$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft File: z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft (raw, json) Hash identifier: DiWbgAxZCtKOOObEj9jM7HCH8MbTOPdCCaDVb9gjp1M= Subject key identifier: B9:96:95:6A:07:8C:73:C5:58:80:59:D6:04:9D:06:E7:74:5B:D5:1F Authority key identifier: CF:BB:03:8F:DB:83:86:54:20:49:62:98:0A:D2:21:C9:41:5D:5C:FF Certificate issuer: /CN=A91F8F9B/serialNumber=CFBB038FDB838654204962980AD221C9415D5CFF Certificate serial: B7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z7sDj9uDhlQgSWKYCtIhyUFdXP8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft Manifest number: B6 Signing time: Sat 09 Aug 2025 06:23:12 +0000 Manifest this update: Sat 09 Aug 2025 06:23:12 +0000 Manifest next update: Sat 16 Aug 2025 06:23:12 +0000 Files and hashes: 1: z7sDj9uDhlQgSWKYCtIhyUFdXP8.crl (hash: dVAcgZ5hujYy/9TgGDriFGJ+xV0o+Vys1BD0kbK8+s8=) 2: 7143C5B85DBF11EFB8714857C4F9AE02.roa (hash: ap2qykakUMtuugznllb9ElqWzxnqoH122Li4BLMbH9U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.crl rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z7sDj9uDhlQgSWKYCtIhyUFdXP8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 183 (0xb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8F9B, serialNumber=CFBB038FDB838654204962980AD221C9415D5CFF Validity Not Before: Aug 9 06:23:12 2025 GMT Not After : Aug 16 06:23:12 2025 GMT Subject: CN=6896e950-e971 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:0c:26:04:1e:1e:6e:d6:73:21:be:44:d4:d3: 52:99:0a:d3:bb:a3:23:e3:b0:0a:99:10:72:83:c1: c0:af:34:de:11:ab:5b:b6:5b:f3:7e:11:d0:61:4d: c9:d1:f2:98:a5:1c:ed:f5:9e:8e:51:bc:49:90:f7: 88:27:55:d3:65:57:4d:eb:19:97:7e:ee:1d:33:16: a9:85:0c:61:4b:3e:8f:00:87:4f:0d:ea:f7:05:57: d0:54:ff:39:dc:e5:f2:8c:e5:82:be:8c:6a:2e:6b: 50:50:e3:66:b3:a5:f3:40:70:a0:27:36:f0:f4:45: d1:9f:8f:62:8b:38:b2:72:f5:4c:5c:41:e9:07:11: 9a:1f:09:fd:36:76:4a:32:03:a2:36:f0:3b:75:06: a7:00:f5:9f:b2:08:46:c8:46:b8:60:f7:80:d3:22: df:ea:3f:69:c6:21:77:46:d2:b2:78:4e:bf:0d:0c: 84:15:8e:97:4e:af:46:1b:8c:8b:35:da:b5:50:a4: bb:2c:de:a6:e2:24:74:fb:d4:4a:0e:d7:c8:1f:c9: d7:a1:89:d4:fb:a6:1c:0f:6f:6f:7a:20:ad:70:f2: 99:f1:22:4a:f4:db:a6:55:6a:1d:73:61:07:76:1a: ca:d9:57:fd:42:2a:75:e6:7e:1c:d6:e4:08:94:7a: 7a:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:96:95:6A:07:8C:73:C5:58:80:59:D6:04:9D:06:E7:74:5B:D5:1F X509v3 Authority Key Identifier: keyid:CF:BB:03:8F:DB:83:86:54:20:49:62:98:0A:D2:21:C9:41:5D:5C:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z7sDj9uDhlQgSWKYCtIhyUFdXP8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:3f:5f:8d:27:71:b0:42:32:26:ea:60:4b:79:ae:ee:56:6b: b9:84:8a:6e:0f:6c:a3:35:ff:82:eb:30:3f:ff:66:b6:79:5b: 4f:61:f2:61:1d:04:ad:05:bb:96:24:ab:8a:ac:c7:e9:64:b0: 43:93:ee:3c:24:de:69:05:7a:5d:1b:96:60:e2:f9:1c:2c:d4: bc:b0:ee:f8:cb:48:35:b5:07:6f:6f:e9:af:6c:0b:0b:be:c5: 91:27:02:d0:b2:7e:7d:2a:fe:44:9c:50:5c:83:3e:39:1a:61: e0:76:99:00:e5:e7:86:24:d3:bf:7f:59:57:e5:bf:7d:84:1d: 91:b4:06:78:7e:81:18:91:30:b2:9d:0f:fa:21:10:6f:77:2c: 63:b5:24:5e:5f:a6:4f:d1:d3:4b:2f:07:0d:be:1d:91:3f:6b: 55:e4:e0:6f:98:f0:5b:80:1b:ee:9e:d2:50:1e:37:8b:b6:35: 59:19:b7:39:32:0e:f1:02:ba:d2:59:f8:a1:e1:d0:6a:97:a9: c6:a0:28:a0:e0:0e:f0:5d:f1:c6:66:94:ae:cd:e5:b8:a7:53: 5f:2b:a1:35:21:68:8a:c5:d7:1a:10:84:13:cc:03:56:30:ca: fd:66:f8:20:e9:cc:3a:c9:16:e4:14:13:3b:2b:e3:d6:26:26: 94:46:ff:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhGOUIxMTAvBgNVBAUTKENGQkIwMzhGREI4Mzg2NTQyMDQ5NjI5ODBBRDIyMUM5 NDE1RDVDRkYwHhcNMjUwODA5MDYyMzEyWhcNMjUwODE2MDYyMzEyWjAYMRYwFAYD VQQDEw02ODk2ZTk1MC1lOTcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAswwmBB4ebtZzIb5E1NNSmQrTu6Mj47AKmRByg8HArzTeEatbtlvzfhHQYU3J 0fKYpRzt9Z6OUbxJkPeIJ1XTZVdN6xmXfu4dMxaphQxhSz6PAIdPDer3BVfQVP85 3OXyjOWCvoxqLmtQUONms6XzQHCgJzbw9EXRn49iiziycvVMXEHpBxGaHwn9NnZK MgOiNvA7dQanAPWfsghGyEa4YPeA0yLf6j9pxiF3RtKyeE6/DQyEFY6XTq9GG4yL Ndq1UKS7LN6m4iR0+9RKDtfIH8nXoYnU+6YcD29veiCtcPKZ8SJK9NumVWodc2EH dhrK2Vf9Qip15n4c1uQIlHp6FQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLmWlWoH jHPFWIBZ1gSdBud0W9UfMB8GA1UdIwQYMBaAFM+7A4/bg4ZUIElimArSIclBXVz/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEY5Qi9GOTAyRTUzMDVE QkQxMUVGOEEwNkVENDBDNEY5QUUwMi96N3NEajl1RGhsUWdTV0tZQ3RJaHlVRmRY UDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3o3c0RqOXVEaGxRZ1NXS1lDdEloeVVGZFhQOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEY5Qi9GOTAyRTUzMDVEQkQxMUVGOEEwNkVENDBDNEY5QUUwMi96N3NEajl1RGhs UWdTV0tZQ3RJaHlVRmRYUDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEP1+NJ3GwQjIm6mBLea7uVmu5hIpuD2yjNf+C6zA//2a2eVtPYfJh HQStBbuWJKuKrMfpZLBDk+48JN5pBXpdG5Zg4vkcLNS8sO74y0g1tQdvb+mvbAsL vsWRJwLQsn59Kv5EnFBcgz45GmHgdpkA5eeGJNO/f1lX5b99hB2RtAZ4foEYkTCy nQ/6IRBvdyxjtSReX6ZP0dNLLwcNvh2RP2tV5OBvmPBbgBvuntJQHjeLtjVZGbc5 Mg7xArrSWfih4dBql6nGoCig4A7wXfHGZpSuzeW4p1NfK6E1IWiKxdcaEIQTzANW MMr9Zvgg6cw6yRbkFBM7K+PWJiaURv96 -----END CERTIFICATE-----Generated at Sun Aug 10 14:00:33 2025 by rpki-client