$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/5bsti54YaXwBWe2BMuXzS4axN7E.mft File: 5bsti54YaXwBWe2BMuXzS4axN7E.mft (raw, json) Hash identifier: QmrutryAqtNreT25M8CIfOQxyhi2wRmAQWsAwYPOsDI= Subject key identifier: 27:78:7C:71:32:81:F1:74:4B:1B:01:44:1F:38:3E:AC:6F:26:C4:5E Authority key identifier: E5:BB:2D:8B:9E:18:69:7C:01:59:ED:81:32:E5:F3:4B:86:B1:37:B1 Certificate issuer: /CN=A91E0C2B/serialNumber=E5BB2D8B9E18697C0159ED8132E5F34B86B137B1 Certificate serial: 01C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bsti54YaXwBWe2BMuXzS4axN7E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/5bsti54YaXwBWe2BMuXzS4axN7E.mft Manifest number: 01C1 Signing time: Wed 13 Aug 2025 03:28:08 +0000 Manifest this update: Wed 13 Aug 2025 03:28:07 +0000 Manifest next update: Wed 20 Aug 2025 03:28:07 +0000 Files and hashes: 1: 5bsti54YaXwBWe2BMuXzS4axN7E.crl (hash: We+YXYloiRHY3aoFV2FRvzyiOLVYbAo2eoiIzwVFgcc=) 2: 12B9A5DECBC211EDB6F09516C4F9AE02.roa (hash: GC2+Qt2m2cOxU2MSwTfp+OhWSqEwAQ14izm/J1/ZU5o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/5bsti54YaXwBWe2BMuXzS4axN7E.crl rsync://rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/5bsti54YaXwBWe2BMuXzS4axN7E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bsti54YaXwBWe2BMuXzS4axN7E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 Aug 2025 03:28:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 453 (0x1c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0C2B, serialNumber=E5BB2D8B9E18697C0159ED8132E5F34B86B137B1 Validity Not Before: Aug 13 03:28:07 2025 GMT Not After : Aug 20 03:28:07 2025 GMT Subject: CN=689c0648-023e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:69:69:b1:d5:2c:5c:94:0d:32:79:38:f2:de: b3:27:e3:85:4f:bc:d0:25:b8:ac:73:63:4c:50:6e: da:a6:ac:22:bd:ee:d2:8b:83:1c:c7:43:f6:d6:2d: 01:14:41:e4:88:f6:ca:c5:ee:1c:70:67:00:24:76: 46:b1:93:56:43:30:15:f1:1d:b7:8b:5e:5c:dd:ba: 63:30:b8:7c:b3:ca:75:4f:de:14:0c:95:9d:3c:0e: 83:04:b4:86:ef:1e:10:ef:73:e2:d9:50:5e:04:ce: f2:6d:6f:30:87:55:8a:8b:da:e4:53:1c:43:15:d3: 79:3b:85:73:06:b2:a2:84:a7:c0:d0:95:1e:c5:ff: 45:ed:81:cc:39:0b:4c:a0:ba:ce:a7:27:44:49:af: 09:47:f5:f6:f0:a3:8c:e4:5d:5b:8f:ac:be:a2:c9: e4:99:b4:62:22:a1:6e:2f:87:37:e1:91:6c:4b:89: a6:32:40:55:7a:05:a2:ec:30:02:0f:65:e2:70:68: 51:47:f5:66:45:69:82:41:8b:16:47:14:33:bc:c8: 84:5c:9e:d8:d4:8e:9c:28:ec:82:15:c2:4d:94:ba: 15:e6:46:49:fc:9a:99:8f:45:0b:aa:9a:31:9e:79: 0c:49:50:e5:1a:79:a0:1f:cd:fc:e0:de:29:1a:72: 73:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:78:7C:71:32:81:F1:74:4B:1B:01:44:1F:38:3E:AC:6F:26:C4:5E X509v3 Authority Key Identifier: keyid:E5:BB:2D:8B:9E:18:69:7C:01:59:ED:81:32:E5:F3:4B:86:B1:37:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/5bsti54YaXwBWe2BMuXzS4axN7E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bsti54YaXwBWe2BMuXzS4axN7E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/5bsti54YaXwBWe2BMuXzS4axN7E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:2c:4e:cf:77:ec:c2:60:64:f8:9b:7b:0d:f9:89:54:ed:59: 56:d5:2d:a9:ba:2c:17:45:32:3a:17:10:65:17:c5:34:94:7d: b1:6f:71:9f:ea:c5:e5:41:3e:08:5b:fb:13:e2:12:eb:a2:2c: e4:98:fe:d8:26:e7:9e:6c:7d:a7:3a:d1:09:66:66:6e:a9:d6: a6:0a:85:d8:a3:2a:ed:e1:c2:6e:7e:6f:cf:b1:dc:c7:ba:30: 82:3a:5d:a7:6f:a6:d6:bf:99:ff:08:08:58:46:e8:75:fd:0d: 44:69:b9:23:79:17:3b:74:cb:a5:2b:f2:88:47:ce:15:55:e8: 57:b6:8d:9b:35:a4:c0:08:6b:30:95:e8:1f:1a:b1:29:a1:38: d8:52:31:fb:88:5c:9e:f6:5f:10:25:36:c8:d8:6b:76:88:34: 79:b6:7b:56:7f:9a:b7:0b:5e:7f:ba:d6:04:f8:2e:f8:e3:0a: a7:14:b1:e6:58:79:76:63:32:ee:ed:c5:e8:d7:87:bf:74:df: 92:e5:dd:81:08:4b:21:5e:33:a9:c6:06:f6:58:b1:3e:d1:9a: c4:d1:51:05:ef:84:0e:4a:71:5e:27:28:f1:9c:ce:8b:8f:03: 58:e1:6d:b7:24:04:5f:81:55:58:eb:f3:44:01:4f:3d:83:ea: a0:1b:ed:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBDMkIxMTAvBgNVBAUTKEU1QkIyRDhCOUUxODY5N0MwMTU5RUQ4MTMyRTVGMzRC ODZCMTM3QjEwHhcNMjUwODEzMDMyODA3WhcNMjUwODIwMDMyODA3WjAYMRYwFAYD VQQDEw02ODljMDY0OC0wMjNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq2lpsdUsXJQNMnk48t6zJ+OFT7zQJbisc2NMUG7apqwive7Si4Mcx0P21i0B FEHkiPbKxe4ccGcAJHZGsZNWQzAV8R23i15c3bpjMLh8s8p1T94UDJWdPA6DBLSG 7x4Q73Pi2VBeBM7ybW8wh1WKi9rkUxxDFdN5O4VzBrKihKfA0JUexf9F7YHMOQtM oLrOpydESa8JR/X28KOM5F1bj6y+osnkmbRiIqFuL4c34ZFsS4mmMkBVegWi7DAC D2XicGhRR/VmRWmCQYsWRxQzvMiEXJ7Y1I6cKOyCFcJNlLoV5kZJ/JqZj0ULqpox nnkMSVDlGnmgH8384N4pGnJzpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCd4fHEy gfF0SxsBRB84PqxvJsReMB8GA1UdIwQYMBaAFOW7LYueGGl8AVntgTLl80uGsTex MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEMyQi9EMjdFNkVEMENC OTYxMUVEQUMzNDlCNzlDNEY5QUUwMi81YnN0aTU0WWFYd0JXZTJCTXVYelM0YXhO N0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVic3RpNTRZYVh3QldlMkJNdVh6UzRheE43RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MEMyQi9EMjdFNkVEMENCOTYxMUVEQUMzNDlCNzlDNEY5QUUwMi81YnN0aTU0WWFY d0JXZTJCTXVYelM0YXhON0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3LE7Pd+zCYGT4m3sN+YlU7VlW1S2puiwXRTI6FxBlF8U0lH2xb3Gf 6sXlQT4IW/sT4hLroizkmP7YJueebH2nOtEJZmZuqdamCoXYoyrt4cJufm/PsdzH ujCCOl2nb6bWv5n/CAhYRuh1/Q1EabkjeRc7dMulK/KIR84VVehXto2bNaTACGsw legfGrEpoTjYUjH7iFye9l8QJTbI2Gt2iDR5tntWf5q3C15/utYE+C744wqnFLHm WHl2YzLu7cXo14e/dN+S5d2BCEshXjOpxgb2WLE+0ZrE0VEF74QOSnFeJyjxnM6L jwNY4W23JARfgVVY6/NEAU89g+qgG+3I -----END CERTIFICATE-----Generated at Wed Aug 13 08:52:34 2025 by rpki-client