$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8EDF/F46ADDE67C5711EDBF213767C4F9AE02/Cjz8fzlaNLq-MbjKRiPTHHao2fo.mft File: Cjz8fzlaNLq-MbjKRiPTHHao2fo.mft (raw, json) Hash identifier: 6d+9oOQiyHU6pjN7yMLYmKDQ63FjupQjiW2KFU88m2I= Subject key identifier: 3F:B3:89:F6:59:41:14:74:1F:2E:4B:BA:6B:57:BB:06:40:24:59:EE Authority key identifier: 0A:3C:FC:7F:39:5A:34:BA:BE:31:B8:CA:46:23:D3:1C:76:A8:D9:FA Certificate issuer: /CN=A91C8EDF/serialNumber=0A3CFC7F395A34BABE31B8CA4623D31C76A8D9FA Certificate serial: 0205 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cjz8fzlaNLq-MbjKRiPTHHao2fo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8EDF/F46ADDE67C5711EDBF213767C4F9AE02/Cjz8fzlaNLq-MbjKRiPTHHao2fo.mft Manifest number: 0201 Signing time: Sat 23 Aug 2025 02:34:24 +0000 Manifest this update: Sat 23 Aug 2025 02:34:24 +0000 Manifest next update: Sat 30 Aug 2025 02:34:24 +0000 Files and hashes: 1: Cjz8fzlaNLq-MbjKRiPTHHao2fo.crl (hash: flptgXAmL6sOBhjmmSTnCRia1SNrZ4Hzi3kI3GBbPFo=) 2: 6ABFAA607C5A11EDB5D8DA67C4F9AE02.roa (hash: UPzNqHZtzAjVZqphmOfv2Hp1UJdFW2/M83hc9R8RBqA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8EDF/F46ADDE67C5711EDBF213767C4F9AE02/Cjz8fzlaNLq-MbjKRiPTHHao2fo.crl rsync://rpki.apnic.net/member_repository/A91C8EDF/F46ADDE67C5711EDBF213767C4F9AE02/Cjz8fzlaNLq-MbjKRiPTHHao2fo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cjz8fzlaNLq-MbjKRiPTHHao2fo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:34:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 517 (0x205) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8EDF, serialNumber=0A3CFC7F395A34BABE31B8CA4623D31C76A8D9FA Validity Not Before: Aug 23 02:34:24 2025 GMT Not After : Aug 30 02:34:24 2025 GMT Subject: CN=68a928b0-3e98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:8f:a5:66:23:d3:a8:7f:f5:3e:43:da:98:f1: 01:ec:2c:7e:a1:54:9d:af:44:1c:1b:67:fc:f1:7b: 74:46:bc:8e:dd:7b:a5:ef:d0:56:96:5b:e7:a9:30: 20:17:83:31:b6:04:d9:88:a6:e8:30:79:82:35:11: a8:f0:ed:7a:d6:4b:d6:24:84:c5:16:29:dd:73:cd: 58:03:26:2e:3a:e5:7b:a5:24:5d:00:83:c9:9a:ea: 2c:1f:e0:cc:6d:74:e1:f8:84:87:7a:25:a5:be:ec: 2f:b2:3c:92:a0:b6:13:75:db:be:7f:eb:44:9a:0e: 9f:c7:fd:7a:09:72:41:59:69:16:59:ee:8e:43:1f: f9:20:8f:8c:47:cb:31:a5:60:87:bb:f7:00:8d:a2: 0f:14:2d:0a:2b:49:1a:48:44:8d:1c:c5:11:7c:f8: ef:16:5a:13:d2:4e:d3:29:ce:54:19:ce:42:8f:bf: 96:ef:22:42:76:46:48:37:ef:d2:de:c4:77:2c:1c: 86:e4:cc:86:2c:20:60:51:42:e5:aa:2a:6f:5b:ae: 2b:5d:d7:da:7d:5a:8c:2e:eb:58:b5:0d:6b:08:a5: 0c:d8:89:b1:bc:52:c7:99:ff:fb:a5:c6:21:2c:a9: fc:39:90:61:8f:18:b2:6e:e3:72:00:2e:a2:32:2b: 39:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:B3:89:F6:59:41:14:74:1F:2E:4B:BA:6B:57:BB:06:40:24:59:EE X509v3 Authority Key Identifier: keyid:0A:3C:FC:7F:39:5A:34:BA:BE:31:B8:CA:46:23:D3:1C:76:A8:D9:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8EDF/F46ADDE67C5711EDBF213767C4F9AE02/Cjz8fzlaNLq-MbjKRiPTHHao2fo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cjz8fzlaNLq-MbjKRiPTHHao2fo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8EDF/F46ADDE67C5711EDBF213767C4F9AE02/Cjz8fzlaNLq-MbjKRiPTHHao2fo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:8d:ca:46:44:82:6c:28:c9:d2:42:7c:14:04:c8:98:56:da: 9e:13:e0:9c:c0:13:8e:43:10:54:cd:49:5e:ff:31:14:18:f8: 77:cc:33:ca:a0:d5:bf:fa:13:98:71:81:67:0c:5f:06:5c:fa: 4c:19:5d:b9:09:8f:f3:ef:95:98:5f:16:bb:92:6e:df:63:36: 21:51:c3:87:95:6e:2c:a8:7f:e0:ef:e8:cd:1e:2d:5f:38:dc: ab:55:df:7b:a1:e6:6c:93:7c:cf:4e:7c:34:ec:31:31:31:66: 95:88:b7:7e:87:73:08:0f:4e:c6:6d:f0:22:54:f5:34:3b:d4: f8:88:a2:dc:da:c4:77:92:77:67:06:f4:77:d6:81:29:b7:8c: 93:3f:5e:f9:92:dc:c9:a1:82:b8:77:d4:16:9b:c5:96:35:8d: f5:2a:d7:02:6c:df:92:1c:77:19:f1:d9:2a:3f:d7:2d:a3:95: c9:aa:74:3a:55:a8:21:48:69:bd:df:4f:01:44:e0:f6:70:45: 46:40:61:a5:3a:29:52:e9:73:c8:6f:80:37:51:6b:3f:af:df: bd:7d:71:92:4a:b1:5d:28:e4:83:83:43:0d:08:9b:16:8b:0a: ee:7c:08:dc:6f:1b:7b:be:c4:a4:47:6f:17:a5:db:aa:c0:b2: 83:5c:4a:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhFREYxMTAvBgNVBAUTKDBBM0NGQzdGMzk1QTM0QkFCRTMxQjhDQTQ2MjNEMzFD NzZBOEQ5RkEwHhcNMjUwODIzMDIzNDI0WhcNMjUwODMwMDIzNDI0WjAYMRYwFAYD VQQDEw02OGE5MjhiMC0zZTk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7Y+lZiPTqH/1PkPamPEB7Cx+oVSdr0QcG2f88Xt0RryO3Xul79BWllvnqTAg F4MxtgTZiKboMHmCNRGo8O161kvWJITFFindc81YAyYuOuV7pSRdAIPJmuosH+DM bXTh+ISHeiWlvuwvsjySoLYTddu+f+tEmg6fx/16CXJBWWkWWe6OQx/5II+MR8sx pWCHu/cAjaIPFC0KK0kaSESNHMURfPjvFloT0k7TKc5UGc5Cj7+W7yJCdkZIN+/S 3sR3LByG5MyGLCBgUULlqipvW64rXdfafVqMLutYtQ1rCKUM2ImxvFLHmf/7pcYh LKn8OZBhjxiybuNyAC6iMis5mwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD+zifZZ QRR0Hy5LumtXuwZAJFnuMB8GA1UdIwQYMBaAFAo8/H85WjS6vjG4ykYj0xx2qNn6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEVERi9GNDZBRERFNjdD NTcxMUVEQkYyMTM3NjdDNEY5QUUwMi9Dano4ZnpsYU5McS1NYmpLUmlQVEhIYW8y Zm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NqejhmemxhTkxxLU1iaktSaVBUSEhhbzJmby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEVERi9GNDZBRERFNjdDNTcxMUVEQkYyMTM3NjdDNEY5QUUwMi9Dano4ZnpsYU5M cS1NYmpLUmlQVEhIYW8yZm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwjcpGRIJsKMnSQnwUBMiYVtqeE+CcwBOOQxBUzUle/zEUGPh3zDPK oNW/+hOYcYFnDF8GXPpMGV25CY/z75WYXxa7km7fYzYhUcOHlW4sqH/g7+jNHi1f ONyrVd97oeZsk3zPTnw07DExMWaViLd+h3MID07GbfAiVPU0O9T4iKLc2sR3kndn BvR31oEpt4yTP175ktzJoYK4d9QWm8WWNY31KtcCbN+SHHcZ8dkqP9cto5XJqnQ6 VaghSGm9308BROD2cEVGQGGlOilS6XPIb4A3UWs/r9+9fXGSSrFdKOSDg0MNCJsW iwrufAjcbxt7vsSkR28XpduqwLKDXEqH -----END CERTIFICATE-----Generated at Sat Aug 23 13:54:00 2025 by rpki-client