$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.mft File: z4nWqxHn1Hqhe0MJxypytxy6R64.mft (raw, json) Hash identifier: iSqy+mLgWrgS+ja9tvJJAK1Ny+9HxOnM6/T852TcPCA= Subject key identifier: E4:3F:9C:26:CB:FC:1E:24:0A:56:45:43:9D:D8:41:43:33:BE:1F:F2 Authority key identifier: CF:89:D6:AB:11:E7:D4:7A:A1:7B:43:09:C7:2A:72:B7:1C:BA:47:AE Certificate issuer: /CN=A91E4D9B/serialNumber=CF89D6AB11E7D47AA17B4309C72A72B71CBA47AE Certificate serial: 0895 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4nWqxHn1Hqhe0MJxypytxy6R64.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.mft Manifest number: 088B Signing time: Fri 22 Aug 2025 20:44:23 +0000 Manifest this update: Fri 22 Aug 2025 20:44:22 +0000 Manifest next update: Fri 29 Aug 2025 20:44:22 +0000 Files and hashes: 1: z4nWqxHn1Hqhe0MJxypytxy6R64.crl (hash: zrnxzNPI47lgBfhY8u4c8lRl+FPbRLr3Yaaqr5Fn5cg=) 2: CCF7B8AA22B811ECAD21FB20C4F9AE02.roa (hash: jP9WQeUuHByQOgvhcc4yViwwc1IsiLi4j4kFeZuXSLA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.crl rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4nWqxHn1Hqhe0MJxypytxy6R64.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:44:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2197 (0x895) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4D9B, serialNumber=CF89D6AB11E7D47AA17B4309C72A72B71CBA47AE Validity Not Before: Aug 22 20:44:22 2025 GMT Not After : Aug 29 20:44:22 2025 GMT Subject: CN=68a8d6a7-aeab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:46:d9:e6:0b:33:bc:19:59:c5:3e:5a:e1:93: d4:6e:0d:5a:d3:95:8c:e7:8c:26:5b:7b:0d:91:04: bc:08:31:b9:48:66:52:80:43:6a:ff:8b:b8:d4:a4: bf:63:ee:6e:a3:02:fc:0f:da:da:85:da:84:32:7a: ff:12:67:42:8c:d2:00:9d:50:58:5f:ed:1d:a3:5d: 5e:e9:8f:f3:be:5f:99:d2:56:cb:a2:d9:61:3c:d6: af:aa:21:dd:35:2b:6c:c9:d1:b2:94:f7:e7:dd:6a: 76:39:77:24:5f:32:02:93:b6:ce:af:6f:df:cc:70: 00:2d:9a:aa:a9:08:22:44:bb:16:75:06:76:60:e6: 3d:92:b4:81:17:b5:be:cd:86:50:9e:30:fd:3b:e5: a5:c8:46:e8:64:ca:ef:89:de:3e:e5:82:49:28:92: 6b:77:33:34:f0:bf:c0:bd:90:ea:1a:6b:81:de:c5: 6a:14:a4:1f:fb:ae:46:ac:e7:a9:ef:fc:cf:7a:4a: 8b:ed:a4:02:f9:d5:66:fd:ec:06:5f:e1:ba:64:a3: 23:ac:16:0d:b2:ed:be:70:77:fa:e4:10:06:fc:e8: 1b:96:7a:2e:f1:49:ce:63:f4:71:af:3d:e5:af:ab: 37:a6:dc:2b:d9:e5:9e:98:aa:f8:a9:c9:0a:49:65: 1a:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:3F:9C:26:CB:FC:1E:24:0A:56:45:43:9D:D8:41:43:33:BE:1F:F2 X509v3 Authority Key Identifier: keyid:CF:89:D6:AB:11:E7:D4:7A:A1:7B:43:09:C7:2A:72:B7:1C:BA:47:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4nWqxHn1Hqhe0MJxypytxy6R64.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:c3:78:19:6a:64:0a:12:34:22:7f:96:c6:2e:82:53:cd:e7: bd:16:c1:6b:47:66:fb:ae:05:7f:f8:34:ca:2d:ea:68:3e:3f: 13:28:56:28:15:16:86:ef:49:50:e7:74:e2:da:0a:12:40:7d: f2:92:d5:d8:2a:26:88:0d:0d:05:ce:bf:31:2e:63:ad:9a:7a: c4:96:ab:95:69:6d:c7:9d:43:d5:04:ac:79:24:66:16:97:4c: d7:be:0b:fa:6c:a2:bf:1f:65:32:d4:bb:3d:09:21:c7:a2:93: ac:f4:1b:ba:a8:42:36:35:b9:c1:c0:be:3c:88:3a:2a:70:1a: 76:4d:f1:cd:c7:8a:b9:97:46:37:6d:5e:5c:b7:6a:1c:33:ef: e2:9b:0d:fd:85:db:df:ac:3d:a7:d2:01:4c:f0:5a:4f:a2:0c: 99:2e:92:b6:67:52:61:4f:41:9e:4b:28:f2:de:b8:11:1d:bb: a2:13:3e:be:35:aa:e6:cd:89:ad:a4:f0:a2:dc:b5:9b:fa:b8: af:34:38:43:ab:ba:94:b7:b8:64:da:f6:5f:fd:45:a2:7a:a0: b8:fb:7d:67:dc:49:3e:39:53:3f:61:16:3f:27:14:00:60:b0: e5:f7:3d:b9:6b:e4:3a:86:e2:0d:25:9e:dc:9f:b1:68:fc:97: d6:81:ad:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTREOUIxMTAvBgNVBAUTKENGODlENkFCMTFFN0Q0N0FBMTdCNDMwOUM3MkE3MkI3 MUNCQTQ3QUUwHhcNMjUwODIyMjA0NDIyWhcNMjUwODI5MjA0NDIyWjAYMRYwFAYD VQQDEw02OGE4ZDZhNy1hZWFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs0bZ5gszvBlZxT5a4ZPUbg1a05WM54wmW3sNkQS8CDG5SGZSgENq/4u41KS/ Y+5uowL8D9rahdqEMnr/EmdCjNIAnVBYX+0do11e6Y/zvl+Z0lbLotlhPNavqiHd NStsydGylPfn3Wp2OXckXzICk7bOr2/fzHAALZqqqQgiRLsWdQZ2YOY9krSBF7W+ zYZQnjD9O+WlyEboZMrvid4+5YJJKJJrdzM08L/AvZDqGmuB3sVqFKQf+65GrOep 7/zPekqL7aQC+dVm/ewGX+G6ZKMjrBYNsu2+cHf65BAG/Ogblnou8UnOY/Rxrz3l r6s3ptwr2eWemKr4qckKSWUaSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOQ/nCbL /B4kClZFQ53YQUMzvh/yMB8GA1UdIwQYMBaAFM+J1qsR59R6oXtDCccqcrccukeu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEQ5Qi9GNUJBQTNEOEM4 MDAxMUVBODdENDRBNzhDNEY5QUUwMi96NG5XcXhIbjFIcWhlME1KeHlweXR4eTZS NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3o0bldxeEhuMUhxaGUwTUp4eXB5dHh5NlI2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEQ5Qi9GNUJBQTNEOEM4MDAxMUVBODdENDRBNzhDNEY5QUUwMi96NG5XcXhIbjFI cWhlME1KeHlweXR4eTZSNjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKw3gZamQKEjQif5bGLoJTzee9FsFrR2b7rgV/+DTKLepoPj8TKFYo FRaG70lQ53Ti2goSQH3yktXYKiaIDQ0Fzr8xLmOtmnrElquVaW3HnUPVBKx5JGYW l0zXvgv6bKK/H2Uy1Ls9CSHHopOs9Bu6qEI2NbnBwL48iDoqcBp2TfHNx4q5l0Y3 bV5ct2ocM+/imw39hdvfrD2n0gFM8FpPogyZLpK2Z1JhT0GeSyjy3rgRHbuiEz6+ NarmzYmtpPCi3LWb+rivNDhDq7qUt7hk2vZf/UWieqC4+31n3Ek+OVM/YRY/JxQA YLDl9z25a+Q6huINJZ7cn7Fo/JfWga1A -----END CERTIFICATE-----Generated at Sun Aug 24 00:46:45 2025 by rpki-client