$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft File: CZyBX8poKm4oYE_pYv0QcVgn6V0.mft (raw, json) Hash identifier: 7hSrU4ocjhEYY6pb7EnVvKUt12r97C51zBuUnk5cWq4= Subject key identifier: 5A:F3:35:22:E2:03:77:FB:3E:CA:6F:C6:32:A3:D8:68:8E:E7:C5:23 Authority key identifier: 09:9C:81:5F:CA:68:2A:6E:28:60:4F:E9:62:FD:10:71:58:27:E9:5D Certificate issuer: /CN=A91DEB2E/serialNumber=099C815FCA682A6E28604FE962FD10715827E95D Certificate serial: 01EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZyBX8poKm4oYE_pYv0QcVgn6V0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft Manifest number: 01E8 Signing time: Sat 09 Aug 2025 02:58:57 +0000 Manifest this update: Sat 09 Aug 2025 02:58:57 +0000 Manifest next update: Sat 16 Aug 2025 02:58:57 +0000 Files and hashes: 1: CZyBX8poKm4oYE_pYv0QcVgn6V0.crl (hash: 6VJ7pdViQi1oedN9eY8m1ZXlwcoR7dzouVLmg+hc6+o=) 2: 3CB103648C2511EDB64DB410C4F9AE02.roa (hash: MmbQus/ep65NlWLekYokD81GuyXquRa4J0H16aokObA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.crl rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZyBX8poKm4oYE_pYv0QcVgn6V0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 494 (0x1ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEB2E, serialNumber=099C815FCA682A6E28604FE962FD10715827E95D Validity Not Before: Aug 9 02:58:57 2025 GMT Not After : Aug 16 02:58:57 2025 GMT Subject: CN=6896b971-137a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:2d:be:22:57:f8:35:4f:87:01:89:1e:c3:ed: 28:9d:b5:6c:24:dd:f4:46:cc:a1:90:f7:30:21:ed: 43:01:66:fe:e9:c5:13:4c:c1:43:cd:57:25:27:3b: db:b8:1f:71:28:f1:47:b8:df:f3:4d:02:47:65:5d: 6f:c6:62:9f:38:8e:b5:2e:59:e0:6f:ca:93:17:52: dc:a3:a5:76:20:7c:93:ff:69:35:1c:b9:a6:e2:54: 21:63:22:83:36:4a:af:85:8c:ee:31:ed:03:ba:ff: e2:3d:9d:dd:79:d3:d5:be:d6:38:fc:db:51:30:5b: 72:90:56:64:83:60:89:89:df:6e:bf:b0:f0:da:0b: 2f:2a:31:bd:c1:3b:95:3c:87:fd:55:71:f2:b9:a4: 7d:d1:15:75:c7:7e:f5:e3:0f:8f:8f:7a:08:00:71: 2c:66:76:e0:1e:45:f7:5d:7c:63:b2:23:b3:87:02: 94:15:53:e2:ed:eb:53:48:b5:8d:37:5c:a0:a1:b3: 63:a1:9b:12:a2:c9:3c:0c:84:4e:70:c9:85:57:da: 4b:75:dc:04:f7:d9:8d:9c:77:af:0d:9c:db:80:35: 6b:a8:96:a1:fe:42:5e:9f:49:fc:de:b9:f6:9b:6e: e9:10:75:33:4c:b2:9c:85:70:cb:3a:30:a0:e4:de: 0a:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:F3:35:22:E2:03:77:FB:3E:CA:6F:C6:32:A3:D8:68:8E:E7:C5:23 X509v3 Authority Key Identifier: keyid:09:9C:81:5F:CA:68:2A:6E:28:60:4F:E9:62:FD:10:71:58:27:E9:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZyBX8poKm4oYE_pYv0QcVgn6V0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:13:e1:01:ec:f0:8f:e3:1e:ae:36:d2:f3:76:82:2b:8d:53: 4e:97:35:51:2e:a3:33:5b:d2:39:1e:f5:19:67:e7:59:e7:9c: bd:c1:94:1e:92:be:26:cd:15:a3:8a:a7:f5:29:80:98:6b:99: 27:f7:07:a7:ef:77:19:02:c1:fd:43:c3:a1:77:eb:5c:ef:73: ef:ff:6a:d5:0a:81:55:57:91:05:be:ee:c4:76:bb:0c:62:ad: c3:f2:56:58:d2:ee:f1:c2:0f:81:ce:26:42:6e:ea:df:47:ce: 45:bb:69:ce:70:ae:26:56:a2:72:aa:63:15:46:d1:eb:a1:96: 64:38:df:0c:6f:db:01:63:9b:71:9e:de:e8:39:6b:8e:09:bc: 99:d6:52:15:88:74:d0:b1:a5:de:56:46:12:44:67:71:0a:e1: 22:51:60:b9:98:53:f5:8b:6d:c4:9c:01:3d:d4:cc:87:1a:90: 5f:2f:8b:f6:f4:ec:b3:a8:32:de:90:f0:99:df:37:e2:f3:d3: 84:39:06:ff:14:21:1d:71:6f:e2:15:ce:8d:1f:52:76:1b:68: de:9a:5b:aa:79:13:d7:1c:27:c4:a7:22:31:37:57:e3:09:ea: d3:9d:04:cc:85:58:42:0d:d8:26:80:49:e8:93:80:91:83:ae: 82:b2:9b:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAe4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVCMkUxMTAvBgNVBAUTKDA5OUM4MTVGQ0E2ODJBNkUyODYwNEZFOTYyRkQxMDcx NTgyN0U5NUQwHhcNMjUwODA5MDI1ODU3WhcNMjUwODE2MDI1ODU3WjAYMRYwFAYD VQQDEw02ODk2Yjk3MS0xMzdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsy2+Ilf4NU+HAYkew+0onbVsJN30RsyhkPcwIe1DAWb+6cUTTMFDzVclJzvb uB9xKPFHuN/zTQJHZV1vxmKfOI61Llngb8qTF1Lco6V2IHyT/2k1HLmm4lQhYyKD NkqvhYzuMe0Duv/iPZ3dedPVvtY4/NtRMFtykFZkg2CJid9uv7Dw2gsvKjG9wTuV PIf9VXHyuaR90RV1x3714w+Pj3oIAHEsZnbgHkX3XXxjsiOzhwKUFVPi7etTSLWN N1ygobNjoZsSosk8DIROcMmFV9pLddwE99mNnHevDZzbgDVrqJah/kJen0n83rn2 m27pEHUzTLKchXDLOjCg5N4KQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFrzNSLi A3f7PspvxjKj2GiO58UjMB8GA1UdIwQYMBaAFAmcgV/KaCpuKGBP6WL9EHFYJ+ld MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUIyRS82RkM4QkZERThD MjExMUVEQjJCMkYzMEFDNEY5QUUwMi9DWnlCWDhwb0ttNG9ZRV9wWXYwUWNWZ242 VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaeUJYOHBvS200b1lFX3BZdjBRY1ZnbjZWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUIyRS82RkM4QkZERThDMjExMUVEQjJCMkYzMEFDNEY5QUUwMi9DWnlCWDhwb0tt NG9ZRV9wWXYwUWNWZ242VjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8E+EB7PCP4x6uNtLzdoIrjVNOlzVRLqMzW9I5HvUZZ+dZ55y9wZQe kr4mzRWjiqf1KYCYa5kn9wen73cZAsH9Q8Ohd+tc73Pv/2rVCoFVV5EFvu7EdrsM Yq3D8lZY0u7xwg+BziZCburfR85Fu2nOcK4mVqJyqmMVRtHroZZkON8Mb9sBY5tx nt7oOWuOCbyZ1lIViHTQsaXeVkYSRGdxCuEiUWC5mFP1i23EnAE91MyHGpBfL4v2 9OyzqDLekPCZ3zfi89OEOQb/FCEdcW/iFc6NH1J2G2jemluqeRPXHCfEpyIxN1fj CerTnQTMhVhCDdgmgEnok4CRg66Cspv2 -----END CERTIFICATE-----Generated at Sun Aug 10 05:38:53 2025 by rpki-client