$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft File: CZyBX8poKm4oYE_pYv0QcVgn6V0.mft (raw, json) Hash identifier: qKNqu4LmmPwoWTspvfoIpSNrLeyO7UGvcUfnuOFGiTw= Subject key identifier: DF:75:5C:CE:A0:27:F2:37:59:E6:B2:61:64:1C:C9:E6:69:EA:94:54 Authority key identifier: 09:9C:81:5F:CA:68:2A:6E:28:60:4F:E9:62:FD:10:71:58:27:E9:5D Certificate issuer: /CN=A91DEB2E/serialNumber=099C815FCA682A6E28604FE962FD10715827E95D Certificate serial: 01F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZyBX8poKm4oYE_pYv0QcVgn6V0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft Manifest number: 01EF Signing time: Sat 23 Aug 2025 02:39:45 +0000 Manifest this update: Sat 23 Aug 2025 02:39:44 +0000 Manifest next update: Sat 30 Aug 2025 02:39:44 +0000 Files and hashes: 1: CZyBX8poKm4oYE_pYv0QcVgn6V0.crl (hash: CSDV1/YQLEt7CnXwpyqyZwzHDR5cKLD/lFTcAIm1OQ0=) 2: 3CB103648C2511EDB64DB410C4F9AE02.roa (hash: MmbQus/ep65NlWLekYokD81GuyXquRa4J0H16aokObA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.crl rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZyBX8poKm4oYE_pYv0QcVgn6V0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:39:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 501 (0x1f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEB2E, serialNumber=099C815FCA682A6E28604FE962FD10715827E95D Validity Not Before: Aug 23 02:39:44 2025 GMT Not After : Aug 30 02:39:44 2025 GMT Subject: CN=68a929f0-e013 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:03:49:8d:c0:83:0a:61:5d:11:cb:37:56:07: b8:ac:2b:c9:42:10:2d:19:7b:fc:35:dc:fe:3d:31: 08:2e:36:01:6c:e9:4d:69:85:20:73:24:ac:d9:be: b2:0e:ef:0f:8b:a6:db:bf:4f:da:97:46:28:0f:6e: e0:83:09:16:1e:6c:93:f0:39:a5:ac:31:d6:6d:3b: 5c:4f:a0:fb:27:07:a4:10:56:38:fc:a9:ab:41:34: 0b:c3:f7:3c:f0:5a:a1:a1:85:8b:de:99:f3:81:fa: 08:0b:aa:e2:f9:37:44:7d:b1:8e:47:c9:98:43:55: 10:d1:45:94:54:d2:f9:c7:88:f2:21:5f:3f:97:70: f6:32:b3:1d:28:d4:b0:04:21:51:0d:9c:57:66:5c: 10:fc:19:df:d3:03:4a:f1:0a:e8:05:0c:f3:ab:9d: b8:03:8d:74:c2:2d:d3:34:8d:51:41:a8:b2:37:d9: ff:1e:9d:fa:04:5c:5f:c1:25:5f:16:72:9a:82:05: 94:a1:b2:35:05:f5:91:6c:66:05:b8:e9:bc:f6:16: f2:37:b5:19:f2:e0:da:a9:8a:e7:bd:6b:a4:ff:57: b3:47:f1:39:f8:82:93:11:6a:2b:0d:9c:d9:a7:17: 4e:15:63:a9:28:80:1a:2c:6f:52:81:c5:6f:a2:66: 83:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:75:5C:CE:A0:27:F2:37:59:E6:B2:61:64:1C:C9:E6:69:EA:94:54 X509v3 Authority Key Identifier: keyid:09:9C:81:5F:CA:68:2A:6E:28:60:4F:E9:62:FD:10:71:58:27:E9:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZyBX8poKm4oYE_pYv0QcVgn6V0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:8e:93:02:6a:16:5d:5c:5c:ba:3a:9d:56:f5:4a:0c:cb:09: 86:db:36:7b:fe:70:76:7e:55:ae:1e:5f:d9:90:03:89:c8:e9: 2f:15:9c:cd:70:b1:29:ee:97:ae:7e:36:7a:52:43:e0:bd:f3: b3:26:34:87:71:11:86:e8:7b:a5:12:e9:4f:e5:11:03:0b:ec: c7:98:c9:8e:96:88:2d:51:18:88:9c:5f:aa:9a:f9:13:c5:2e: 2c:99:28:54:51:a0:37:19:2c:d0:d3:d7:6d:90:1a:7a:13:97: 39:30:9f:51:cd:ef:0b:ff:bf:33:ed:bd:9d:56:9a:96:12:69: f5:ce:30:89:a7:c1:4d:91:e8:87:a2:ce:09:27:3a:4c:cd:e5: a9:8e:18:e9:01:cb:b1:eb:e9:50:a4:b6:33:a1:8d:52:15:09: f4:27:38:46:95:aa:2c:2e:c7:25:f2:81:54:7f:72:7c:60:d7: 39:5e:c0:b0:d5:a2:78:82:2a:6a:d4:e4:83:22:8f:87:61:89: ee:1e:1b:0d:5d:5d:d1:39:9f:3e:de:ca:da:21:3e:84:ab:0c: 76:f9:5c:8d:96:c8:58:c4:7e:44:51:33:37:dd:cd:dd:b1:38: ed:70:7a:f2:b6:65:bc:09:b0:99:7c:fe:93:ef:37:29:62:71: 01:af:4f:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVCMkUxMTAvBgNVBAUTKDA5OUM4MTVGQ0E2ODJBNkUyODYwNEZFOTYyRkQxMDcx NTgyN0U5NUQwHhcNMjUwODIzMDIzOTQ0WhcNMjUwODMwMDIzOTQ0WjAYMRYwFAYD VQQDEw02OGE5MjlmMC1lMDEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0QNJjcCDCmFdEcs3Vge4rCvJQhAtGXv8Ndz+PTEILjYBbOlNaYUgcySs2b6y Du8Pi6bbv0/al0YoD27ggwkWHmyT8DmlrDHWbTtcT6D7JwekEFY4/KmrQTQLw/c8 8FqhoYWL3pnzgfoIC6ri+TdEfbGOR8mYQ1UQ0UWUVNL5x4jyIV8/l3D2MrMdKNSw BCFRDZxXZlwQ/Bnf0wNK8QroBQzzq524A410wi3TNI1RQaiyN9n/Hp36BFxfwSVf FnKaggWUobI1BfWRbGYFuOm89hbyN7UZ8uDaqYrnvWuk/1ezR/E5+IKTEWorDZzZ pxdOFWOpKIAaLG9SgcVvomaDCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN91XM6g J/I3WeayYWQcyeZp6pRUMB8GA1UdIwQYMBaAFAmcgV/KaCpuKGBP6WL9EHFYJ+ld MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUIyRS82RkM4QkZERThD MjExMUVEQjJCMkYzMEFDNEY5QUUwMi9DWnlCWDhwb0ttNG9ZRV9wWXYwUWNWZ242 VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaeUJYOHBvS200b1lFX3BZdjBRY1ZnbjZWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUIyRS82RkM4QkZERThDMjExMUVEQjJCMkYzMEFDNEY5QUUwMi9DWnlCWDhwb0tt NG9ZRV9wWXYwUWNWZ242VjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDDjpMCahZdXFy6Op1W9UoMywmG2zZ7/nB2flWuHl/ZkAOJyOkvFZzN cLEp7peufjZ6UkPgvfOzJjSHcRGG6HulEulP5REDC+zHmMmOlogtURiInF+qmvkT xS4smShUUaA3GSzQ09dtkBp6E5c5MJ9Rze8L/78z7b2dVpqWEmn1zjCJp8FNkeiH os4JJzpMzeWpjhjpAcux6+lQpLYzoY1SFQn0JzhGlaosLscl8oFUf3J8YNc5XsCw 1aJ4gipq1OSDIo+HYYnuHhsNXV3ROZ8+3sraIT6Eqwx2+VyNlshYxH5EUTM33c3d sTjtcHrytmW8CbCZfP6T7zcpYnEBr0/R -----END CERTIFICATE-----Generated at Sun Aug 24 03:04:37 2025 by rpki-client