$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.mft File: K5XY2CKKiRR9gBk9l3DrUK7du2s.mft (raw, json) Hash identifier: V9vKau4ZbTs68ofopbTbiaUIe88qHPAst0p4zEBtxco= Subject key identifier: B2:4E:7D:43:AD:69:A1:68:62:F1:84:D2:3B:7A:69:B6:FB:D3:0A:09 Authority key identifier: 2B:95:D8:D8:22:8A:89:14:7D:80:19:3D:97:70:EB:50:AE:DD:BB:6B Certificate issuer: /CN=A91FF5A9/serialNumber=2B95D8D8228A89147D80193D9770EB50AEDDBB6B Certificate serial: 16E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5XY2CKKiRR9gBk9l3DrUK7du2s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.mft Manifest number: 16CB Signing time: Fri 08 Aug 2025 16:48:36 +0000 Manifest this update: Fri 08 Aug 2025 16:48:36 +0000 Manifest next update: Fri 15 Aug 2025 16:48:36 +0000 Files and hashes: 1: K5XY2CKKiRR9gBk9l3DrUK7du2s.crl (hash: F1SFzP3gDRwpvT0n9l8Gn7fGIJ35boIpSt+V1zK04Zc=) 2: 07D665E0862711EBAC147872C4F9AE02.roa (hash: h1jWRhCaXCGscugt7m7NPkJTh1NUHltfWypGJXiPwZw=) 3: F9E21144D90F11EDB2DBEA49C4F9AE02.roa (hash: fP45NGSHNvdQShMBiD1rePe2Esz9p+VlDQo2vfi2cz0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.crl rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5XY2CKKiRR9gBk9l3DrUK7du2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5860 (0x16e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF5A9, serialNumber=2B95D8D8228A89147D80193D9770EB50AEDDBB6B Validity Not Before: Aug 8 16:48:36 2025 GMT Not After : Aug 15 16:48:36 2025 GMT Subject: CN=68962a64-c2b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:c8:31:fb:28:ed:9b:f2:25:42:a0:2e:fc:4c: e9:58:e1:a9:df:58:e2:f0:ed:98:20:92:5e:98:7f: cf:f9:3c:4d:dc:66:b0:9b:53:f4:0b:a7:1c:a8:45: 1f:cf:20:da:00:49:fd:78:21:35:a7:39:50:77:f0: 26:74:cc:bc:07:ae:8f:24:08:25:d5:49:30:57:4b: 42:b4:24:89:17:4c:b5:15:9d:eb:cb:d1:c1:92:36: 22:0f:c6:7e:da:2c:de:7a:93:74:f5:c6:07:5d:aa: 61:27:9e:a1:55:2d:b4:03:a5:63:4c:d6:31:db:0e: 9c:a8:7a:cb:0b:6b:d3:cd:16:26:f5:af:8f:85:fd: 52:29:a6:91:ed:57:12:b5:7c:2e:b1:50:2c:50:47: 52:8b:63:2f:1e:4d:a0:4f:45:de:2a:d8:14:1c:92: 23:de:0e:6b:65:36:25:a1:ff:46:5d:cb:02:cf:98: df:8e:09:8c:29:c3:e7:b4:91:ee:da:6b:d3:9e:a8: 00:18:56:e1:e2:41:58:82:f8:a5:04:68:2d:6d:6f: 9d:df:e2:ff:af:79:67:09:d4:00:2f:15:82:6e:ff: a3:6e:f8:1c:cf:bc:13:75:fd:62:47:7d:a0:30:f1: 6a:db:7d:65:71:f0:ef:0a:1f:be:17:65:17:44:b9: dd:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:4E:7D:43:AD:69:A1:68:62:F1:84:D2:3B:7A:69:B6:FB:D3:0A:09 X509v3 Authority Key Identifier: keyid:2B:95:D8:D8:22:8A:89:14:7D:80:19:3D:97:70:EB:50:AE:DD:BB:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5XY2CKKiRR9gBk9l3DrUK7du2s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:d4:51:80:37:ad:5f:af:87:7d:03:b7:25:8b:6e:9b:e7:53: bc:48:a2:c1:bf:b4:35:7d:3e:4a:8d:62:a2:8e:d1:d3:07:00: a8:94:be:71:58:f4:ea:17:6a:c9:f0:ce:b0:87:6e:78:fb:f0: b4:32:0c:d1:12:92:97:7f:7a:ad:cd:b0:6b:b2:19:3a:24:79: 8f:1a:90:69:76:ce:7f:f3:1b:86:0d:16:17:b8:5d:5e:d2:d2: e4:59:ce:de:3d:0f:f0:6e:ff:6a:87:ce:44:02:28:b2:ed:2f: e1:31:a4:22:21:de:e2:46:6b:8a:b1:f0:77:19:14:28:e7:f6: aa:c3:f6:1e:04:d7:96:9c:e6:eb:cd:f4:82:fc:6b:d1:bd:f9: 26:d1:3f:73:99:5e:04:7b:4c:c2:e2:a4:80:79:e6:8c:7e:44: 22:3c:00:f5:20:86:45:bb:0d:68:51:1c:3b:f1:81:ed:2c:f3: 26:e1:81:9d:24:10:35:94:bf:65:6d:fe:fb:31:b1:fb:b4:ee: 2a:e7:93:db:d9:8e:a0:4c:83:dc:a8:69:99:d7:0c:a9:69:dc: ac:4e:57:1c:da:34:c2:34:e6:74:8b:23:e5:ae:72:bd:b5:98: 76:ad:73:67:bd:2e:2d:1c:58:1a:3b:65:95:7c:29:62:0b:20: 78:a1:f9:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFuQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY1QTkxMTAvBgNVBAUTKDJCOTVEOEQ4MjI4QTg5MTQ3RDgwMTkzRDk3NzBFQjUw QUVEREJCNkIwHhcNMjUwODA4MTY0ODM2WhcNMjUwODE1MTY0ODM2WjAYMRYwFAYD VQQDEw02ODk2MmE2NC1jMmIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA08gx+yjtm/IlQqAu/EzpWOGp31ji8O2YIJJemH/P+TxN3Gawm1P0C6ccqEUf zyDaAEn9eCE1pzlQd/AmdMy8B66PJAgl1UkwV0tCtCSJF0y1FZ3ry9HBkjYiD8Z+ 2izeepN09cYHXaphJ56hVS20A6VjTNYx2w6cqHrLC2vTzRYm9a+Phf1SKaaR7VcS tXwusVAsUEdSi2MvHk2gT0XeKtgUHJIj3g5rZTYlof9GXcsCz5jfjgmMKcPntJHu 2mvTnqgAGFbh4kFYgvilBGgtbW+d3+L/r3lnCdQALxWCbv+jbvgcz7wTdf1iR32g MPFq231lcfDvCh++F2UXRLnddQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLJOfUOt aaFoYvGE0jt6abb70woJMB8GA1UdIwQYMBaAFCuV2NgiiokUfYAZPZdw61Cu3btr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjVBOS8wMEI3MTUxQ0ZE MDgxMUU3QTQyOEZGMEZDNEY5QUUwMi9LNVhZMkNLS2lSUjlnQms5bDNEclVLN2R1 MnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s1WFkyQ0tLaVJSOWdCazlsM0RyVUs3ZHUycy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjVBOS8wMEI3MTUxQ0ZEMDgxMUU3QTQyOEZGMEZDNEY5QUUwMi9LNVhZMkNLS2lS UjlnQms5bDNEclVLN2R1MnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAz1FGAN61fr4d9A7cli26b51O8SKLBv7Q1fT5KjWKijtHTBwColL5x WPTqF2rJ8M6wh254+/C0MgzREpKXf3qtzbBrshk6JHmPGpBpds5/8xuGDRYXuF1e 0tLkWc7ePQ/wbv9qh85EAiiy7S/hMaQiId7iRmuKsfB3GRQo5/aqw/YeBNeWnObr zfSC/GvRvfkm0T9zmV4Ee0zC4qSAeeaMfkQiPAD1IIZFuw1oURw78YHtLPMm4YGd JBA1lL9lbf77MbH7tO4q55Pb2Y6gTIPcqGmZ1wypadysTlcc2jTCNOZ0iyPlrnK9 tZh2rXNnvS4tHFgaO2WVfCliCyB4ofnC -----END CERTIFICATE-----Generated at Sun Aug 10 16:08:01 2025 by rpki-client