$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft File: 5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft (raw, json) Hash identifier: rHgBf7cvS92hUwK63LoA9BpJaWCD2J1LVGOYQqKhrX8= Subject key identifier: 80:A8:C3:5B:AB:85:D9:48:57:67:50:95:90:C9:35:6A:65:40:14:D6 Authority key identifier: E5:B1:CE:1D:45:39:18:19:5B:EB:5C:D9:0F:6D:87:9E:FE:99:10:A2 Certificate issuer: /CN=A91DE5E8/serialNumber=E5B1CE1D453918195BEB5CD90F6D879EFE9910A2 Certificate serial: 01DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bHOHUU5GBlb61zZD22Hnv6ZEKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft Manifest number: 01D8 Signing time: Mon 11 Aug 2025 02:51:23 +0000 Manifest this update: Mon 11 Aug 2025 02:51:22 +0000 Manifest next update: Mon 18 Aug 2025 02:51:22 +0000 Files and hashes: 1: 5bHOHUU5GBlb61zZD22Hnv6ZEKI.crl (hash: 3fOVvkVxb487f6cvDX/UtAje2LRPdgQN+fL1k0oAhL0=) 2: 785B44D6F2AF11EF97443030C4F9AE02.roa (hash: 3X8JQRJ56NXF/A25OQxe1Q8xkJiOt4/FMaPtZ+BwKik=) 3: B264EB66A30911ED99A82087C4F9AE02.roa (hash: tZEzhiKfHDteKh17cCbwci/tZYnVymPaW90yd5ZJ1q4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.crl rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bHOHUU5GBlb61zZD22Hnv6ZEKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 02:51:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 478 (0x1de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE5E8, serialNumber=E5B1CE1D453918195BEB5CD90F6D879EFE9910A2 Validity Not Before: Aug 11 02:51:22 2025 GMT Not After : Aug 18 02:51:22 2025 GMT Subject: CN=68995aaa-d31d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f5:aa:08:12:f0:2a:a4:44:57:1d:ea:cd:90: 22:a6:2d:4c:23:f9:de:fd:8e:3e:a4:ea:4c:04:98: 41:c0:8c:ae:12:3d:91:00:00:bf:b8:f5:c1:42:d8: 91:49:bb:2a:d3:32:a5:f8:5b:6f:31:e9:e9:7c:d3: 47:6c:15:4d:6d:f8:e0:75:60:22:3d:ae:9c:08:e3: 86:ce:a1:42:94:36:cc:cb:b7:3e:43:31:c7:71:5d: 4d:2c:db:86:a3:b7:ab:e3:da:a1:01:82:08:91:92: 18:3c:22:bc:a6:83:23:53:90:ec:e4:ee:29:5f:e9: 54:c6:ce:a5:17:5d:c2:44:0d:bf:d7:fd:8d:ab:ce: e8:29:3e:5b:63:ed:39:0a:08:3d:36:55:8a:02:5c: 42:1b:84:63:e8:38:0d:c0:d9:8d:9e:22:97:63:a9: 70:c2:b0:30:74:63:28:f5:c9:35:10:b3:5b:16:df: 6f:31:8b:61:ee:68:b8:64:26:4a:4d:5c:79:02:20: 1b:27:12:55:82:4a:b5:55:d1:73:b4:8d:36:1f:a0: c5:46:f7:e9:7a:73:eb:9a:85:eb:e3:a0:d0:17:4d: 84:20:13:11:09:6b:a4:4b:fd:88:54:1d:d0:d5:7f: 75:ff:51:e9:92:e0:3f:77:e5:02:2f:3d:92:d9:c9: d3:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:A8:C3:5B:AB:85:D9:48:57:67:50:95:90:C9:35:6A:65:40:14:D6 X509v3 Authority Key Identifier: keyid:E5:B1:CE:1D:45:39:18:19:5B:EB:5C:D9:0F:6D:87:9E:FE:99:10:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bHOHUU5GBlb61zZD22Hnv6ZEKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:16:e6:54:44:f3:f2:b0:59:ee:83:c1:ba:a4:99:3d:d5:9c: 8d:3b:33:b1:44:39:53:3c:f8:22:ed:88:7d:4c:88:94:41:f6: fe:d0:b0:ce:1d:94:6b:42:63:85:19:9c:08:87:bb:14:7b:73: e0:9e:c2:e6:91:d5:6e:ed:da:de:ec:04:20:68:20:d1:54:b3: e8:00:b0:e4:a6:8e:fc:bb:00:bb:fb:4f:36:3d:73:ab:ff:f2: 37:48:a3:ab:e6:d5:93:37:b4:f7:91:d5:9f:78:70:c9:7c:e4: 38:ee:7b:5c:57:99:01:67:19:9b:b0:c1:78:27:5f:6a:e2:7b: ed:04:16:65:17:ca:19:ad:d0:12:2e:a4:76:e4:df:06:01:37: 16:d3:60:44:50:92:42:be:5b:c4:91:5a:06:6e:93:3d:0f:e3: f6:eb:06:73:42:82:40:47:f5:6b:dd:5a:a6:01:d5:95:43:3e: d5:11:27:3f:26:59:d2:26:b1:1f:75:e7:1a:2c:f4:a4:11:8d: d9:58:ba:91:86:a0:a2:7b:13:7c:c1:20:15:f0:65:d1:41:5f: a0:ad:c9:bc:fc:ae:89:43:3c:89:c6:e3:07:4e:6e:dd:b4:6c: 49:25:b7:82:9d:7f:03:bb:7f:2c:45:11:2e:89:dc:72:75:5d: 44:a1:04:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAd4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU1RTgxMTAvBgNVBAUTKEU1QjFDRTFENDUzOTE4MTk1QkVCNUNEOTBGNkQ4NzlF RkU5OTEwQTIwHhcNMjUwODExMDI1MTIyWhcNMjUwODE4MDI1MTIyWjAYMRYwFAYD VQQDEw02ODk5NWFhYS1kMzFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu/WqCBLwKqREVx3qzZAipi1MI/ne/Y4+pOpMBJhBwIyuEj2RAAC/uPXBQtiR Sbsq0zKl+FtvMenpfNNHbBVNbfjgdWAiPa6cCOOGzqFClDbMy7c+QzHHcV1NLNuG o7er49qhAYIIkZIYPCK8poMjU5Ds5O4pX+lUxs6lF13CRA2/1/2Nq87oKT5bY+05 Cgg9NlWKAlxCG4Rj6DgNwNmNniKXY6lwwrAwdGMo9ck1ELNbFt9vMYth7mi4ZCZK TVx5AiAbJxJVgkq1VdFztI02H6DFRvfpenPrmoXr46DQF02EIBMRCWukS/2IVB3Q 1X91/1HpkuA/d+UCLz2S2cnTgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFICow1ur hdlIV2dQlZDJNWplQBTWMB8GA1UdIwQYMBaAFOWxzh1FORgZW+tc2Q9th57+mRCi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTVFOC9FOUUxQkYyOEEz MDUxMUVEQUMxNEVFNkNDNEY5QUUwMi81YkhPSFVVNUdCbGI2MXpaRDIySG52NlpF S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzViSE9IVVU1R0JsYjYxelpEMjJIbnY2WkVLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTVFOC9FOUUxQkYyOEEzMDUxMUVEQUMxNEVFNkNDNEY5QUUwMi81YkhPSFVVNUdC bGI2MXpaRDIySG52NlpFS0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXFuZURPPysFnug8G6pJk91ZyNOzOxRDlTPPgi7Yh9TIiUQfb+0LDO HZRrQmOFGZwIh7sUe3PgnsLmkdVu7dre7AQgaCDRVLPoALDkpo78uwC7+082PXOr //I3SKOr5tWTN7T3kdWfeHDJfOQ47ntcV5kBZxmbsMF4J19q4nvtBBZlF8oZrdAS LqR25N8GATcW02BEUJJCvlvEkVoGbpM9D+P26wZzQoJAR/Vr3VqmAdWVQz7VESc/ JlnSJrEfdecaLPSkEY3ZWLqRhqCiexN8wSAV8GXRQV+grcm8/K6JQzyJxuMHTm7d tGxJJbeCnX8Du38sRREuidxydV1EoQQk -----END CERTIFICATE-----Generated at Wed Aug 13 00:27:56 2025 by rpki-client