$ rpki-client -vvf rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.mft File: zIO7bQqhd53qFp7bpKQCKN4hvXs.mft (raw, json) Hash identifier: QBzwvVvg2T1SIbBpk5ihQ6oxBCR1Du1nvHEaD/WzEiY= Subject key identifier: 0C:F2:00:30:BA:BF:6A:5F:25:93:7C:13:89:0C:F9:E1:CF:88:0B:03 Authority key identifier: CC:83:BB:6D:0A:A1:77:9D:EA:16:9E:DB:A4:A4:02:28:DE:21:BD:7B Certificate issuer: /CN=A91D493B/serialNumber=CC83BB6D0AA1779DEA169EDBA4A40228DE21BD7B Certificate serial: 034F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIO7bQqhd53qFp7bpKQCKN4hvXs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.mft Manifest number: 034A Signing time: Wed 13 Aug 2025 01:34:45 +0000 Manifest this update: Wed 13 Aug 2025 01:34:45 +0000 Manifest next update: Wed 20 Aug 2025 01:34:45 +0000 Files and hashes: 1: zIO7bQqhd53qFp7bpKQCKN4hvXs.crl (hash: f/E47ppcwoHWq+u4v6Obk5EkuhNsJG5kJD+gfO7uT8A=) 2: 684DDD32CAB311ECBBCE9843C4F9AE02.roa (hash: qH/kmALWQxd9w+o7ml/PHWheO95UYxgo26aceJX0/p4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.crl rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIO7bQqhd53qFp7bpKQCKN4hvXs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 Aug 2025 01:34:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 847 (0x34f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D493B, serialNumber=CC83BB6D0AA1779DEA169EDBA4A40228DE21BD7B Validity Not Before: Aug 13 01:34:45 2025 GMT Not After : Aug 20 01:34:45 2025 GMT Subject: CN=689bebb5-84db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:b0:1a:04:97:1e:89:c2:36:5d:6b:e9:e3:c7: b6:51:fb:df:90:5a:5f:71:59:87:b9:2e:cb:b2:57: c6:49:43:3c:4d:7c:6a:8a:c9:41:a2:36:bd:f5:53: 30:35:ca:4e:19:8f:cc:1e:61:76:0f:4d:91:eb:2e: f3:69:e0:4a:4c:1c:c2:68:36:2b:86:9a:de:a5:51: 50:10:85:66:04:23:c2:4a:bb:55:4a:a8:31:90:32: 91:3d:87:aa:3d:0d:6f:47:11:05:ed:e7:0e:b4:16: a5:c5:50:2f:8f:3a:bd:a4:be:77:f0:3a:2b:ba:8e: fa:b3:5d:26:d4:cd:db:90:12:d9:93:05:10:51:0c: b6:c6:22:bb:59:2f:0d:f7:fe:3c:e9:38:83:8d:1b: 83:aa:c3:09:d1:8f:3d:b2:a5:01:a4:fe:8f:5d:ff: ee:54:0e:1b:8d:97:b4:57:a9:47:79:9d:ce:23:46: 0f:3a:e8:b0:3f:90:60:37:ad:32:1d:3a:04:18:f2: 2e:8a:fa:47:53:da:92:2e:db:cf:83:ff:b3:a6:95: 30:d0:62:1c:48:2d:f1:35:79:eb:b7:ea:e3:ff:ef: 77:cb:14:dd:8b:ff:91:76:a9:69:88:8a:81:b8:68: 10:9c:a2:36:18:0c:6d:24:ea:bd:d0:c2:5c:52:13: 9c:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:F2:00:30:BA:BF:6A:5F:25:93:7C:13:89:0C:F9:E1:CF:88:0B:03 X509v3 Authority Key Identifier: keyid:CC:83:BB:6D:0A:A1:77:9D:EA:16:9E:DB:A4:A4:02:28:DE:21:BD:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIO7bQqhd53qFp7bpKQCKN4hvXs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:ee:0e:86:e4:fb:3a:67:94:38:91:af:bd:d2:2b:05:92:ff: 76:52:5f:ca:37:3e:1f:a9:33:0c:53:df:3f:a1:60:b9:41:b2: 19:4a:c0:9f:ef:9a:22:7d:44:26:45:62:35:33:41:f8:4e:f7: 2e:4f:cd:fb:62:a4:6a:37:c6:9c:ba:83:90:f3:9a:18:4c:67: 48:68:20:64:e4:28:ca:bf:dc:64:d7:f2:45:ac:a9:ef:e0:b6: 27:34:27:ac:ad:1c:03:59:bf:1e:58:99:0e:4d:b8:3e:32:f8: dd:3f:d9:58:1a:2d:c9:cf:58:44:ed:f0:02:0a:f7:6a:c0:07: 4c:e5:31:f1:40:22:38:04:4e:16:72:dc:2c:af:99:3d:91:77: 3a:94:3f:51:d0:d2:04:d0:83:a3:14:61:ff:27:8a:02:a9:62: cb:43:ab:ea:b7:cd:ff:0e:21:75:fa:6a:cd:ce:e4:fc:0a:7b: 34:e2:65:2d:07:64:e4:16:87:a3:23:d4:77:a0:27:10:30:01: 3f:3b:f6:99:0b:14:86:7b:ab:38:92:86:1f:5a:ee:97:dd:19: 32:9b:0a:ab:fa:a3:7b:6a:23:a1:92:da:f0:61:52:c7:47:79: 43:b1:b8:81:00:78:c8:2c:5f:a5:45:29:e5:78:30:91:f1:04: e0:50:9a:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA08wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ5M0IxMTAvBgNVBAUTKENDODNCQjZEMEFBMTc3OURFQTE2OUVEQkE0QTQwMjI4 REUyMUJEN0IwHhcNMjUwODEzMDEzNDQ1WhcNMjUwODIwMDEzNDQ1WjAYMRYwFAYD VQQDEw02ODliZWJiNS04NGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA37AaBJceicI2XWvp48e2UfvfkFpfcVmHuS7LslfGSUM8TXxqislBoja99VMw NcpOGY/MHmF2D02R6y7zaeBKTBzCaDYrhprepVFQEIVmBCPCSrtVSqgxkDKRPYeq PQ1vRxEF7ecOtBalxVAvjzq9pL538Doruo76s10m1M3bkBLZkwUQUQy2xiK7WS8N 9/486TiDjRuDqsMJ0Y89sqUBpP6PXf/uVA4bjZe0V6lHeZ3OI0YPOuiwP5BgN60y HToEGPIuivpHU9qSLtvPg/+zppUw0GIcSC3xNXnrt+rj/+93yxTdi/+RdqlpiIqB uGgQnKI2GAxtJOq90MJcUhOchwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAzyADC6 v2pfJZN8E4kM+eHPiAsDMB8GA1UdIwQYMBaAFMyDu20KoXed6hae26SkAijeIb17 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDkzQi9EQkFEMzdBMENB QUUxMUVDODI0MTI4MERDNEY5QUUwMi96SU83YlFxaGQ1M3FGcDdicEtRQ0tONGh2 WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pJTzdiUXFoZDUzcUZwN2JwS1FDS040aHZYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDkzQi9EQkFEMzdBMENBQUUxMUVDODI0MTI4MERDNEY5QUUwMi96SU83YlFxaGQ1 M3FGcDdicEtRQ0tONGh2WHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAW7g6G5Ps6Z5Q4ka+90isFkv92Ul/KNz4fqTMMU98/oWC5QbIZSsCf 75oifUQmRWI1M0H4TvcuT837YqRqN8acuoOQ85oYTGdIaCBk5CjKv9xk1/JFrKnv 4LYnNCesrRwDWb8eWJkOTbg+MvjdP9lYGi3Jz1hE7fACCvdqwAdM5THxQCI4BE4W ctwsr5k9kXc6lD9R0NIE0IOjFGH/J4oCqWLLQ6vqt83/DiF1+mrNzuT8Cns04mUt B2TkFoejI9R3oCcQMAE/O/aZCxSGe6s4koYfWu6X3Rkymwqr+qN7aiOhktrwYVLH R3lDsbiBAHjILF+lRSnleDCR8QTgUJpS -----END CERTIFICATE-----Generated at Wed Aug 13 08:53:18 2025 by rpki-client