$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9F08/3090D914A14C11E98475A82DC4F9AE02/zoytNWIakBLECzY3U3ykDj0H6M8.mft File: zoytNWIakBLECzY3U3ykDj0H6M8.mft (raw, json) Hash identifier: DmWWC1l7qB+AeXUKuLtxyy354spEL5OVmcPFyEexQp4= Subject key identifier: C2:24:F6:06:94:41:E7:A5:86:CD:42:03:45:90:F2:D3:D6:0E:F9:D3 Authority key identifier: CE:8C:AD:35:62:1A:90:12:C4:0B:36:37:53:7C:A4:0E:3D:07:E8:CF Certificate issuer: /CN=A91B9F08/serialNumber=CE8CAD35621A9012C40B3637537CA40E3D07E8CF Certificate serial: 0E7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zoytNWIakBLECzY3U3ykDj0H6M8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9F08/3090D914A14C11E98475A82DC4F9AE02/zoytNWIakBLECzY3U3ykDj0H6M8.mft Manifest number: 0E6A Signing time: Fri 22 Aug 2025 17:50:54 +0000 Manifest this update: Fri 22 Aug 2025 17:50:53 +0000 Manifest next update: Fri 29 Aug 2025 17:50:53 +0000 Files and hashes: 1: zoytNWIakBLECzY3U3ykDj0H6M8.crl (hash: xqOCVFkSFiKZITbMWAki0/9pgsyFtKD9RuBobTH5HxY=) 2: 8ADFF772924011ED867BE311C4F9AE02.roa (hash: am9c/5/9WUqfqDVJJkqHl1fMAMJ9WE34zLQ5kEncnkc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9F08/3090D914A14C11E98475A82DC4F9AE02/zoytNWIakBLECzY3U3ykDj0H6M8.crl rsync://rpki.apnic.net/member_repository/A91B9F08/3090D914A14C11E98475A82DC4F9AE02/zoytNWIakBLECzY3U3ykDj0H6M8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zoytNWIakBLECzY3U3ykDj0H6M8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:50:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3706 (0xe7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9F08, serialNumber=CE8CAD35621A9012C40B3637537CA40E3D07E8CF Validity Not Before: Aug 22 17:50:53 2025 GMT Not After : Aug 29 17:50:53 2025 GMT Subject: CN=68a8adfe-7aea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:84:7b:ce:a5:56:c0:3e:ed:1b:37:42:ca:34: 1b:54:f4:92:32:3a:15:15:1c:71:2d:cf:bc:55:7b: ec:fa:bc:71:09:8a:8a:86:34:13:9c:2b:b1:5b:25: 92:98:23:c3:0c:bc:ed:2d:2d:64:01:4f:54:b1:2e: d6:83:b1:ed:38:e6:d0:af:dc:c2:12:50:33:61:37: 52:6d:8e:fe:87:51:de:c1:28:7c:37:a0:82:7d:1b: 73:7f:26:75:dc:a4:56:33:aa:37:1c:1c:ac:d8:0a: 5a:7d:1b:ea:a0:43:ce:f7:75:87:e3:bd:f5:01:b7: 1b:ec:c5:0a:71:35:0f:86:dd:03:e3:73:1d:3c:e5: 38:1b:08:ba:62:6a:5e:62:fa:49:41:00:23:01:5a: 43:6a:0f:0e:85:6f:f6:ec:00:b3:a7:2c:08:88:a3: fa:44:0b:f4:39:4f:07:2a:93:f3:42:c0:c2:0f:d7: 5e:4b:88:2a:11:79:1e:17:86:15:6d:46:3e:a9:9f: 53:5c:7f:45:57:73:53:8c:7a:ab:cc:06:39:8b:9f: 44:69:87:50:89:27:02:ba:12:45:a2:9a:19:ca:92: 22:03:37:67:91:82:8a:76:a4:ad:65:94:12:74:13: 0c:b3:4c:33:64:04:6e:dd:f4:81:16:5e:7f:c2:66: 6b:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:24:F6:06:94:41:E7:A5:86:CD:42:03:45:90:F2:D3:D6:0E:F9:D3 X509v3 Authority Key Identifier: keyid:CE:8C:AD:35:62:1A:90:12:C4:0B:36:37:53:7C:A4:0E:3D:07:E8:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9F08/3090D914A14C11E98475A82DC4F9AE02/zoytNWIakBLECzY3U3ykDj0H6M8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zoytNWIakBLECzY3U3ykDj0H6M8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9F08/3090D914A14C11E98475A82DC4F9AE02/zoytNWIakBLECzY3U3ykDj0H6M8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:67:42:9f:bd:2b:12:47:f0:b1:95:7a:19:50:8e:b1:60:f9: 07:82:41:eb:38:67:1b:67:dd:68:e3:0c:9c:f6:ce:9a:e4:84: 74:3f:06:fc:d9:c9:bf:e6:a9:c9:2c:da:f3:c3:0c:8a:ee:be: 0a:0d:01:94:75:d4:34:a6:4b:6e:00:9d:61:0f:83:33:0f:ed: df:e1:a4:bf:32:79:95:ab:45:19:fd:48:f7:4b:60:fd:64:52: c4:aa:32:c6:35:37:25:a3:b3:fd:2b:ae:e4:d3:77:98:2c:54: ae:25:37:4a:65:16:fc:8e:49:c1:47:d6:e2:9a:c8:9c:dd:de: 00:a1:39:c8:45:23:d9:3a:17:00:e6:c6:36:85:bb:78:df:b4: 9f:10:30:07:1b:44:57:68:4c:e8:54:1c:51:cd:4d:a5:c6:28: 04:fb:29:e9:e3:89:c7:56:61:fe:90:ea:52:8a:61:df:79:b5: 5f:42:78:0a:ca:4b:ce:87:a9:b6:c2:cf:26:a7:61:23:2b:1c: e5:cd:96:32:e2:ab:e7:c0:04:15:75:46:67:c2:f7:3d:e0:0d: d3:60:c7:89:e5:38:fb:72:90:f6:ad:d2:d3:10:18:ff:c8:39: 93:76:44:5a:9a:76:f8:fc:44:51:d3:06:37:74:58:c8:b4:ac: 36:e1:66:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDnowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlGMDgxMTAvBgNVBAUTKENFOENBRDM1NjIxQTkwMTJDNDBCMzYzNzUzN0NBNDBF M0QwN0U4Q0YwHhcNMjUwODIyMTc1MDUzWhcNMjUwODI5MTc1MDUzWjAYMRYwFAYD VQQDEw02OGE4YWRmZS03YWVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtYR7zqVWwD7tGzdCyjQbVPSSMjoVFRxxLc+8VXvs+rxxCYqKhjQTnCuxWyWS mCPDDLztLS1kAU9UsS7Wg7HtOObQr9zCElAzYTdSbY7+h1HewSh8N6CCfRtzfyZ1 3KRWM6o3HBys2ApafRvqoEPO93WH4731Abcb7MUKcTUPht0D43MdPOU4Gwi6Ympe YvpJQQAjAVpDag8OhW/27ACzpywIiKP6RAv0OU8HKpPzQsDCD9deS4gqEXkeF4YV bUY+qZ9TXH9FV3NTjHqrzAY5i59EaYdQiScCuhJFopoZypIiAzdnkYKKdqStZZQS dBMMs0wzZARu3fSBFl5/wmZrKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMIk9gaU Qeelhs1CA0WQ8tPWDvnTMB8GA1UdIwQYMBaAFM6MrTViGpASxAs2N1N8pA49B+jP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUYwOC8zMDkwRDkxNEEx NEMxMUU5ODQ3NUE4MkRDNEY5QUUwMi96b3l0TldJYWtCTEVDelkzVTN5a0RqMEg2 TTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pveXROV0lha0JMRUN6WTNVM3lrRGowSDZNOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUYwOC8zMDkwRDkxNEExNEMxMUU5ODQ3NUE4MkRDNEY5QUUwMi96b3l0TldJYWtC TEVDelkzVTN5a0RqMEg2TTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnZ0KfvSsSR/CxlXoZUI6xYPkHgkHrOGcbZ91o4wyc9s6a5IR0Pwb8 2cm/5qnJLNrzwwyK7r4KDQGUddQ0pktuAJ1hD4MzD+3f4aS/MnmVq0UZ/Uj3S2D9 ZFLEqjLGNTclo7P9K67k03eYLFSuJTdKZRb8jknBR9bimsic3d4AoTnIRSPZOhcA 5sY2hbt437SfEDAHG0RXaEzoVBxRzU2lxigE+ynp44nHVmH+kOpSimHfebVfQngK ykvOh6m2ws8mp2EjKxzlzZYy4qvnwAQVdUZnwvc94A3TYMeJ5Tj7cpD2rdLTEBj/ yDmTdkRamnb4/ERR0wY3dFjItKw24WbP -----END CERTIFICATE-----Generated at Sat Aug 23 17:51:11 2025 by rpki-client