$ rpki-client -vvf rpki.apnic.net/member_repository/A91C146D/ECB00B42003711F0BBD72475C4F9AE02/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.mft File: Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.mft (raw, json) Hash identifier: U1j8wwi0PbSsm/JTVHLXZAvEOxps2FRTFKaS7VOgT1o= Subject key identifier: DB:79:CB:1C:55:A0:34:28:5E:98:50:EF:6D:4D:38:57:1F:AC:9E:97 Authority key identifier: 66:4E:59:A0:00:B9:1E:72:F8:03:E6:D8:68:41:15:4C:80:56:B8:8A Certificate issuer: /CN=A91C146D/serialNumber=664E59A000B91E72F803E6D86841154C8056B88A Certificate serial: 5F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C146D/ECB00B42003711F0BBD72475C4F9AE02/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.mft Manifest number: 59 Signing time: Sat 23 Aug 2025 07:29:19 +0000 Manifest this update: Sat 23 Aug 2025 07:29:19 +0000 Manifest next update: Sat 30 Aug 2025 07:29:19 +0000 Files and hashes: 1: Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.crl (hash: bpLnmrXZjiWyXBMVWxLDL3MbVMscvzaEHCt16a+awmA=) 2: 992A7358004211F0AC90656CC4F9AE02.roa (hash: 6uK19EDHQqPyaVVXXtHQJXfGGnOJLngyIEFvwQHYfKo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C146D/ECB00B42003711F0BBD72475C4F9AE02/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.crl rsync://rpki.apnic.net/member_repository/A91C146D/ECB00B42003711F0BBD72475C4F9AE02/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:29:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 95 (0x5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C146D, serialNumber=664E59A000B91E72F803E6D86841154C8056B88A Validity Not Before: Aug 23 07:29:19 2025 GMT Not After : Aug 30 07:29:19 2025 GMT Subject: CN=68a96dcf-1a1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:7d:81:6a:1c:50:53:d2:cb:30:c2:64:e7:83: 63:16:8a:c7:22:1f:9f:d1:2a:44:5a:49:da:ea:5f: f8:4a:74:12:7e:d4:f0:84:00:ed:db:ff:b6:30:ce: d2:c6:3c:ad:1d:80:c0:fb:1e:32:7c:8f:e4:91:45: 33:18:30:03:4a:3f:9b:15:90:c1:f9:da:a4:be:25: 4e:fb:e9:51:e2:17:84:68:56:c7:76:a8:24:91:30: 7e:0f:ad:54:ff:63:48:35:39:34:cf:6b:94:bc:ee: b1:0a:7a:ba:04:2a:cc:58:8f:a5:be:4f:58:55:d4: e8:88:ae:70:4d:d1:bb:2d:dd:94:46:21:af:b7:ae: 11:3a:81:a5:a2:4b:e9:15:4f:69:f5:18:21:57:18: f8:fd:8f:52:34:17:88:9e:0e:40:96:eb:d1:cc:e2: 75:5c:59:22:e4:26:81:88:53:a2:21:a8:76:c4:36: 6e:94:d6:2b:05:f6:0d:69:b4:d7:c0:88:cb:c0:92: b5:e6:7d:1e:d5:99:9b:e5:48:a1:6d:c5:db:0d:21: ec:88:46:b0:8e:c0:d2:79:58:dc:a1:33:42:e7:43: 5d:ba:9c:fa:8b:79:9e:76:90:28:cd:86:05:7f:69: 42:88:81:b5:1a:94:4b:80:7e:a6:02:ab:ed:c1:98: e9:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:79:CB:1C:55:A0:34:28:5E:98:50:EF:6D:4D:38:57:1F:AC:9E:97 X509v3 Authority Key Identifier: keyid:66:4E:59:A0:00:B9:1E:72:F8:03:E6:D8:68:41:15:4C:80:56:B8:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C146D/ECB00B42003711F0BBD72475C4F9AE02/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C146D/ECB00B42003711F0BBD72475C4F9AE02/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:8f:04:ea:28:79:52:fe:05:cc:6c:aa:3d:e5:26:fa:25:07: ef:51:59:62:a3:62:c8:84:9a:1a:03:b3:d5:64:96:4d:a7:07: 6d:8b:e8:d5:35:86:d7:f3:7b:6e:91:7b:71:7e:52:98:6a:20: 08:61:0b:1a:1c:57:ab:7f:57:5c:57:89:74:3e:d1:17:d9:ae: 69:e1:e9:d1:e0:00:46:62:9e:4a:b6:80:30:83:65:9b:01:46: f1:54:20:e9:17:0b:08:57:36:d2:dd:ce:1a:c8:ae:63:1e:48: 2c:45:10:6a:07:ff:a1:6d:cc:40:70:34:ed:78:d0:3d:c7:d8: 5b:90:6c:4d:5a:59:fd:23:0c:7a:d1:c8:d1:e1:dc:6f:65:18: f4:da:6b:67:ba:ec:15:1b:f7:df:76:5b:8b:ec:e3:bf:6a:ab: f0:16:72:ca:fb:88:10:62:47:98:f2:83:8e:49:02:81:50:b1: 02:3c:f0:eb:46:7a:45:d4:e8:9f:3e:b3:5a:24:fd:d3:2a:d0: 99:b5:78:ff:ad:87:46:e6:a6:2c:b7:7b:c2:4b:8c:44:54:0f: 56:ee:0e:7b:6b:eb:e2:e0:df:c4:5b:49:46:12:48:3e:dd:0c: d0:61:98:5a:74:7e:33:15:c3:f3:c1:6c:53:e2:7f:a4:59:45: f9:fe:ce:ee -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MTQ2RDExMC8GA1UEBRMoNjY0RTU5QTAwMEI5MUU3MkY4MDNFNkQ4Njg0MTE1NEM4 MDU2Qjg4QTAeFw0yNTA4MjMwNzI5MTlaFw0yNTA4MzAwNzI5MTlaMBgxFjAUBgNV BAMTDTY4YTk2ZGNmLTFhMWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDfYFqHFBT0sswwmTng2MWisciH5/RKkRaSdrqX/hKdBJ+1PCEAO3b/7YwztLG PK0dgMD7HjJ8j+SRRTMYMANKP5sVkMH52qS+JU776VHiF4RoVsd2qCSRMH4PrVT/ Y0g1OTTPa5S87rEKeroEKsxYj6W+T1hV1OiIrnBN0bst3ZRGIa+3rhE6gaWiS+kV T2n1GCFXGPj9j1I0F4ieDkCW69HM4nVcWSLkJoGIU6IhqHbENm6U1isF9g1ptNfA iMvAkrXmfR7VmZvlSKFtxdsNIeyIRrCOwNJ5WNyhM0LnQ126nPqLeZ52kCjNhgV/ aUKIgbUalEuAfqYCq+3BmOkNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU23nLHFWg NChemFDvbU04Vx+snpcwHwYDVR0jBBgwFoAUZk5ZoAC5HnL4A+bYaEEVTIBWuIow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMxNDZEL0VDQjAwQjQyMDAz NzExRjBCQkQ3MjQ3NUM0RjlBRTAyL1prNVpvQUM1SG5MNEEtYllhRUVWVElCV3VJ by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWms1Wm9BQzVIbkw0QS1iWWFFRVZUSUJXdUlvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMx NDZEL0VDQjAwQjQyMDAzNzExRjBCQkQ3MjQ3NUM0RjlBRTAyL1prNVpvQUM1SG5M NEEtYllhRUVWVElCV3VJby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAF+PBOooeVL+Bcxsqj3lJvolB+9RWWKjYsiEmhoDs9Vklk2nB22L6NU1 htfze26Re3F+UphqIAhhCxocV6t/V1xXiXQ+0RfZrmnh6dHgAEZinkq2gDCDZZsB RvFUIOkXCwhXNtLdzhrIrmMeSCxFEGoH/6FtzEBwNO140D3H2FuQbE1aWf0jDHrR yNHh3G9lGPTaa2e67BUb9992W4vs479qq/AWcsr7iBBiR5jyg45JAoFQsQI88OtG ekXU6J8+s1ok/dMq0Jm1eP+th0bmpiy3e8JLjERUD1buDntr6+Lg38RbSUYSSD7d DNBhmFp0fjMVw/PBbFPif6RZRfn+zu4= -----END CERTIFICATE-----Generated at Sun Aug 24 00:31:26 2025 by rpki-client