$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8525/52212610612F11E7BD2EDA0BC4F9AE02/5xqfIU6Aybw7LSOf-LmqtxP27bc.mft File: 5xqfIU6Aybw7LSOf-LmqtxP27bc.mft (raw, json) Hash identifier: R8oQVRfX+Ir9vaj6BZFXSMedgpvxv07fe4jPyZr134w= Subject key identifier: CB:B7:C0:5B:42:20:14:8C:96:53:66:45:F5:72:82:11:66:BE:4A:D5 Authority key identifier: E7:1A:9F:21:4E:80:C9:BC:3B:2D:23:9F:F8:B9:AA:B7:13:F6:ED:B7 Certificate issuer: /CN=A91E8525/serialNumber=E71A9F214E80C9BC3B2D239FF8B9AAB713F6EDB7 Certificate serial: 19FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5xqfIU6Aybw7LSOf-LmqtxP27bc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8525/52212610612F11E7BD2EDA0BC4F9AE02/5xqfIU6Aybw7LSOf-LmqtxP27bc.mft Manifest number: 19E8 Signing time: Tue 12 Aug 2025 16:28:15 +0000 Manifest this update: Tue 12 Aug 2025 16:28:15 +0000 Manifest next update: Tue 19 Aug 2025 16:28:15 +0000 Files and hashes: 1: 5xqfIU6Aybw7LSOf-LmqtxP27bc.crl (hash: oVrNUcYATOuKJHTp+3e32/a0bKA63gPD0X1G3LKRgK0=) 2: 3A21C144E51211EBB1225278C4F9AE02.roa (hash: nW5GBU8+whiRwJPpyl+4Uvg+meP7sM49SIVv5JyITRM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8525/52212610612F11E7BD2EDA0BC4F9AE02/5xqfIU6Aybw7LSOf-LmqtxP27bc.crl rsync://rpki.apnic.net/member_repository/A91E8525/52212610612F11E7BD2EDA0BC4F9AE02/5xqfIU6Aybw7LSOf-LmqtxP27bc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5xqfIU6Aybw7LSOf-LmqtxP27bc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 16:28:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6651 (0x19fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8525, serialNumber=E71A9F214E80C9BC3B2D239FF8B9AAB713F6EDB7 Validity Not Before: Aug 12 16:28:15 2025 GMT Not After : Aug 19 16:28:15 2025 GMT Subject: CN=689b6b9f-e949 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:0f:d5:e5:d9:69:16:2e:8d:0d:60:ab:7a:4b: 8f:34:1a:52:39:d8:06:75:8e:23:6b:e4:7a:cb:81: 66:25:29:0b:2c:a1:b7:bf:93:ba:5b:55:5c:d3:67: 4f:70:9c:0e:b9:28:4e:6f:27:5c:b7:6e:e1:0d:62: 54:1f:1b:88:a8:21:d8:66:8d:2f:ab:b9:6c:ca:a1: e4:89:0c:5b:a8:e7:bf:20:fd:29:7e:e1:ab:2f:c9: 0e:f3:7f:03:5c:91:d7:48:18:fc:ea:86:d1:48:b0: e5:1e:87:64:c8:c5:96:55:4b:d6:5f:8f:d8:47:f8: 53:ea:d1:c3:a9:05:ed:9e:03:43:0d:cd:d7:ad:7f: 71:09:c8:41:7a:c2:21:0e:0e:32:15:50:02:25:59: 9f:e7:78:6c:53:eb:c0:8d:76:2a:95:af:ec:e7:f9: 6e:1f:07:f6:f5:82:3f:fa:e5:86:b3:6f:28:10:4f: 3f:3c:36:f8:b8:45:ac:4c:fb:5d:d6:8f:18:ea:aa: 81:97:75:0c:83:f4:23:24:b2:2c:8e:1a:b2:7e:e6: 39:31:fc:0d:be:ef:38:22:84:dd:b3:56:01:ab:97: 16:97:ec:ab:20:bb:36:23:80:f4:75:e5:98:64:9b: ef:a2:46:72:b1:b8:65:18:6e:f2:66:99:7a:a8:0d: c3:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:B7:C0:5B:42:20:14:8C:96:53:66:45:F5:72:82:11:66:BE:4A:D5 X509v3 Authority Key Identifier: keyid:E7:1A:9F:21:4E:80:C9:BC:3B:2D:23:9F:F8:B9:AA:B7:13:F6:ED:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8525/52212610612F11E7BD2EDA0BC4F9AE02/5xqfIU6Aybw7LSOf-LmqtxP27bc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5xqfIU6Aybw7LSOf-LmqtxP27bc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8525/52212610612F11E7BD2EDA0BC4F9AE02/5xqfIU6Aybw7LSOf-LmqtxP27bc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:5d:aa:33:7c:a8:eb:8f:af:b6:5e:81:d3:10:d4:d6:6c:00: 1d:0f:d9:ad:b9:f3:0b:d3:df:2c:1b:bb:62:b5:e6:30:43:f3: 99:7c:ef:50:c1:12:02:4c:70:95:f0:b1:6c:d8:20:8e:c4:93: 1f:76:59:b5:a0:90:5b:6f:f8:3c:ac:3d:2a:4d:93:7d:a0:60: 68:74:10:62:3a:7c:cb:25:d4:32:b4:c8:3e:13:a7:89:ff:19: 98:dc:39:95:23:ec:78:56:4a:e8:0c:e7:b8:e5:c5:93:ce:d8: 40:39:3e:d6:88:a0:02:83:28:94:53:98:7a:29:39:50:9d:03: 5f:df:0c:53:18:a7:68:c1:c3:81:dd:00:c6:7a:54:a0:02:bb: 9a:a5:4d:a8:f5:3f:40:83:2f:35:c7:be:ce:43:9a:ca:d5:76: 8f:51:c5:de:9f:2e:5f:e8:de:ce:34:46:6a:04:20:6f:8c:7d: 7a:33:e8:f6:1a:88:16:15:ff:5d:e3:ba:83:6b:5f:ab:b9:0b: 86:cd:05:aa:90:62:54:2b:86:e1:7c:50:d7:dd:59:65:e6:fd: cd:30:fc:ec:cd:9d:f8:91:87:be:ca:d6:06:71:07:9f:57:31: a0:4e:32:0d:28:7d:8c:d8:e7:e4:ae:a7:f6:59:57:f7:34:15: 2b:53:6b:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGfswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg1MjUxMTAvBgNVBAUTKEU3MUE5RjIxNEU4MEM5QkMzQjJEMjM5RkY4QjlBQUI3 MTNGNkVEQjcwHhcNMjUwODEyMTYyODE1WhcNMjUwODE5MTYyODE1WjAYMRYwFAYD VQQDEw02ODliNmI5Zi1lOTQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAww/V5dlpFi6NDWCrekuPNBpSOdgGdY4ja+R6y4FmJSkLLKG3v5O6W1Vc02dP cJwOuShObydct27hDWJUHxuIqCHYZo0vq7lsyqHkiQxbqOe/IP0pfuGrL8kO838D XJHXSBj86obRSLDlHodkyMWWVUvWX4/YR/hT6tHDqQXtngNDDc3XrX9xCchBesIh Dg4yFVACJVmf53hsU+vAjXYqla/s5/luHwf29YI/+uWGs28oEE8/PDb4uEWsTPtd 1o8Y6qqBl3UMg/QjJLIsjhqyfuY5MfwNvu84IoTds1YBq5cWl+yrILs2I4D0deWY ZJvvokZysbhlGG7yZpl6qA3DZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMu3wFtC IBSMllNmRfVyghFmvkrVMB8GA1UdIwQYMBaAFOcanyFOgMm8Oy0jn/i5qrcT9u23 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODUyNS81MjIxMjYxMDYx MkYxMUU3QkQyRURBMEJDNEY5QUUwMi81eHFmSVU2QXlidzdMU09mLUxtcXR4UDI3 YmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzV4cWZJVTZBeWJ3N0xTT2YtTG1xdHhQMjdiYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODUyNS81MjIxMjYxMDYxMkYxMUU3QkQyRURBMEJDNEY5QUUwMi81eHFmSVU2QXli dzdMU09mLUxtcXR4UDI3YmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApXaozfKjrj6+2XoHTENTWbAAdD9mtufML098sG7titeYwQ/OZfO9Q wRICTHCV8LFs2CCOxJMfdlm1oJBbb/g8rD0qTZN9oGBodBBiOnzLJdQytMg+E6eJ /xmY3DmVI+x4VkroDOe45cWTzthAOT7WiKACgyiUU5h6KTlQnQNf3wxTGKdowcOB 3QDGelSgAruapU2o9T9Agy81x77OQ5rK1XaPUcXeny5f6N7ONEZqBCBvjH16M+j2 GogWFf9d47qDa1+ruQuGzQWqkGJUK4bhfFDX3Vll5v3NMPzszZ34kYe+ytYGcQef VzGgTjINKH2M2Ofkrqf2WVf3NBUrU2t0 -----END CERTIFICATE-----Generated at Wed Aug 13 05:34:04 2025 by rpki-client