$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8C12/3ED0852691A611EDB72C5956C4F9AE02/zI7F8Y4keEmlxwbphTthhkju8qY.mft File: zI7F8Y4keEmlxwbphTthhkju8qY.mft (raw, json) Hash identifier: lWciRHwZACsPxMGWlY5hZWhNbO4Q4Y3Adl7crSzxsmg= Subject key identifier: 05:85:B8:5B:0D:E1:B9:5C:C5:86:37:65:F1:AF:6C:27:B9:B6:EB:4E Authority key identifier: CC:8E:C5:F1:8E:24:78:49:A5:C7:06:E9:85:3B:61:86:48:EE:F2:A6 Certificate issuer: /CN=A91B8C12/serialNumber=CC8EC5F18E247849A5C706E9853B618648EEF2A6 Certificate serial: 01E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zI7F8Y4keEmlxwbphTthhkju8qY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8C12/3ED0852691A611EDB72C5956C4F9AE02/zI7F8Y4keEmlxwbphTthhkju8qY.mft Manifest number: 01E1 Signing time: Sat 09 Aug 2025 03:02:29 +0000 Manifest this update: Sat 09 Aug 2025 03:02:28 +0000 Manifest next update: Sat 16 Aug 2025 03:02:28 +0000 Files and hashes: 1: zI7F8Y4keEmlxwbphTthhkju8qY.crl (hash: QTfoXiGWlJx7KpY7JL3Ww9usiVe88wRRMraNYZ6eh8Y=) 2: F9141F4891AA11EDBEE1242EC4F9AE02.roa (hash: wW1wDfapN4aqyKsyA7zutue+89v5koktR+64VobzRks=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8C12/3ED0852691A611EDB72C5956C4F9AE02/zI7F8Y4keEmlxwbphTthhkju8qY.crl rsync://rpki.apnic.net/member_repository/A91B8C12/3ED0852691A611EDB72C5956C4F9AE02/zI7F8Y4keEmlxwbphTthhkju8qY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zI7F8Y4keEmlxwbphTthhkju8qY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 484 (0x1e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8C12, serialNumber=CC8EC5F18E247849A5C706E9853B618648EEF2A6 Validity Not Before: Aug 9 03:02:28 2025 GMT Not After : Aug 16 03:02:28 2025 GMT Subject: CN=6896ba44-e5f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:5e:a4:fc:f4:c3:38:75:25:f1:44:cc:46:a8: e4:c1:88:6e:53:63:16:4d:09:cc:eb:a9:27:28:c8: 6e:7d:06:89:b3:94:31:85:42:74:64:5c:f9:88:a8: db:fe:a3:47:84:e5:55:91:37:3c:50:bf:46:be:03: e8:b0:ed:15:f4:69:bd:bc:d4:3b:85:76:d9:4d:5d: 95:8d:cb:40:f8:f6:75:7f:92:95:8f:8e:4e:92:b0: a0:44:e3:20:b0:5c:a5:34:2b:8d:d1:4f:20:13:1c: 8c:7e:c4:13:81:18:22:8d:06:d9:9b:20:63:fa:26: 69:65:34:22:83:42:14:ab:f1:ca:c7:f6:04:fc:d1: d1:f1:01:8e:95:6a:c2:d3:51:89:12:7d:a6:9a:19: f6:4c:ae:bb:78:4b:63:b9:55:e6:cc:1d:35:1c:09: 9a:61:ed:38:25:ad:dd:d3:fc:87:de:7b:1e:c7:91: 3b:0e:cf:e3:57:03:be:e9:ed:e9:7b:98:ff:65:40: 34:f7:3d:99:b4:51:dd:08:af:d6:f3:9c:a7:46:c8: 62:59:81:ac:c2:d0:13:51:1c:e4:2c:00:19:6e:63: 0a:c0:13:e8:99:77:47:71:3e:37:4a:a2:1d:21:e6: 96:15:81:a0:58:7a:1c:0d:e4:04:d6:f2:1e:68:10: 03:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:85:B8:5B:0D:E1:B9:5C:C5:86:37:65:F1:AF:6C:27:B9:B6:EB:4E X509v3 Authority Key Identifier: keyid:CC:8E:C5:F1:8E:24:78:49:A5:C7:06:E9:85:3B:61:86:48:EE:F2:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8C12/3ED0852691A611EDB72C5956C4F9AE02/zI7F8Y4keEmlxwbphTthhkju8qY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zI7F8Y4keEmlxwbphTthhkju8qY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8C12/3ED0852691A611EDB72C5956C4F9AE02/zI7F8Y4keEmlxwbphTthhkju8qY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:5e:23:0f:ed:f3:99:96:fd:5c:42:4e:d3:51:22:de:4f:f3: 7b:28:57:24:db:af:b2:fd:61:ee:3a:1f:e7:79:de:3b:1e:fe: 28:3a:68:bc:c9:0c:d7:5c:03:1c:6e:4e:71:87:0b:9b:43:d8: 4a:9d:df:00:07:9c:6f:da:09:42:69:78:dd:6a:0e:28:b7:4b: 53:9a:23:13:b5:8e:40:22:b5:12:56:c5:b3:1a:23:b0:fb:67: 91:75:15:bf:22:1c:c2:4a:0c:d9:9e:38:d7:c4:82:65:dd:b2: 81:ec:37:84:ae:33:82:8f:89:f0:2f:6b:8d:9e:6f:a8:94:e1: ac:93:5f:05:c5:26:99:da:04:eb:e4:02:4b:bc:df:92:f1:c0: 20:d5:29:c2:70:eb:a2:02:64:12:4c:20:00:60:79:b0:bb:dd: a9:25:6c:2d:a5:95:76:19:81:38:9f:85:b9:e1:87:5b:43:85: b7:e8:af:00:4a:10:19:a6:d7:bb:1c:29:88:0b:04:22:ce:9d: 2f:1a:4e:42:54:7e:e5:ad:39:6e:29:33:f4:de:64:c6:0d:cd: 5c:53:4c:47:b1:6a:cb:b2:9c:e5:a6:da:19:87:24:a9:ee:ba: 0a:aa:9c:09:29:4f:cb:06:b4:07:bf:eb:a3:41:76:a6:71:2a: d4:6e:0c:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhDMTIxMTAvBgNVBAUTKENDOEVDNUYxOEUyNDc4NDlBNUM3MDZFOTg1M0I2MTg2 NDhFRUYyQTYwHhcNMjUwODA5MDMwMjI4WhcNMjUwODE2MDMwMjI4WjAYMRYwFAYD VQQDEw02ODk2YmE0NC1lNWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzF6k/PTDOHUl8UTMRqjkwYhuU2MWTQnM66knKMhufQaJs5QxhUJ0ZFz5iKjb /qNHhOVVkTc8UL9GvgPosO0V9Gm9vNQ7hXbZTV2VjctA+PZ1f5KVj45OkrCgROMg sFylNCuN0U8gExyMfsQTgRgijQbZmyBj+iZpZTQig0IUq/HKx/YE/NHR8QGOlWrC 01GJEn2mmhn2TK67eEtjuVXmzB01HAmaYe04Ja3d0/yH3nsex5E7Ds/jVwO+6e3p e5j/ZUA09z2ZtFHdCK/W85ynRshiWYGswtATURzkLAAZbmMKwBPomXdHcT43SqId IeaWFYGgWHocDeQE1vIeaBADAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAWFuFsN 4blcxYY3ZfGvbCe5tutOMB8GA1UdIwQYMBaAFMyOxfGOJHhJpccG6YU7YYZI7vKm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEMxMi8zRUQwODUyNjkx QTYxMUVEQjcyQzU5NTZDNEY5QUUwMi96STdGOFk0a2VFbWx4d2JwaFR0aGhranU4 cVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pJN0Y4WTRrZUVtbHh3YnBoVHRoaGtqdThxWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEMxMi8zRUQwODUyNjkxQTYxMUVEQjcyQzU5NTZDNEY5QUUwMi96STdGOFk0a2VF bWx4d2JwaFR0aGhranU4cVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTXiMP7fOZlv1cQk7TUSLeT/N7KFck26+y/WHuOh/ned47Hv4oOmi8 yQzXXAMcbk5xhwubQ9hKnd8AB5xv2glCaXjdag4ot0tTmiMTtY5AIrUSVsWzGiOw +2eRdRW/IhzCSgzZnjjXxIJl3bKB7DeErjOCj4nwL2uNnm+olOGsk18FxSaZ2gTr 5AJLvN+S8cAg1SnCcOuiAmQSTCAAYHmwu92pJWwtpZV2GYE4n4W54YdbQ4W36K8A ShAZpte7HCmICwQizp0vGk5CVH7lrTluKTP03mTGDc1cU0xHsWrLspzlptoZhySp 7roKqpwJKU/LBrQHv+ujQXamcSrUbgzR -----END CERTIFICATE-----Generated at Sun Aug 10 16:13:13 2025 by rpki-client