$ rpki-client -vvf rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft File: ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft (raw, json) Hash identifier: mS9AQ7suRNJPD53HCrXyJNpambVKH3YO85XC58wn9S8= Subject key identifier: 9C:B4:F3:4D:1A:9E:A7:2E:03:B5:58:C5:AF:9A:05:32:83:33:9A:3D Authority key identifier: 72:D6:5B:B3:CA:D4:A0:98:F3:6F:41:37:59:4C:C7:FE:C2:FA:28:A3 Certificate issuer: /CN=A913C91D/serialNumber=72D65BB3CAD4A098F36F4137594CC7FEC2FA28A3 Certificate serial: 109E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft Manifest number: 1094 Signing time: Fri 22 Aug 2025 17:28:35 +0000 Manifest this update: Fri 22 Aug 2025 17:28:34 +0000 Manifest next update: Fri 29 Aug 2025 17:28:34 +0000 Files and hashes: 1: ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl (hash: 4TBS7DtJ8/33+Icrwd+72qaNZe7RSMJEc1odXOP1mHQ=) 2: 39C6EF3688BF11EABC04973FC4F9AE02.roa (hash: yd71n8eugD8WrOND6JHlcb+DlT4vihP97eJVROksTM0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:28:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4254 (0x109e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C91D, serialNumber=72D65BB3CAD4A098F36F4137594CC7FEC2FA28A3 Validity Not Before: Aug 22 17:28:34 2025 GMT Not After : Aug 29 17:28:34 2025 GMT Subject: CN=68a8a8c2-078f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:48:d2:00:80:fa:32:7f:2f:12:20:a4:da:62: c4:a4:e0:c3:d8:eb:84:13:ff:a6:24:b8:e3:95:81: ed:67:73:ee:15:e8:85:6b:3c:2a:0e:4e:4e:07:95: c2:e5:ce:c9:0b:c3:a9:b8:51:aa:81:e2:83:73:7e: 62:29:7c:12:c4:cd:9e:8d:43:35:6a:8b:98:1e:e2: 38:28:c4:17:a6:31:ad:2b:57:12:a1:11:1e:89:1c: 60:c1:9c:41:a7:0b:8a:0f:70:d7:3a:f0:f2:8a:68: ee:64:65:de:9e:be:ed:19:2d:8b:f3:2e:0e:57:e8: a5:af:0e:a7:cc:f1:d0:d9:4d:00:2f:28:d1:6a:e8: 34:b4:06:03:2f:c1:78:3d:6e:28:5b:24:07:69:ff: 23:23:19:00:60:2d:de:64:27:7f:c3:1b:b2:35:b9: 81:c5:bf:12:40:77:e9:bb:2d:59:ca:db:24:49:e5: ab:fb:65:a6:46:6f:07:35:9a:a7:0e:19:32:2c:8c: 13:85:7f:b1:f3:5f:34:ac:17:d6:09:8a:42:15:4e: fe:8e:6a:27:bf:47:26:85:c5:ee:36:51:e5:40:0f: 21:26:72:ef:98:dc:0a:ce:64:92:b2:98:3e:60:61: ab:3c:40:46:bd:c2:9a:c4:b2:15:1e:f5:c1:d5:fd: 19:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:B4:F3:4D:1A:9E:A7:2E:03:B5:58:C5:AF:9A:05:32:83:33:9A:3D X509v3 Authority Key Identifier: keyid:72:D6:5B:B3:CA:D4:A0:98:F3:6F:41:37:59:4C:C7:FE:C2:FA:28:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:cb:bc:c7:0a:d3:73:e4:23:fe:85:50:d9:63:80:92:b7:c2: bd:3c:9d:07:74:98:ca:2e:20:0a:4d:be:6b:07:3a:da:e7:a8: fa:a7:50:da:9b:d0:aa:1d:fc:80:6e:68:bf:e4:06:53:c1:eb: c2:6f:95:e7:84:da:dd:40:db:58:ca:ce:76:57:e8:62:5e:49: 74:98:12:dc:7c:ca:21:6b:2e:9f:b3:f1:09:93:c4:59:72:2a: 2e:fa:fa:8a:c8:77:86:33:98:f4:37:6f:1b:df:6c:24:c0:5f: db:28:37:43:68:64:5a:92:8d:95:57:3f:bb:fe:fd:da:82:23: 51:61:08:75:7b:ca:27:ab:b4:3b:26:56:95:c9:9b:93:df:36: cd:d5:63:68:af:55:3d:13:ef:e7:de:9c:dd:1b:48:c4:52:89: 5f:9a:75:63:d2:63:64:58:69:d7:48:7e:9b:75:c3:5f:d4:02: 79:8f:f5:b5:90:16:92:fe:65:25:0f:a8:9b:16:33:8c:2e:50: a9:4e:7a:b2:ee:ba:11:8e:2e:f9:1a:1b:3f:ec:31:9a:ae:9e: 80:a4:e0:a7:f0:11:62:c1:be:3b:a6:cf:4c:23:ad:ec:58:be: bb:07:63:72:41:a9:7d:57:18:97:ae:ed:0a:85:0c:8b:e7:30: a2:14:7e:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0M5MUQxMTAvBgNVBAUTKDcyRDY1QkIzQ0FENEEwOThGMzZGNDEzNzU5NENDN0ZF QzJGQTI4QTMwHhcNMjUwODIyMTcyODM0WhcNMjUwODI5MTcyODM0WjAYMRYwFAYD VQQDEw02OGE4YThjMi0wNzhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzkjSAID6Mn8vEiCk2mLEpODD2OuEE/+mJLjjlYHtZ3PuFeiFazwqDk5OB5XC 5c7JC8OpuFGqgeKDc35iKXwSxM2ejUM1aouYHuI4KMQXpjGtK1cSoREeiRxgwZxB pwuKD3DXOvDyimjuZGXenr7tGS2L8y4OV+ilrw6nzPHQ2U0ALyjRaug0tAYDL8F4 PW4oWyQHaf8jIxkAYC3eZCd/wxuyNbmBxb8SQHfpuy1ZytskSeWr+2WmRm8HNZqn DhkyLIwThX+x8180rBfWCYpCFU7+jmonv0cmhcXuNlHlQA8hJnLvmNwKzmSSspg+ YGGrPEBGvcKaxLIVHvXB1f0ZmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJy0800a nqcuA7VYxa+aBTKDM5o9MB8GA1UdIwQYMBaAFHLWW7PK1KCY829BN1lMx/7C+iij MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzkxRC9EOTBDRDg3NDM1 ODQxMUU5OUE5OTAyMjhDNEY5QUUwMi9jdFpiczhyVW9KanpiMEUzV1V6SF9zTDZL S00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N0WmJzOHJVb0pqemIwRTNXVXpIX3NMNktLTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QzkxRC9EOTBDRDg3NDM1ODQxMUU5OUE5OTAyMjhDNEY5QUUwMi9jdFpiczhyVW9K anpiMEUzV1V6SF9zTDZLS00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQy7zHCtNz5CP+hVDZY4CSt8K9PJ0HdJjKLiAKTb5rBzra56j6p1Da m9CqHfyAbmi/5AZTwevCb5XnhNrdQNtYys52V+hiXkl0mBLcfMohay6fs/EJk8RZ ciou+vqKyHeGM5j0N28b32wkwF/bKDdDaGRako2VVz+7/v3agiNRYQh1e8onq7Q7 JlaVyZuT3zbN1WNor1U9E+/n3pzdG0jEUolfmnVj0mNkWGnXSH6bdcNf1AJ5j/W1 kBaS/mUlD6ibFjOMLlCpTnqy7roRji75Ghs/7DGarp6ApOCn8BFiwb47ps9MI63s WL67B2NyQal9VxiXru0KhQyL5zCiFH5l -----END CERTIFICATE-----Generated at Sun Aug 24 03:09:39 2025 by rpki-client