$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.mft File: z4nWqxHn1Hqhe0MJxypytxy6R64.mft (raw, json) Hash identifier: 3EKOXn7GEbAdfY42nD85A3MDcWpbhUUFMeQO4aiVU9s= Subject key identifier: 8A:8A:F0:91:86:A7:C3:45:82:64:CE:DF:4E:B4:F5:BF:7D:D4:F8:2A Authority key identifier: CF:89:D6:AB:11:E7:D4:7A:A1:7B:43:09:C7:2A:72:B7:1C:BA:47:AE Certificate issuer: /CN=A91E4D9B/serialNumber=CF89D6AB11E7D47AA17B4309C72A72B71CBA47AE Certificate serial: 0890 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4nWqxHn1Hqhe0MJxypytxy6R64.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.mft Manifest number: 0886 Signing time: Tue 12 Aug 2025 20:54:55 +0000 Manifest this update: Tue 12 Aug 2025 20:54:55 +0000 Manifest next update: Tue 19 Aug 2025 20:54:55 +0000 Files and hashes: 1: z4nWqxHn1Hqhe0MJxypytxy6R64.crl (hash: mxXbETvikYzHebt1mUpQ8z1GFKLfJLoV73EHEOgEskA=) 2: CCF7B8AA22B811ECAD21FB20C4F9AE02.roa (hash: jP9WQeUuHByQOgvhcc4yViwwc1IsiLi4j4kFeZuXSLA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.crl rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4nWqxHn1Hqhe0MJxypytxy6R64.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 20:54:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2192 (0x890) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4D9B, serialNumber=CF89D6AB11E7D47AA17B4309C72A72B71CBA47AE Validity Not Before: Aug 12 20:54:55 2025 GMT Not After : Aug 19 20:54:55 2025 GMT Subject: CN=689baa1f-a794 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:c3:74:06:77:00:5e:2b:c9:ac:4f:0b:f8:f6: 04:2a:42:14:d5:ee:b1:02:b6:3c:2f:22:48:38:09: 51:f9:3c:c8:eb:a8:bc:b4:6d:1c:eb:33:bd:c2:55: e6:15:6d:01:f7:b9:53:7c:8e:14:c6:a1:0e:54:12: 11:b4:fc:a1:7a:af:36:86:81:4c:59:51:28:8f:e4: 74:ba:60:6c:c3:02:48:a6:f2:bf:96:d9:09:44:34: b3:bc:84:7d:e7:db:cc:b6:9b:3a:82:04:1d:f4:2f: 26:12:8b:99:a0:8f:22:42:cd:e6:78:c8:10:f1:cb: 3e:e2:1d:6e:70:0c:83:61:f5:ec:fe:c2:e1:a7:67: 02:5b:ff:9b:70:a5:2e:0b:e3:b3:eb:bc:1b:2c:a6: f5:1f:80:0a:82:34:90:fe:e5:d6:32:b6:9a:e6:e9: ae:8e:29:48:40:12:f0:b6:f4:55:55:d1:67:de:9f: b6:be:77:a0:94:27:7c:6f:2f:e4:84:ef:31:7a:17: 9c:f0:17:c3:76:e9:93:f6:ad:58:6e:21:e0:a9:5d: b3:10:35:a2:4e:f3:5e:1e:13:fe:57:d6:11:b9:91: 1b:8c:f8:a2:38:64:e4:83:f8:d8:6c:ae:da:42:f5: 90:05:1e:60:39:2f:f3:d4:5f:04:b5:96:a7:65:79: e7:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:8A:F0:91:86:A7:C3:45:82:64:CE:DF:4E:B4:F5:BF:7D:D4:F8:2A X509v3 Authority Key Identifier: keyid:CF:89:D6:AB:11:E7:D4:7A:A1:7B:43:09:C7:2A:72:B7:1C:BA:47:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4nWqxHn1Hqhe0MJxypytxy6R64.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:67:4c:7f:6b:c0:78:69:6b:9d:00:4f:03:af:e4:6c:2e:b5: 31:36:d5:5c:cb:d7:e5:be:09:2e:74:5a:99:35:c8:bf:6e:03: a0:f5:ff:17:cc:de:7e:2b:08:5c:02:f3:58:d2:e0:2c:e1:42: 1f:8f:ad:37:26:ca:1c:b9:66:e8:6c:0b:da:07:b1:a4:26:98: 39:3e:0b:6e:be:e2:76:3a:e8:21:9b:55:76:74:8e:6d:76:b6: 38:b0:42:78:8e:83:0e:a4:d2:70:81:2d:45:27:17:05:c0:b3: 84:83:ca:a2:5e:d9:1d:af:1f:5b:00:ef:cc:e6:a5:2f:a2:50: d3:ee:ec:8b:3f:f2:20:c1:c9:ab:cc:51:c4:55:d1:c6:8f:08: c2:5e:af:70:d2:69:a5:df:93:4e:44:04:0c:76:fb:31:d6:ec: 4c:3e:ef:67:42:e2:fe:1e:5c:f0:3f:f9:ce:96:f7:28:76:81: c9:05:aa:bc:26:f4:36:4c:40:f2:ed:da:61:f0:41:a1:57:5f: be:eb:0c:5a:6a:35:cd:c5:5c:84:d1:bc:ca:fe:dc:e4:b0:cd: 2a:cf:ee:99:7d:54:ce:1a:05:0f:ef:5a:69:1e:85:68:c1:ac: c9:09:dc:88:0e:bd:a2:06:b4:18:57:e7:a6:5a:3f:62:6a:5d: 85:2b:81:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTREOUIxMTAvBgNVBAUTKENGODlENkFCMTFFN0Q0N0FBMTdCNDMwOUM3MkE3MkI3 MUNCQTQ3QUUwHhcNMjUwODEyMjA1NDU1WhcNMjUwODE5MjA1NDU1WjAYMRYwFAYD VQQDEw02ODliYWExZi1hNzk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlcN0BncAXivJrE8L+PYEKkIU1e6xArY8LyJIOAlR+TzI66i8tG0c6zO9wlXm FW0B97lTfI4UxqEOVBIRtPyheq82hoFMWVEoj+R0umBswwJIpvK/ltkJRDSzvIR9 59vMtps6ggQd9C8mEouZoI8iQs3meMgQ8cs+4h1ucAyDYfXs/sLhp2cCW/+bcKUu C+Oz67wbLKb1H4AKgjSQ/uXWMraa5umujilIQBLwtvRVVdFn3p+2vneglCd8by/k hO8xehec8BfDdumT9q1YbiHgqV2zEDWiTvNeHhP+V9YRuZEbjPiiOGTkg/jYbK7a QvWQBR5gOS/z1F8EtZanZXnnEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIqK8JGG p8NFgmTO30609b991PgqMB8GA1UdIwQYMBaAFM+J1qsR59R6oXtDCccqcrccukeu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEQ5Qi9GNUJBQTNEOEM4 MDAxMUVBODdENDRBNzhDNEY5QUUwMi96NG5XcXhIbjFIcWhlME1KeHlweXR4eTZS NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3o0bldxeEhuMUhxaGUwTUp4eXB5dHh5NlI2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEQ5Qi9GNUJBQTNEOEM4MDAxMUVBODdENDRBNzhDNEY5QUUwMi96NG5XcXhIbjFI cWhlME1KeHlweXR4eTZSNjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoZ0x/a8B4aWudAE8Dr+RsLrUxNtVcy9flvgkudFqZNci/bgOg9f8X zN5+KwhcAvNY0uAs4UIfj603JsocuWbobAvaB7GkJpg5PgtuvuJ2Oughm1V2dI5t drY4sEJ4joMOpNJwgS1FJxcFwLOEg8qiXtkdrx9bAO/M5qUvolDT7uyLP/Igwcmr zFHEVdHGjwjCXq9w0mml35NORAQMdvsx1uxMPu9nQuL+HlzwP/nOlvcodoHJBaq8 JvQ2TEDy7dph8EGhV1++6wxaajXNxVyE0bzK/tzksM0qz+6ZfVTOGgUP71ppHoVo wazJCdyIDr2iBrQYV+emWj9ial2FK4Gu -----END CERTIFICATE-----Generated at Wed Aug 13 05:33:00 2025 by rpki-client