$ rpki-client -vvf rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft File: z64jGpiXN_YdrZV8wk0hNYWBjtw.mft (raw, json) Hash identifier: reuwhABDEaSxvnir9E1XMhM09Hwx2Dmy9AZNVIPZE6c= Subject key identifier: DD:5A:E4:2D:AD:E9:9C:CF:96:CA:27:7B:97:C2:B0:28:B0:99:28:1B Authority key identifier: CF:AE:23:1A:98:97:37:F6:1D:AD:95:7C:C2:4D:21:35:85:81:8E:DC Certificate issuer: /CN=A914B45F/serialNumber=CFAE231A989737F61DAD957CC24D213585818EDC Certificate serial: 017E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z64jGpiXN_YdrZV8wk0hNYWBjtw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft Manifest number: 017C Signing time: Mon 11 Aug 2025 03:46:54 +0000 Manifest this update: Mon 11 Aug 2025 03:46:53 +0000 Manifest next update: Mon 18 Aug 2025 03:46:53 +0000 Files and hashes: 1: z64jGpiXN_YdrZV8wk0hNYWBjtw.crl (hash: ErmiXBKaDg5hspuaiUAscs6kzjw5o1+CLA433st2xFU=) 2: 578C92D62F6611EE9CAFAA58C4F9AE02.roa (hash: Km7Ntr3HPW+9p2/xgcR3/NDs3gM06IRtzM1XksYLFiE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.crl rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z64jGpiXN_YdrZV8wk0hNYWBjtw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 03:46:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 382 (0x17e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B45F, serialNumber=CFAE231A989737F61DAD957CC24D213585818EDC Validity Not Before: Aug 11 03:46:53 2025 GMT Not After : Aug 18 03:46:53 2025 GMT Subject: CN=689967ae-7f8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:a9:b7:b0:ec:6c:21:28:a5:f2:55:04:dd:ac: dc:8a:8a:29:6d:6b:29:59:53:e8:9f:80:69:50:a5: 29:71:a5:27:14:42:c9:d1:78:28:2b:7d:ca:da:e8: 57:00:fb:32:b5:32:9c:77:69:78:b0:c7:9f:22:5f: b7:ab:0c:41:43:0b:4a:fa:ca:7e:fc:f3:48:6b:86: 04:93:2d:03:4a:6f:4b:8e:c1:b5:68:72:44:d6:48: 89:79:7f:32:29:eb:74:f1:2b:02:4f:53:3a:90:75: fc:67:45:84:b2:1a:49:12:87:15:c9:9c:60:7d:46: 2a:08:f4:d5:ba:ac:55:62:44:fb:d4:b5:bf:18:64: 8f:e6:21:1d:06:58:d2:60:0e:96:ba:1e:d2:13:f5: c2:ab:94:4f:e9:9e:cc:fc:bb:05:f9:fd:3e:e0:c4: fa:3e:06:e4:e8:ab:4c:d6:59:f2:9a:f1:49:81:c6: ad:af:9a:77:44:9c:bd:ff:ae:5e:62:7f:47:fd:a8: 59:02:91:9b:88:bb:31:ed:87:94:bd:db:bc:68:66: b8:19:29:df:07:b4:b3:49:1e:28:2e:e8:89:5f:63: fe:41:2b:91:ce:58:cb:cf:ee:db:bc:46:d7:8c:06: a7:a0:60:ae:a1:98:4a:a7:92:ab:e3:dd:94:9d:60: ec:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:5A:E4:2D:AD:E9:9C:CF:96:CA:27:7B:97:C2:B0:28:B0:99:28:1B X509v3 Authority Key Identifier: keyid:CF:AE:23:1A:98:97:37:F6:1D:AD:95:7C:C2:4D:21:35:85:81:8E:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z64jGpiXN_YdrZV8wk0hNYWBjtw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:05:71:d3:10:c2:88:a6:44:5c:c5:41:8d:17:8f:62:ae:5b: 5d:59:73:86:f0:f3:f4:1b:21:d3:9a:72:3c:fd:8d:b6:49:87: 87:62:52:4a:c5:d6:68:9f:8c:d6:87:a1:c3:18:ea:bf:da:ac: ad:d5:73:ab:dc:1b:ae:51:12:e9:5a:15:ff:b5:22:2e:56:21: c7:e4:79:83:66:12:db:93:6a:01:6b:55:8d:c6:38:03:cc:c9: 95:0c:19:4d:ac:65:5a:e7:2b:41:44:31:ee:db:0d:6a:1c:d1: a6:fc:4e:f4:a3:e0:b0:92:2f:82:08:36:43:36:1f:f0:e8:f0: 5a:0b:4c:2a:b8:bb:ee:20:ff:44:6a:63:27:eb:5c:08:0f:62: 2a:83:10:59:7b:0e:17:81:f4:e0:d1:4c:cf:3b:c7:be:a7:6f: dd:2c:92:78:87:49:34:00:70:2e:07:b3:65:77:b7:f2:dd:8d: e6:c0:b0:0f:f8:92:60:f8:b3:69:82:18:62:a6:7c:fc:79:ef: 95:b2:db:9f:04:4f:61:6c:cd:12:ab:83:5a:b2:f1:23:6a:6b: 3b:dc:99:21:dd:bb:3f:ff:9b:60:a9:99:2a:fd:4e:35:ef:fc: 60:f9:b7:4d:fd:87:49:5a:74:fa:a9:e0:cc:8c:84:8e:03:2a: f8:39:f2:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAX4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEI0NUYxMTAvBgNVBAUTKENGQUUyMzFBOTg5NzM3RjYxREFEOTU3Q0MyNEQyMTM1 ODU4MThFREMwHhcNMjUwODExMDM0NjUzWhcNMjUwODE4MDM0NjUzWjAYMRYwFAYD VQQDEw02ODk5NjdhZS03ZjhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy6m3sOxsISil8lUE3azcioopbWspWVPon4BpUKUpcaUnFELJ0XgoK33K2uhX APsytTKcd2l4sMefIl+3qwxBQwtK+sp+/PNIa4YEky0DSm9LjsG1aHJE1kiJeX8y Ket08SsCT1M6kHX8Z0WEshpJEocVyZxgfUYqCPTVuqxVYkT71LW/GGSP5iEdBljS YA6Wuh7SE/XCq5RP6Z7M/LsF+f0+4MT6Pgbk6KtM1lnymvFJgcatr5p3RJy9/65e Yn9H/ahZApGbiLsx7YeUvdu8aGa4GSnfB7SzSR4oLuiJX2P+QSuRzljLz+7bvEbX jAanoGCuoZhKp5Kr492UnWDsUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN1a5C2t 6ZzPlsone5fCsCiwmSgbMB8GA1UdIwQYMBaAFM+uIxqYlzf2Ha2VfMJNITWFgY7c MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjQ1Ri80MEJCMTU3NDJG NjUxMUVFOTVGREVENTZDNEY5QUUwMi96NjRqR3BpWE5fWWRyWlY4d2swaE5ZV0Jq dHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3o2NGpHcGlYTl9ZZHJaVjh3azBoTllXQmp0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjQ1Ri80MEJCMTU3NDJGNjUxMUVFOTVGREVENTZDNEY5QUUwMi96NjRqR3BpWE5f WWRyWlY4d2swaE5ZV0JqdHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRBXHTEMKIpkRcxUGNF49irltdWXOG8PP0GyHTmnI8/Y22SYeHYlJK xdZon4zWh6HDGOq/2qyt1XOr3BuuURLpWhX/tSIuViHH5HmDZhLbk2oBa1WNxjgD zMmVDBlNrGVa5ytBRDHu2w1qHNGm/E70o+Cwki+CCDZDNh/w6PBaC0wquLvuIP9E amMn61wID2IqgxBZew4XgfTg0UzPO8e+p2/dLJJ4h0k0AHAuB7Nld7fy3Y3mwLAP +JJg+LNpghhipnz8ee+VstufBE9hbM0Sq4NasvEjams73Jkh3bs//5tgqZkq/U41 7/xg+bdN/YdJWnT6qeDMjISOAyr4OfKW -----END CERTIFICATE-----Generated at Tue Aug 12 06:37:57 2025 by rpki-client