$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC46B/F685BC9C7FC211EBA714542AC4F9AE02/5P3k1jhc-jqHPsReepFHztMJvAI.mft File: 5P3k1jhc-jqHPsReepFHztMJvAI.mft (raw, json) Hash identifier: Fln/qFpKrmpacOsfrqfdEtT6foUJFSiGx4RU8Zyn7yg= Subject key identifier: 47:74:6E:BE:51:D4:BE:A2:5B:AC:5A:96:E7:60:62:FC:52:FE:AF:C5 Authority key identifier: E4:FD:E4:D6:38:5C:FA:3A:87:3E:C4:5E:7A:91:47:CE:D3:09:BC:02 Certificate issuer: /CN=A91EC46B/serialNumber=E4FDE4D6385CFA3A873EC45E7A9147CED309BC02 Certificate serial: 0693 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5P3k1jhc-jqHPsReepFHztMJvAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC46B/F685BC9C7FC211EBA714542AC4F9AE02/5P3k1jhc-jqHPsReepFHztMJvAI.mft Manifest number: 068B Signing time: Sat 02 Aug 2025 22:41:38 +0000 Manifest this update: Sat 02 Aug 2025 22:41:37 +0000 Manifest next update: Sat 09 Aug 2025 22:41:37 +0000 Files and hashes: 1: 5P3k1jhc-jqHPsReepFHztMJvAI.crl (hash: rfJCuCjhyIQzs/BrzTd39Q6Bn3RhwXvHKB6j3lSoHrY=) 2: 18ED6F18862211EB99005123C4F9AE02.roa (hash: rr8gNUqLqDSNabGr8QuJud25OZUwhJk+lADOj5yViNQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC46B/F685BC9C7FC211EBA714542AC4F9AE02/5P3k1jhc-jqHPsReepFHztMJvAI.crl rsync://rpki.apnic.net/member_repository/A91EC46B/F685BC9C7FC211EBA714542AC4F9AE02/5P3k1jhc-jqHPsReepFHztMJvAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5P3k1jhc-jqHPsReepFHztMJvAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 22:41:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1683 (0x693) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC46B, serialNumber=E4FDE4D6385CFA3A873EC45E7A9147CED309BC02 Validity Not Before: Aug 2 22:41:37 2025 GMT Not After : Aug 9 22:41:37 2025 GMT Subject: CN=688e9421-0a82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:47:95:58:0f:e0:3e:0f:c8:8b:a1:d0:55:10: dc:e8:66:f8:41:80:45:39:7b:f4:3c:cb:f1:52:1e: 0f:a4:d8:4b:69:04:b9:18:ea:18:f9:b6:8e:c4:b8: 19:c6:92:70:2e:94:b3:1d:63:a9:9e:2e:23:d3:99: ba:22:38:58:be:b7:d9:35:81:f2:1d:73:1f:11:17: 8c:9d:c4:68:51:1d:60:5b:e9:72:67:1b:1c:79:97: 60:0b:15:4b:f4:c0:f0:8e:84:96:50:d4:08:f3:53: cf:fc:88:fe:2c:0a:d6:3c:d7:f9:a4:c2:db:54:5b: 0b:e8:c9:b3:19:5a:93:f0:7b:73:76:1e:a7:a6:07: 60:78:88:f9:fc:93:73:73:f1:53:0e:ab:ea:ca:6c: fe:21:c8:a7:b4:31:d6:03:dc:8c:01:86:42:82:26: 07:c9:8d:61:62:89:85:bd:23:d5:4e:8f:a7:64:17: e8:65:60:fe:44:7d:02:f5:66:12:51:fd:a9:b2:c3: 65:5c:4a:a6:18:fb:bc:d6:a6:c1:59:1b:4f:27:d7: ea:68:47:e1:76:40:5e:8c:cb:b5:63:b0:ec:1d:12: fd:ab:89:ef:d7:05:6e:e1:17:b7:7d:51:57:50:c5: 7b:3e:04:33:0c:43:7b:fc:a0:55:ce:50:30:76:b0: 25:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:74:6E:BE:51:D4:BE:A2:5B:AC:5A:96:E7:60:62:FC:52:FE:AF:C5 X509v3 Authority Key Identifier: keyid:E4:FD:E4:D6:38:5C:FA:3A:87:3E:C4:5E:7A:91:47:CE:D3:09:BC:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC46B/F685BC9C7FC211EBA714542AC4F9AE02/5P3k1jhc-jqHPsReepFHztMJvAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5P3k1jhc-jqHPsReepFHztMJvAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC46B/F685BC9C7FC211EBA714542AC4F9AE02/5P3k1jhc-jqHPsReepFHztMJvAI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:d3:fc:71:30:9d:44:e6:8e:1e:e9:5b:0d:7c:1d:9e:e4:09: f2:a0:21:10:e5:60:5e:3c:64:88:16:b8:d1:e6:a9:94:7b:14: 2c:dd:9b:11:f1:13:7d:be:28:3e:fa:b2:09:88:a3:a1:33:02: cf:4f:88:01:a0:97:7d:d8:69:30:93:0d:a9:55:0d:81:4e:f5: c6:c0:13:cd:33:c4:dc:74:14:60:f0:a2:5e:db:44:3a:47:81: f7:74:b1:88:2c:ca:6a:c1:2c:5d:dc:3d:2b:c6:39:d3:54:5c: 47:cc:c9:fe:0f:1b:b5:10:1f:9d:f1:00:99:46:9e:98:93:00: a1:69:28:25:6e:d1:6d:ae:d1:7d:13:f7:38:12:c2:ac:21:8b: a6:d1:b7:cc:7c:63:d1:b0:16:bf:01:87:38:87:7d:c2:f0:d8: a9:09:16:18:30:6f:7a:8e:cf:bf:fe:ed:4a:05:99:d5:f6:0c: 96:28:89:41:97:57:9a:1c:0f:3a:2a:77:ff:b6:f7:5b:4e:78: 06:e1:8a:dd:6d:7b:ff:3e:70:a3:66:63:71:6d:38:6b:47:26: fa:f2:42:e4:d3:ca:d4:c3:fc:7e:71:06:00:28:34:f8:3e:f7: 99:d9:7c:d4:d1:e4:51:09:a4:2c:3d:a1:c3:e2:48:69:d5:cb: ad:eb:b9:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM0NkIxMTAvBgNVBAUTKEU0RkRFNEQ2Mzg1Q0ZBM0E4NzNFQzQ1RTdBOTE0N0NF RDMwOUJDMDIwHhcNMjUwODAyMjI0MTM3WhcNMjUwODA5MjI0MTM3WjAYMRYwFAYD VQQDEw02ODhlOTQyMS0wYTgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxEeVWA/gPg/Ii6HQVRDc6Gb4QYBFOXv0PMvxUh4PpNhLaQS5GOoY+baOxLgZ xpJwLpSzHWOpni4j05m6IjhYvrfZNYHyHXMfEReMncRoUR1gW+lyZxsceZdgCxVL 9MDwjoSWUNQI81PP/Ij+LArWPNf5pMLbVFsL6MmzGVqT8Htzdh6npgdgeIj5/JNz c/FTDqvqymz+IcintDHWA9yMAYZCgiYHyY1hYomFvSPVTo+nZBfoZWD+RH0C9WYS Uf2pssNlXEqmGPu81qbBWRtPJ9fqaEfhdkBejMu1Y7DsHRL9q4nv1wVu4Re3fVFX UMV7PgQzDEN7/KBVzlAwdrAl6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEd0br5R 1L6iW6xaludgYvxS/q/FMB8GA1UdIwQYMBaAFOT95NY4XPo6hz7EXnqRR87TCbwC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzQ2Qi9GNjg1QkM5QzdG QzIxMUVCQTcxNDU0MkFDNEY5QUUwMi81UDNrMWpoYy1qcUhQc1JlZXBGSHp0TUp2 QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVQM2sxamhjLWpxSFBzUmVlcEZIenRNSnZBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzQ2Qi9GNjg1QkM5QzdGQzIxMUVCQTcxNDU0MkFDNEY5QUUwMi81UDNrMWpoYy1q cUhQc1JlZXBGSHp0TUp2QUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDD0/xxMJ1E5o4e6VsNfB2e5AnyoCEQ5WBePGSIFrjR5qmUexQs3ZsR 8RN9vig++rIJiKOhMwLPT4gBoJd92Gkwkw2pVQ2BTvXGwBPNM8TcdBRg8KJe20Q6 R4H3dLGILMpqwSxd3D0rxjnTVFxHzMn+Dxu1EB+d8QCZRp6YkwChaSglbtFtrtF9 E/c4EsKsIYum0bfMfGPRsBa/AYc4h33C8NipCRYYMG96js+//u1KBZnV9gyWKIlB l1eaHA86Knf/tvdbTngG4YrdbXv/PnCjZmNxbThrRyb68kLk08rUw/x+cQYAKDT4 PveZ2XzU0eRRCaQsPaHD4khp1cut67nk -----END CERTIFICATE-----Generated at Mon Aug 4 18:34:42 2025 by rpki-client