$ rpki-client -vvf rpki.apnic.net/member_repository/A91EFC94/A8CD016494DA11EF89086D21C4F9AE02/ZTy4p1ENubbBon2HfSEh5t9CGYI.mft File: ZTy4p1ENubbBon2HfSEh5t9CGYI.mft (raw, json) Hash identifier: YtX/mF9GxlW63najJClQGHoxapgFo3eGVVOrEHZcQNo= Subject key identifier: 45:FA:24:90:31:B4:1F:55:74:85:6B:37:C7:3C:76:DB:63:EF:B0:FD Authority key identifier: 65:3C:B8:A7:51:0D:B9:B6:C1:A2:7D:87:7D:21:21:E6:DF:42:19:82 Certificate issuer: /CN=A91EFC94/serialNumber=653CB8A7510DB9B6C1A27D877D2121E6DF421982 Certificate serial: A8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZTy4p1ENubbBon2HfSEh5t9CGYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EFC94/A8CD016494DA11EF89086D21C4F9AE02/ZTy4p1ENubbBon2HfSEh5t9CGYI.mft Manifest number: 9F Signing time: Sat 09 Aug 2025 06:53:59 +0000 Manifest this update: Sat 09 Aug 2025 06:53:58 +0000 Manifest next update: Sat 16 Aug 2025 06:53:58 +0000 Files and hashes: 1: ZTy4p1ENubbBon2HfSEh5t9CGYI.crl (hash: Wyl87vkyP8T9psSVJ8LIkVCswSH2z4HP6Wcb+4VWTgE=) 2: 84F2A59273B811F086C1942BC4F9AE02.roa (hash: YXM5afMiG4J6HuZ5EBiO4moeg2w9TTuQgGg/gNdqvFI=) 3: 6B7CC19C73B811F08DDFF784C4F9AE02.roa (hash: YrfoAaRH0TwvCd3/fpeLdhWkCOhZ1iXJCt8nCYQZbVA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EFC94/A8CD016494DA11EF89086D21C4F9AE02/ZTy4p1ENubbBon2HfSEh5t9CGYI.crl rsync://rpki.apnic.net/member_repository/A91EFC94/A8CD016494DA11EF89086D21C4F9AE02/ZTy4p1ENubbBon2HfSEh5t9CGYI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZTy4p1ENubbBon2HfSEh5t9CGYI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 168 (0xa8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EFC94, serialNumber=653CB8A7510DB9B6C1A27D877D2121E6DF421982 Validity Not Before: Aug 9 06:53:58 2025 GMT Not After : Aug 16 06:53:58 2025 GMT Subject: CN=6896f087-e11a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:d4:f2:ac:b0:5a:3a:81:0a:d3:50:da:34:65: 2b:84:f2:de:02:50:4a:c1:f1:35:d5:68:29:39:d0: 1d:d0:51:a6:e1:71:80:c2:7a:90:53:08:89:d3:7a: 24:ed:ab:3c:40:e1:c9:87:ac:b8:50:d8:1b:18:84: d4:79:2f:9d:13:49:a2:50:f9:f0:75:ab:7a:9d:b9: 93:dd:05:fe:70:df:ea:4c:cb:8d:e6:61:7e:79:9a: a0:f1:a3:0a:0b:94:12:62:8f:4b:f6:92:ea:32:3f: 73:70:68:8a:d2:2f:22:ac:e8:4b:ba:52:22:08:e0: 08:9c:39:28:5c:d9:8d:99:1d:6b:35:91:f0:a3:c1: 8a:75:d4:24:45:ea:f1:61:0b:d5:f3:05:8d:c6:17: b0:28:72:bb:68:65:3e:39:e3:84:4a:ca:32:af:b0: 3a:97:05:3e:b2:3d:09:41:32:d3:f1:60:d8:13:93: 81:3b:b9:72:2d:14:d1:13:74:2f:66:23:f8:6d:cd: 71:75:3d:99:1b:64:a3:2d:41:0d:47:a2:cf:13:c3: 7b:61:42:75:36:c6:ae:9b:f6:74:c0:0e:db:bb:6f: 0d:b6:ce:18:d9:3e:b6:e2:2a:19:fc:d4:93:a6:6d: 2e:a5:c3:bb:51:55:cd:2d:ad:28:81:7c:6f:63:88: 12:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:FA:24:90:31:B4:1F:55:74:85:6B:37:C7:3C:76:DB:63:EF:B0:FD X509v3 Authority Key Identifier: keyid:65:3C:B8:A7:51:0D:B9:B6:C1:A2:7D:87:7D:21:21:E6:DF:42:19:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EFC94/A8CD016494DA11EF89086D21C4F9AE02/ZTy4p1ENubbBon2HfSEh5t9CGYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZTy4p1ENubbBon2HfSEh5t9CGYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EFC94/A8CD016494DA11EF89086D21C4F9AE02/ZTy4p1ENubbBon2HfSEh5t9CGYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:f9:95:5d:90:fa:6a:c5:02:00:02:0b:05:57:87:84:d8:ac: 8b:55:33:c7:ff:c1:5d:12:bc:4d:c3:39:35:0d:69:d8:39:07: 4c:47:7d:5c:13:c6:64:23:31:ec:df:af:77:8b:72:04:08:48: 48:72:32:02:0d:dd:7d:ff:86:e0:07:47:be:6f:03:15:89:bc: c6:05:93:02:1c:13:1f:ad:86:bb:09:ce:bb:eb:e2:f7:fb:5d: b3:2d:13:40:2d:17:d8:d4:02:af:7f:bb:37:3f:52:d6:0f:d4: fe:aa:9f:32:03:74:68:38:11:1f:bd:8f:c9:ac:be:56:5d:c8: 17:44:6d:0b:48:7d:18:e3:0d:01:82:1d:a3:e6:33:37:11:f5: 6e:eb:02:83:43:54:c5:9e:0b:72:a7:97:d8:a8:ca:38:f6:eb: f0:8e:56:09:02:31:61:43:f2:61:f2:04:ee:3c:11:bb:05:10: 41:3f:a2:40:6d:1a:c7:1b:78:e6:18:00:38:27:b1:64:64:2f: 95:dd:f2:a5:2a:85:5e:49:a0:ae:1c:2e:7b:34:03:4c:92:10: 39:84:13:1c:1e:be:a9:a3:fa:c6:99:4f:e5:90:62:f6:a3:fc: 63:a4:72:84:2a:43:70:2d:c5:d1:cf:dd:c4:1c:66:4f:ae:48: 54:90:64:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUZDOTQxMTAvBgNVBAUTKDY1M0NCOEE3NTEwREI5QjZDMUEyN0Q4NzdEMjEyMUU2 REY0MjE5ODIwHhcNMjUwODA5MDY1MzU4WhcNMjUwODE2MDY1MzU4WjAYMRYwFAYD VQQDEw02ODk2ZjA4Ny1lMTFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxNTyrLBaOoEK01DaNGUrhPLeAlBKwfE11WgpOdAd0FGm4XGAwnqQUwiJ03ok 7as8QOHJh6y4UNgbGITUeS+dE0miUPnwdat6nbmT3QX+cN/qTMuN5mF+eZqg8aMK C5QSYo9L9pLqMj9zcGiK0i8irOhLulIiCOAInDkoXNmNmR1rNZHwo8GKddQkRerx YQvV8wWNxhewKHK7aGU+OeOESsoyr7A6lwU+sj0JQTLT8WDYE5OBO7lyLRTRE3Qv ZiP4bc1xdT2ZG2SjLUENR6LPE8N7YUJ1Nsaum/Z0wA7bu28Nts4Y2T624ioZ/NST pm0upcO7UVXNLa0ogXxvY4gSDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEX6JJAx tB9VdIVrN8c8dttj77D9MB8GA1UdIwQYMBaAFGU8uKdRDbm2waJ9h30hIebfQhmC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRkM5NC9BOENEMDE2NDk0 REExMUVGODkwODZEMjFDNEY5QUUwMi9aVHk0cDFFTnViYkJvbjJIZlNFaDV0OUNH WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1pUeTRwMUVOdWJiQm9uMkhmU0VoNXQ5Q0dZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RkM5NC9BOENEMDE2NDk0REExMUVGODkwODZEMjFDNEY5QUUwMi9aVHk0cDFFTnVi YkJvbjJIZlNFaDV0OUNHWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBH+ZVdkPpqxQIAAgsFV4eE2KyLVTPH/8FdErxNwzk1DWnYOQdMR31c E8ZkIzHs3693i3IECEhIcjICDd19/4bgB0e+bwMVibzGBZMCHBMfrYa7Cc676+L3 +12zLRNALRfY1AKvf7s3P1LWD9T+qp8yA3RoOBEfvY/JrL5WXcgXRG0LSH0Y4w0B gh2j5jM3EfVu6wKDQ1TFngtyp5fYqMo49uvwjlYJAjFhQ/Jh8gTuPBG7BRBBP6JA bRrHG3jmGAA4J7FkZC+V3fKlKoVeSaCuHC57NANMkhA5hBMcHr6po/rGmU/lkGL2 o/xjpHKEKkNwLcXRz93EHGZPrkhUkGQe -----END CERTIFICATE-----Generated at Sat Aug 9 10:45:45 2025 by rpki-client