$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft File: RZTy7BffVsPQZUDzZtKvEYsxfx4.mft (raw, json) Hash identifier: R9LnrJ7H3+eSN7Vmg0j6xE5lOFNxYQFduh+AgEiKm+4= Subject key identifier: 27:1F:49:E7:07:00:11:51:8C:54:8F:0A:55:87:5D:CA:5A:DB:16:C2 Authority key identifier: 45:94:F2:EC:17:DF:56:C3:D0:65:40:F3:66:D2:AF:11:8B:31:7F:1E Certificate issuer: /CN=A91CE978/serialNumber=4594F2EC17DF56C3D06540F366D2AF118B317F1E Certificate serial: 0132 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RZTy7BffVsPQZUDzZtKvEYsxfx4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft Manifest number: 012F Signing time: Fri 22 Aug 2025 14:54:07 +0000 Manifest this update: Fri 22 Aug 2025 14:54:07 +0000 Manifest next update: Fri 29 Aug 2025 14:54:07 +0000 Files and hashes: 1: RZTy7BffVsPQZUDzZtKvEYsxfx4.crl (hash: Bcc1YwEMWPWLlXgEfIoA5XXIQnczqPLvBT9zT7vNINg=) 2: 30EAE110B9AD11EE83063243C4F9AE02.roa (hash: /mgu4P2twSDACdGUYPekQQEcvJH+CFlbuOsPxwdYvXg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.crl rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RZTy7BffVsPQZUDzZtKvEYsxfx4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:54:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 306 (0x132) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE978, serialNumber=4594F2EC17DF56C3D06540F366D2AF118B317F1E Validity Not Before: Aug 22 14:54:07 2025 GMT Not After : Aug 29 14:54:07 2025 GMT Subject: CN=68a8848f-1bd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:7e:76:19:47:d6:d9:ca:a5:24:34:57:67:cf: 2e:72:55:5e:66:3a:75:d0:0b:bb:c0:9d:28:fd:24: 23:2a:f6:a4:43:3d:73:4f:e2:9c:70:89:ef:cd:b6: 96:d0:ff:5d:fc:24:18:64:f0:f1:33:e2:8b:a3:1b: 56:5d:f6:c8:ee:e4:e5:45:32:30:53:f8:7b:38:a9: 77:4e:f0:a9:fa:8b:82:9e:7c:75:41:5e:3f:ad:ca: 32:85:14:89:77:4e:96:2e:7f:25:bd:e2:7b:35:81: d5:19:c9:11:48:cb:8a:14:64:74:97:ad:25:4d:f0: 58:83:db:4b:33:0e:c0:2f:5a:ba:5d:63:60:17:74: 0d:da:1a:e2:a9:e1:5f:a8:d8:bc:a8:bb:f9:c3:8d: e2:92:c0:05:94:f1:5c:3e:e6:6d:ad:e4:bc:8f:24: 13:0a:56:d4:8d:b4:47:a7:2b:32:f9:14:6d:e4:d1: 25:d2:66:fc:cd:8f:d4:0f:55:bf:6d:89:e4:46:81: d3:fa:03:b4:cb:24:9e:98:54:29:7c:51:f2:35:a4: e6:fd:61:7c:0f:02:19:9c:e3:34:77:41:9e:71:23: 76:89:88:67:92:73:e6:db:06:3e:16:bd:48:fa:b3: d0:7d:45:15:55:3a:56:f6:1e:c2:c6:71:57:e6:5f: fb:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:1F:49:E7:07:00:11:51:8C:54:8F:0A:55:87:5D:CA:5A:DB:16:C2 X509v3 Authority Key Identifier: keyid:45:94:F2:EC:17:DF:56:C3:D0:65:40:F3:66:D2:AF:11:8B:31:7F:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RZTy7BffVsPQZUDzZtKvEYsxfx4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:0c:2e:95:30:ad:5c:96:7a:65:42:b9:68:6f:b4:bd:52:60: 45:4a:9d:6f:e9:a1:ae:cb:e6:e7:55:09:c1:d5:cd:b4:ef:ab: 72:e2:cc:dc:15:1c:52:ca:af:d2:7d:5b:65:47:be:2e:e8:cf: d6:a9:13:38:c5:ab:36:af:3a:01:44:d3:37:be:a8:e7:7b:ab: c2:66:bf:c8:83:68:c4:04:a3:5c:23:9e:2b:40:a6:b5:37:59: 38:ef:fb:05:a9:fd:44:55:4f:21:dc:83:92:ab:b6:cd:ac:1e: 4b:08:96:2f:81:79:24:93:71:1f:2d:6e:d2:35:2b:11:f1:5b: 0e:77:44:f9:87:09:f9:9e:f9:78:64:16:db:bd:46:ff:b0:6d: 9c:64:c5:b3:53:65:f1:82:e4:39:8e:28:72:5a:56:ec:44:7b: 9a:34:91:b2:2b:75:b0:2b:6a:35:a6:62:81:34:8d:38:77:e5: 2a:d8:0f:26:c7:08:d6:a5:17:98:42:bb:3b:5f:0f:d3:43:6e: 41:76:a0:8c:45:e5:95:ed:84:77:e9:3e:03:e3:d0:d1:af:6b: 86:13:3c:0f:2a:82:a6:bd:c2:b8:9b:5a:6d:fd:f8:f6:dc:eb: 57:5d:a6:66:f3:76:ec:74:0c:f4:1f:e4:ca:bb:86:85:7e:73: e8:b5:07:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5NzgxMTAvBgNVBAUTKDQ1OTRGMkVDMTdERjU2QzNEMDY1NDBGMzY2RDJBRjEx OEIzMTdGMUUwHhcNMjUwODIyMTQ1NDA3WhcNMjUwODI5MTQ1NDA3WjAYMRYwFAYD VQQDEw02OGE4ODQ4Zi0xYmQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7H52GUfW2cqlJDRXZ88uclVeZjp10Au7wJ0o/SQjKvakQz1zT+KccInvzbaW 0P9d/CQYZPDxM+KLoxtWXfbI7uTlRTIwU/h7OKl3TvCp+ouCnnx1QV4/rcoyhRSJ d06WLn8lveJ7NYHVGckRSMuKFGR0l60lTfBYg9tLMw7AL1q6XWNgF3QN2hriqeFf qNi8qLv5w43iksAFlPFcPuZtreS8jyQTClbUjbRHpysy+RRt5NEl0mb8zY/UD1W/ bYnkRoHT+gO0yySemFQpfFHyNaTm/WF8DwIZnOM0d0GecSN2iYhnknPm2wY+Fr1I +rPQfUUVVTpW9h7CxnFX5l/73QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCcfSecH ABFRjFSPClWHXcpa2xbCMB8GA1UdIwQYMBaAFEWU8uwX31bD0GVA82bSrxGLMX8e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTk3OC81REI1NTVBQUI4 REExMUVFQkM0QkVDMkRDNEY5QUUwMi9SWlR5N0JmZlZzUFFaVUR6WnRLdkVZc3hm eDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JaVHk3QmZmVnNQUVpVRHpadEt2RVlzeGZ4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTk3OC81REI1NTVBQUI4REExMUVFQkM0QkVDMkRDNEY5QUUwMi9SWlR5N0JmZlZz UFFaVUR6WnRLdkVZc3hmeDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3DC6VMK1clnplQrlob7S9UmBFSp1v6aGuy+bnVQnB1c2076ty4szc FRxSyq/SfVtlR74u6M/WqRM4xas2rzoBRNM3vqjne6vCZr/Ig2jEBKNcI54rQKa1 N1k47/sFqf1EVU8h3IOSq7bNrB5LCJYvgXkkk3EfLW7SNSsR8VsOd0T5hwn5nvl4 ZBbbvUb/sG2cZMWzU2XxguQ5jihyWlbsRHuaNJGyK3WwK2o1pmKBNI04d+Uq2A8m xwjWpReYQrs7Xw/TQ25BdqCMReWV7YR36T4D49DRr2uGEzwPKoKmvcK4m1pt/fj2 3OtXXaZm83bsdAz0H+TKu4aFfnPotQdd -----END CERTIFICATE-----Generated at Sat Aug 23 12:19:26 2025 by rpki-client