$ rpki-client -vvf rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft File: z8CATaxP_3oipAThDphkpxHeGck.mft (raw, json) Hash identifier: zibXDODzus6lMqonqkPIkGYSOe9YpEp8W175kzV2g+Q= Subject key identifier: 46:40:D2:5D:36:04:82:91:76:D6:19:08:F9:50:AD:E4:89:F3:45:44 Authority key identifier: CF:C0:80:4D:AC:4F:FF:7A:22:A4:04:E1:0E:98:64:A7:11:DE:19:C9 Certificate issuer: /CN=A91A12C4/serialNumber=CFC0804DAC4FFF7A22A404E10E9864A711DE19C9 Certificate serial: AE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft Manifest number: AC Signing time: Sun 03 Aug 2025 06:29:10 +0000 Manifest this update: Sun 03 Aug 2025 06:29:09 +0000 Manifest next update: Sun 10 Aug 2025 06:29:09 +0000 Files and hashes: 1: z8CATaxP_3oipAThDphkpxHeGck.crl (hash: MZgfaKf7sNxwMVqGn3Zsgu43FCiA3oxUcWnPikHskEE=) 2: BCA395126C1811EFAFBE6B0FC4F9AE02.roa (hash: xTh/XECRIgCR6mcMb4Sy7r1o1s9piU8w2MVo6gmyMfs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.crl rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 06:29:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 174 (0xae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A12C4, serialNumber=CFC0804DAC4FFF7A22A404E10E9864A711DE19C9 Validity Not Before: Aug 3 06:29:09 2025 GMT Not After : Aug 10 06:29:09 2025 GMT Subject: CN=688f01b6-5c98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:8c:85:9e:68:3a:10:e1:7d:b8:fb:c5:1f:67: 7a:77:f5:32:58:b6:70:ae:47:74:04:2f:64:d5:80: f2:98:c0:6d:49:4a:2a:29:ff:6e:c6:67:ac:de:d0: 36:0e:69:0e:93:b3:82:8c:46:ec:fe:3b:51:31:b8: 00:76:34:46:7e:e3:75:81:51:2d:f7:e4:a8:0f:de: b0:37:60:14:43:2e:04:d6:d6:e1:42:c2:d5:d9:4c: 43:ce:70:c3:6a:9b:3b:ac:79:a4:7c:47:e6:34:a8: 28:e0:e2:01:81:eb:68:e2:38:05:b8:8a:49:0c:cb: ec:3e:a4:de:ef:c5:04:cf:4b:25:22:63:f0:52:71: 41:a0:69:d6:4e:6b:e7:2f:22:e7:e2:ed:0a:67:fa: fe:3a:73:d0:e1:af:46:dd:e0:c2:b5:ec:5d:42:8f: 44:81:3e:fe:ec:51:68:a8:cb:e5:d0:e5:08:18:4e: 49:e1:e3:c2:9b:57:7a:98:78:de:54:58:19:59:6d: 64:cb:d1:79:95:eb:da:de:86:72:dd:14:2a:ce:84: 44:1e:b4:7f:d7:02:44:49:aa:81:2a:75:e9:3d:6c: 42:b3:a7:f8:52:68:77:4b:e6:32:95:b6:06:98:1e: 94:d2:2d:f9:ad:ee:7c:8e:25:4c:b8:eb:12:81:25: 7d:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:40:D2:5D:36:04:82:91:76:D6:19:08:F9:50:AD:E4:89:F3:45:44 X509v3 Authority Key Identifier: keyid:CF:C0:80:4D:AC:4F:FF:7A:22:A4:04:E1:0E:98:64:A7:11:DE:19:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:dc:82:6f:9a:6a:1e:9b:36:42:38:49:6c:d4:84:96:f8:e4: ed:3e:e2:88:23:28:ef:6a:51:e8:86:3c:a7:d8:55:06:98:3b: 7d:17:95:f0:c2:05:09:86:77:fa:4b:ba:7d:e1:ba:37:75:0d: 89:7e:ce:9f:4a:8d:a5:4c:12:23:11:43:b0:dc:8e:56:68:06: 78:77:97:49:46:6a:99:52:65:89:84:d7:88:9d:df:c3:fb:0f: 9f:9e:a2:52:fb:e0:ce:64:0c:1c:40:57:50:56:65:61:43:c7: 98:51:76:52:68:3c:8f:76:f3:59:4f:3a:1a:41:d1:c8:a8:0c: 98:fd:5c:f8:87:7f:9b:a0:eb:97:db:4c:ae:7b:88:62:0b:dc: f2:e5:29:7e:83:bb:ed:ba:51:53:8b:36:f8:c3:35:ed:05:d6: 0a:66:39:b7:27:b9:0a:0d:7d:ae:6b:91:53:bd:04:14:a7:fe: b8:d6:78:e9:03:92:17:8d:ea:7d:d6:e5:6a:86:26:d6:c7:51: 73:6c:74:a1:1b:0d:6f:59:87:e9:a2:89:49:2c:62:d9:7f:15: 3f:fa:e1:fd:f9:67:fc:32:f7:5b:e4:4f:83:db:8a:23:72:70: 59:7c:07:a2:95:92:e9:18:89:96:a1:0a:12:5c:13:1f:5d:9a: 28:e2:77:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTEyQzQxMTAvBgNVBAUTKENGQzA4MDREQUM0RkZGN0EyMkE0MDRFMTBFOTg2NEE3 MTFERTE5QzkwHhcNMjUwODAzMDYyOTA5WhcNMjUwODEwMDYyOTA5WjAYMRYwFAYD VQQDEw02ODhmMDFiNi01Yzk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyIyFnmg6EOF9uPvFH2d6d/UyWLZwrkd0BC9k1YDymMBtSUoqKf9uxmes3tA2 DmkOk7OCjEbs/jtRMbgAdjRGfuN1gVEt9+SoD96wN2AUQy4E1tbhQsLV2UxDznDD aps7rHmkfEfmNKgo4OIBgeto4jgFuIpJDMvsPqTe78UEz0slImPwUnFBoGnWTmvn LyLn4u0KZ/r+OnPQ4a9G3eDCtexdQo9EgT7+7FFoqMvl0OUIGE5J4ePCm1d6mHje VFgZWW1ky9F5leva3oZy3RQqzoREHrR/1wJESaqBKnXpPWxCs6f4Umh3S+YylbYG mB6U0i35re58jiVMuOsSgSV9YQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEZA0l02 BIKRdtYZCPlQreSJ80VEMB8GA1UdIwQYMBaAFM/AgE2sT/96IqQE4Q6YZKcR3hnJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTJDNC9GMzE5RURDMjZD MTcxMUVGQkRCRkQ1MEJDNEY5QUUwMi96OENBVGF4UF8zb2lwQVRoRHBoa3B4SGVH Y2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3o4Q0FUYXhQXzNvaXBBVGhEcGhrcHhIZUdjay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTJDNC9GMzE5RURDMjZDMTcxMUVGQkRCRkQ1MEJDNEY5QUUwMi96OENBVGF4UF8z b2lwQVRoRHBoa3B4SGVHY2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBL3IJvmmoemzZCOEls1ISW+OTtPuKIIyjvalHohjyn2FUGmDt9F5Xw wgUJhnf6S7p94bo3dQ2Jfs6fSo2lTBIjEUOw3I5WaAZ4d5dJRmqZUmWJhNeInd/D +w+fnqJS++DOZAwcQFdQVmVhQ8eYUXZSaDyPdvNZTzoaQdHIqAyY/Vz4h3+boOuX 20yue4hiC9zy5Sl+g7vtulFTizb4wzXtBdYKZjm3J7kKDX2ua5FTvQQUp/641njp A5IXjep91uVqhibWx1FzbHShGw1vWYfpoolJLGLZfxU/+uH9+Wf8Mvdb5E+D24oj cnBZfAeilZLpGImWoQoSXBMfXZoo4ndZ -----END CERTIFICATE-----Generated at Mon Aug 4 11:25:03 2025 by rpki-client