$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.mft File: d5zZIVaek_nSaxOlqn43bPtfBpA.mft (raw, json) Hash identifier: ljUulHiHiVsf5E5CyUjBwK0YEcWDvKAc0wjxTqade6I= Subject key identifier: AB:AC:80:3B:3A:9F:77:14:76:F8:DB:0A:7C:E2:5A:FB:DB:8D:AE:60 Authority key identifier: 77:9C:D9:21:56:9E:93:F9:D2:6B:13:A5:AA:7E:37:6C:FB:5F:06:90 Certificate issuer: /CN=A91AF317/serialNumber=779CD921569E93F9D26B13A5AA7E376CFB5F0690 Certificate serial: 0675 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d5zZIVaek_nSaxOlqn43bPtfBpA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.mft Manifest number: 066F Signing time: Fri 08 Aug 2025 22:52:35 +0000 Manifest this update: Fri 08 Aug 2025 22:52:34 +0000 Manifest next update: Fri 15 Aug 2025 22:52:34 +0000 Files and hashes: 1: d5zZIVaek_nSaxOlqn43bPtfBpA.crl (hash: MJfDDx8wZtKkO3WqZZLsc6IfXuGzCHaoBIMJYSFKcEM=) 2: 291E55288C7111EBA752313FC4F9AE02.roa (hash: A4h072jPvWuDDgO/u+pRW1SBWKkT2qV8RaMiezxbECY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.crl rsync://rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d5zZIVaek_nSaxOlqn43bPtfBpA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1653 (0x675) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF317, serialNumber=779CD921569E93F9D26B13A5AA7E376CFB5F0690 Validity Not Before: Aug 8 22:52:34 2025 GMT Not After : Aug 15 22:52:34 2025 GMT Subject: CN=68967fb2-d72e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:7d:44:99:b0:9e:68:cd:08:80:e8:ca:22:6f: 2a:d4:77:33:ce:16:43:ca:8d:82:1d:d4:db:da:76: a9:eb:e3:d4:fc:ed:0c:1f:38:63:a0:51:3a:48:ec: ea:21:05:9e:12:29:0d:9f:77:99:9b:3e:fe:0c:69: 6d:be:a2:d8:f5:26:6f:4a:91:ae:b7:1a:e6:1e:8f: 90:33:4e:71:5e:de:af:46:a2:36:19:bd:24:05:64: 5c:a7:35:74:f2:71:41:cc:c3:7e:8d:ac:2c:b2:88: 01:34:69:54:bd:6a:07:8d:61:62:d6:b9:06:6e:73: cf:f4:6a:54:ea:60:cd:5a:02:69:bb:c1:70:9e:6e: a9:f2:ad:5d:67:04:40:86:e6:ce:65:8b:ac:d3:88: 7f:29:bb:02:8b:97:e3:c2:af:29:9c:f7:73:90:30: 08:5d:73:73:18:50:ed:b8:47:37:e1:b4:d3:75:59: 82:c5:78:f1:1d:62:0b:09:69:69:99:b4:81:54:87: 55:8d:f2:a5:6a:19:7f:76:09:f6:1e:21:c9:c3:b0: ac:7e:9a:1c:41:35:3a:11:af:65:d2:ac:b6:fa:e1: a8:2a:2b:d9:ae:ec:4b:09:5d:5e:88:2a:6a:63:af: 93:00:a7:83:19:76:f3:80:b0:1f:69:74:f0:1f:ee: 19:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:AC:80:3B:3A:9F:77:14:76:F8:DB:0A:7C:E2:5A:FB:DB:8D:AE:60 X509v3 Authority Key Identifier: keyid:77:9C:D9:21:56:9E:93:F9:D2:6B:13:A5:AA:7E:37:6C:FB:5F:06:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d5zZIVaek_nSaxOlqn43bPtfBpA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:3d:ae:a3:51:44:08:69:ab:21:82:35:ba:49:85:88:66:c8: 2a:fd:d0:a1:69:63:ba:da:1e:16:ab:7b:68:f8:bb:fc:e4:13: 54:22:d4:7c:d4:5d:a9:b1:c9:21:2b:f1:ea:42:a3:ba:e2:16: b0:3b:1f:f5:96:de:59:df:7b:5e:fd:bd:2c:ca:b7:b5:1b:9d: 39:2f:ad:31:d0:50:ae:41:f2:7f:80:c1:b3:aa:f0:c5:8e:03: 81:2a:c5:24:d0:8e:ae:12:ba:8c:be:b2:10:38:7f:88:97:e7: 4e:74:f3:9e:9f:42:8f:4f:8c:84:1e:b3:1d:ff:40:81:99:51: 55:67:1f:96:ac:8c:b2:9c:8f:11:e0:23:56:21:ab:f6:38:ac: 6a:b0:ac:dd:eb:dd:2e:f9:dd:b4:6c:7d:91:44:d2:87:cd:98: fb:0f:f9:4e:12:77:8c:3b:21:54:a9:55:e7:4f:1e:af:ff:5e: f7:24:68:7f:25:58:65:24:df:2d:32:e9:5e:74:e6:9f:9c:38: f7:6b:87:80:15:a2:64:b5:71:fd:61:ac:85:48:d1:52:50:e3: 7d:4b:4d:a1:8c:ff:e9:92:b5:30:8e:5b:70:26:7f:33:0b:12: f9:1a:8b:70:da:57:b6:5a:08:ce:1b:9a:8e:ac:8c:98:9f:f4: 9e:5b:9f:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYzMTcxMTAvBgNVBAUTKDc3OUNEOTIxNTY5RTkzRjlEMjZCMTNBNUFBN0UzNzZD RkI1RjA2OTAwHhcNMjUwODA4MjI1MjM0WhcNMjUwODE1MjI1MjM0WjAYMRYwFAYD VQQDEw02ODk2N2ZiMi1kNzJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy31EmbCeaM0IgOjKIm8q1HczzhZDyo2CHdTb2nap6+PU/O0MHzhjoFE6SOzq IQWeEikNn3eZmz7+DGltvqLY9SZvSpGutxrmHo+QM05xXt6vRqI2Gb0kBWRcpzV0 8nFBzMN+jawssogBNGlUvWoHjWFi1rkGbnPP9GpU6mDNWgJpu8Fwnm6p8q1dZwRA hubOZYus04h/KbsCi5fjwq8pnPdzkDAIXXNzGFDtuEc34bTTdVmCxXjxHWILCWlp mbSBVIdVjfKlahl/dgn2HiHJw7CsfpocQTU6Ea9l0qy2+uGoKivZruxLCV1eiCpq Y6+TAKeDGXbzgLAfaXTwH+4Z5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKusgDs6 n3cUdvjbCnziWvvbja5gMB8GA1UdIwQYMBaAFHec2SFWnpP50msTpap+N2z7XwaQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjMxNy80RkQ1NzY4MDhD NkYxMUVCQkE4MTlGMzFDNEY5QUUwMi9kNXpaSVZhZWtfblNheE9scW40M2JQdGZC cEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q1elpJVmFla19uU2F4T2xxbjQzYlB0ZkJwQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjMxNy80RkQ1NzY4MDhDNkYxMUVCQkE4MTlGMzFDNEY5QUUwMi9kNXpaSVZhZWtf blNheE9scW40M2JQdGZCcEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTPa6jUUQIaashgjW6SYWIZsgq/dChaWO62h4Wq3to+Lv85BNUItR8 1F2psckhK/HqQqO64hawOx/1lt5Z33te/b0syre1G505L60x0FCuQfJ/gMGzqvDF jgOBKsUk0I6uErqMvrIQOH+Il+dOdPOen0KPT4yEHrMd/0CBmVFVZx+WrIyynI8R 4CNWIav2OKxqsKzd690u+d20bH2RRNKHzZj7D/lOEneMOyFUqVXnTx6v/173JGh/ JVhlJN8tMuledOafnDj3a4eAFaJktXH9YayFSNFSUON9S02hjP/pkrUwjltwJn8z CxL5Gotw2le2WgjOG5qOrIyYn/SeW5/i -----END CERTIFICATE-----Generated at Sun Aug 10 18:14:31 2025 by rpki-client