$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5590/A895249EF7C511EA871C000CC4F9AE02/cZYTj9n8jHj-hDolPLBICtzFfw0.mft File: cZYTj9n8jHj-hDolPLBICtzFfw0.mft (raw, json) Hash identifier: sg3gxuoqvZVjPdpCyfbftgE6berTiVEcWRX8Ua+qEwA= Subject key identifier: DC:23:02:7B:B2:E6:9C:88:C5:C7:9A:E4:7C:E3:9D:51:88:50:A9:88 Authority key identifier: 71:96:13:8F:D9:FC:8C:78:FE:84:3A:25:3C:B0:48:0A:DC:C5:7F:0D Certificate issuer: /CN=A91D5590/serialNumber=7196138FD9FC8C78FE843A253CB0480ADCC57F0D Certificate serial: 07F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cZYTj9n8jHj-hDolPLBICtzFfw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5590/A895249EF7C511EA871C000CC4F9AE02/cZYTj9n8jHj-hDolPLBICtzFfw0.mft Manifest number: 07EB Signing time: Fri 22 Aug 2025 21:08:46 +0000 Manifest this update: Fri 22 Aug 2025 21:08:46 +0000 Manifest next update: Fri 29 Aug 2025 21:08:46 +0000 Files and hashes: 1: cZYTj9n8jHj-hDolPLBICtzFfw0.crl (hash: Sjde8N7SeTGg3sOoApKwLXs8eOMHxNjpgg5FcF6YlHo=) 2: 986F0854F7C611EA8B23C30CC4F9AE02.roa (hash: F2B6eTQtjw4DMTGhIIRc21e5xRW7fmJOpub38olCp9w=) 3: 9920D2E6F7C611EA8B23C30CC4F9AE02.roa (hash: d0oN/FUNzNpOKmQI6ds/0v5d1ZE90v5NzlRPE14knFk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5590/A895249EF7C511EA871C000CC4F9AE02/cZYTj9n8jHj-hDolPLBICtzFfw0.crl rsync://rpki.apnic.net/member_repository/A91D5590/A895249EF7C511EA871C000CC4F9AE02/cZYTj9n8jHj-hDolPLBICtzFfw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cZYTj9n8jHj-hDolPLBICtzFfw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:08:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2037 (0x7f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5590, serialNumber=7196138FD9FC8C78FE843A253CB0480ADCC57F0D Validity Not Before: Aug 22 21:08:46 2025 GMT Not After : Aug 29 21:08:46 2025 GMT Subject: CN=68a8dc5e-7d05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:17:53:7d:25:1d:68:a3:34:23:c7:ff:8f:ae: e5:28:61:39:4f:73:bc:dc:d6:07:4c:ef:a9:de:be: bb:72:c1:03:d2:5c:8e:31:9a:4e:7f:dd:13:0f:73: e4:69:ee:7a:19:fb:7d:f4:4f:64:7c:67:d1:b9:c9: 3a:95:f8:7d:1a:22:2e:98:af:44:f4:2f:40:0a:f4: 3e:1c:43:ae:1a:69:4c:74:7b:b6:ad:c4:7e:07:e2: d4:c0:e3:92:11:a8:38:9a:e4:6c:42:e5:ad:41:28: 76:bf:a0:10:aa:3d:c7:c9:07:94:d2:47:b0:95:f4: 77:60:ca:03:d9:1f:7e:df:bb:3d:f5:b1:1c:1c:71: 51:a6:80:ae:0c:23:89:fa:5c:75:fa:e4:97:cf:cf: 36:51:c5:18:94:a0:bc:11:7f:90:97:9d:27:f2:7e: e6:71:f9:65:c8:20:2f:42:f7:b7:53:06:58:d5:8e: 6c:c5:55:b9:1a:53:0a:a9:6c:d4:71:31:85:d3:fd: 90:1f:70:84:d2:65:16:3f:77:ad:c0:4f:be:10:bf: e3:9d:da:85:64:76:4c:38:2c:65:cd:2b:db:7c:4e: 91:3b:ee:63:4b:c6:33:1e:23:55:02:6e:6a:73:43: 11:60:c1:fc:2e:76:04:c4:9f:f7:0d:41:22:65:39: ef:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:23:02:7B:B2:E6:9C:88:C5:C7:9A:E4:7C:E3:9D:51:88:50:A9:88 X509v3 Authority Key Identifier: keyid:71:96:13:8F:D9:FC:8C:78:FE:84:3A:25:3C:B0:48:0A:DC:C5:7F:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5590/A895249EF7C511EA871C000CC4F9AE02/cZYTj9n8jHj-hDolPLBICtzFfw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cZYTj9n8jHj-hDolPLBICtzFfw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5590/A895249EF7C511EA871C000CC4F9AE02/cZYTj9n8jHj-hDolPLBICtzFfw0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:c1:9a:f4:17:67:18:83:93:2d:d9:44:a1:a5:76:54:27:2b: cc:56:0e:59:4d:db:cc:32:46:23:49:5c:24:f1:24:a8:cf:f4: 57:dc:13:da:9c:a5:96:48:36:93:f8:f9:27:fe:e1:f2:b7:44: ab:92:8c:28:d6:ce:01:28:69:20:90:89:9c:1c:84:b8:e0:66: e4:9a:71:df:ac:81:55:50:a3:f6:73:20:34:71:2c:2d:3c:e1: 5f:99:74:50:2d:37:30:2b:07:e5:bc:b4:e9:eb:24:df:61:79: 1b:2e:af:db:04:e5:c7:aa:25:8c:32:e4:63:71:ed:78:b4:ee: 0b:aa:ac:5f:83:a6:a0:73:30:5b:f2:b6:da:f7:1a:3c:4d:e0: 7f:23:1c:33:b3:bc:89:67:ef:62:53:51:33:82:7b:b3:9e:cc: 4a:83:e2:31:2e:e7:64:71:91:85:a9:de:8c:9c:2a:21:b5:76: 0e:2d:07:6b:10:73:f9:02:ab:d0:ff:ce:aa:74:e3:14:cb:dc: d1:c0:7f:08:37:e5:4b:e3:4a:54:b6:ab:13:37:7a:a0:66:2e: f8:16:6b:b1:a4:ab:a3:13:aa:aa:f1:bf:0c:e5:07:17:8a:b0: 0d:bd:6c:41:4f:da:b6:fb:04:a8:5b:a8:9e:ac:37:3a:3a:e3: 60:89:eb:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDU1OTAxMTAvBgNVBAUTKDcxOTYxMzhGRDlGQzhDNzhGRTg0M0EyNTNDQjA0ODBB RENDNTdGMEQwHhcNMjUwODIyMjEwODQ2WhcNMjUwODI5MjEwODQ2WjAYMRYwFAYD VQQDEw02OGE4ZGM1ZS03ZDA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnhdTfSUdaKM0I8f/j67lKGE5T3O83NYHTO+p3r67csED0lyOMZpOf90TD3Pk ae56Gft99E9kfGfRuck6lfh9GiIumK9E9C9ACvQ+HEOuGmlMdHu2rcR+B+LUwOOS Eag4muRsQuWtQSh2v6AQqj3HyQeU0kewlfR3YMoD2R9+37s99bEcHHFRpoCuDCOJ +lx1+uSXz882UcUYlKC8EX+Ql50n8n7mcfllyCAvQve3UwZY1Y5sxVW5GlMKqWzU cTGF0/2QH3CE0mUWP3etwE++EL/jndqFZHZMOCxlzSvbfE6RO+5jS8YzHiNVAm5q c0MRYMH8LnYExJ/3DUEiZTnvjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNwjAnuy 5pyIxcea5HzjnVGIUKmIMB8GA1UdIwQYMBaAFHGWE4/Z/Ix4/oQ6JTywSArcxX8N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTU5MC9BODk1MjQ5RUY3 QzUxMUVBODcxQzAwMENDNEY5QUUwMi9jWllUajluOGpIai1oRG9sUExCSUN0ekZm dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NaWVRqOW44akhqLWhEb2xQTEJJQ3R6RmZ3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTU5MC9BODk1MjQ5RUY3QzUxMUVBODcxQzAwMENDNEY5QUUwMi9jWllUajluOGpI ai1oRG9sUExCSUN0ekZmdzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3wZr0F2cYg5Mt2UShpXZUJyvMVg5ZTdvMMkYjSVwk8SSoz/RX3BPa nKWWSDaT+Pkn/uHyt0Srkowo1s4BKGkgkImcHIS44GbkmnHfrIFVUKP2cyA0cSwt POFfmXRQLTcwKwflvLTp6yTfYXkbLq/bBOXHqiWMMuRjce14tO4Lqqxfg6agczBb 8rba9xo8TeB/Ixwzs7yJZ+9iU1EzgnuznsxKg+IxLudkcZGFqd6MnCohtXYOLQdr EHP5AqvQ/86qdOMUy9zRwH8IN+VL40pUtqsTN3qgZi74FmuxpKujE6qq8b8M5QcX irANvWxBT9q2+wSoW6ierDc6OuNgieuQ -----END CERTIFICATE-----Generated at Sat Aug 23 21:03:32 2025 by rpki-client