$ rpki-client -vvf rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft File: z64jGpiXN_YdrZV8wk0hNYWBjtw.mft (raw, json) Hash identifier: NcFhky5eL1CnKclXEZREquwrbrmREqt27f8n6E7ePF0= Subject key identifier: 75:A3:32:D7:C1:0D:26:B2:89:A3:47:DF:DE:84:88:95:BA:E1:0E:EB Authority key identifier: CF:AE:23:1A:98:97:37:F6:1D:AD:95:7C:C2:4D:21:35:85:81:8E:DC Certificate issuer: /CN=A914B45F/serialNumber=CFAE231A989737F61DAD957CC24D213585818EDC Certificate serial: 0184 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z64jGpiXN_YdrZV8wk0hNYWBjtw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft Manifest number: 0182 Signing time: Sat 23 Aug 2025 03:43:05 +0000 Manifest this update: Sat 23 Aug 2025 03:43:05 +0000 Manifest next update: Sat 30 Aug 2025 03:43:05 +0000 Files and hashes: 1: z64jGpiXN_YdrZV8wk0hNYWBjtw.crl (hash: n2DN8vLBdc9xp1nIEm9WN+Rzgh3Uhxr9ACBwAwMjB9w=) 2: 578C92D62F6611EE9CAFAA58C4F9AE02.roa (hash: Km7Ntr3HPW+9p2/xgcR3/NDs3gM06IRtzM1XksYLFiE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.crl rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z64jGpiXN_YdrZV8wk0hNYWBjtw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:43:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 388 (0x184) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B45F, serialNumber=CFAE231A989737F61DAD957CC24D213585818EDC Validity Not Before: Aug 23 03:43:05 2025 GMT Not After : Aug 30 03:43:05 2025 GMT Subject: CN=68a938c9-7161 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:f5:90:49:84:35:17:63:8d:17:42:78:07:a6: 18:af:18:92:7d:22:57:30:da:66:d4:67:57:f9:d7: d2:90:45:00:d5:5f:93:fc:73:08:e0:e6:e1:ba:c4: ac:85:de:94:67:0e:88:fe:30:48:0c:42:32:e0:80: a6:ca:cb:80:fb:8d:c0:cb:22:f7:b8:cf:f1:85:7f: 68:51:6f:7c:f4:f3:33:2f:96:44:f9:c2:c4:ab:77: a6:34:d6:44:ef:45:70:0b:4a:c0:0f:31:3c:2c:0e: d3:62:be:32:6d:c5:fb:b8:af:f5:bf:4d:5e:73:9a: 11:3e:cd:a2:b1:09:11:66:58:c8:19:60:01:94:e3: c6:9d:c9:4f:99:6b:ea:83:57:87:f6:29:33:63:5b: 32:64:cc:94:22:9f:3e:07:c4:b0:9c:bd:2a:00:05: f0:29:dd:a9:1b:b2:aa:40:75:f2:52:86:ea:47:c9: 45:31:d8:60:10:82:b1:27:fb:47:b9:f8:e6:df:38: a7:43:c8:3f:b9:d0:bb:7f:0d:65:d0:a5:7a:fc:24: f8:48:dc:63:22:8b:0e:14:be:cc:b4:a2:e4:c9:12: bf:04:7d:4e:ff:66:04:de:22:c2:f7:dd:4f:05:9e: e6:56:83:2b:c9:66:f1:a0:5c:b6:aa:ff:c2:cb:67: 24:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:A3:32:D7:C1:0D:26:B2:89:A3:47:DF:DE:84:88:95:BA:E1:0E:EB X509v3 Authority Key Identifier: keyid:CF:AE:23:1A:98:97:37:F6:1D:AD:95:7C:C2:4D:21:35:85:81:8E:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z64jGpiXN_YdrZV8wk0hNYWBjtw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:d2:e8:d6:a3:ed:08:53:07:ea:cb:40:cc:c5:a7:eb:7e:a3: f9:27:e2:40:31:b1:c1:0b:c2:9a:da:ad:b7:de:39:1e:ba:b5: 38:12:d9:84:bd:ef:6e:50:02:82:61:9a:a0:da:23:0c:5e:b4: e0:c2:d8:17:9e:01:d8:70:76:06:a1:f2:a6:a2:2e:b4:8e:56: ac:88:20:6f:02:23:5c:75:08:b1:36:57:09:d3:5f:d0:a4:60: 36:d6:4f:59:98:63:61:e9:68:f7:0e:b5:6d:54:61:da:a6:8d: c3:33:46:15:bc:8d:f5:63:c4:fe:1b:4a:ea:1e:bb:84:aa:38: fa:2e:32:cd:4c:d2:27:be:ed:c5:3e:3f:97:1a:cb:da:92:17: 02:26:31:54:3d:ab:db:73:12:85:6e:34:58:b8:54:aa:88:90: 2e:49:04:0d:b5:5a:e9:39:08:1e:20:b3:96:44:6b:4e:ea:02: f4:e2:a8:18:ea:8e:f1:90:c4:77:e5:e9:00:a1:5a:53:a2:8d: 61:eb:c6:34:9e:8c:4f:f5:ec:f9:1f:41:68:34:0d:92:44:fa: 25:51:39:ca:8d:77:25:ae:a6:08:ac:91:54:1e:3d:f3:64:df: aa:c0:63:ed:47:42:4d:cc:07:e8:d1:0e:68:87:01:eb:b6:e2: 3b:fa:6b:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEI0NUYxMTAvBgNVBAUTKENGQUUyMzFBOTg5NzM3RjYxREFEOTU3Q0MyNEQyMTM1 ODU4MThFREMwHhcNMjUwODIzMDM0MzA1WhcNMjUwODMwMDM0MzA1WjAYMRYwFAYD VQQDEw02OGE5MzhjOS03MTYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx/WQSYQ1F2ONF0J4B6YYrxiSfSJXMNpm1GdX+dfSkEUA1V+T/HMI4ObhusSs hd6UZw6I/jBIDEIy4ICmysuA+43AyyL3uM/xhX9oUW989PMzL5ZE+cLEq3emNNZE 70VwC0rADzE8LA7TYr4ybcX7uK/1v01ec5oRPs2isQkRZljIGWABlOPGnclPmWvq g1eH9ikzY1syZMyUIp8+B8SwnL0qAAXwKd2pG7KqQHXyUobqR8lFMdhgEIKxJ/tH ufjm3zinQ8g/udC7fw1l0KV6/CT4SNxjIosOFL7MtKLkyRK/BH1O/2YE3iLC991P BZ7mVoMryWbxoFy2qv/Cy2ckkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHWjMtfB DSayiaNH396EiJW64Q7rMB8GA1UdIwQYMBaAFM+uIxqYlzf2Ha2VfMJNITWFgY7c MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjQ1Ri80MEJCMTU3NDJG NjUxMUVFOTVGREVENTZDNEY5QUUwMi96NjRqR3BpWE5fWWRyWlY4d2swaE5ZV0Jq dHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3o2NGpHcGlYTl9ZZHJaVjh3azBoTllXQmp0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjQ1Ri80MEJCMTU3NDJGNjUxMUVFOTVGREVENTZDNEY5QUUwMi96NjRqR3BpWE5f WWRyWlY4d2swaE5ZV0JqdHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBH0ujWo+0IUwfqy0DMxafrfqP5J+JAMbHBC8Ka2q233jkeurU4EtmE ve9uUAKCYZqg2iMMXrTgwtgXngHYcHYGofKmoi60jlasiCBvAiNcdQixNlcJ01/Q pGA21k9ZmGNh6Wj3DrVtVGHapo3DM0YVvI31Y8T+G0rqHruEqjj6LjLNTNInvu3F Pj+XGsvakhcCJjFUPavbcxKFbjRYuFSqiJAuSQQNtVrpOQgeILOWRGtO6gL04qgY 6o7xkMR35ekAoVpToo1h68Y0noxP9ez5H0FoNA2SRPolUTnKjXclrqYIrJFUHj3z ZN+qwGPtR0JNzAfo0Q5ohwHrtuI7+mv7 -----END CERTIFICATE-----Generated at Sat Aug 23 20:40:54 2025 by rpki-client