$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9CA8/2932C588E4FD11EFAC1CE67FC4F9AE02/5JdLhBatO5ndEfOwQFbwx5m3ocs.mft File: 5JdLhBatO5ndEfOwQFbwx5m3ocs.mft (raw, json) Hash identifier: l6THXeRKwa+6msILZfREn0Kny1MP3VV7RgJU/+tEC20= Subject key identifier: 1B:59:2C:AA:63:3A:44:63:1F:63:AE:2F:8B:30:2B:7C:56:31:8E:EC Authority key identifier: E4:97:4B:84:16:AD:3B:99:DD:11:F3:B0:40:56:F0:C7:99:B7:A1:CB Certificate issuer: /CN=A91D9CA8/serialNumber=E4974B8416AD3B99DD11F3B04056F0C799B7A1CB Certificate serial: 5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5JdLhBatO5ndEfOwQFbwx5m3ocs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9CA8/2932C588E4FD11EFAC1CE67FC4F9AE02/5JdLhBatO5ndEfOwQFbwx5m3ocs.mft Manifest number: 5E Signing time: Sat 09 Aug 2025 07:34:49 +0000 Manifest this update: Sat 09 Aug 2025 07:34:48 +0000 Manifest next update: Sat 16 Aug 2025 07:34:48 +0000 Files and hashes: 1: 5JdLhBatO5ndEfOwQFbwx5m3ocs.crl (hash: F07MYeKAZxnlLdDJl56/Z54NkC9U6HWPcJQBp8bUlAE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9CA8/2932C588E4FD11EFAC1CE67FC4F9AE02/5JdLhBatO5ndEfOwQFbwx5m3ocs.crl rsync://rpki.apnic.net/member_repository/A91D9CA8/2932C588E4FD11EFAC1CE67FC4F9AE02/5JdLhBatO5ndEfOwQFbwx5m3ocs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5JdLhBatO5ndEfOwQFbwx5m3ocs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 94 (0x5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9CA8, serialNumber=E4974B8416AD3B99DD11F3B04056F0C799B7A1CB Validity Not Before: Aug 9 07:34:48 2025 GMT Not After : Aug 16 07:34:48 2025 GMT Subject: CN=6896fa18-18b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ee:1a:5f:30:dd:d9:6f:12:75:ab:df:b4:ce: 60:49:d1:15:38:2a:bd:2e:d8:ab:a7:11:a4:0a:e1: 37:84:1e:e7:81:d2:9a:48:98:ed:3e:1e:19:b6:15: ed:ae:5e:9a:31:f8:61:78:7f:8d:74:cc:de:41:1e: b2:7d:f4:96:9c:a8:5b:37:d1:d1:53:db:de:0b:1d: d4:d6:e0:8e:e5:2d:28:4f:d8:a6:ce:3c:95:f9:15: 07:b8:32:99:b1:cd:5b:b3:5a:96:4d:cf:51:bb:a8: e4:c5:37:a9:a0:f9:1f:a5:11:4d:b2:da:62:25:6c: b3:ad:99:81:4c:e5:c1:f8:f9:40:80:b2:c4:58:c4: 76:df:a8:60:9a:a8:41:60:e8:a3:85:ab:5a:81:58: 63:c5:0b:cf:06:a0:42:35:e5:f1:60:66:1b:1b:9d: d7:f0:b2:df:e5:91:e5:7d:86:67:9c:eb:18:c7:f1: f1:87:d3:a0:42:2b:04:ea:3c:9f:f1:0a:33:6f:e7: bd:37:24:0a:7b:5f:10:76:9b:d0:3f:17:2e:98:a7: 73:6f:e2:53:3c:08:dd:07:6c:cd:e2:53:d5:b7:d1: 16:56:a1:b1:1c:18:b2:f5:20:e5:b5:54:34:00:0b: 36:21:5b:a9:98:57:29:9a:f8:26:0f:92:92:94:69: 1b:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:59:2C:AA:63:3A:44:63:1F:63:AE:2F:8B:30:2B:7C:56:31:8E:EC X509v3 Authority Key Identifier: keyid:E4:97:4B:84:16:AD:3B:99:DD:11:F3:B0:40:56:F0:C7:99:B7:A1:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/2932C588E4FD11EFAC1CE67FC4F9AE02/5JdLhBatO5ndEfOwQFbwx5m3ocs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5JdLhBatO5ndEfOwQFbwx5m3ocs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/2932C588E4FD11EFAC1CE67FC4F9AE02/5JdLhBatO5ndEfOwQFbwx5m3ocs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:05:d3:a5:c5:85:ae:5e:b6:c8:55:8b:ee:f2:b5:1b:40:ec: 39:f7:0f:e8:f9:b1:57:60:9c:50:87:9f:8d:43:a6:c5:27:55: 18:e1:e9:ba:1d:fe:d5:7a:4c:ed:d7:6d:f0:3d:47:25:e9:51: f0:77:e3:15:bd:b7:63:cb:18:aa:59:49:f5:5f:4f:86:d3:bd: 4c:07:0a:3e:f3:a8:bc:7c:3d:bf:7a:1a:b3:12:f5:ce:70:ac: 62:45:62:5c:c6:9d:a2:2c:63:e3:37:86:53:81:ce:80:58:71: 08:dd:f9:b7:de:7d:b9:81:d4:09:6f:ff:bd:09:37:01:ad:95: 4b:d4:54:73:ef:7f:ac:77:91:e3:5b:04:28:b2:56:2b:13:1e: a5:a6:10:5a:73:5a:d0:1d:6f:d3:4e:0a:3e:29:95:02:00:7c: 2b:09:eb:60:76:d6:78:62:bd:1a:62:4d:13:7f:fc:04:79:ea: e0:9d:54:78:c1:6d:df:49:da:59:67:b0:c8:df:cb:a6:6f:72: 53:c9:10:f7:73:d2:0e:78:1a:73:15:4d:82:d1:ed:13:d7:e2: d6:a8:d5:7c:b0:60:eb:93:2a:75:19:aa:e8:2f:93:22:13:7b: 03:5a:bf:81:4c:cb:18:c1:12:ce:d3:60:3d:5f:7b:12:ee:30: a4:13:d7:a5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE OUNBODExMC8GA1UEBRMoRTQ5NzRCODQxNkFEM0I5OUREMTFGM0IwNDA1NkYwQzc5 OUI3QTFDQjAeFw0yNTA4MDkwNzM0NDhaFw0yNTA4MTYwNzM0NDhaMBgxFjAUBgNV BAMTDTY4OTZmYTE4LTE4YjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDK7hpfMN3ZbxJ1q9+0zmBJ0RU4Kr0u2KunEaQK4TeEHueB0ppImO0+Hhm2Fe2u Xpox+GF4f410zN5BHrJ99JacqFs30dFT294LHdTW4I7lLShP2KbOPJX5FQe4Mpmx zVuzWpZNz1G7qOTFN6mg+R+lEU2y2mIlbLOtmYFM5cH4+UCAssRYxHbfqGCaqEFg 6KOFq1qBWGPFC88GoEI15fFgZhsbndfwst/lkeV9hmec6xjH8fGH06BCKwTqPJ/x CjNv5703JAp7XxB2m9A/Fy6Yp3Nv4lM8CN0HbM3iU9W30RZWobEcGLL1IOW1VDQA CzYhW6mYVyma+CYPkpKUaRu7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUG1ksqmM6 RGMfY64vizArfFYxjuwwHwYDVR0jBBgwFoAU5JdLhBatO5ndEfOwQFbwx5m3ocsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5Q0E4LzI5MzJDNTg4RTRG RDExRUZBQzFDRTY3RkM0RjlBRTAyLzVKZExoQmF0TzVuZEVmT3dRRmJ3eDVtM29j cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNUpkTGhCYXRPNW5kRWZPd1FGYnd4NW0zb2NzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5 Q0E4LzI5MzJDNTg4RTRGRDExRUZBQzFDRTY3RkM0RjlBRTAyLzVKZExoQmF0TzVu ZEVmT3dRRmJ3eDVtM29jcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHcF06XFha5etshVi+7ytRtA7Dn3D+j5sVdgnFCHn41DpsUnVRjh6bod /tV6TO3XbfA9RyXpUfB34xW9t2PLGKpZSfVfT4bTvUwHCj7zqLx8Pb96GrMS9c5w rGJFYlzGnaIsY+M3hlOBzoBYcQjd+bfefbmB1Alv/70JNwGtlUvUVHPvf6x3keNb BCiyVisTHqWmEFpzWtAdb9NOCj4plQIAfCsJ62B21nhivRpiTRN//AR56uCdVHjB bd9J2llnsMjfy6ZvclPJEPdz0g54GnMVTYLR7RPX4tao1XywYOuTKnUZqugvkyIT ewNav4FMyxjBEs7TYD1fexLuMKQT16U= -----END CERTIFICATE-----Generated at Sun Aug 10 21:02:32 2025 by rpki-client