$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft File: zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft (raw, json) Hash identifier: XzSMxmUbeoTAqqmf0dWdcLRVMpMW4jHS/oIjs9KSdyk= Subject key identifier: F7:84:AC:B7:1F:06:D0:F5:A8:D2:2B:CE:2E:8E:21:D8:42:F5:02:91 Authority key identifier: CC:7C:5F:27:80:A8:0D:3C:66:6B:2B:F6:91:53:F2:04:84:BE:EE:71 Certificate issuer: /CN=A91AAE63/serialNumber=CC7C5F2780A80D3C666B2BF69153F20484BEEE71 Certificate serial: 01C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHxfJ4CoDTxmayv2kVPyBIS-7nE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft Manifest number: 01C5 Signing time: Sat 23 Aug 2025 03:03:58 +0000 Manifest this update: Sat 23 Aug 2025 03:03:57 +0000 Manifest next update: Sat 30 Aug 2025 03:03:57 +0000 Files and hashes: 1: zHxfJ4CoDTxmayv2kVPyBIS-7nE.crl (hash: RWNusoFKzKpY1bYEybvWAI07kS1nbW33jGoEY09D2WM=) 2: 5DCF3814CA0E11ED9251861DC4F9AE02.roa (hash: QPqR58JeNFPJi8H+5XnKJrf+9hDaJRDjHQAg1P1N4n8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.crl rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHxfJ4CoDTxmayv2kVPyBIS-7nE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:03:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 456 (0x1c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAE63, serialNumber=CC7C5F2780A80D3C666B2BF69153F20484BEEE71 Validity Not Before: Aug 23 03:03:57 2025 GMT Not After : Aug 30 03:03:57 2025 GMT Subject: CN=68a92f9e-30d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:60:dc:c3:c8:12:6b:8e:7f:ed:9b:46:5c:8b: da:b9:da:c7:34:79:c3:c3:e9:92:e6:19:f4:48:01: 94:20:da:bd:ce:92:f0:77:c7:7e:0c:b3:f3:45:51: 48:4b:01:e4:f9:01:0e:a3:bb:93:14:c1:ca:df:58: bc:13:9c:d0:8a:87:1c:4d:36:43:f3:72:eb:6d:03: 89:30:67:bd:6b:06:fc:b0:67:8a:7e:25:da:2f:3c: c6:49:a3:0d:eb:57:b4:8b:f2:77:55:dd:ba:9f:c7: db:ba:30:e3:44:bd:f7:ab:70:91:06:78:95:b3:b6: aa:b6:4b:8a:a8:14:37:64:10:ec:d6:ac:f2:83:31: 9a:9a:cd:0b:a1:2c:f9:4e:bf:ad:bf:97:9f:13:f7: 92:ca:80:80:57:30:30:2b:77:31:02:ab:81:80:da: 47:07:be:f5:57:17:e8:b7:8a:22:a3:4c:85:81:48: df:4b:70:85:d1:ae:2e:d9:8d:dd:d6:fb:d2:05:7d: c3:c6:f4:4b:31:00:6c:bb:5b:e5:8a:c1:aa:50:2b: 98:ce:96:25:bc:49:9a:e0:05:c8:d3:3c:41:85:85: d9:ff:04:bb:34:2c:d0:33:5a:85:a6:12:c4:16:8c: a1:7e:58:47:30:1b:b8:77:4e:09:2d:6b:f5:75:b1: 9f:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:84:AC:B7:1F:06:D0:F5:A8:D2:2B:CE:2E:8E:21:D8:42:F5:02:91 X509v3 Authority Key Identifier: keyid:CC:7C:5F:27:80:A8:0D:3C:66:6B:2B:F6:91:53:F2:04:84:BE:EE:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHxfJ4CoDTxmayv2kVPyBIS-7nE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:f7:be:49:4a:71:39:35:18:87:28:eb:50:32:9a:c9:1c:b5: 0e:c2:8a:41:a4:ad:c4:cd:70:45:7e:10:2d:3f:ca:a7:d2:2c: 6a:01:af:99:30:07:88:3a:fb:6b:16:2b:98:3f:91:2f:da:ca: 52:f2:ad:f0:9f:91:33:50:a1:75:37:6b:2e:a5:ef:09:a7:ab: a1:ea:bd:aa:26:09:b6:88:9d:db:5b:a6:ec:71:56:04:4f:34: af:80:8f:78:8b:b3:56:8a:e7:8d:73:5d:4c:d6:65:68:26:28: 93:21:25:49:67:b0:b7:45:06:db:e3:78:93:c5:1e:26:a4:a2: 71:fd:0b:bf:3e:77:03:68:e5:db:ed:af:bf:64:b9:8d:c7:f6: 7a:ce:fb:c7:31:7b:d7:ea:93:50:6a:1c:5a:a5:a1:f5:de:bd: 1e:a6:9e:06:05:60:84:cf:93:ef:31:c3:98:f6:c5:d3:c1:70: 03:4b:2c:51:67:3a:1b:01:17:7f:be:4c:96:aa:ed:9a:d4:7c: 69:9d:b0:79:15:c3:47:a8:d5:cf:cf:ee:75:53:0d:0b:f9:90: 01:a6:ad:d8:41:9b:a2:45:05:7f:76:44:25:02:77:4a:c0:6b: 61:53:d2:b9:91:64:2e:c0:0d:e0:05:db:3e:80:c0:80:de:cd: d0:66:10:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFNjMxMTAvBgNVBAUTKENDN0M1RjI3ODBBODBEM0M2NjZCMkJGNjkxNTNGMjA0 ODRCRUVFNzEwHhcNMjUwODIzMDMwMzU3WhcNMjUwODMwMDMwMzU3WjAYMRYwFAYD VQQDEw02OGE5MmY5ZS0zMGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuWDcw8gSa45/7ZtGXIvaudrHNHnDw+mS5hn0SAGUINq9zpLwd8d+DLPzRVFI SwHk+QEOo7uTFMHK31i8E5zQioccTTZD83LrbQOJMGe9awb8sGeKfiXaLzzGSaMN 61e0i/J3Vd26n8fbujDjRL33q3CRBniVs7aqtkuKqBQ3ZBDs1qzygzGams0LoSz5 Tr+tv5efE/eSyoCAVzAwK3cxAquBgNpHB771Vxfot4oio0yFgUjfS3CF0a4u2Y3d 1vvSBX3DxvRLMQBsu1vlisGqUCuYzpYlvEma4AXI0zxBhYXZ/wS7NCzQM1qFphLE FoyhflhHMBu4d04JLWv1dbGfYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPeErLcf BtD1qNIrzi6OIdhC9QKRMB8GA1UdIwQYMBaAFMx8XyeAqA08Zmsr9pFT8gSEvu5x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUU2My81RTk2NjM5NENB MDkxMUVEODFCNkY2M0NDNEY5QUUwMi96SHhmSjRDb0RUeG1heXYya1ZQeUJJUy03 bkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pIeGZKNENvRFR4bWF5djJrVlB5QklTLTduRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUU2My81RTk2NjM5NENBMDkxMUVEODFCNkY2M0NDNEY5QUUwMi96SHhmSjRDb0RU eG1heXYya1ZQeUJJUy03bkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCW975JSnE5NRiHKOtQMprJHLUOwopBpK3EzXBFfhAtP8qn0ixqAa+Z MAeIOvtrFiuYP5Ev2spS8q3wn5EzUKF1N2supe8Jp6uh6r2qJgm2iJ3bW6bscVYE TzSvgI94i7NWiueNc11M1mVoJiiTISVJZ7C3RQbb43iTxR4mpKJx/Qu/PncDaOXb 7a+/ZLmNx/Z6zvvHMXvX6pNQahxapaH13r0epp4GBWCEz5PvMcOY9sXTwXADSyxR ZzobARd/vkyWqu2a1HxpnbB5FcNHqNXPz+51Uw0L+ZABpq3YQZuiRQV/dkQlAndK wGthU9K5kWQuwA3gBds+gMCA3s3QZhD7 -----END CERTIFICATE-----Generated at Sat Aug 23 18:40:41 2025 by rpki-client