$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.mft File: ZNKz1lpcbM5NCNeP_tsoVrZB1qM.mft (raw, json) Hash identifier: GFSeGr03k9ZARIiS0rarX/YZ/5otpvxbkAd2j1XoJIU= Subject key identifier: 8E:5E:2B:17:01:E2:1A:90:C2:CB:B6:00:9A:D8:85:6E:64:59:EA:A9 Authority key identifier: 64:D2:B3:D6:5A:5C:6C:CE:4D:08:D7:8F:FE:DB:28:56:B6:41:D6:A3 Certificate issuer: /CN=A91EBC61/serialNumber=64D2B3D65A5C6CCE4D08D78FFEDB2856B641D6A3 Certificate serial: 85 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.mft Manifest number: 84 Signing time: Sat 23 Aug 2025 06:53:28 +0000 Manifest this update: Sat 23 Aug 2025 06:53:27 +0000 Manifest next update: Sat 30 Aug 2025 06:53:27 +0000 Files and hashes: 1: ZNKz1lpcbM5NCNeP_tsoVrZB1qM.crl (hash: PWbrAgudFyYQ7kR7UhnrcMqNgDQwNPe+U6GCuuK9T7w=) 2: 8D26DADCB6C411EF99C3B758C4F9AE02.roa (hash: BCZ1HJoEZyrIFeiF3ZHLW8BBZXBaO4KH4xqAbBol+hw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.crl rsync://rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:53:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 133 (0x85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBC61, serialNumber=64D2B3D65A5C6CCE4D08D78FFEDB2856B641D6A3 Validity Not Before: Aug 23 06:53:27 2025 GMT Not After : Aug 30 06:53:27 2025 GMT Subject: CN=68a96568-b60f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:36:f0:be:30:d8:73:d3:44:67:80:3a:0d:07: 2e:09:54:2e:f7:16:fa:08:56:cf:84:53:c1:15:70: cc:37:cb:52:c2:66:c5:88:93:ad:e1:d1:4b:d3:a0: 16:97:4a:54:45:f6:f7:81:34:eb:9c:d1:98:82:db: 5a:64:6f:2f:02:3c:da:cc:64:ea:c3:4f:e5:77:3b: a8:20:88:83:ad:1e:ec:50:14:09:12:cc:d0:ce:46: 1b:a1:49:6d:72:f3:5e:f1:7c:aa:74:41:34:14:46: a4:95:1c:5b:e2:17:de:71:f3:ab:1b:7d:5d:3f:24: 59:22:28:5a:46:17:8d:c0:e1:70:4b:31:62:c4:6c: 15:7c:60:42:90:47:39:cb:2b:9d:e9:cf:26:fc:1a: 61:ee:25:cd:83:84:6a:af:86:12:ed:ff:13:cb:aa: 19:b0:3b:ff:98:0d:07:c8:39:b1:04:93:11:0f:1b: 07:ae:47:46:eb:56:14:f4:38:8c:b9:5a:6c:b0:75: d7:c6:6e:78:88:0e:a4:1f:6c:ae:ea:f3:5e:5c:8e: ae:b6:4a:17:86:dc:15:0d:d1:5e:0d:ff:d2:23:88: fa:d2:f6:39:3d:7d:bd:d6:f6:28:75:0e:46:3f:8b: 03:29:95:ca:fb:8d:98:21:dd:b0:27:53:41:bb:c4: da:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:5E:2B:17:01:E2:1A:90:C2:CB:B6:00:9A:D8:85:6E:64:59:EA:A9 X509v3 Authority Key Identifier: keyid:64:D2:B3:D6:5A:5C:6C:CE:4D:08:D7:8F:FE:DB:28:56:B6:41:D6:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:08:b1:8d:63:dc:17:b7:5b:30:b7:81:a4:2a:c9:7c:35:9c: 5b:eb:09:e2:a5:4e:1b:27:84:50:c4:59:7f:d8:54:3d:16:5e: 30:a0:53:d2:e3:a5:c6:d6:7e:b4:0c:67:d9:bb:f3:61:1f:f8: 1a:48:e3:0b:22:dd:7d:0c:98:ea:2f:ed:e3:b0:ad:26:f1:17: c3:92:22:30:52:76:9f:e4:50:df:ee:69:0c:c9:aa:03:0e:b4: 83:a8:42:a8:24:31:91:22:9b:70:5b:69:53:d3:8f:8b:ee:af: 15:7b:7c:44:a7:fe:00:2a:8f:9c:04:bc:24:43:90:4a:ed:95: 56:eb:29:a0:a6:8b:56:e9:c4:61:d6:c5:41:8b:d5:5b:7f:e6: 03:69:a7:a9:df:ca:69:48:29:5a:63:dd:1f:24:70:56:7c:30: 27:b7:b1:1a:95:2d:d3:27:e2:98:62:48:1c:57:c5:b8:5d:53: a9:da:df:09:d1:90:38:63:1d:a9:b1:aa:ca:58:88:33:ae:ed: 4b:b2:80:97:65:c1:a6:f0:a5:9a:da:9d:81:c1:32:5f:32:62: d8:01:61:c0:4d:e4:7d:69:13:6a:23:b1:83:5d:82:45:96:bb: 4a:77:9c:ba:f2:d5:19:b2:db:66:cf:5a:ad:93:bd:1d:03:a8: 1b:ad:af:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJDNjExMTAvBgNVBAUTKDY0RDJCM0Q2NUE1QzZDQ0U0RDA4RDc4RkZFREIyODU2 QjY0MUQ2QTMwHhcNMjUwODIzMDY1MzI3WhcNMjUwODMwMDY1MzI3WjAYMRYwFAYD VQQDEw02OGE5NjU2OC1iNjBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvzbwvjDYc9NEZ4A6DQcuCVQu9xb6CFbPhFPBFXDMN8tSwmbFiJOt4dFL06AW l0pURfb3gTTrnNGYgttaZG8vAjzazGTqw0/ldzuoIIiDrR7sUBQJEszQzkYboUlt cvNe8XyqdEE0FEaklRxb4hfecfOrG31dPyRZIihaRheNwOFwSzFixGwVfGBCkEc5 yyud6c8m/Bph7iXNg4Rqr4YS7f8Ty6oZsDv/mA0HyDmxBJMRDxsHrkdG61YU9DiM uVpssHXXxm54iA6kH2yu6vNeXI6utkoXhtwVDdFeDf/SI4j60vY5PX291vYodQ5G P4sDKZXK+42YId2wJ1NBu8TaKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI5eKxcB 4hqQwsu2AJrYhW5kWeqpMB8GA1UdIwQYMBaAFGTSs9ZaXGzOTQjXj/7bKFa2Qdaj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkM2MS80NDZCRDdBMkI2 QzQxMUVGQTI0QUE2MTZDNEY5QUUwMi9aTkt6MWxwY2JNNU5DTmVQX3Rzb1ZyWkIx cU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1pOS3oxbHBjYk01TkNOZVBfdHNvVnJaQjFxTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkM2MS80NDZCRDdBMkI2QzQxMUVGQTI0QUE2MTZDNEY5QUUwMi9aTkt6MWxwY2JN NU5DTmVQX3Rzb1ZyWkIxcU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnCLGNY9wXt1swt4GkKsl8NZxb6wnipU4bJ4RQxFl/2FQ9Fl4woFPS 46XG1n60DGfZu/NhH/gaSOMLIt19DJjqL+3jsK0m8RfDkiIwUnaf5FDf7mkMyaoD DrSDqEKoJDGRIptwW2lT04+L7q8Ve3xEp/4AKo+cBLwkQ5BK7ZVW6ymgpotW6cRh 1sVBi9Vbf+YDaaep38ppSClaY90fJHBWfDAnt7EalS3TJ+KYYkgcV8W4XVOp2t8J 0ZA4Yx2psarKWIgzru1LsoCXZcGm8KWa2p2BwTJfMmLYAWHATeR9aRNqI7GDXYJF lrtKd5y68tUZsttmz1qtk70dA6gbra80 -----END CERTIFICATE-----Generated at Sat Aug 23 12:44:31 2025 by rpki-client