$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB1F6/0F14015094C911EAB1DB627CC4F9AE02/CBzlpnA274VGmQv1lMzWMoB0BR0.mft File: CBzlpnA274VGmQv1lMzWMoB0BR0.mft (raw, json) Hash identifier: L2Jy7CzN47lRPCc18WeH4siKWzeBsltqqNG/rwZ0EPE= Subject key identifier: A2:19:12:64:0C:A3:80:B5:CB:EA:CA:94:E4:66:1A:9C:80:13:67:52 Authority key identifier: 08:1C:E5:A6:70:36:EF:85:46:99:0B:F5:94:CC:D6:32:80:74:05:1D Certificate issuer: /CN=A91AB1F6/serialNumber=081CE5A67036EF8546990BF594CCD6328074051D Certificate serial: 0997 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CBzlpnA274VGmQv1lMzWMoB0BR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB1F6/0F14015094C911EAB1DB627CC4F9AE02/CBzlpnA274VGmQv1lMzWMoB0BR0.mft Manifest number: 098C Signing time: Fri 08 Aug 2025 20:26:02 +0000 Manifest this update: Fri 08 Aug 2025 20:26:02 +0000 Manifest next update: Fri 15 Aug 2025 20:26:02 +0000 Files and hashes: 1: CBzlpnA274VGmQv1lMzWMoB0BR0.crl (hash: 1ampX0ufx7DIhl5dUPN7He0yQXPv2QQvVnETfBM+Bw0=) 2: 59675AB20A4011F0AC302962C4F9AE02.roa (hash: fiBakfl0c7PhMdoRRAbYSKMEPuxbVJY/KVuQO5mDKMk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB1F6/0F14015094C911EAB1DB627CC4F9AE02/CBzlpnA274VGmQv1lMzWMoB0BR0.crl rsync://rpki.apnic.net/member_repository/A91AB1F6/0F14015094C911EAB1DB627CC4F9AE02/CBzlpnA274VGmQv1lMzWMoB0BR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CBzlpnA274VGmQv1lMzWMoB0BR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2455 (0x997) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB1F6, serialNumber=081CE5A67036EF8546990BF594CCD6328074051D Validity Not Before: Aug 8 20:26:02 2025 GMT Not After : Aug 15 20:26:02 2025 GMT Subject: CN=68965d5a-019e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:f4:6c:5b:86:0a:43:7c:ef:f7:66:fb:e4:c1: f6:98:88:b6:dd:fc:e9:16:82:2b:cb:7d:64:1c:c6: e9:62:14:2d:33:6c:5f:fb:2a:50:d2:97:f4:c5:62: 24:94:fe:85:c8:15:8c:32:13:0c:3b:b5:51:69:6a: 23:23:db:ce:3d:82:40:a5:a1:89:62:d7:ae:16:3f: 8c:1e:12:16:c2:2b:fd:ba:5e:3a:af:ba:e7:5f:ec: 4e:cf:0f:db:4e:67:c7:38:ca:e3:9a:dc:b0:cc:aa: e0:87:5d:41:60:6a:f4:3c:47:53:91:bf:2e:47:f6: 78:4d:9e:73:81:a4:96:5d:5c:65:ee:3d:18:da:42: 56:19:76:bd:9d:8b:1b:5e:8f:e1:4b:c2:6e:31:cd: c4:d5:40:c0:aa:09:c0:ec:e7:76:b3:5d:00:b6:b1: a0:09:f6:c7:14:98:bb:b1:69:81:9a:6a:4a:cb:a8: b6:36:c8:fa:cf:e7:be:30:ae:d3:94:e6:3e:12:44: 7b:2f:0a:dc:59:f7:9f:da:fe:6b:09:52:a5:07:23: b2:3a:bb:c1:89:4c:54:56:e0:5f:23:21:71:83:c8: e9:86:32:f0:57:68:03:5a:47:15:36:f2:35:23:65: 0b:28:54:52:38:1f:df:03:48:7e:94:1b:e4:5a:9b: 8b:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:19:12:64:0C:A3:80:B5:CB:EA:CA:94:E4:66:1A:9C:80:13:67:52 X509v3 Authority Key Identifier: keyid:08:1C:E5:A6:70:36:EF:85:46:99:0B:F5:94:CC:D6:32:80:74:05:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB1F6/0F14015094C911EAB1DB627CC4F9AE02/CBzlpnA274VGmQv1lMzWMoB0BR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CBzlpnA274VGmQv1lMzWMoB0BR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB1F6/0F14015094C911EAB1DB627CC4F9AE02/CBzlpnA274VGmQv1lMzWMoB0BR0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:bc:f6:4d:fd:4b:2a:a0:45:0d:15:7a:44:f1:39:83:0c:b2: 7d:ca:bf:de:29:48:34:52:6c:a3:f5:00:63:5f:c0:3c:f7:6b: 91:d6:a4:75:c4:da:3d:8f:df:73:d7:8f:aa:a3:28:c3:c2:23: b8:80:9b:e2:1f:5a:87:de:8d:d2:ab:97:8f:8b:8a:d7:cb:f2: 49:f8:92:ae:e7:ee:df:49:a1:d7:ce:38:95:89:88:b1:13:5f: 24:46:cb:5d:49:12:d0:e6:6b:ed:90:f2:ab:0d:2e:ce:e4:74: 64:8d:e5:30:40:98:e9:c6:5b:e5:a0:82:7b:d4:11:b2:bf:c1: 1c:93:38:c3:9b:6e:1c:7c:71:c4:10:fa:5a:01:5b:79:a7:d7: 08:8f:49:32:c1:a7:36:a9:fb:53:7c:db:17:2c:2f:88:39:45: ea:f7:d0:d3:52:87:46:98:2b:18:24:f3:8c:b5:9c:24:9d:cf: d4:dd:2f:16:af:99:6e:e5:77:85:98:a8:0f:6c:66:c0:11:28: c3:26:90:8e:38:3f:9a:ff:bd:c1:a2:bb:2e:ba:3d:d1:2d:6e: 95:83:9d:e7:2d:20:c6:f6:e5:52:24:9b:f8:c5:8a:f1:53:b2: dd:d3:df:fb:17:31:1b:1a:d8:57:71:d0:1e:9c:78:74:c8:ff: 62:e9:2d:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCZcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIxRjYxMTAvBgNVBAUTKDA4MUNFNUE2NzAzNkVGODU0Njk5MEJGNTk0Q0NENjMy ODA3NDA1MUQwHhcNMjUwODA4MjAyNjAyWhcNMjUwODE1MjAyNjAyWjAYMRYwFAYD VQQDEw02ODk2NWQ1YS0wMTllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0vRsW4YKQ3zv92b75MH2mIi23fzpFoIry31kHMbpYhQtM2xf+ypQ0pf0xWIk lP6FyBWMMhMMO7VRaWojI9vOPYJApaGJYteuFj+MHhIWwiv9ul46r7rnX+xOzw/b TmfHOMrjmtywzKrgh11BYGr0PEdTkb8uR/Z4TZ5zgaSWXVxl7j0Y2kJWGXa9nYsb Xo/hS8JuMc3E1UDAqgnA7Od2s10AtrGgCfbHFJi7sWmBmmpKy6i2Nsj6z+e+MK7T lOY+EkR7LwrcWfef2v5rCVKlByOyOrvBiUxUVuBfIyFxg8jphjLwV2gDWkcVNvI1 I2ULKFRSOB/fA0h+lBvkWpuLHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKIZEmQM o4C1y+rKlORmGpyAE2dSMB8GA1UdIwQYMBaAFAgc5aZwNu+FRpkL9ZTM1jKAdAUd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjFGNi8wRjE0MDE1MDk0 QzkxMUVBQjFEQjYyN0NDNEY5QUUwMi9DQnpscG5BMjc0VkdtUXYxbE16V01vQjBC UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NCemxwbkEyNzRWR21RdjFsTXpXTW9CMEJSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjFGNi8wRjE0MDE1MDk0QzkxMUVBQjFEQjYyN0NDNEY5QUUwMi9DQnpscG5BMjc0 VkdtUXYxbE16V01vQjBCUjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmvPZN/UsqoEUNFXpE8TmDDLJ9yr/eKUg0Umyj9QBjX8A892uR1qR1 xNo9j99z14+qoyjDwiO4gJviH1qH3o3Sq5ePi4rXy/JJ+JKu5+7fSaHXzjiViYix E18kRstdSRLQ5mvtkPKrDS7O5HRkjeUwQJjpxlvloIJ71BGyv8EckzjDm24cfHHE EPpaAVt5p9cIj0kywac2qftTfNsXLC+IOUXq99DTUodGmCsYJPOMtZwknc/U3S8W r5lu5XeFmKgPbGbAESjDJpCOOD+a/73Borsuuj3RLW6Vg53nLSDG9uVSJJv4xYrx U7Ld09/7FzEbGthXcdAenHh0yP9i6S0W -----END CERTIFICATE-----Generated at Sat Aug 9 03:02:11 2025 by rpki-client