$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.mft File: zFYVfHLcxpczY2dD21AIdZMtpB8.mft (raw, json) Hash identifier: pevKQhKO9ehFoOYo+oFMR9W4IrK/mLjg8uMHlnR1fzQ= Subject key identifier: 2E:5F:B4:31:DA:D7:FA:BE:97:EC:42:44:6F:C7:51:F9:9A:86:C3:A3 Authority key identifier: CC:56:15:7C:72:DC:C6:97:33:63:67:43:DB:50:08:75:93:2D:A4:1F Certificate issuer: /CN=A91A6CD6/serialNumber=CC56157C72DCC69733636743DB500875932DA41F Certificate serial: 0649 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFYVfHLcxpczY2dD21AIdZMtpB8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.mft Manifest number: 0643 Signing time: Fri 08 Aug 2025 23:04:53 +0000 Manifest this update: Fri 08 Aug 2025 23:04:53 +0000 Manifest next update: Fri 15 Aug 2025 23:04:53 +0000 Files and hashes: 1: zFYVfHLcxpczY2dD21AIdZMtpB8.crl (hash: 37XuKbDnajkQRpynbs8QaYoS7DlzidXj7lrGDDpQ/HY=) 2: A210E7309CAB11EBAB87D43AC4F9AE02.roa (hash: G4Iff29ujs2wSeu37iPDIUnNuvGFMJft5LK0116SXEs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.crl rsync://rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFYVfHLcxpczY2dD21AIdZMtpB8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1609 (0x649) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6CD6, serialNumber=CC56157C72DCC69733636743DB500875932DA41F Validity Not Before: Aug 8 23:04:53 2025 GMT Not After : Aug 15 23:04:53 2025 GMT Subject: CN=68968295-9d76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:69:f6:78:d9:2b:0d:15:c2:bf:26:98:ee:6c: e3:23:2c:df:05:5d:c9:19:b7:89:72:21:05:15:b9: 48:f3:c5:63:1b:1c:7c:2f:d9:a3:19:75:1b:b5:aa: b8:8a:2c:6b:85:48:03:d6:17:40:00:11:3c:69:fd: 05:56:3f:9c:47:98:9e:21:b6:78:1a:43:eb:03:2b: e5:c0:7a:51:cd:91:37:a0:c2:c2:79:e3:33:8b:1a: 46:c7:76:95:e0:6a:0c:30:20:f9:0c:2c:81:9c:ac: 42:55:76:4c:2b:7d:fe:66:bd:97:02:e6:99:f6:3c: 9f:b4:92:b5:d8:fb:95:1a:84:64:c1:a7:76:b7:57: b1:02:cf:1c:51:18:1f:0e:8a:d6:e4:30:34:40:47: 55:6d:fe:8e:7e:66:42:55:05:bc:03:59:3c:ad:6c: 37:6b:4f:40:fe:ef:fe:49:b4:c4:6d:b7:f5:6f:00: 64:a7:ff:c0:c9:96:18:d4:0c:fd:96:36:3a:7b:b8: 99:cc:9a:4c:3c:49:d8:40:4e:fb:33:94:87:6f:c0: fb:1e:1c:6b:b1:2c:47:7e:f3:5a:f1:f3:e7:8f:0b: 17:e6:4f:bf:75:e5:b7:5f:ae:4c:4e:49:f2:d9:f0: 30:fd:61:f5:01:ad:08:7c:d0:53:55:f5:c1:de:e1: fa:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:5F:B4:31:DA:D7:FA:BE:97:EC:42:44:6F:C7:51:F9:9A:86:C3:A3 X509v3 Authority Key Identifier: keyid:CC:56:15:7C:72:DC:C6:97:33:63:67:43:DB:50:08:75:93:2D:A4:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFYVfHLcxpczY2dD21AIdZMtpB8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:bd:69:47:5f:07:67:46:5c:45:2b:16:5d:a4:77:76:40:22: 2f:e8:ed:5d:e0:17:6b:c6:c5:48:fe:a0:14:09:3b:3e:87:05: 8f:9e:7b:3a:22:20:a2:fd:72:62:a2:e8:fe:fc:25:73:fb:40: f8:68:0f:e6:73:f1:3d:ff:63:70:1b:4b:3f:f2:c3:52:3c:ea: 9b:05:a8:16:ad:05:c3:41:23:55:24:74:f2:d8:61:6a:2f:f3: 33:e3:05:d0:40:3d:dc:b5:93:c7:a6:61:5b:26:a4:1e:1c:d0: 1c:a8:e1:df:c1:f5:56:30:ba:da:3a:5d:f6:46:48:bf:b6:79: c8:d4:73:20:95:7f:e0:77:ad:d7:41:5b:70:f9:cb:fa:14:e1: cb:59:19:90:a7:b6:e2:ba:69:3b:30:4c:be:e4:a3:25:a3:cd: d8:44:87:63:ff:b2:7c:a9:16:ac:a8:70:81:d9:49:1f:c6:d7: 5b:89:70:6c:b9:32:50:06:bd:28:93:2a:2d:e8:3f:5a:bd:5a: 55:cc:99:5b:9b:49:f6:86:c6:b2:ba:49:2f:d9:36:90:07:3d: 40:35:fc:23:f1:be:f1:67:3d:38:5a:31:bf:1e:ab:6a:24:c9: 08:2d:3c:70:b0:76:15:63:d0:23:d2:d9:d5:db:8c:8d:a1:26: 50:8e:b0:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTZDRDYxMTAvBgNVBAUTKENDNTYxNTdDNzJEQ0M2OTczMzYzNjc0M0RCNTAwODc1 OTMyREE0MUYwHhcNMjUwODA4MjMwNDUzWhcNMjUwODE1MjMwNDUzWjAYMRYwFAYD VQQDEw02ODk2ODI5NS05ZDc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvWn2eNkrDRXCvyaY7mzjIyzfBV3JGbeJciEFFblI88VjGxx8L9mjGXUbtaq4 iixrhUgD1hdAABE8af0FVj+cR5ieIbZ4GkPrAyvlwHpRzZE3oMLCeeMzixpGx3aV 4GoMMCD5DCyBnKxCVXZMK33+Zr2XAuaZ9jyftJK12PuVGoRkwad2t1exAs8cURgf DorW5DA0QEdVbf6OfmZCVQW8A1k8rWw3a09A/u/+SbTEbbf1bwBkp//AyZYY1Az9 ljY6e7iZzJpMPEnYQE77M5SHb8D7HhxrsSxHfvNa8fPnjwsX5k+/deW3X65MTkny 2fAw/WH1Aa0IfNBTVfXB3uH6cQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC5ftDHa 1/q+l+xCRG/HUfmahsOjMB8GA1UdIwQYMBaAFMxWFXxy3MaXM2NnQ9tQCHWTLaQf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNkNENi82NUU2REJENjlD QTkxMUVCOEFGRjBGMzdDNEY5QUUwMi96RllWZkhMY3hwY3pZMmREMjFBSWRaTXRw QjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pGWVZmSExjeHBjelkyZEQyMUFJZFpNdHBCOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NkNENi82NUU2REJENjlDQTkxMUVCOEFGRjBGMzdDNEY5QUUwMi96RllWZkhMY3hw Y3pZMmREMjFBSWRaTXRwQjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYvWlHXwdnRlxFKxZdpHd2QCIv6O1d4BdrxsVI/qAUCTs+hwWPnns6 IiCi/XJiouj+/CVz+0D4aA/mc/E9/2NwG0s/8sNSPOqbBagWrQXDQSNVJHTy2GFq L/Mz4wXQQD3ctZPHpmFbJqQeHNAcqOHfwfVWMLraOl32Rki/tnnI1HMglX/gd63X QVtw+cv6FOHLWRmQp7biumk7MEy+5KMlo83YRIdj/7J8qRasqHCB2UkfxtdbiXBs uTJQBr0okyot6D9avVpVzJlbm0n2hsayukkv2TaQBz1ANfwj8b7xZz04WjG/Hqtq JMkILTxwsHYVY9Aj0tnV24yNoSZQjrD9 -----END CERTIFICATE-----Generated at Sat Aug 9 03:04:16 2025 by rpki-client