$ rpki-client -vvf rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft File: Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft (raw, json) Hash identifier: EA/2l3RxCyUwkNVGJcwSiHi+pQEm+2olnaB14L1a0uo= Subject key identifier: C4:FE:84:D9:AC:67:25:32:FD:C8:51:59:A0:4C:20:40:02:01:F8:C5 Authority key identifier: 66:F6:B8:44:A9:F8:09:AE:30:7B:1B:9C:EE:4B:FD:47:C3:C7:77:1B Certificate issuer: /CN=A91B391F/serialNumber=66F6B844A9F809AE307B1B9CEE4BFD47C3C7771B Certificate serial: D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zva4RKn4Ca4wexuc7kv9R8PHdxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft Manifest number: CF Signing time: Sat 23 Aug 2025 05:50:23 +0000 Manifest this update: Sat 23 Aug 2025 05:50:22 +0000 Manifest next update: Sat 30 Aug 2025 05:50:22 +0000 Files and hashes: 1: Zva4RKn4Ca4wexuc7kv9R8PHdxs.crl (hash: kl523JVjmQF0oG6VqS/uS28mam13gI2HF524rCYRwo8=) 2: 5069A4E034B311F0B93A6228C4F9AE02.roa (hash: Ds5OYRTGE1+nmc/fXAPDPY24vX1TYbGT7zDa8IDd+kc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.crl rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zva4RKn4Ca4wexuc7kv9R8PHdxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:50:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 209 (0xd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B391F, serialNumber=66F6B844A9F809AE307B1B9CEE4BFD47C3C7771B Validity Not Before: Aug 23 05:50:22 2025 GMT Not After : Aug 30 05:50:22 2025 GMT Subject: CN=68a9569e-19dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:15:57:df:5f:51:3c:80:fe:85:38:31:16:0d: 89:81:3a:db:93:c9:e2:d5:2c:81:dc:e7:59:1f:3b: 2c:f8:8a:ad:aa:01:d2:88:18:d5:95:20:d8:f7:09: 8d:1f:a0:b8:28:97:67:6b:8c:fe:95:23:1a:89:ab: ad:bc:af:62:26:07:18:18:a9:83:25:de:7a:4c:a3: ff:13:b3:73:78:ee:c0:0d:6f:0d:b6:77:23:3c:e7: e0:34:54:10:81:8e:4b:de:55:c5:41:cd:15:67:d6: 9f:b9:bf:76:67:8f:ae:19:8e:ac:44:61:c1:d8:0f: cd:ec:bb:7c:49:ae:21:3c:5a:18:00:78:91:cd:e5: f3:8e:a2:a4:61:1c:8f:f0:99:e0:6a:fb:9d:df:5c: 37:8f:83:e8:86:b3:3e:d4:be:fb:84:a6:b2:f5:fc: f7:fd:50:94:c9:a2:12:f5:ce:16:29:27:6e:6b:dc: 47:e3:02:95:c4:44:23:fe:f6:7f:90:82:2e:4f:10: 5c:36:b2:27:46:b3:ad:82:21:a4:6e:d9:20:59:41: b6:d1:6c:94:a1:88:c9:b0:b0:b7:78:49:e5:15:ff: 03:c5:9c:34:50:1e:49:a7:8d:1b:41:df:74:f8:50: e5:fc:2e:9f:e2:05:e8:46:ea:f6:48:da:56:bd:43: 07:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:FE:84:D9:AC:67:25:32:FD:C8:51:59:A0:4C:20:40:02:01:F8:C5 X509v3 Authority Key Identifier: keyid:66:F6:B8:44:A9:F8:09:AE:30:7B:1B:9C:EE:4B:FD:47:C3:C7:77:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zva4RKn4Ca4wexuc7kv9R8PHdxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:eb:02:5a:f7:73:00:e1:93:95:66:4d:25:4c:a3:c3:16:1d: 6c:62:4f:ff:4d:b3:42:74:43:fb:ae:84:1d:07:69:60:3a:b0: 11:81:33:c8:dd:95:d2:ec:36:ab:e2:bb:b1:42:48:31:1c:46: f5:96:3c:08:c2:cd:c1:e5:45:39:17:07:f3:4f:8f:41:d1:77: 6e:38:a7:6c:5c:ed:90:0a:69:7d:11:62:d0:72:b3:b5:34:2b: a5:51:73:7d:fe:61:79:b1:e8:ec:81:83:47:9e:a5:0c:7d:8c: d4:77:3b:38:0b:75:97:a5:9b:95:8c:72:cd:37:b0:d6:43:2b: 68:70:21:b1:08:8f:8d:87:d7:3b:4e:d9:3d:80:1b:b3:8d:e0: 05:f3:68:7c:31:f4:1d:a9:37:46:df:3f:fb:d6:4b:f3:22:8a: 89:d9:fe:ae:4f:ee:92:67:f2:95:02:d4:d7:df:dc:44:52:e5: c3:d8:ca:d6:bf:09:e5:3f:f6:57:ab:a0:7c:e3:c5:d0:e4:14: 3b:98:c7:f6:a0:d3:ba:dc:a5:66:b8:14:37:3d:37:ba:d0:dd: 6c:69:fb:80:b0:47:2a:bc:ec:86:f6:6b:68:42:be:38:ce:35: 45:ec:8e:4b:fb:41:54:37:40:60:5d:4f:a1:0b:e3:ee:68:ec: 4d:ec:b0:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjM5MUYxMTAvBgNVBAUTKDY2RjZCODQ0QTlGODA5QUUzMDdCMUI5Q0VFNEJGRDQ3 QzNDNzc3MUIwHhcNMjUwODIzMDU1MDIyWhcNMjUwODMwMDU1MDIyWjAYMRYwFAYD VQQDEw02OGE5NTY5ZS0xOWRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5hVX319RPID+hTgxFg2JgTrbk8ni1SyB3OdZHzss+IqtqgHSiBjVlSDY9wmN H6C4KJdna4z+lSMaiautvK9iJgcYGKmDJd56TKP/E7NzeO7ADW8NtncjPOfgNFQQ gY5L3lXFQc0VZ9afub92Z4+uGY6sRGHB2A/N7Lt8Sa4hPFoYAHiRzeXzjqKkYRyP 8Jngavud31w3j4PohrM+1L77hKay9fz3/VCUyaIS9c4WKSdua9xH4wKVxEQj/vZ/ kIIuTxBcNrInRrOtgiGkbtkgWUG20WyUoYjJsLC3eEnlFf8DxZw0UB5Jp40bQd90 +FDl/C6f4gXoRur2SNpWvUMHCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMT+hNms ZyUy/chRWaBMIEACAfjFMB8GA1UdIwQYMBaAFGb2uESp+AmuMHsbnO5L/UfDx3cb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzkxRi81OERCODdGMjQ1 NzAxMUVGOUM4QjhFNzFDNEY5QUUwMi9admE0UktuNENhNHdleHVjN2t2OVI4UEhk eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p2YTRSS240Q2E0d2V4dWM3a3Y5UjhQSGR4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzkxRi81OERCODdGMjQ1NzAxMUVGOUM4QjhFNzFDNEY5QUUwMi9admE0UktuNENh NHdleHVjN2t2OVI4UEhkeHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAh6wJa93MA4ZOVZk0lTKPDFh1sYk//TbNCdEP7roQdB2lgOrARgTPI 3ZXS7Dar4ruxQkgxHEb1ljwIws3B5UU5FwfzT49B0XduOKdsXO2QCml9EWLQcrO1 NCulUXN9/mF5sejsgYNHnqUMfYzUdzs4C3WXpZuVjHLNN7DWQytocCGxCI+Nh9c7 Ttk9gBuzjeAF82h8MfQdqTdG3z/71kvzIoqJ2f6uT+6SZ/KVAtTX39xEUuXD2MrW vwnlP/ZXq6B848XQ5BQ7mMf2oNO63KVmuBQ3PTe60N1safuAsEcqvOyG9mtoQr44 zjVF7I5L+0FUN0BgXU+hC+PuaOxN7LBq -----END CERTIFICATE-----Generated at Sun Aug 24 00:49:03 2025 by rpki-client