$ rpki-client -vvf rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.mft File: ZyEk9jPIkZyl12bYnpzP8LIfDI0.mft (raw, json) Hash identifier: Wvt2AcbJYSt2cjfdMoMGkU+xDsgACr8FSe65tmlaxG0= Subject key identifier: 24:A6:39:08:39:5A:FA:A2:F0:A6:E8:91:B8:DC:F9:89:55:C1:62:7E Authority key identifier: 67:21:24:F6:33:C8:91:9C:A5:D7:66:D8:9E:9C:CF:F0:B2:1F:0C:8D Certificate issuer: /CN=A91CAA4E/serialNumber=672124F633C8919CA5D766D89E9CCFF0B21F0C8D Certificate serial: 1356 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZyEk9jPIkZyl12bYnpzP8LIfDI0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.mft Manifest number: 1A8D Signing time: Fri 08 Aug 2025 17:10:49 +0000 Manifest this update: Fri 08 Aug 2025 17:10:49 +0000 Manifest next update: Fri 15 Aug 2025 17:10:49 +0000 Files and hashes: 1: ZyEk9jPIkZyl12bYnpzP8LIfDI0.crl (hash: GadOdgS0+PGXuAbK5vEa/MLZPxzIVa1Wc7pFwzXt+2A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.crl rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZyEk9jPIkZyl12bYnpzP8LIfDI0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4950 (0x1356) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CAA4E, serialNumber=672124F633C8919CA5D766D89E9CCFF0B21F0C8D Validity Not Before: Aug 8 17:10:49 2025 GMT Not After : Aug 15 17:10:49 2025 GMT Subject: CN=68962f99-5e8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:85:a2:e3:5a:96:76:32:90:5e:59:1a:2c:57: 39:69:69:eb:0b:ae:52:48:3a:3c:9e:79:4a:74:e7: 11:56:16:a3:68:ad:86:ea:b9:17:87:bd:69:88:86: a8:61:a6:ce:98:6c:cb:e1:d1:36:50:2f:41:02:d8: 6e:b9:33:bf:c1:39:a4:24:38:af:f0:ea:6c:1c:d7: 97:57:25:15:88:42:c6:ec:21:b9:1f:39:6b:c3:55: 2d:f8:7e:1e:72:a3:c5:39:ad:55:24:a1:40:57:4c: 8a:27:1b:e1:62:e1:ea:cb:0d:95:72:9c:bb:23:26: df:4e:38:25:96:59:27:5e:7a:28:54:ce:36:fd:8a: dd:41:9a:83:be:57:95:a9:a6:3e:cf:2e:73:e6:da: 18:17:3e:e9:ec:41:89:01:67:36:9f:21:06:29:40: 6e:7c:68:00:06:3c:b3:2d:bb:e2:1f:63:39:c1:fb: 37:f0:b1:e8:39:cd:ed:f6:2c:b6:1f:14:3e:a5:cb: b1:5b:92:25:2d:c5:c3:25:16:84:3a:7b:91:da:63: 20:a7:68:f5:0b:1b:5a:85:33:3a:06:e8:a5:75:57: b8:50:93:40:7c:b6:90:83:cd:a5:81:31:87:8e:21: c5:d2:e4:df:48:6d:5a:2f:9a:2a:57:94:ac:cd:d8: 92:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:A6:39:08:39:5A:FA:A2:F0:A6:E8:91:B8:DC:F9:89:55:C1:62:7E X509v3 Authority Key Identifier: keyid:67:21:24:F6:33:C8:91:9C:A5:D7:66:D8:9E:9C:CF:F0:B2:1F:0C:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZyEk9jPIkZyl12bYnpzP8LIfDI0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:cc:bb:ee:0d:55:46:4c:b3:d0:9b:21:69:8c:1c:31:97:cf: 33:6e:3a:b7:81:e6:2e:b9:e8:6c:39:04:0c:37:bb:93:2d:94: e1:86:d5:c1:bc:83:da:c0:5b:73:18:cb:fd:b0:e8:a8:a5:aa: 2e:1e:fa:0a:65:87:30:6c:34:fc:52:62:09:d3:96:57:57:62: 75:fa:c3:ec:b3:c9:53:8e:d0:f4:d6:dc:b7:ff:b3:1c:5d:4d: 8b:7b:ba:a8:8b:e8:cb:ea:6a:38:c3:89:95:69:15:80:22:ce: c2:98:6b:19:59:52:65:12:af:57:42:33:9b:d1:1d:92:f9:08: 48:9b:1c:fc:1a:99:4a:77:9c:c1:d3:30:fe:fd:8d:be:63:a9: b4:a3:12:ed:fc:f3:74:e8:a6:23:0b:0b:bb:a5:0b:c5:84:17: f1:75:69:f1:85:d0:cd:c1:3b:ae:e2:23:c4:db:85:43:8e:b7: d6:a6:ce:55:ce:86:99:92:a9:fd:fc:36:a9:df:1f:7a:5d:ce: cc:db:72:34:8b:aa:1c:3a:a4:3b:36:35:0e:36:56:1a:ef:11: a3:8c:c3:66:d5:67:1a:bd:1a:ea:b2:24:2f:c6:bc:05:79:73: d2:e3:b6:ef:0c:fa:a9:98:98:a1:88:2a:53:6b:92:87:f8:95: 71:c9:b8:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE1YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FBNEUxMTAvBgNVBAUTKDY3MjEyNEY2MzNDODkxOUNBNUQ3NjZEODlFOUNDRkYw QjIxRjBDOEQwHhcNMjUwODA4MTcxMDQ5WhcNMjUwODE1MTcxMDQ5WjAYMRYwFAYD VQQDEw02ODk2MmY5OS01ZThjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxoWi41qWdjKQXlkaLFc5aWnrC65SSDo8nnlKdOcRVhajaK2G6rkXh71piIao YabOmGzL4dE2UC9BAthuuTO/wTmkJDiv8OpsHNeXVyUViELG7CG5Hzlrw1Ut+H4e cqPFOa1VJKFAV0yKJxvhYuHqyw2Vcpy7IybfTjglllknXnooVM42/YrdQZqDvleV qaY+zy5z5toYFz7p7EGJAWc2nyEGKUBufGgABjyzLbviH2M5wfs38LHoOc3t9iy2 HxQ+pcuxW5IlLcXDJRaEOnuR2mMgp2j1CxtahTM6BuildVe4UJNAfLaQg82lgTGH jiHF0uTfSG1aL5oqV5SszdiSXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCSmOQg5 Wvqi8Kbokbjc+YlVwWJ+MB8GA1UdIwQYMBaAFGchJPYzyJGcpddm2J6cz/CyHwyN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUE0RS81NUU5Nzk1QUE5 NEYxMUU4QUEwQzkwMEVDNEY5QUUwMi9aeUVrOWpQSWtaeWwxMmJZbnB6UDhMSWZE STAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p5RWs5alBJa1p5bDEyYllucHpQOExJZkRJMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QUE0RS81NUU5Nzk1QUE5NEYxMUU4QUEwQzkwMEVDNEY5QUUwMi9aeUVrOWpQSWta eWwxMmJZbnB6UDhMSWZESTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmzLvuDVVGTLPQmyFpjBwxl88zbjq3geYuuehsOQQMN7uTLZThhtXB vIPawFtzGMv9sOiopaouHvoKZYcwbDT8UmIJ05ZXV2J1+sPss8lTjtD01ty3/7Mc XU2Le7qoi+jL6mo4w4mVaRWAIs7CmGsZWVJlEq9XQjOb0R2S+QhImxz8GplKd5zB 0zD+/Y2+Y6m0oxLt/PN06KYjCwu7pQvFhBfxdWnxhdDNwTuu4iPE24VDjrfWps5V zoaZkqn9/Dap3x96Xc7M23I0i6ocOqQ7NjUONlYa7xGjjMNm1WcavRrqsiQvxrwF eXPS47bvDPqpmJihiCpTa5KH+JVxybhv -----END CERTIFICATE-----Generated at Sat Aug 9 02:46:56 2025 by rpki-client