$ rpki-client -vvf rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft File: 5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft (raw, json) Hash identifier: eqO5Yj+n4W4GgdoEMSXT9dDK0bayS05Fh/fS5QAeQ5o= Subject key identifier: 8B:0E:D2:A7:7E:B4:7C:67:5B:99:0F:8E:F4:6D:8A:DE:B9:54:0B:5A Authority key identifier: 5D:70:7B:0D:35:69:62:24:32:B4:BD:CB:FD:32:0F:9A:8B:6D:DC:7B Certificate issuer: /CN=A91DD5100000/serialNumber=5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B Certificate serial: 512F39650B1A10E433DA9C430EB51EF103517CD7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XXB7DTVpYiQytL3L_TIPmott3Hs.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft Manifest number: 0140 Signing time: Fri 08 Aug 2025 13:54:53 +0000 Manifest this update: Fri 08 Aug 2025 13:49:53 +0000 Manifest next update: Sat 09 Aug 2025 15:01:53 +0000 Files and hashes: 1: 34332e3235322e32322e302f32342d3234203d3e203438323636.roa (hash: lh0a38K8JAllhrAcZvOqWh+3NCJyyj25skARvaE+EWo=) 2: 34332e3235322e32312e302f32342d3234203d3e203530333835.roa (hash: baGBWXcDrtK+cAVKGJBMAmZee53ol0gPCj9NO0O551w=) 3: 5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.crl (hash: yjvU+wLdcun/k0UFZ+Yd31MkCAB6zZ+5E8W9qdbf/Q8=) 4: 34332e3235322e32302e302f32342d3234203d3e2037323234.roa (hash: xYue4w2wkAleXxGW4xAr0l0Ri4xd4/JeSpxq5osVBR8=) 5: 34332e3235322e32332e302f32342d3234203d3e203239383032.roa (hash: LfF8fU+QkX6d5K08nkQmulF4/9qGZmobs40531E0EuE=) Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.crl rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XXB7DTVpYiQytL3L_TIPmott3Hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 15:01:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:2f:39:65:0b:1a:10:e4:33:da:9c:43:0e:b5:1e:f1:03:51:7c:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD5100000, serialNumber=5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B Validity Not Before: Aug 8 13:49:53 2025 GMT Not After : Aug 9 15:01:53 2025 GMT Subject: CN=8B0ED2A77EB47C675B990F8EF46D8ADEB9540B5A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:68:e0:cd:38:cd:ac:ac:fa:64:a0:a3:16:e2: fa:50:59:76:4c:40:25:60:4b:23:09:7c:7c:5b:3a: 3e:37:d6:3a:10:88:11:fc:10:c8:c2:5b:8b:c3:fc: b0:6a:3e:1a:25:2c:02:e8:ad:50:b6:18:ef:6e:22: 2e:5b:f2:59:88:bb:73:4f:6b:b0:6f:bb:33:4f:86: a6:3f:ea:3a:6e:05:73:36:17:fb:db:2c:9a:d9:f9: 2c:1b:42:7e:f7:24:4f:b5:ca:4f:c7:6e:61:1b:b4: 37:1f:c5:03:20:eb:e2:0d:87:0f:a6:df:a7:41:6a: 49:42:82:8c:3d:57:f8:cc:cf:e4:ba:97:28:a1:3b: 8a:b1:0f:b5:fd:e0:d3:7c:77:f3:a3:af:f6:69:6e: f3:bf:31:43:28:ea:2c:51:54:50:5f:1d:a0:40:52: e5:fc:70:67:80:fd:e8:eb:4c:b5:e9:78:37:20:25: 4c:46:dd:65:38:32:80:a1:37:11:aa:88:e3:0b:d4: 54:f2:7c:6e:c3:21:93:13:dc:38:34:cd:0f:f7:56: 2f:c9:f7:4a:e1:eb:7b:e9:b4:2f:fc:76:cb:f3:b0: 32:c6:06:19:3f:29:36:57:c9:88:05:5e:5a:b1:1b: 84:dd:53:07:a1:ef:23:47:6b:51:e3:4e:d2:7a:e7: 3d:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:0E:D2:A7:7E:B4:7C:67:5B:99:0F:8E:F4:6D:8A:DE:B9:54:0B:5A X509v3 Authority Key Identifier: keyid:5D:70:7B:0D:35:69:62:24:32:B4:BD:CB:FD:32:0F:9A:8B:6D:DC:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XXB7DTVpYiQytL3L_TIPmott3Hs.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 57:7b:4f:c0:f9:d2:73:f5:c7:02:25:18:30:52:1f:0c:d2:53: 30:cb:c3:45:71:ac:60:52:4d:46:f4:67:fc:50:12:1f:3f:df: 79:8f:a4:ac:2d:61:2f:5e:f9:2f:d1:0d:e3:1b:52:9d:aa:eb: 83:73:aa:72:4e:32:ea:5b:af:6a:d2:f1:b2:32:6c:b6:bc:da: 8f:9a:68:4d:5f:f3:25:58:7e:3e:f4:8f:c9:19:7b:3c:90:bb: 0a:f5:29:4a:76:96:a0:8a:3b:d5:7b:44:3f:a5:7e:42:df:50: 6f:e4:9f:12:81:f6:e8:fb:ee:93:30:11:88:4f:75:56:70:d2: 25:8e:45:f4:f8:7e:56:88:f0:f4:83:fd:49:23:49:8d:18:0a: d2:58:1d:80:1e:84:05:c1:c6:d0:1f:1b:3a:fb:89:7a:ea:23: a7:99:f9:13:8d:94:af:c7:35:52:5e:19:21:ab:44:3c:07:35: 48:0c:d0:ba:8c:a5:eb:f7:31:e4:a9:b0:9b:31:99:69:bf:4c: a8:35:bf:ae:25:75:95:9a:55:a9:f4:c8:d7:3e:53:4f:9f:fa: 8a:fc:cf:7d:9f:e3:74:e5:9e:05:7a:56:40:b2:4c:9b:14:43: d3:e8:79:b4:cd:53:6e:77:1b:4e:7a:db:be:55:73:6b:44:c9: ed:55:3c:e9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUUS85ZQsaEOQz2pxDDrUe8QNRfNcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxREQ1MTAwMDAwMTEwLwYDVQQFEyg1RDcwN0IwRDM1 Njk2MjI0MzJCNEJEQ0JGRDMyMEY5QThCNkREQzdCMB4XDTI1MDgwODEzNDk1M1oX DTI1MDgwOTE1MDE1M1owMzExMC8GA1UEAxMoOEIwRUQyQTc3RUI0N0M2NzVCOTkw RjhFRjQ2RDhBREVCOTU0MEI1QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMNo4M04zays+mSgoxbi+lBZdkxAJWBLIwl8fFs6PjfWOhCIEfwQyMJbi8P8 sGo+GiUsAuitULYY724iLlvyWYi7c09rsG+7M0+Gpj/qOm4FczYX+9ssmtn5LBtC fvckT7XKT8duYRu0Nx/FAyDr4g2HD6bfp0FqSUKCjD1X+MzP5LqXKKE7irEPtf3g 03x386Ov9mlu878xQyjqLFFUUF8doEBS5fxwZ4D96OtMtel4NyAlTEbdZTgygKE3 EaqI4wvUVPJ8bsMhkxPcODTND/dWL8n3SuHre+m0L/x2y/OwMsYGGT8pNlfJiAVe WrEbhN1TB6HvI0drUeNO0nrnPd0CAwEAAaOCAhswggIXMB0GA1UdDgQWBBSLDtKn frR8Z1uZD470bYreuVQLWjAfBgNVHSMEGDAWgBRdcHsNNWliJDK0vcv9Mg+ai23c ezAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFERDUxMDAwMDAvMC81RDcwN0Iw RDM1Njk2MjI0MzJCNEJEQ0JGRDMyMEY5QThCNkREQzdCLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9YWEI3RFRWcFlp UXl0TDNMX1RJUG1vdHQzSHMuY2VyMH0GCCsGAQUFBwELBHEwbzBtBggrBgEFBQcw C4ZhcnN5bmM6Ly9ycGtpLnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFERDUx MDAwMDAvMC81RDcwN0IwRDM1Njk2MjI0MzJCNEJEQ0JGRDMyMEY5QThCNkREQzdC Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIw EDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG 9w0BAQsFAAOCAQEAV3tPwPnSc/XHAiUYMFIfDNJTMMvDRXGsYFJNRvRn/FASHz/f eY+krC1hL175L9EN4xtSnarrg3Oqck4y6luvatLxsjJstrzaj5poTV/zJVh+PvSP yRl7PJC7CvUpSnaWoIo71XtEP6V+Qt9Qb+SfEoH26PvukzARiE91VnDSJY5F9Ph+ Vojw9IP9SSNJjRgK0lgdgB6EBcHG0B8bOvuJeuojp5n5E42Ur8c1Ul4ZIatEPAc1 SAzQuoyl6/cx5KmwmzGZab9MqDW/riV1lZpVqfTI1z5TT5/6ivzPfZ/jdOWeBXpW QLJMmxRD0+h5tM1TbncbTnrbvlVza0TJ7VU86Q== -----END CERTIFICATE-----Generated at Sat Aug 9 01:00:17 2025 by rpki-client