$ rpki-client -vvf rpki.apnic.net/member_repository/A914E1A8/A40A724AB13011ED847D4981C4F9AE02/i-zDY4Bwprefbc4ioOZbsh4Ndyk.mft File: i-zDY4Bwprefbc4ioOZbsh4Ndyk.mft (raw, json) Hash identifier: x/sXJOEMutZQ7FfM2T6Xtg91Fw6xavkespk0QthFXno= Subject key identifier: 20:1B:80:1B:26:EE:92:CE:E2:1B:2B:7B:BD:E5:E7:62:58:EF:CB:E6 Authority key identifier: 8B:EC:C3:63:80:70:A6:B7:9F:6D:CE:22:A0:E6:5B:B2:1E:0D:77:29 Certificate issuer: /CN=A914E1A8/serialNumber=8BECC3638070A6B79F6DCE22A0E65BB21E0D7729 Certificate serial: 01DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i-zDY4Bwprefbc4ioOZbsh4Ndyk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E1A8/A40A724AB13011ED847D4981C4F9AE02/i-zDY4Bwprefbc4ioOZbsh4Ndyk.mft Manifest number: 01D5 Signing time: Sat 09 Aug 2025 03:11:49 +0000 Manifest this update: Sat 09 Aug 2025 03:11:48 +0000 Manifest next update: Sat 16 Aug 2025 03:11:48 +0000 Files and hashes: 1: i-zDY4Bwprefbc4ioOZbsh4Ndyk.crl (hash: i4KtO64gF3jiHM5MlaK83a2J9Cdpq8hRJMcacxlINx0=) 2: 5D35DEC8B13411EDB6BEF584C4F9AE02.roa (hash: g7Iu0qsIgHA2DsVqzJPZwAHsWDw0BvGfzGeWjQmEdZA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E1A8/A40A724AB13011ED847D4981C4F9AE02/i-zDY4Bwprefbc4ioOZbsh4Ndyk.crl rsync://rpki.apnic.net/member_repository/A914E1A8/A40A724AB13011ED847D4981C4F9AE02/i-zDY4Bwprefbc4ioOZbsh4Ndyk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i-zDY4Bwprefbc4ioOZbsh4Ndyk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 479 (0x1df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E1A8, serialNumber=8BECC3638070A6B79F6DCE22A0E65BB21E0D7729 Validity Not Before: Aug 9 03:11:48 2025 GMT Not After : Aug 16 03:11:48 2025 GMT Subject: CN=6896bc74-c6c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:1c:67:d2:af:a5:1c:8c:1e:9f:8b:e5:a2:5f: cb:61:ba:c1:22:26:eb:dc:4e:b0:92:85:d8:63:55: bd:61:3f:01:69:e5:19:d2:0d:24:dd:5e:b0:a8:f7: 16:d6:71:e0:0a:9b:63:04:8d:aa:66:30:84:c0:94: ce:10:81:e6:c1:4e:88:80:ed:c2:c0:12:cf:63:db: a1:2a:40:dd:1c:64:03:a0:a3:dd:88:03:a1:ee:47: 33:7e:fc:dc:91:d4:0d:2c:6c:f1:72:cc:94:d9:f5: f3:86:72:af:64:f7:ec:1a:7b:67:c2:77:ef:5c:ad: dc:57:f8:43:32:c4:42:fa:36:bc:81:d2:96:64:55: 63:8c:87:e6:84:6d:58:da:ef:03:00:30:22:e2:7e: 1f:ed:56:e3:a4:99:19:92:00:04:7e:ef:bb:a7:c1: f9:8a:a0:9e:17:e8:4e:e5:24:dd:f4:dc:b1:df:05: 34:ef:a8:77:6f:91:1d:fc:eb:d8:82:d1:b8:d8:60: 23:bf:2a:81:96:6e:01:fe:a0:6f:4e:6e:74:6d:1a: 5e:4e:f8:74:b3:ed:d9:71:23:36:23:e1:d9:01:60: b3:ba:0f:bf:3b:b9:d6:be:cb:9e:09:06:e4:51:f3: 68:8c:08:b8:eb:e8:a4:67:3a:83:78:5d:2e:49:07: 33:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:1B:80:1B:26:EE:92:CE:E2:1B:2B:7B:BD:E5:E7:62:58:EF:CB:E6 X509v3 Authority Key Identifier: keyid:8B:EC:C3:63:80:70:A6:B7:9F:6D:CE:22:A0:E6:5B:B2:1E:0D:77:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E1A8/A40A724AB13011ED847D4981C4F9AE02/i-zDY4Bwprefbc4ioOZbsh4Ndyk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i-zDY4Bwprefbc4ioOZbsh4Ndyk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E1A8/A40A724AB13011ED847D4981C4F9AE02/i-zDY4Bwprefbc4ioOZbsh4Ndyk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:70:8f:4d:1f:c7:8d:da:4b:fb:12:c9:7d:08:47:83:94:87: 9b:9e:83:3e:a9:39:1f:14:f8:b1:42:03:ac:dc:f8:70:a3:9b: b5:fe:a8:cf:c3:41:6d:44:65:af:70:0e:83:32:ae:0d:dd:5d: c2:e2:bf:6f:35:1a:4b:d2:44:78:c2:90:ae:0e:58:ca:43:24: 3c:b1:5f:22:c4:c5:ad:fd:32:93:8d:96:5b:b3:fc:3c:cb:95: 0e:d2:b8:5f:01:1d:d8:30:72:e8:5f:7a:b4:6a:f4:64:fb:fa: ab:72:11:cb:de:3a:c1:cc:eb:b7:1c:0b:8a:f2:78:66:ec:28: 61:2a:cb:84:80:8f:88:a4:cf:b9:e9:e0:d6:b6:1f:d4:d4:eb: 24:26:ad:5a:51:1c:76:a8:56:f1:e5:19:31:f1:ae:8a:b4:ab: 78:9d:90:e3:13:78:9b:b9:df:d2:b0:01:be:c0:61:b9:58:84: 94:d7:0b:32:35:72:b9:33:7b:c6:fa:43:b2:cb:bd:5a:dd:fb: d0:3c:a6:e3:69:ca:4d:29:79:18:90:94:50:87:9d:fa:a8:dd: 17:77:dd:36:3b:ed:ff:b5:03:6c:2b:8b:ee:51:86:8e:23:04: d7:c9:4f:02:83:ea:eb:f2:97:99:43:27:a7:5d:b1:8d:7a:90: 7c:f4:45:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAd8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUxQTgxMTAvBgNVBAUTKDhCRUNDMzYzODA3MEE2Qjc5RjZEQ0UyMkEwRTY1QkIy MUUwRDc3MjkwHhcNMjUwODA5MDMxMTQ4WhcNMjUwODE2MDMxMTQ4WjAYMRYwFAYD VQQDEw02ODk2YmM3NC1jNmM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2xxn0q+lHIwen4vlol/LYbrBIibr3E6wkoXYY1W9YT8BaeUZ0g0k3V6wqPcW 1nHgCptjBI2qZjCEwJTOEIHmwU6IgO3CwBLPY9uhKkDdHGQDoKPdiAOh7kczfvzc kdQNLGzxcsyU2fXzhnKvZPfsGntnwnfvXK3cV/hDMsRC+ja8gdKWZFVjjIfmhG1Y 2u8DADAi4n4f7VbjpJkZkgAEfu+7p8H5iqCeF+hO5STd9Nyx3wU076h3b5Ed/OvY gtG42GAjvyqBlm4B/qBvTm50bRpeTvh0s+3ZcSM2I+HZAWCzug+/O7nWvsueCQbk UfNojAi46+ikZzqDeF0uSQcz+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCAbgBsm 7pLO4hsre73l52JY78vmMB8GA1UdIwQYMBaAFIvsw2OAcKa3n23OIqDmW7IeDXcp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTFBOC9BNDBBNzI0QUIx MzAxMUVEODQ3RDQ5ODFDNEY5QUUwMi9pLXpEWTRCd3ByZWZiYzRpb09aYnNoNE5k eWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ktekRZNEJ3cHJlZmJjNGlvT1pic2g0TmR5ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTFBOC9BNDBBNzI0QUIxMzAxMUVEODQ3RDQ5ODFDNEY5QUUwMi9pLXpEWTRCd3By ZWZiYzRpb09aYnNoNE5keWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZcI9NH8eN2kv7Esl9CEeDlIebnoM+qTkfFPixQgOs3Phwo5u1/qjP w0FtRGWvcA6DMq4N3V3C4r9vNRpL0kR4wpCuDljKQyQ8sV8ixMWt/TKTjZZbs/w8 y5UO0rhfAR3YMHLoX3q0avRk+/qrchHL3jrBzOu3HAuK8nhm7ChhKsuEgI+IpM+5 6eDWth/U1OskJq1aURx2qFbx5Rkx8a6KtKt4nZDjE3ibud/SsAG+wGG5WISU1wsy NXK5M3vG+kOyy71a3fvQPKbjacpNKXkYkJRQh536qN0Xd902O+3/tQNsK4vuUYaO IwTXyU8Cg+rr8peZQyenXbGNepB89EUA -----END CERTIFICATE-----Generated at Sat Aug 9 23:07:19 2025 by rpki-client