$ rpki-client -vvf rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/z4BKbz2GoZcTpOiG1Ze03GRFaGo.mft File: z4BKbz2GoZcTpOiG1Ze03GRFaGo.mft (raw, json) Hash identifier: lejOKGT21/yqcVw+0HCCkJhFLIRvX3aCu+Mqx6p4XBc= Subject key identifier: 5A:6C:11:D9:62:00:85:0C:F4:D9:EE:A8:2B:AB:61:EB:51:32:FD:18 Authority key identifier: CF:80:4A:6F:3D:86:A1:97:13:A4:E8:86:D5:97:B4:DC:64:45:68:6A Certificate issuer: /CN=A9149C62/serialNumber=CF804A6F3D86A19713A4E886D597B4DC6445686A Certificate serial: 9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4BKbz2GoZcTpOiG1Ze03GRFaGo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/z4BKbz2GoZcTpOiG1Ze03GRFaGo.mft Manifest number: 98 Signing time: Sat 09 Aug 2025 06:55:13 +0000 Manifest this update: Sat 09 Aug 2025 06:55:13 +0000 Manifest next update: Sat 16 Aug 2025 06:55:13 +0000 Files and hashes: 1: z4BKbz2GoZcTpOiG1Ze03GRFaGo.crl (hash: wBXsecjJrUuaixc7zvvX8egCz+sxvVRElzYtRGt4r3c=) 2: 088C9298981611EFBE510B59C4F9AE02.roa (hash: +mzl+XLmGyaMauQYRfPSe1wPo0jhs14C721ea24fx4w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/z4BKbz2GoZcTpOiG1Ze03GRFaGo.crl rsync://rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/z4BKbz2GoZcTpOiG1Ze03GRFaGo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4BKbz2GoZcTpOiG1Ze03GRFaGo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 156 (0x9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149C62, serialNumber=CF804A6F3D86A19713A4E886D597B4DC6445686A Validity Not Before: Aug 9 06:55:13 2025 GMT Not After : Aug 16 06:55:13 2025 GMT Subject: CN=6896f0d1-2c2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:d9:99:b5:8b:b2:6c:a4:2f:fe:93:df:0f:0f: ff:5c:8d:7b:78:be:58:3b:21:e5:33:60:b3:a7:d6: a2:b5:10:e2:51:6a:e9:30:2c:72:96:4a:ae:35:24: 79:3d:17:1e:c2:f8:92:bc:1d:8a:35:a9:53:9a:d0: 84:07:31:f9:9e:a9:1c:a2:5f:7d:b9:23:a3:8f:45: 64:cc:54:54:f1:b0:b4:43:32:1a:06:0e:fc:81:5d: b7:c1:51:fd:69:1b:ba:42:e3:01:97:72:a9:f8:ad: cc:72:61:2c:1e:b4:45:c8:b8:14:76:6a:f7:b6:70: 44:6c:e7:18:41:98:6c:b8:aa:d7:c0:bf:aa:89:1e: 56:41:5f:5a:61:e0:17:af:16:3e:79:92:e2:ff:ec: 3f:19:90:c2:ce:d5:3b:e6:62:41:12:c8:2a:ce:ec: f8:c1:1c:42:c1:41:ad:c2:b5:9c:56:ca:b2:15:00: 86:94:c3:93:d9:36:fa:ed:66:8c:1f:4a:44:00:9f: de:1e:25:53:3a:dc:b4:26:56:a3:83:63:8e:0c:86: 41:81:c8:8e:60:29:b1:b7:d8:c6:a1:ed:f9:97:9e: 41:9d:10:9e:79:d2:49:49:e4:75:3c:1f:d1:c8:58: 48:22:5b:85:be:d7:61:cd:83:c7:eb:c7:be:e9:4b: 29:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:6C:11:D9:62:00:85:0C:F4:D9:EE:A8:2B:AB:61:EB:51:32:FD:18 X509v3 Authority Key Identifier: keyid:CF:80:4A:6F:3D:86:A1:97:13:A4:E8:86:D5:97:B4:DC:64:45:68:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/z4BKbz2GoZcTpOiG1Ze03GRFaGo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4BKbz2GoZcTpOiG1Ze03GRFaGo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/z4BKbz2GoZcTpOiG1Ze03GRFaGo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:31:cd:b7:b4:3d:e8:7c:cd:6d:4e:f6:37:89:1a:e5:4f:98: f9:ff:64:b6:b7:19:a5:5a:74:ee:bc:be:3c:00:cc:91:ef:c4: e1:93:cf:3d:03:d8:60:84:59:86:78:15:a6:e9:fe:8c:24:e6: da:ed:7b:ee:80:c8:89:af:a6:7a:9c:36:85:da:1a:6c:54:7d: b3:80:c4:9c:5d:bb:e2:86:b5:80:c5:4e:b3:8c:30:5d:04:79: 8f:9a:8d:60:57:c8:8d:5a:61:66:a3:42:d9:5d:15:8c:f1:7a: 4f:a2:4b:e7:cc:24:10:b6:73:4b:e3:35:7e:80:c4:f2:74:12: 49:4e:0b:67:43:82:df:3a:48:7f:b6:2c:fc:93:dc:83:8d:fc: aa:90:0a:2b:0d:cb:0c:39:42:df:df:4a:2c:70:97:c9:51:ee: 7a:15:15:b4:c7:a9:ca:81:a4:ea:21:01:f8:6e:91:a2:d7:46: d3:e8:6f:6b:ff:db:27:b5:36:e0:26:6b:86:bd:0b:dc:f2:ac: 7a:c6:8c:97:3a:66:bc:23:3d:9f:eb:a3:1c:7a:76:08:d5:40: 1f:7e:69:4d:68:b2:03:7d:45:12:e5:5b:81:c6:06:d5:f4:ad: 1c:cd:96:53:cf:19:21:aa:76:67:c6:ec:cf:b3:76:df:f3:2e: 1a:95:f3:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlDNjIxMTAvBgNVBAUTKENGODA0QTZGM0Q4NkExOTcxM0E0RTg4NkQ1OTdCNERD NjQ0NTY4NkEwHhcNMjUwODA5MDY1NTEzWhcNMjUwODE2MDY1NTEzWjAYMRYwFAYD VQQDEw02ODk2ZjBkMS0yYzJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArdmZtYuybKQv/pPfDw//XI17eL5YOyHlM2Czp9aitRDiUWrpMCxylkquNSR5 PRcewviSvB2KNalTmtCEBzH5nqkcol99uSOjj0VkzFRU8bC0QzIaBg78gV23wVH9 aRu6QuMBl3Kp+K3McmEsHrRFyLgUdmr3tnBEbOcYQZhsuKrXwL+qiR5WQV9aYeAX rxY+eZLi/+w/GZDCztU75mJBEsgqzuz4wRxCwUGtwrWcVsqyFQCGlMOT2Tb67WaM H0pEAJ/eHiVTOty0Jlajg2OODIZBgciOYCmxt9jGoe35l55BnRCeedJJSeR1PB/R yFhIIluFvtdhzYPH68e+6UspDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFpsEdli AIUM9NnuqCurYetRMv0YMB8GA1UdIwQYMBaAFM+ASm89hqGXE6TohtWXtNxkRWhq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUM2Mi84NEY0NkI2ODk4 MTUxMUVGQTRCRDNENTdDNEY5QUUwMi96NEJLYnoyR29aY1RwT2lHMVplMDNHUkZh R28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3o0QktiejJHb1pjVHBPaUcxWmUwM0dSRmFHby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUM2Mi84NEY0NkI2ODk4MTUxMUVGQTRCRDNENTdDNEY5QUUwMi96NEJLYnoyR29a Y1RwT2lHMVplMDNHUkZhR28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDEMc23tD3ofM1tTvY3iRrlT5j5/2S2txmlWnTuvL48AMyR78Thk889 A9hghFmGeBWm6f6MJOba7XvugMiJr6Z6nDaF2hpsVH2zgMScXbvihrWAxU6zjDBd BHmPmo1gV8iNWmFmo0LZXRWM8XpPokvnzCQQtnNL4zV+gMTydBJJTgtnQ4LfOkh/ tiz8k9yDjfyqkAorDcsMOULf30oscJfJUe56FRW0x6nKgaTqIQH4bpGi10bT6G9r /9sntTbgJmuGvQvc8qx6xoyXOma8Iz2f66McenYI1UAffmlNaLIDfUUS5VuBxgbV 9K0czZZTzxkhqnZnxuzPs3bf8y4alfMZ -----END CERTIFICATE-----Generated at Sun Aug 10 04:46:22 2025 by rpki-client