkxVcREOi5WwN4jM6RLVsrUkZw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3ABA/985F0922354B11ECB62DBD48C4F9AE02/5ZkxVcREOi5WwN4jM6RLVsrUkZw.mft Manifest number: 04C7 Signing time: Wed 13 Aug 2025 00:19:31 +0000 Manifest this update: Wed 13 Aug 2025 00:19:31 +0000 Manifest next update: Wed 20 Aug 2025 00:19:31 +0000 Files and hashes: 1: 5ZkxVcREOi5WwN4jM6RLVsrUkZw.crl (hash: 2Tft7Nbysau77PsZjVuQkqQtvSMUGDeXzuNosRb5N8Y=) 2: 4B9F1AA6354F11EC8531C34DC4F9AE02.roa (hash: +rLDpG6E4AF0Dcxf7o8iMswR6KeKAMAGKwbYTVWTRnM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3ABA/985F0922354B11ECB62DBD48C4F9AE02/5ZkxVcREOi5WwN4jM6RLVsrUkZw.crl rsync://rpki.apnic.net/member_repository/A91C3ABA/985F0922354B11ECB62DBD48C4F9AE02/5ZkxVcREOi5WwN4jM6RLVsrUkZw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5ZkxVcREOi5WwN4jM6RLVsrUkZw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 Aug 2025 00:19:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1228 (0x4cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3ABA, serialNumber=E5993155C4443A2E56C0DE2333A44B56CAD4919C Validity Not Before: Aug 13 00:19:31 2025 GMT Not After : Aug 20 00:19:31 2025 GMT Subject: CN=689bda13-3294 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b5:57:0b:f9:d5:93:0c:be:dc:c0:9c:6b:b0: 2f:db:25:fd:6e:a1:ee:a6:bb:e6:cf:44:f4:a4:68: d6:4c:ad:e7:61:2b:d4:fe:47:b4:14:72:13:f6:e4: bf:64:3b:ef:39:e3:53:97:c1:6b:d5:12:ce:b3:97: 6c:a4:3a:3e:9c:35:ca:df:cc:5d:67:b8:da:54:71: d3:2c:de:d8:5a:d4:f0:fe:09:3d:ff:79:a9:1a:c8: 70:b5:bc:99:b3:69:07:66:fc:a1:aa:8c:2a:06:af: 48:85:b0:37:36:ae:31:d3:df:ad:eb:df:32:09:23: 26:6f:66:2c:b2:bf:ff:09:2b:0d:1b:fb:0d:3f:fa: 5a:5f:5c:8a:1a:e7:e6:fc:7c:56:fc:b0:8c:18:7c: 06:8b:9c:ed:92:d0:2a:37:c0:de:2b:c1:4a:55:eb: 32:d1:d2:ed:d5:02:45:4a:2b:65:13:04:5e:f9:75: c0:74:cb:af:f5:04:20:06:ac:46:a9:58:18:25:50: 86:6c:f1:69:70:dd:67:70:e4:de:57:bb:fc:07:e2: 53:76:33:2f:7a:9a:fc:29:cd:80:55:ab:3a:f7:30: bb:14:e9:d6:f1:10:2c:9c:60:5f:c5:c4:62:34:f0: dd:a4:0a:4f:4c:c8:ae:48:b9:e8:57:dc:71:4c:39: 8e:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:7C:53:FB:4A:DB:AC:17:22:79:6D:23:44:93:C3:25:B1:42:D1:19 X509v3 Authority Key Identifier: keyid:E5:99:31:55:C4:44:3A:2E:56:C0:DE:23:33:A4:4B:56:CA:D4:91:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3ABA/985F0922354B11ECB62DBD48C4F9AE02/5ZkxVcREOi5WwN4jM6RLVsrUkZw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5ZkxVcREOi5WwN4jM6RLVsrUkZw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3ABA/985F0922354B11ECB62DBD48C4F9AE02/5ZkxVcREOi5WwN4jM6RLVsrUkZw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:40:44:40:ed:2c:95:3c:fa:b5:40:9a:7e:d7:0a:3c:36:3f: e5:1d:65:b7:0a:28:f7:6a:93:6e:e3:2a:60:55:fd:f1:ea:b7: ba:5d:f9:98:dc:a5:67:6d:67:bf:fc:0e:87:7e:0b:bf:72:c4: 76:2d:15:82:5b:58:06:ed:02:66:7e:25:61:1e:7c:a5:9e:9d: 54:29:2a:66:4f:1a:a0:2c:ca:5a:5e:a7:0b:0f:45:b3:48:c7: b0:3b:54:5f:3c:27:af:cd:ee:e4:e3:9a:9a:d3:40:76:dc:28: 09:a6:d6:fd:8a:53:1e:54:cd:8e:80:4d:b2:c8:6c:b3:56:a7: 75:11:5a:1c:4a:66:9c:61:39:40:49:fe:3c:ca:c9:0e:42:48: 0f:43:38:11:77:8b:8a:cc:a5:94:d4:b8:08:b4:f8:16:24:d6: 14:48:5e:e9:c8:73:4c:52:ad:ab:01:4b:b7:aa:e1:8d:b4:d1: ed:51:ab:78:b0:67:9b:55:c6:11:e8:7e:51:73:93:fd:f3:a4: 13:28:ab:b5:84:93:30:ed:db:ce:35:ea:88:62:60:28:ff:5d: 72:db:31:0b:e1:5b:e8:71:c9:1c:10:20:99:b8:da:7a:58:a2: 8e:24:91:fb:d1:e9:3e:28:48:16:28:1d:bc:79:3a:f4:16:3f: 18:5d:6f:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzNBQkExMTAvBgNVBAUTKEU1OTkzMTU1QzQ0NDNBMkU1NkMwREUyMzMzQTQ0QjU2 Q0FENDkxOUMwHhcNMjUwODEzMDAxOTMxWhcNMjUwODIwMDAxOTMxWjAYMRYwFAYD VQQDEw02ODliZGExMy0zMjk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxbVXC/nVkwy+3MCca7Av2yX9bqHuprvmz0T0pGjWTK3nYSvU/ke0FHIT9uS/ ZDvvOeNTl8Fr1RLOs5dspDo+nDXK38xdZ7jaVHHTLN7YWtTw/gk9/3mpGshwtbyZ s2kHZvyhqowqBq9IhbA3Nq4x09+t698yCSMmb2Yssr//CSsNG/sNP/paX1yKGufm /HxW/LCMGHwGi5ztktAqN8DeK8FKVesy0dLt1QJFSitlEwRe+XXAdMuv9QQgBqxG qVgYJVCGbPFpcN1ncOTeV7v8B+JTdjMvepr8Kc2AVas69zC7FOnW8RAsnGBfxcRi NPDdpApPTMiuSLnoV9xxTDmOjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHp8U/tK 26wXInltI0STwyWxQtEZMB8GA1UdIwQYMBaAFOWZMVXERDouVsDeIzOkS1bK1JGc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDM0FCQS85ODVGMDkyMjM1 NEIxMUVDQjYyREJENDhDNEY5QUUwMi81Wmt4VmNSRU9pNVd3TjRqTTZSTFZzclVr WncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVaa3hWY1JFT2k1V3dONGpNNlJMVnNyVWtady5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD M0FCQS85ODVGMDkyMjM1NEIxMUVDQjYyREJENDhDNEY5QUUwMi81Wmt4VmNSRU9p NVd3TjRqTTZSTFZzclVrWncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChQERA7SyVPPq1QJp+1wo8Nj/lHWW3Cij3apNu4ypgVf3x6re6XfmY 3KVnbWe//A6Hfgu/csR2LRWCW1gG7QJmfiVhHnylnp1UKSpmTxqgLMpaXqcLD0Wz SMewO1RfPCevze7k45qa00B23CgJptb9ilMeVM2OgE2yyGyzVqd1EVocSmacYTlA Sf48yskOQkgPQzgRd4uKzKWU1LgItPgWJNYUSF7pyHNMUq2rAUu3quGNtNHtUat4 sGebVcYR6H5Rc5P986QTKKu1hJMw7dvONeqIYmAo/11y2zEL4VvocckcECCZuNp6 WKKOJJH70ek+KEgWKB28eTr0Fj8YXW/V -----END CERTIFICATE-----Generated at Wed Aug 13 07:39:32 2025 by rpki-client