$ rpki-client -vvf rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft File: 2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft (raw, json) Hash identifier: Yi7rCjcu6TatMSzNU2C/mo9nv3tHT7VTXvPoV3esFFA= Subject key identifier: 47:06:95:81:06:31:02:AC:8F:94:5E:D6:C5:33:84:FE:46:11:57:2B Authority key identifier: D9:5C:E5:FB:36:91:5C:3D:8C:DB:10:DB:86:4A:4C:71:93:3C:DA:41 Certificate issuer: /CN=A91795CA/serialNumber=D95CE5FB36915C3D8CDB10DB864A4C71933CDA41 Certificate serial: 069E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Vzl-zaRXD2M2xDbhkpMcZM82kE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft Manifest number: 0694 Signing time: Sun 10 Aug 2025 22:25:42 +0000 Manifest this update: Sun 10 Aug 2025 22:25:41 +0000 Manifest next update: Sun 17 Aug 2025 22:25:41 +0000 Files and hashes: 1: 2Vzl-zaRXD2M2xDbhkpMcZM82kE.crl (hash: uBL0EDf7Ymm29ZzldyikNFiXoxXetYst4kie3X4TSf8=) 2: 0BEE202087BA11EBBBA56067C4F9AE02.roa (hash: Lz3W/TkDVHeZx5YYagD6lr1rtN4/8q3JKJK/D1U5/sg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.crl rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Vzl-zaRXD2M2xDbhkpMcZM82kE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1694 (0x69e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91795CA, serialNumber=D95CE5FB36915C3D8CDB10DB864A4C71933CDA41 Validity Not Before: Aug 10 22:25:41 2025 GMT Not After : Aug 17 22:25:41 2025 GMT Subject: CN=68991c66-21c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:da:3a:9c:39:5f:4b:9a:38:5f:28:98:27:14: 65:35:9f:5a:86:b7:dc:d8:19:94:c2:47:23:78:5a: 0d:97:7f:49:22:25:3a:d2:1b:d6:7c:45:c7:f3:08: 55:71:61:64:5d:16:a4:f9:e3:b4:58:60:64:83:f8: ab:98:57:61:60:1f:c8:54:1a:36:b0:9b:87:f7:d4: 10:97:81:81:50:d2:37:ad:5a:08:54:f2:c7:c2:3a: 3a:18:5e:13:45:71:a5:5c:23:76:2a:6c:46:0c:d9: 21:dd:89:1e:eb:53:ba:1e:af:ac:48:c7:11:89:52: d4:70:58:dc:bf:33:85:9d:09:be:ef:d3:6f:fa:a4: f2:d6:4b:b1:6e:90:a6:05:eb:29:07:31:3c:db:45: 14:42:80:3f:3e:3e:2f:a5:a5:33:fa:5f:39:9a:ef: 03:8b:fe:25:b2:27:4c:72:cb:af:68:ed:e9:02:10: 57:2b:f7:a3:47:25:82:f3:3a:82:c7:ba:8d:f0:87: 76:ef:34:b0:ad:c2:79:ef:7a:1d:82:92:ce:38:ba: a1:39:98:67:5e:6e:b8:8c:b3:61:f9:bd:0f:eb:58: 65:2e:2b:aa:27:e0:f9:f0:3c:f8:97:a3:8d:7f:6a: f7:d9:8e:ad:7e:1e:a5:03:a1:5b:d4:10:38:4e:bb: 8e:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:06:95:81:06:31:02:AC:8F:94:5E:D6:C5:33:84:FE:46:11:57:2B X509v3 Authority Key Identifier: keyid:D9:5C:E5:FB:36:91:5C:3D:8C:DB:10:DB:86:4A:4C:71:93:3C:DA:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Vzl-zaRXD2M2xDbhkpMcZM82kE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:68:78:3b:45:a2:c0:55:f3:5e:93:6c:d7:0c:3a:fa:1b:1b: 31:b8:fc:8c:96:76:29:c6:5c:72:80:b3:3c:fa:2a:e7:4a:e6: 5e:59:67:ec:86:9a:00:cc:25:1c:47:3d:78:c4:6c:29:88:0b: 25:c7:c6:2f:9b:15:30:61:bd:b4:f6:22:85:63:4b:01:5b:4c: a3:45:2b:aa:e9:c1:08:d0:b5:2f:f7:35:19:0b:2f:71:16:fe: 93:eb:b6:b5:28:d4:27:b7:4b:46:29:f4:ba:94:52:df:2d:c6: c2:2a:32:d8:14:1a:6e:b3:4c:20:b7:1f:bc:8d:21:54:8a:35: ed:1e:8b:cd:58:bc:d1:e1:42:ec:e4:65:00:0d:43:7d:97:4d: 2a:55:18:37:bd:42:89:c6:68:41:38:77:25:67:9c:2e:2c:c9: 56:31:08:c6:c9:a4:26:dc:cb:81:9f:55:d9:7f:f6:ae:49:ed: 11:51:ba:15:05:c0:22:02:55:19:cc:75:8b:36:32:c1:98:24: 1a:31:5f:db:33:5e:c1:e2:cf:5f:ed:fa:2c:83:bc:02:dc:31: 0b:d1:06:1e:ed:0b:03:6a:c8:9d:08:d8:33:6b:51:9f:a0:61: 32:10:1a:38:79:77:c6:5c:5e:fb:a8:ce:7f:1a:7f:cf:57:7e: 51:e6:54:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBp4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk1Q0ExMTAvBgNVBAUTKEQ5NUNFNUZCMzY5MTVDM0Q4Q0RCMTBEQjg2NEE0Qzcx OTMzQ0RBNDEwHhcNMjUwODEwMjIyNTQxWhcNMjUwODE3MjIyNTQxWjAYMRYwFAYD VQQDEw02ODk5MWM2Ni0yMWMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwdo6nDlfS5o4XyiYJxRlNZ9ahrfc2BmUwkcjeFoNl39JIiU60hvWfEXH8whV cWFkXRak+eO0WGBkg/irmFdhYB/IVBo2sJuH99QQl4GBUNI3rVoIVPLHwjo6GF4T RXGlXCN2KmxGDNkh3Yke61O6Hq+sSMcRiVLUcFjcvzOFnQm+79Nv+qTy1kuxbpCm BespBzE820UUQoA/Pj4vpaUz+l85mu8Di/4lsidMcsuvaO3pAhBXK/ejRyWC8zqC x7qN8Id27zSwrcJ573odgpLOOLqhOZhnXm64jLNh+b0P61hlLiuqJ+D58Dz4l6ON f2r32Y6tfh6lA6Fb1BA4TruOvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEcGlYEG MQKsj5Re1sUzhP5GEVcrMB8GA1UdIwQYMBaAFNlc5fs2kVw9jNsQ24ZKTHGTPNpB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTVDQS9GMzY0M0IxMDgz MDUxMUVCOTcxODlCMzlDNEY5QUUwMi8yVnpsLXphUlhEMk0yeERiaGtwTWNaTTgy a0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJWemwtemFSWEQyTTJ4RGJoa3BNY1pNODJrRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTVDQS9GMzY0M0IxMDgzMDUxMUVCOTcxODlCMzlDNEY5QUUwMi8yVnpsLXphUlhE Mk0yeERiaGtwTWNaTTgya0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANaHg7RaLAVfNek2zXDDr6GxsxuPyMlnYpxlxygLM8+irnSuZeWWfs hpoAzCUcRz14xGwpiAslx8YvmxUwYb209iKFY0sBW0yjRSuq6cEI0LUv9zUZCy9x Fv6T67a1KNQnt0tGKfS6lFLfLcbCKjLYFBpus0wgtx+8jSFUijXtHovNWLzR4ULs 5GUADUN9l00qVRg3vUKJxmhBOHclZ5wuLMlWMQjGyaQm3MuBn1XZf/auSe0RUboV BcAiAlUZzHWLNjLBmCQaMV/bM17B4s9f7fosg7wC3DEL0QYe7QsDasidCNgza1Gf oGEyEBo4eXfGXF77qM5/Gn/PV35R5lQ5 -----END CERTIFICATE-----Generated at Mon Aug 11 02:07:41 2025 by rpki-client