$ rpki-client -vvf rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.mft File: znA-TvnfLr44ZQpwSkoBnCpmQ1A.mft (raw, json) Hash identifier: DfXVYuCL+ZM6oJqVZn1cMs5zgq0yZzdHDZlaGnfJ2kQ= Subject key identifier: 9E:74:A1:D6:CD:5C:33:D3:4F:8F:95:E1:2A:DB:3D:6D:FB:00:49:4F Authority key identifier: CE:70:3E:4E:F9:DF:2E:BE:38:65:0A:70:4A:4A:01:9C:2A:66:43:50 Certificate issuer: /CN=A9136C5E/serialNumber=CE703E4EF9DF2EBE38650A704A4A019C2A664350 Certificate serial: 01CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/znA-TvnfLr44ZQpwSkoBnCpmQ1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.mft Manifest number: 01CA Signing time: Sat 09 Aug 2025 03:15:01 +0000 Manifest this update: Sat 09 Aug 2025 03:15:01 +0000 Manifest next update: Sat 16 Aug 2025 03:15:01 +0000 Files and hashes: 1: znA-TvnfLr44ZQpwSkoBnCpmQ1A.crl (hash: 93oGs3YBWIPrjOdCklViYuxR2aWKRD97roHN13/L9ys=) 2: 9BCEEFF4BC6911ED9B0FC554C4F9AE02.roa (hash: vkUKnag58zCpuCP8+f6HBj43+NKzxFLQMFl2RAEd1t8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.crl rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/znA-TvnfLr44ZQpwSkoBnCpmQ1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 462 (0x1ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136C5E, serialNumber=CE703E4EF9DF2EBE38650A704A4A019C2A664350 Validity Not Before: Aug 9 03:15:01 2025 GMT Not After : Aug 16 03:15:01 2025 GMT Subject: CN=6896bd35-7cff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:e1:0b:6e:17:3b:8f:a0:ac:e0:4d:f9:c8:15: 7e:b1:85:6c:b7:17:02:76:01:1f:3a:7c:8d:01:94: f8:92:31:07:0b:96:2f:94:eb:86:67:58:bf:23:1f: d8:ec:9b:34:68:cb:50:ba:fd:a5:be:d5:d0:b9:ab: d9:0c:79:f6:fe:a5:33:f3:17:a0:53:f5:3e:ce:f1: 30:4d:1c:59:7f:58:83:c4:1b:36:05:09:46:d5:2c: 1b:76:7b:ea:6a:33:0c:af:89:03:9b:2e:ec:ce:b3: 6a:fd:d1:dc:81:f9:1d:ba:fe:04:c2:8a:53:db:39: 24:86:d2:8a:0f:14:82:dd:cb:c9:b1:a0:e1:4b:da: fe:72:cc:f4:86:6a:ba:3e:62:f3:c6:27:5e:f5:04: 36:3e:7f:b6:d1:29:58:df:63:6e:67:fa:af:58:93: 9f:c4:a2:28:6c:fc:ee:bd:cf:86:a9:ec:a6:e5:b6: 56:c6:41:1b:7c:0f:e7:ce:39:fe:ed:e3:6e:e6:c7: d1:de:59:46:52:18:db:b3:54:76:36:7c:89:83:61: dc:8b:f2:1a:14:4e:4b:67:36:23:44:37:8a:35:96: 84:03:85:ee:a0:82:79:ac:68:83:4c:94:88:25:3b: 05:c7:e0:27:fe:ee:af:0a:c6:de:e2:30:b7:6d:eb: 2d:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:74:A1:D6:CD:5C:33:D3:4F:8F:95:E1:2A:DB:3D:6D:FB:00:49:4F X509v3 Authority Key Identifier: keyid:CE:70:3E:4E:F9:DF:2E:BE:38:65:0A:70:4A:4A:01:9C:2A:66:43:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/znA-TvnfLr44ZQpwSkoBnCpmQ1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:45:3f:0b:ec:a1:84:20:5e:b0:95:7f:62:06:8f:82:98:0e: a0:45:9a:74:91:11:fb:d5:3f:86:d3:89:76:86:ad:5f:3e:ae: 23:f5:9f:49:03:91:d0:1b:82:d8:0a:53:2c:36:6a:24:5b:b5: 35:41:23:d1:a7:04:17:eb:cf:c8:e4:7b:fa:b1:f9:6f:9f:99: d6:3c:5f:41:74:63:fd:0a:b8:be:50:78:12:84:eb:ce:d7:63: 62:ac:34:ac:cb:91:50:d0:d4:47:b0:35:d2:a5:b1:66:d4:e0: ea:66:93:3f:a6:b7:1f:6a:40:de:2a:3f:d8:6e:35:93:3d:cb: 90:bd:c0:93:52:ea:b2:82:07:7d:fd:91:23:b8:22:89:e9:45: de:51:b3:4e:50:66:fc:de:ce:97:06:7a:1d:41:61:9a:77:93: e2:73:fb:24:9a:84:cb:4b:ac:8d:d3:5c:f5:c4:04:7a:7c:bf: 11:ed:f2:e4:15:0e:02:10:04:52:8b:60:1e:f1:90:0b:ce:af: 0e:b4:2d:a9:e4:27:4f:c6:4a:f5:29:2c:5e:1d:c4:7a:45:47: 56:85:2c:86:de:b4:93:e5:71:82:ee:29:f8:53:ef:db:d4:17: 24:c1:aa:76:cf:3d:43:4c:97:9d:7e:3d:79:4d:b9:2b:4d:dd: fd:ce:b2:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAc4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZDNUUxMTAvBgNVBAUTKENFNzAzRTRFRjlERjJFQkUzODY1MEE3MDRBNEEwMTlD MkE2NjQzNTAwHhcNMjUwODA5MDMxNTAxWhcNMjUwODE2MDMxNTAxWjAYMRYwFAYD VQQDEw02ODk2YmQzNS03Y2ZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0eELbhc7j6Cs4E35yBV+sYVstxcCdgEfOnyNAZT4kjEHC5YvlOuGZ1i/Ix/Y 7Js0aMtQuv2lvtXQuavZDHn2/qUz8xegU/U+zvEwTRxZf1iDxBs2BQlG1Swbdnvq ajMMr4kDmy7szrNq/dHcgfkduv4EwopT2zkkhtKKDxSC3cvJsaDhS9r+csz0hmq6 PmLzxide9QQ2Pn+20SlY32NuZ/qvWJOfxKIobPzuvc+Gqeym5bZWxkEbfA/nzjn+ 7eNu5sfR3llGUhjbs1R2NnyJg2Hci/IaFE5LZzYjRDeKNZaEA4XuoIJ5rGiDTJSI JTsFx+An/u6vCsbe4jC3best7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ50odbN XDPTT4+V4SrbPW37AElPMB8GA1UdIwQYMBaAFM5wPk753y6+OGUKcEpKAZwqZkNQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkM1RS8zRUE2QTI1MEI5 NzAxMUVEODkxODQ2N0NDNEY5QUUwMi96bkEtVHZuZkxyNDRaUXB3U2tvQm5DcG1R MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3puQS1Udm5mTHI0NFpRcHdTa29CbkNwbVExQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NkM1RS8zRUE2QTI1MEI5NzAxMUVEODkxODQ2N0NDNEY5QUUwMi96bkEtVHZuZkxy NDRaUXB3U2tvQm5DcG1RMUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLRT8L7KGEIF6wlX9iBo+CmA6gRZp0kRH71T+G04l2hq1fPq4j9Z9J A5HQG4LYClMsNmokW7U1QSPRpwQX68/I5Hv6sflvn5nWPF9BdGP9Cri+UHgShOvO 12NirDSsy5FQ0NRHsDXSpbFm1ODqZpM/prcfakDeKj/YbjWTPcuQvcCTUuqyggd9 /ZEjuCKJ6UXeUbNOUGb83s6XBnodQWGad5Pic/skmoTLS6yN01z1xAR6fL8R7fLk FQ4CEARSi2Ae8ZALzq8OtC2p5CdPxkr1KSxeHcR6RUdWhSyG3rST5XGC7in4U+/b 1Bckwap2zz1DTJedfj15TbkrTd39zrKJ -----END CERTIFICATE-----Generated at Sun Aug 10 04:51:30 2025 by rpki-client