$ rpki-client -vvf rpki.apnic.net/member_repository/A91180E8/3A9FAC54E9D611EF8D04B677C4F9AE02/Z_KbNaiUKqa39Brvs0oGdv1pUJc.mft File: Z_KbNaiUKqa39Brvs0oGdv1pUJc.mft (raw, json) Hash identifier: ASvOzyVJXOHjOmgSiaNRUI19VvtHxd8rXWq195Rci6w= Subject key identifier: D9:B3:3B:7B:1C:13:E2:61:93:AA:3C:88:DE:9B:84:43:55:51:95:90 Authority key identifier: 67:F2:9B:35:A8:94:2A:A6:B7:F4:1A:EF:B3:4A:06:76:FD:69:50:97 Certificate issuer: /CN=A91180E8/serialNumber=67F29B35A8942AA6B7F41AEFB34A0676FD695097 Certificate serial: 5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z_KbNaiUKqa39Brvs0oGdv1pUJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91180E8/3A9FAC54E9D611EF8D04B677C4F9AE02/Z_KbNaiUKqa39Brvs0oGdv1pUJc.mft Manifest number: 5B Signing time: Sat 09 Aug 2025 07:36:55 +0000 Manifest this update: Sat 09 Aug 2025 07:36:54 +0000 Manifest next update: Sat 16 Aug 2025 07:36:54 +0000 Files and hashes: 1: Z_KbNaiUKqa39Brvs0oGdv1pUJc.crl (hash: san20fqzjl4CaRUWm72vmfoo7vZ8hEFoYoaQ/DuLQaQ=) 2: E368BEF2E9D611EFAC604979C4F9AE02.roa (hash: HfXLWtads28iS5LrLz0AFXei2F6BGIFKfg02w7QPxkY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91180E8/3A9FAC54E9D611EF8D04B677C4F9AE02/Z_KbNaiUKqa39Brvs0oGdv1pUJc.crl rsync://rpki.apnic.net/member_repository/A91180E8/3A9FAC54E9D611EF8D04B677C4F9AE02/Z_KbNaiUKqa39Brvs0oGdv1pUJc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z_KbNaiUKqa39Brvs0oGdv1pUJc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 92 (0x5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91180E8, serialNumber=67F29B35A8942AA6B7F41AEFB34A0676FD695097 Validity Not Before: Aug 9 07:36:54 2025 GMT Not After : Aug 16 07:36:54 2025 GMT Subject: CN=6896fa96-33c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:29:96:f5:1d:aa:da:23:f3:a9:2f:af:35:2f: 53:c9:97:71:7c:4e:e5:d6:bc:b2:50:38:20:77:e6: 04:b9:4f:80:19:38:0a:58:60:72:2e:1f:47:fe:b4: 29:9e:fc:79:86:0d:4c:a7:ca:ca:e3:42:c0:3c:42: 73:35:6e:ba:4e:17:e4:cc:6f:04:e9:87:4d:ac:f8: 43:26:f3:20:d8:87:ea:1a:f5:83:d7:35:05:1e:94: 08:84:7e:c9:d5:2d:d8:e8:ea:38:3a:c9:99:9e:3b: 4a:03:76:75:88:bb:e8:46:fc:9d:e5:8f:0b:8d:33: 0f:c7:5c:d1:b5:ac:3e:89:a4:1c:0e:2b:9c:94:5c: cd:77:2a:42:23:da:eb:a2:d9:b5:b2:ac:a3:bf:ad: 51:f8:2b:8d:51:f8:3e:e8:7d:ac:16:e4:c3:55:ad: 82:63:59:5c:04:b2:de:ab:9b:a0:61:83:2a:2b:ab: b7:21:fc:37:8c:86:ca:2e:24:65:76:f5:fd:03:ec: ee:5d:7b:67:94:1a:02:41:77:75:6a:17:6a:6a:78: 5b:32:c6:3d:3c:7b:8b:5b:ae:ca:ef:46:22:c6:f1: ee:ce:2c:58:e6:b2:f5:ea:b6:4b:0e:72:c6:35:21: 0d:19:1d:29:54:c8:cb:42:1a:0b:11:2e:d6:41:b1: 38:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:B3:3B:7B:1C:13:E2:61:93:AA:3C:88:DE:9B:84:43:55:51:95:90 X509v3 Authority Key Identifier: keyid:67:F2:9B:35:A8:94:2A:A6:B7:F4:1A:EF:B3:4A:06:76:FD:69:50:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91180E8/3A9FAC54E9D611EF8D04B677C4F9AE02/Z_KbNaiUKqa39Brvs0oGdv1pUJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z_KbNaiUKqa39Brvs0oGdv1pUJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91180E8/3A9FAC54E9D611EF8D04B677C4F9AE02/Z_KbNaiUKqa39Brvs0oGdv1pUJc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:7a:00:d9:dd:fe:32:6a:f6:92:7a:da:ac:88:e7:de:9b:ef: 05:a6:1a:d1:6c:ce:3a:3e:21:8a:f7:d3:ea:11:64:f4:04:11: c4:22:2e:e7:ba:34:2f:66:03:b1:e5:3d:56:47:13:aa:87:7f: 5d:c5:c1:4b:ce:2a:66:be:1a:57:68:90:8c:d4:b5:17:63:c7: 4a:bb:06:a8:23:7a:a2:6b:96:63:34:1b:43:38:fb:e2:dd:63: 15:e6:04:2c:48:34:d5:be:30:37:38:ed:68:25:f6:bc:d7:72: b7:91:f3:33:c9:30:d8:7b:71:6f:f3:dc:ae:7a:fa:be:8f:f9: 84:40:4e:9a:64:81:33:c1:7a:ed:75:84:60:41:1d:32:db:23: 2f:6f:36:da:1b:7d:dc:f2:89:54:0d:01:94:b6:35:7a:2e:45: 6a:0a:b3:92:df:9d:52:34:14:8f:75:d9:9c:e7:df:b8:9d:27: e2:88:c1:19:c9:bc:0b:25:ff:88:79:a7:07:70:90:0e:6d:e7: 10:17:04:07:aa:a1:37:c3:90:68:f4:4c:83:6e:63:f9:a6:f2: e7:da:00:83:be:e7:1a:e9:1f:df:c2:f1:e3:f5:0c:d4:af:a5: 24:5a:87:67:51:48:fc:67:b6:f4:2a:12:b8:a5:e5:fc:a9:e6: bd:05:1d:69 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx ODBFODExMC8GA1UEBRMoNjdGMjlCMzVBODk0MkFBNkI3RjQxQUVGQjM0QTA2NzZG RDY5NTA5NzAeFw0yNTA4MDkwNzM2NTRaFw0yNTA4MTYwNzM2NTRaMBgxFjAUBgNV BAMTDTY4OTZmYTk2LTMzYzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyKZb1HaraI/OpL681L1PJl3F8TuXWvLJQOCB35gS5T4AZOApYYHIuH0f+tCme /HmGDUynysrjQsA8QnM1brpOF+TMbwTph02s+EMm8yDYh+oa9YPXNQUelAiEfsnV Ldjo6jg6yZmeO0oDdnWIu+hG/J3ljwuNMw/HXNG1rD6JpBwOK5yUXM13KkIj2uui 2bWyrKO/rVH4K41R+D7ofawW5MNVrYJjWVwEst6rm6Bhgyorq7ch/DeMhsouJGV2 9f0D7O5de2eUGgJBd3VqF2pqeFsyxj08e4tbrsrvRiLG8e7OLFjmsvXqtksOcsY1 IQ0ZHSlUyMtCGgsRLtZBsTiDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU2bM7exwT 4mGTqjyI3puEQ1VRlZAwHwYDVR0jBBgwFoAUZ/KbNaiUKqa39Brvs0oGdv1pUJcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE4MEU4LzNBOUZBQzU0RTlE NjExRUY4RDA0QjY3N0M0RjlBRTAyL1pfS2JOYWlVS3FhMzlCcnZzMG9HZHYxcFVK Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWl9LYk5haVVLcWEzOUJydnMwb0dkdjFwVUpjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE4 MEU4LzNBOUZBQzU0RTlENjExRUY4RDA0QjY3N0M0RjlBRTAyL1pfS2JOYWlVS3Fh MzlCcnZzMG9HZHYxcFVKYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGx6ANnd/jJq9pJ62qyI596b7wWmGtFszjo+IYr30+oRZPQEEcQiLue6 NC9mA7HlPVZHE6qHf13FwUvOKma+GldokIzUtRdjx0q7BqgjeqJrlmM0G0M4++Ld YxXmBCxINNW+MDc47Wgl9rzXcreR8zPJMNh7cW/z3K56+r6P+YRATppkgTPBeu11 hGBBHTLbIy9vNtobfdzyiVQNAZS2NXouRWoKs5LfnVI0FI912Zzn37idJ+KIwRnJ vAsl/4h5pwdwkA5t5xAXBAeqoTfDkGj0TINuY/mm8ufaAIO+5xrpH9/C8eP1DNSv pSRah2dRSPxntvQqEril5fyp5r0FHWk= -----END CERTIFICATE-----Generated at Sun Aug 10 18:46:54 2025 by rpki-client