$ rpki-client -vvf rpki.apnic.net/member_repository/A91F17B3/558C609879CD11F0A9B90321C4F9AE02/Z38M1kpd4sGwKO0APFaHS0j6LiE.mft File: Z38M1kpd4sGwKO0APFaHS0j6LiE.mft (raw, json) Hash identifier: 7S6Zhjmvb6OtHwxh0MHUWwkGtr4eYKZKPmbITvCOQy8= Subject key identifier: EB:90:4E:05:8A:CC:D5:A8:F4:1F:96:64:13:24:60:33:2E:3A:30:6F Authority key identifier: 67:7F:0C:D6:4A:5D:E2:C1:B0:28:ED:00:3C:56:87:4B:48:FA:2E:21 Certificate issuer: /CN=A91F17B3/serialNumber=677F0CD64A5DE2C1B028ED003C56874B48FA2E21 Certificate serial: 07 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Z38M1kpd4sGwKO0APFaHS0j6LiE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F17B3/558C609879CD11F0A9B90321C4F9AE02/Z38M1kpd4sGwKO0APFaHS0j6LiE.mft Manifest number: 06 Signing time: Sat 23 Aug 2025 08:23:38 +0000 Manifest this update: Sat 23 Aug 2025 08:23:37 +0000 Manifest next update: Sat 30 Aug 2025 08:23:37 +0000 Files and hashes: 1: Z38M1kpd4sGwKO0APFaHS0j6LiE.crl (hash: I1l14T4H9EN/U9PYgJl19+66k9nIdruEb4CCWuESuFw=) 2: 2EEDB7A679CE11F08016A625C4F9AE02.roa (hash: gnlUy/hdSeTuVT/qFWeLTFknA13pkDcB1vk6uf4nfjI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F17B3/558C609879CD11F0A9B90321C4F9AE02/Z38M1kpd4sGwKO0APFaHS0j6LiE.crl rsync://rpki.apnic.net/member_repository/A91F17B3/558C609879CD11F0A9B90321C4F9AE02/Z38M1kpd4sGwKO0APFaHS0j6LiE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Z38M1kpd4sGwKO0APFaHS0j6LiE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 08:23:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F17B3, serialNumber=677F0CD64A5DE2C1B028ED003C56874B48FA2E21 Validity Not Before: Aug 23 08:23:37 2025 GMT Not After : Aug 30 08:23:37 2025 GMT Subject: CN=68a97a89-cc72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:6c:e2:7a:71:8b:2b:a5:b5:f9:c2:f8:59:02: 25:53:b8:d2:f4:54:9a:36:82:b9:7b:ea:f8:67:99: 30:69:c3:39:1c:02:0b:81:9a:01:65:83:05:cb:40: 4c:0b:83:bf:dc:88:bb:3d:e7:6d:cb:4e:bb:6c:86: fd:f7:6d:72:0c:da:6a:fe:51:ef:b1:ad:f0:40:32: 85:f4:8a:eb:a8:38:3a:a1:6f:e3:14:5c:68:a7:98: 2a:a8:d9:7e:c0:bd:cd:cc:34:bc:d5:60:ab:67:91: f0:d5:2a:ce:1a:16:53:f7:58:f5:d8:36:ec:46:34: f5:4c:cb:32:10:16:51:8b:95:23:ed:d4:f2:79:93: 0d:e1:71:e3:98:1f:2c:bb:c2:3e:88:f9:02:5d:52: 10:ff:9e:57:9a:0b:d6:e0:b4:af:9c:59:00:46:33: f5:b9:88:ef:7d:db:db:49:52:20:8e:66:ce:fe:a2: 05:4d:34:4a:5e:e6:79:09:b9:4b:76:94:33:7f:c9: d2:3b:90:cf:2f:87:9e:4f:ba:51:94:7e:4b:95:a7: 4d:a7:66:9d:56:da:51:f8:a4:a2:ba:fd:40:69:76: c9:70:af:c3:6b:53:84:f6:c4:e3:1c:9b:1a:58:5b: aa:83:ed:32:49:94:11:c9:f4:88:d3:ec:05:e7:20: f2:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:90:4E:05:8A:CC:D5:A8:F4:1F:96:64:13:24:60:33:2E:3A:30:6F X509v3 Authority Key Identifier: keyid:67:7F:0C:D6:4A:5D:E2:C1:B0:28:ED:00:3C:56:87:4B:48:FA:2E:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F17B3/558C609879CD11F0A9B90321C4F9AE02/Z38M1kpd4sGwKO0APFaHS0j6LiE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Z38M1kpd4sGwKO0APFaHS0j6LiE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F17B3/558C609879CD11F0A9B90321C4F9AE02/Z38M1kpd4sGwKO0APFaHS0j6LiE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:84:ec:41:2e:52:50:5b:37:0f:f9:75:14:e2:3f:b0:50:97: 97:a9:0d:03:1b:88:aa:f8:a6:9f:9d:8e:64:e0:88:38:25:e3: 4c:5d:a0:93:6f:4d:f6:0a:9d:c0:27:cd:09:49:0c:1b:e2:87: 49:6e:e9:87:98:42:1d:01:b4:c0:27:c2:f1:98:c1:8a:f1:11: d8:a4:d4:98:78:9e:a6:49:cd:be:61:c2:5d:86:6b:e0:46:58: 45:04:4a:88:b2:ec:e4:53:54:07:4e:e9:7c:63:3f:87:e4:6b: f3:88:7d:68:33:2a:43:c7:3f:85:98:a5:f4:9d:3b:08:38:18: 54:3e:cb:5b:b2:7b:e3:66:8a:0a:85:1c:36:bf:fc:38:77:38: 0d:b8:e8:0b:fa:86:1a:6a:fb:27:cc:22:f5:22:2c:0c:20:34: 40:c3:5a:af:81:46:80:a2:d8:86:e7:c1:90:91:39:6c:43:ab: 44:bc:86:ab:89:50:dc:63:1a:ed:b8:30:f3:5c:e5:ca:aa:87: dd:51:8c:e4:c7:49:37:a1:c9:09:41:9f:1c:77:42:eb:10:93: 10:3e:c7:f3:5e:df:53:3e:2c:43:e9:d6:8e:bf:b7:c7:57:d3: 15:3d:09:3d:01:fe:3b:36:6e:d0:36:cc:0e:ed:d0:67:dc:6e: de:8e:e4:6a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MTdCMzExMC8GA1UEBRMoNjc3RjBDRDY0QTVERTJDMUIwMjhFRDAwM0M1Njg3NEI0 OEZBMkUyMTAeFw0yNTA4MjMwODIzMzdaFw0yNTA4MzAwODIzMzdaMBgxFjAUBgNV BAMTDTY4YTk3YTg5LWNjNzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDMbOJ6cYsrpbX5wvhZAiVTuNL0VJo2grl76vhnmTBpwzkcAguBmgFlgwXLQEwL g7/ciLs9523LTrtshv33bXIM2mr+Ue+xrfBAMoX0iuuoODqhb+MUXGinmCqo2X7A vc3MNLzVYKtnkfDVKs4aFlP3WPXYNuxGNPVMyzIQFlGLlSPt1PJ5kw3hceOYHyy7 wj6I+QJdUhD/nleaC9bgtK+cWQBGM/W5iO9929tJUiCOZs7+ogVNNEpe5nkJuUt2 lDN/ydI7kM8vh55PulGUfkuVp02nZp1W2lH4pKK6/UBpdslwr8NrU4T2xOMcmxpY W6qD7TJJlBHJ9IjT7AXnIPLbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU65BOBYrM 1aj0H5ZkEyRgMy46MG8wHwYDVR0jBBgwFoAUZ38M1kpd4sGwKO0APFaHS0j6LiEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYxN0IzLzU1OEM2MDk4NzlD RDExRjBBOUI5MDMyMUM0RjlBRTAyL1ozOE0xa3BkNHNHd0tPMEFQRmFIUzBqNkxp RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWjM4TTFrcGQ0c0d3S08wQVBGYUhTMGo2TGlFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYx N0IzLzU1OEM2MDk4NzlDRDExRjBBOUI5MDMyMUM0RjlBRTAyL1ozOE0xa3BkNHNH d0tPMEFQRmFIUzBqNkxpRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADqE7EEuUlBbNw/5dRTiP7BQl5epDQMbiKr4pp+djmTgiDgl40xdoJNv TfYKncAnzQlJDBvih0lu6YeYQh0BtMAnwvGYwYrxEdik1Jh4nqZJzb5hwl2Ga+BG WEUESoiy7ORTVAdO6XxjP4fka/OIfWgzKkPHP4WYpfSdOwg4GFQ+y1uye+NmigqF HDa//Dh3OA246Av6hhpq+yfMIvUiLAwgNEDDWq+BRoCi2IbnwZCROWxDq0S8hquJ UNxjGu24MPNc5cqqh91RjOTHSTehyQlBnxx3QusQkxA+x/Ne31M+LEPp1o6/t8dX 0xU9CT0B/js2btA2zA7t0Gfcbt6O5Go= -----END CERTIFICATE-----Generated at Sat Aug 23 12:49:40 2025 by rpki-client