$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB9A1/57337ACA8D7911EB8D8BD60BC4F9AE02/zl8rQ5utW-vicqch6qzDj6rdSbQ.mft File: zl8rQ5utW-vicqch6qzDj6rdSbQ.mft (raw, json) Hash identifier: nYf0I56z8FkpSK3LB8IUZlc84/YiQRJ8XWD0Bqd6VkQ= Subject key identifier: BC:8D:9F:79:B5:AD:B7:18:AF:CC:AA:4B:B8:74:B5:84:83:8C:C7:4B Authority key identifier: CE:5F:2B:43:9B:AD:5B:EB:E2:72:A7:21:EA:AC:C3:8F:AA:DD:49:B4 Certificate issuer: /CN=A91AB9A1/serialNumber=CE5F2B439BAD5BEBE272A721EAACC38FAADD49B4 Certificate serial: 0673 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zl8rQ5utW-vicqch6qzDj6rdSbQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB9A1/57337ACA8D7911EB8D8BD60BC4F9AE02/zl8rQ5utW-vicqch6qzDj6rdSbQ.mft Manifest number: 0673 Signing time: Sun 10 Aug 2025 14:39:20 +0000 Manifest this update: Sun 10 Aug 2025 14:39:20 +0000 Manifest next update: Sun 17 Aug 2025 14:39:20 +0000 Files and hashes: 1: zl8rQ5utW-vicqch6qzDj6rdSbQ.crl (hash: ZT3qfzwsPbMG8BJskIkVffF4dYyWPj7bY8GbuBV8v7w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB9A1/57337ACA8D7911EB8D8BD60BC4F9AE02/zl8rQ5utW-vicqch6qzDj6rdSbQ.crl rsync://rpki.apnic.net/member_repository/A91AB9A1/57337ACA8D7911EB8D8BD60BC4F9AE02/zl8rQ5utW-vicqch6qzDj6rdSbQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zl8rQ5utW-vicqch6qzDj6rdSbQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1651 (0x673) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB9A1, serialNumber=CE5F2B439BAD5BEBE272A721EAACC38FAADD49B4 Validity Not Before: Aug 10 14:39:20 2025 GMT Not After : Aug 17 14:39:20 2025 GMT Subject: CN=6898af18-d6bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:fd:cc:ff:1a:62:a4:73:fb:6c:bf:7e:ba:5c: ae:52:c2:c8:57:3e:9d:ea:90:93:6e:a8:20:22:ae: b3:d0:1b:fc:a8:46:47:07:ed:b4:91:d1:1c:d9:d9: 10:58:5c:a2:cf:82:82:63:82:fe:72:e0:95:a1:65: 08:cb:c4:bd:e5:4e:70:9f:05:9c:f6:39:83:3d:11: 5f:58:94:fa:8d:27:d0:8c:c3:c8:2b:37:2e:c1:72: d8:19:cc:97:82:0e:9c:f0:35:52:ed:15:f8:3e:bc: 95:eb:3c:5c:0f:8f:3b:9d:98:7a:6f:44:ba:fd:59: 4e:24:d6:32:76:f3:00:dc:38:a7:fc:65:cf:50:bc: 59:a0:cd:14:56:90:a2:12:1e:00:e2:da:56:bb:a4: 94:3c:42:62:ba:82:37:5d:0b:f5:6e:6d:c2:86:e9: 0f:45:fc:0c:67:f4:09:b0:2e:d6:8f:c0:87:b8:3a: 0e:e7:f0:fc:95:90:cb:ec:74:ca:32:e2:28:24:0c: dd:15:c2:eb:72:94:e1:9d:fa:ba:47:60:19:4f:42: 9d:93:ad:81:56:43:96:1a:09:45:8c:7d:f7:7e:85: 99:77:05:18:a6:91:eb:51:52:1c:f6:45:4e:c5:c7: a4:d0:80:8e:83:a3:05:7d:37:e2:c4:1c:07:27:fb: f4:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:8D:9F:79:B5:AD:B7:18:AF:CC:AA:4B:B8:74:B5:84:83:8C:C7:4B X509v3 Authority Key Identifier: keyid:CE:5F:2B:43:9B:AD:5B:EB:E2:72:A7:21:EA:AC:C3:8F:AA:DD:49:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB9A1/57337ACA8D7911EB8D8BD60BC4F9AE02/zl8rQ5utW-vicqch6qzDj6rdSbQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zl8rQ5utW-vicqch6qzDj6rdSbQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB9A1/57337ACA8D7911EB8D8BD60BC4F9AE02/zl8rQ5utW-vicqch6qzDj6rdSbQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:73:40:fb:61:fd:8e:65:4f:70:91:ca:29:30:12:22:d9:32: 49:60:86:eb:74:e1:33:ee:8b:d1:ef:03:a4:55:61:b7:18:de: 5d:aa:8a:94:e8:12:75:2f:f1:7e:fe:fe:ac:91:6e:07:88:59: d2:d0:1f:5a:0b:92:3b:8e:a0:48:0c:e4:77:a2:d4:56:2c:91: 1d:2d:b3:73:e6:7c:cf:06:29:c9:18:9d:f3:64:05:0a:4b:6c: 85:ec:8f:90:c0:d5:48:69:07:c0:67:2d:b2:99:43:9d:e1:8f: 3c:c9:80:62:e7:39:e8:61:99:93:ff:cb:69:20:d9:9a:68:6f: b8:60:70:a0:de:55:c6:66:c7:b1:ec:8c:f4:d0:2c:51:73:48: f4:ce:45:0c:c3:06:04:10:66:7d:e1:56:0c:0a:59:c7:92:d0: 8b:89:ab:21:ac:90:18:9a:1c:7b:e1:5a:e5:49:cb:80:c2:a5: a4:8e:b1:55:e3:85:1e:87:aa:88:5b:83:05:03:68:d8:e3:0c: 4e:d0:51:9a:ba:25:3e:34:d7:c8:c0:b7:9c:2d:a2:3e:57:f5: d9:95:5e:f6:c6:54:8b:59:b5:7e:db:60:88:ba:26:15:79:cb: 4d:0c:27:7a:dd:ac:50:34:d4:2a:09:41:01:59:b6:b1:62:46: 83:4a:9d:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI5QTExMTAvBgNVBAUTKENFNUYyQjQzOUJBRDVCRUJFMjcyQTcyMUVBQUNDMzhG QUFERDQ5QjQwHhcNMjUwODEwMTQzOTIwWhcNMjUwODE3MTQzOTIwWjAYMRYwFAYD VQQDEw02ODk4YWYxOC1kNmJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8f3M/xpipHP7bL9+ulyuUsLIVz6d6pCTbqggIq6z0Bv8qEZHB+20kdEc2dkQ WFyiz4KCY4L+cuCVoWUIy8S95U5wnwWc9jmDPRFfWJT6jSfQjMPIKzcuwXLYGcyX gg6c8DVS7RX4PryV6zxcD487nZh6b0S6/VlOJNYydvMA3Din/GXPULxZoM0UVpCi Eh4A4tpWu6SUPEJiuoI3XQv1bm3ChukPRfwMZ/QJsC7Wj8CHuDoO5/D8lZDL7HTK MuIoJAzdFcLrcpThnfq6R2AZT0Kdk62BVkOWGglFjH33foWZdwUYppHrUVIc9kVO xcek0ICOg6MFfTfixBwHJ/v0qQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLyNn3m1 rbcYr8yqS7h0tYSDjMdLMB8GA1UdIwQYMBaAFM5fK0ObrVvr4nKnIeqsw4+q3Um0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjlBMS81NzMzN0FDQThE NzkxMUVCOEQ4QkQ2MEJDNEY5QUUwMi96bDhyUTV1dFctdmljcWNoNnF6RGo2cmRT YlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3psOHJRNXV0Vy12aWNxY2g2cXpEajZyZFNiUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjlBMS81NzMzN0FDQThENzkxMUVCOEQ4QkQ2MEJDNEY5QUUwMi96bDhyUTV1dFct dmljcWNoNnF6RGo2cmRTYlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnc0D7Yf2OZU9wkcopMBIi2TJJYIbrdOEz7ovR7wOkVWG3GN5dqoqU 6BJ1L/F+/v6skW4HiFnS0B9aC5I7jqBIDOR3otRWLJEdLbNz5nzPBinJGJ3zZAUK S2yF7I+QwNVIaQfAZy2ymUOd4Y88yYBi5znoYZmT/8tpINmaaG+4YHCg3lXGZsex 7Iz00CxRc0j0zkUMwwYEEGZ94VYMClnHktCLiashrJAYmhx74VrlScuAwqWkjrFV 44Ueh6qIW4MFA2jY4wxO0FGauiU+NNfIwLecLaI+V/XZlV72xlSLWbV+22CIuiYV ectNDCd63axQNNQqCUEBWbaxYkaDSp1U -----END CERTIFICATE-----Generated at Mon Aug 11 07:28:46 2025 by rpki-client