$ rpki-client -vvf rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.mft File: znA-TvnfLr44ZQpwSkoBnCpmQ1A.mft (raw, json) Hash identifier: Lro9uTxzvOCOR3ai5e/NNrw05TuZi4rrNykTzSHFtdw= Subject key identifier: 15:3A:7D:12:DC:CB:DB:F8:A5:66:0C:AF:B6:FF:D6:7D:48:E5:93:8A Authority key identifier: CE:70:3E:4E:F9:DF:2E:BE:38:65:0A:70:4A:4A:01:9C:2A:66:43:50 Certificate issuer: /CN=A9136C5E/serialNumber=CE703E4EF9DF2EBE38650A704A4A019C2A664350 Certificate serial: 01D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/znA-TvnfLr44ZQpwSkoBnCpmQ1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.mft Manifest number: 01D1 Signing time: Sat 23 Aug 2025 02:55:49 +0000 Manifest this update: Sat 23 Aug 2025 02:55:48 +0000 Manifest next update: Sat 30 Aug 2025 02:55:48 +0000 Files and hashes: 1: znA-TvnfLr44ZQpwSkoBnCpmQ1A.crl (hash: cBdfrkva95lP3cc60cLH8Wq6hXpoTt2V/kBhiFZ6yQ4=) 2: 9BCEEFF4BC6911ED9B0FC554C4F9AE02.roa (hash: vkUKnag58zCpuCP8+f6HBj43+NKzxFLQMFl2RAEd1t8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.crl rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/znA-TvnfLr44ZQpwSkoBnCpmQ1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:55:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 469 (0x1d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136C5E, serialNumber=CE703E4EF9DF2EBE38650A704A4A019C2A664350 Validity Not Before: Aug 23 02:55:48 2025 GMT Not After : Aug 30 02:55:48 2025 GMT Subject: CN=68a92db5-e880 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:08:3f:c1:85:cc:bc:70:dc:dc:de:4a:37:c8: 31:bf:70:c2:f5:47:aa:91:22:c6:c1:0f:11:03:7f: 2d:5f:a6:a4:9d:05:3b:45:47:31:9d:ac:57:24:5d: a4:ef:b7:26:b4:33:19:78:12:48:a5:c6:3e:fa:0b: e6:57:e4:1e:d9:5e:2c:93:7a:f5:99:ec:4f:19:ff: e1:1e:1e:eb:d5:a2:57:3d:20:34:c2:e2:90:f6:1f: e1:93:24:5e:bb:8b:32:3f:3a:ec:1e:9f:65:db:a2: 2c:b7:90:3b:65:2c:fa:2f:01:fc:9a:0d:3a:16:32: 76:ee:0b:3d:c1:71:fe:82:f5:39:a1:55:ae:62:3c: ff:87:2b:90:71:01:b1:9c:9f:ea:82:86:78:2c:ab: b5:2a:70:b0:ce:55:2d:7b:f8:d5:fb:d8:52:e2:be: 1a:04:c8:f9:db:8a:10:75:93:5f:f2:fa:0a:21:5b: 74:da:6b:73:d7:52:bd:56:13:c9:2e:c3:25:f7:19: 25:58:f2:69:d3:5e:77:e3:25:c9:ed:7f:71:be:3a: 3d:bf:5e:bd:da:e3:8c:f1:be:9f:3c:6e:63:a3:7e: 7e:8d:a4:bb:f7:ac:d4:c1:16:35:c5:f4:5c:78:d0: 0d:3c:91:6e:38:3a:03:e9:3f:fa:d5:fc:74:c0:d1: 40:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:3A:7D:12:DC:CB:DB:F8:A5:66:0C:AF:B6:FF:D6:7D:48:E5:93:8A X509v3 Authority Key Identifier: keyid:CE:70:3E:4E:F9:DF:2E:BE:38:65:0A:70:4A:4A:01:9C:2A:66:43:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/znA-TvnfLr44ZQpwSkoBnCpmQ1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:53:71:53:43:d8:20:76:e5:d9:1b:cf:11:ed:6f:04:7a:4c: d7:7e:bd:0b:57:40:dc:e6:57:3f:54:0b:f5:3e:30:6a:a5:8c: 72:d9:c0:9b:bf:31:de:6e:72:9a:0c:f1:ba:99:13:b3:96:86: 68:62:53:8c:03:af:db:e7:03:1b:03:2b:74:bd:53:07:cc:1d: e3:86:a6:16:74:1c:a9:d7:85:51:b0:72:c4:51:bb:27:71:ca: 27:ba:3a:07:40:fd:b3:9c:05:db:cc:a4:d7:b6:b3:a6:53:bd: f2:5c:46:cf:85:1d:82:92:c2:e4:b7:60:9e:20:7d:c5:6c:b9: f8:15:d8:8a:ee:b2:44:63:c3:e5:82:29:9b:7b:5a:8c:f2:fb: 05:eb:80:fa:a9:3d:3d:d7:31:a1:f8:8a:62:e6:6e:69:2d:00: dd:78:13:d4:fc:63:72:00:57:5c:e6:80:af:ad:77:3d:58:6e: 22:e8:41:5d:9c:75:09:ae:dc:dc:0d:f2:8e:da:61:b0:29:99: 63:a0:f1:22:93:b1:71:60:99:1f:b8:d3:32:e4:df:63:42:94: ab:da:39:aa:1f:0a:12:d2:02:86:a5:6d:0a:21:65:4c:dc:7d: cf:23:de:0b:2b:2d:e4:f3:22:2d:35:ac:08:e3:87:c5:a5:73: 74:4a:cf:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZDNUUxMTAvBgNVBAUTKENFNzAzRTRFRjlERjJFQkUzODY1MEE3MDRBNEEwMTlD MkE2NjQzNTAwHhcNMjUwODIzMDI1NTQ4WhcNMjUwODMwMDI1NTQ4WjAYMRYwFAYD VQQDEw02OGE5MmRiNS1lODgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Qg/wYXMvHDc3N5KN8gxv3DC9UeqkSLGwQ8RA38tX6aknQU7RUcxnaxXJF2k 77cmtDMZeBJIpcY++gvmV+Qe2V4sk3r1mexPGf/hHh7r1aJXPSA0wuKQ9h/hkyRe u4syPzrsHp9l26Ist5A7ZSz6LwH8mg06FjJ27gs9wXH+gvU5oVWuYjz/hyuQcQGx nJ/qgoZ4LKu1KnCwzlUte/jV+9hS4r4aBMj524oQdZNf8voKIVt02mtz11K9VhPJ LsMl9xklWPJp01534yXJ7X9xvjo9v1692uOM8b6fPG5jo35+jaS796zUwRY1xfRc eNANPJFuODoD6T/61fx0wNFAUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBU6fRLc y9v4pWYMr7b/1n1I5ZOKMB8GA1UdIwQYMBaAFM5wPk753y6+OGUKcEpKAZwqZkNQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkM1RS8zRUE2QTI1MEI5 NzAxMUVEODkxODQ2N0NDNEY5QUUwMi96bkEtVHZuZkxyNDRaUXB3U2tvQm5DcG1R MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3puQS1Udm5mTHI0NFpRcHdTa29CbkNwbVExQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NkM1RS8zRUE2QTI1MEI5NzAxMUVEODkxODQ2N0NDNEY5QUUwMi96bkEtVHZuZkxy NDRaUXB3U2tvQm5DcG1RMUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARU3FTQ9ggduXZG88R7W8EekzXfr0LV0Dc5lc/VAv1PjBqpYxy2cCb vzHebnKaDPG6mROzloZoYlOMA6/b5wMbAyt0vVMHzB3jhqYWdByp14VRsHLEUbsn cconujoHQP2znAXbzKTXtrOmU73yXEbPhR2CksLkt2CeIH3FbLn4FdiK7rJEY8Pl gimbe1qM8vsF64D6qT091zGh+Ipi5m5pLQDdeBPU/GNyAFdc5oCvrXc9WG4i6EFd nHUJrtzcDfKO2mGwKZljoPEik7FxYJkfuNMy5N9jQpSr2jmqHwoS0gKGpW0KIWVM 3H3PI94LKy3k8yItNawI44fFpXN0Ss+V -----END CERTIFICATE-----Generated at Sat Aug 23 12:44:11 2025 by rpki-client