$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBA0C/41531B0CAECD11EE86F1B249C4F9AE02/zVzVkJE-T4mvPRym4p-rPAZ9IU4.mft File: zVzVkJE-T4mvPRym4p-rPAZ9IU4.mft (raw, json) Hash identifier: 2eOIdDBFw66bfs0MWvojJC7vG2UFSfIJRz34IsJz8Lw= Subject key identifier: 6D:F0:7E:60:AD:E5:0B:70:64:7B:5F:95:84:6E:64:EC:33:26:1E:D0 Authority key identifier: CD:5C:D5:90:91:3E:4F:89:AF:3D:1C:A6:E2:9F:AB:3C:06:7D:21:4E Certificate issuer: /CN=A91FBA0C/serialNumber=CD5CD590913E4F89AF3D1CA6E29FAB3C067D214E Certificate serial: 012D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zVzVkJE-T4mvPRym4p-rPAZ9IU4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBA0C/41531B0CAECD11EE86F1B249C4F9AE02/zVzVkJE-T4mvPRym4p-rPAZ9IU4.mft Manifest number: 012A Signing time: Sat 09 Aug 2025 05:00:40 +0000 Manifest this update: Sat 09 Aug 2025 05:00:40 +0000 Manifest next update: Sat 16 Aug 2025 05:00:40 +0000 Files and hashes: 1: zVzVkJE-T4mvPRym4p-rPAZ9IU4.crl (hash: LoTelpziOKE08sRJrQ/eFr9UMHVu6/FP/hCD855owXg=) 2: 91056478AF6A11EE93DDE73AC4F9AE02.roa (hash: ewevHTVGmqHpvpOV2d+aqrkd9ftzXTkReJQtB5PG940=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBA0C/41531B0CAECD11EE86F1B249C4F9AE02/zVzVkJE-T4mvPRym4p-rPAZ9IU4.crl rsync://rpki.apnic.net/member_repository/A91FBA0C/41531B0CAECD11EE86F1B249C4F9AE02/zVzVkJE-T4mvPRym4p-rPAZ9IU4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zVzVkJE-T4mvPRym4p-rPAZ9IU4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 301 (0x12d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBA0C, serialNumber=CD5CD590913E4F89AF3D1CA6E29FAB3C067D214E Validity Not Before: Aug 9 05:00:40 2025 GMT Not After : Aug 16 05:00:40 2025 GMT Subject: CN=6896d5f8-d109 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c7:72:1f:cb:ef:c3:f3:af:77:27:a9:ae:b7: 93:5c:ae:1c:76:50:6a:9c:b5:a8:29:6d:25:66:d0: ad:3d:7e:f5:8f:ca:09:73:cd:af:be:88:da:57:18: 7e:2a:cb:02:57:26:7b:8d:a6:0b:50:aa:1e:c8:e2: b6:60:05:92:07:b6:a5:54:34:86:c3:23:53:64:91: 8b:c6:df:fc:b6:11:16:b9:bd:d0:76:ed:a7:fb:86: 10:06:f5:2c:f4:ff:b4:cf:8e:6b:6d:77:96:f2:4e: 33:01:a8:47:a5:6d:36:4b:ba:69:f1:52:ed:0c:53: 15:91:37:bf:35:66:c7:cc:67:bd:40:41:a6:44:65: 74:42:e3:05:8c:3f:4c:b9:e0:c0:96:99:56:5a:14: 21:fe:f6:60:a6:76:0e:01:c1:ca:12:6b:1e:5c:79: 79:f2:34:ca:73:1e:b3:fa:4b:57:29:48:f6:3e:30: 4d:a1:9e:a7:a8:82:34:0a:01:3c:0c:36:a7:64:60: 75:31:3a:91:3d:4c:64:d1:24:8f:60:b9:93:fc:bc: 52:74:5b:4e:58:26:93:b1:31:b4:15:48:64:63:bb: 28:26:5c:0b:cc:8b:02:b8:c0:39:b2:6d:06:23:bf: aa:33:57:5d:d4:f5:0e:e4:0f:69:39:51:a5:7f:1f: 58:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:F0:7E:60:AD:E5:0B:70:64:7B:5F:95:84:6E:64:EC:33:26:1E:D0 X509v3 Authority Key Identifier: keyid:CD:5C:D5:90:91:3E:4F:89:AF:3D:1C:A6:E2:9F:AB:3C:06:7D:21:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBA0C/41531B0CAECD11EE86F1B249C4F9AE02/zVzVkJE-T4mvPRym4p-rPAZ9IU4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zVzVkJE-T4mvPRym4p-rPAZ9IU4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBA0C/41531B0CAECD11EE86F1B249C4F9AE02/zVzVkJE-T4mvPRym4p-rPAZ9IU4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:58:12:e6:f5:b0:91:da:53:f3:82:0b:d0:25:f9:f3:cd:aa: 56:9a:4f:61:2c:d3:4d:95:6e:15:4f:c6:04:42:dc:8b:84:9c: a2:54:66:e8:c4:4c:f7:26:13:8c:61:f9:d6:99:f4:f3:80:d7: 7e:cf:02:2e:b0:9c:ed:28:b3:b9:df:80:9e:a7:34:a6:52:dc: fb:85:55:af:20:ae:e3:56:1f:bd:e2:99:cc:0f:cf:1d:b5:87: 08:9c:c8:72:20:e6:7c:03:37:18:39:4d:46:94:f1:97:56:4d: 2a:78:08:9d:82:7a:28:6f:e3:92:09:11:64:fc:9f:e7:74:81: 05:d2:b9:81:a3:56:6e:59:84:76:4d:74:11:72:cf:e2:4b:04: 9d:16:8f:4e:3a:03:7c:9c:95:2b:b1:7d:e6:c8:58:62:71:e1: c7:15:c8:96:85:57:4f:1e:15:69:6a:a2:7b:07:5f:f8:84:ae: 8a:da:a2:fd:33:20:25:d4:51:16:bd:1c:3e:cc:d6:81:6c:58: 77:c2:55:43:23:6b:17:3c:32:63:75:13:21:32:b6:ce:d3:a7: f9:7f:cf:a2:4c:d0:71:d5:63:39:44:58:fc:71:21:45:60:50: a9:44:7c:45:48:a6:24:43:d8:64:ad:5a:2f:62:9a:f8:75:a3: fc:f1:21:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkJBMEMxMTAvBgNVBAUTKENENUNENTkwOTEzRTRGODlBRjNEMUNBNkUyOUZBQjND MDY3RDIxNEUwHhcNMjUwODA5MDUwMDQwWhcNMjUwODE2MDUwMDQwWjAYMRYwFAYD VQQDEw02ODk2ZDVmOC1kMTA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyMdyH8vvw/OvdyeprreTXK4cdlBqnLWoKW0lZtCtPX71j8oJc82vvojaVxh+ KssCVyZ7jaYLUKoeyOK2YAWSB7alVDSGwyNTZJGLxt/8thEWub3Qdu2n+4YQBvUs 9P+0z45rbXeW8k4zAahHpW02S7pp8VLtDFMVkTe/NWbHzGe9QEGmRGV0QuMFjD9M ueDAlplWWhQh/vZgpnYOAcHKEmseXHl58jTKcx6z+ktXKUj2PjBNoZ6nqII0CgE8 DDanZGB1MTqRPUxk0SSPYLmT/LxSdFtOWCaTsTG0FUhkY7soJlwLzIsCuMA5sm0G I7+qM1dd1PUO5A9pOVGlfx9YxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG3wfmCt 5QtwZHtflYRuZOwzJh7QMB8GA1UdIwQYMBaAFM1c1ZCRPk+Jrz0cpuKfqzwGfSFO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQkEwQy80MTUzMUIwQ0FF Q0QxMUVFODZGMUIyNDlDNEY5QUUwMi96VnpWa0pFLVQ0bXZQUnltNHAtclBBWjlJ VTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pWelZrSkUtVDRtdlBSeW00cC1yUEFaOUlVNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QkEwQy80MTUzMUIwQ0FFQ0QxMUVFODZGMUIyNDlDNEY5QUUwMi96VnpWa0pFLVQ0 bXZQUnltNHAtclBBWjlJVTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3WBLm9bCR2lPzggvQJfnzzapWmk9hLNNNlW4VT8YEQtyLhJyiVGbo xEz3JhOMYfnWmfTzgNd+zwIusJztKLO534CepzSmUtz7hVWvIK7jVh+94pnMD88d tYcInMhyIOZ8AzcYOU1GlPGXVk0qeAidgnoob+OSCRFk/J/ndIEF0rmBo1ZuWYR2 TXQRcs/iSwSdFo9OOgN8nJUrsX3myFhiceHHFciWhVdPHhVpaqJ7B1/4hK6K2qL9 MyAl1FEWvRw+zNaBbFh3wlVDI2sXPDJjdRMhMrbO06f5f8+iTNBx1WM5RFj8cSFF YFCpRHxFSKYkQ9hkrVovYpr4daP88SFL -----END CERTIFICATE-----Generated at Sat Aug 9 15:09:24 2025 by rpki-client