$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft File: z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft (raw, json) Hash identifier: WzMLua5xL5XIDW7Dt+C+wHShCLtjDjGxXLJ3dsN5VG4= Subject key identifier: 62:CF:7B:36:9C:5E:88:22:1D:E6:E8:92:99:D3:BF:97:3C:EB:E7:20 Authority key identifier: CF:BB:03:8F:DB:83:86:54:20:49:62:98:0A:D2:21:C9:41:5D:5C:FF Certificate issuer: /CN=A91F8F9B/serialNumber=CFBB038FDB838654204962980AD221C9415D5CFF Certificate serial: BE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z7sDj9uDhlQgSWKYCtIhyUFdXP8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft Manifest number: BD Signing time: Sat 23 Aug 2025 06:03:52 +0000 Manifest this update: Sat 23 Aug 2025 06:03:51 +0000 Manifest next update: Sat 30 Aug 2025 06:03:51 +0000 Files and hashes: 1: z7sDj9uDhlQgSWKYCtIhyUFdXP8.crl (hash: MIQ3kR4oCY5I1iP6ztIpNderSM5WJksMzENt6ZNT8gk=) 2: 7143C5B85DBF11EFB8714857C4F9AE02.roa (hash: ap2qykakUMtuugznllb9ElqWzxnqoH122Li4BLMbH9U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.crl rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z7sDj9uDhlQgSWKYCtIhyUFdXP8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:03:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 190 (0xbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8F9B, serialNumber=CFBB038FDB838654204962980AD221C9415D5CFF Validity Not Before: Aug 23 06:03:51 2025 GMT Not After : Aug 30 06:03:51 2025 GMT Subject: CN=68a959c8-c412 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ce:6a:ae:0b:31:65:85:aa:56:c0:e3:10:8c: f0:77:22:fc:13:e9:42:58:fe:1a:71:6f:7e:00:ee: ac:48:47:de:b1:2c:ca:cf:3c:24:93:0e:bf:2a:a0: 28:a9:92:f3:83:a9:08:61:d0:89:99:9f:14:63:9d: 1c:b0:fe:3e:a2:87:c1:b8:b9:f7:24:17:90:09:0c: d1:60:54:14:3e:9a:30:6d:df:02:29:ac:4a:34:47: 9b:28:54:fd:0c:12:12:55:fe:2d:79:6c:a8:32:34: 7e:f7:d2:67:75:4e:bd:6b:9c:17:ba:c1:b2:0d:ea: 13:a0:23:c0:a5:4c:a6:e5:dd:47:20:49:de:3d:04: d2:05:f2:7d:58:21:1a:f3:30:7b:0b:87:63:d5:61: 0f:df:cd:84:8d:52:12:e2:d3:5e:5b:e3:19:ae:20: 27:9b:31:35:8c:f6:c5:7d:30:91:a7:9b:80:22:47: 78:54:a4:85:90:93:a4:ec:87:22:f4:f8:dc:86:a1: 4b:80:3c:9c:68:32:cc:a1:54:ab:25:d3:da:d4:75: 4c:d6:79:85:e5:2b:86:8e:aa:c0:97:a5:32:fc:c7: 3c:dd:b0:f4:e2:c7:a1:39:2d:c6:02:d7:37:c5:01: e4:4f:a9:a5:93:74:f3:78:6f:8f:94:e0:91:90:e2: ce:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:CF:7B:36:9C:5E:88:22:1D:E6:E8:92:99:D3:BF:97:3C:EB:E7:20 X509v3 Authority Key Identifier: keyid:CF:BB:03:8F:DB:83:86:54:20:49:62:98:0A:D2:21:C9:41:5D:5C:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z7sDj9uDhlQgSWKYCtIhyUFdXP8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:4d:b4:11:23:bf:16:78:bb:d4:81:9e:b9:07:ff:16:14:21: 92:eb:d2:7a:8f:f9:c9:3b:61:0e:67:e2:8e:86:21:a4:ee:69: 83:07:4f:ba:50:e3:78:6f:f6:fa:6a:af:a1:d7:1a:77:33:1d: 7e:cf:6d:53:c5:74:06:46:de:f0:ca:2e:d4:85:42:49:d8:96: 99:cf:35:aa:67:9b:de:72:7b:4b:c1:b0:ee:fb:9d:73:67:80: 24:7c:fc:7d:4f:cc:65:ae:97:94:47:36:5a:ec:54:d9:30:27: 7d:b2:be:47:66:ad:e3:d5:a6:e5:95:44:47:3c:ec:28:c1:1b: 2d:52:04:4c:58:fc:32:a8:77:33:98:ee:1b:0b:6e:3f:db:73: da:2f:d0:94:33:66:11:0c:f4:61:53:84:f6:cf:ea:e2:df:ad: 0d:80:f2:d0:7d:b4:cb:dd:90:db:c5:2a:51:b1:c6:fa:49:da: 93:9f:4f:b0:44:8f:66:2e:ef:36:b6:23:72:a2:12:a3:d6:4b: c3:62:b5:23:87:34:e4:e9:d9:53:80:ca:9d:a0:64:86:84:f8: 37:84:32:79:d0:2c:91:92:f9:54:67:e2:ba:4d:22:75:ee:c2: 26:06:d8:f2:c5:05:24:22:cb:6d:c6:f1:df:d9:e6:17:2d:68: fd:fa:b7:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhGOUIxMTAvBgNVBAUTKENGQkIwMzhGREI4Mzg2NTQyMDQ5NjI5ODBBRDIyMUM5 NDE1RDVDRkYwHhcNMjUwODIzMDYwMzUxWhcNMjUwODMwMDYwMzUxWjAYMRYwFAYD VQQDEw02OGE5NTljOC1jNDEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqs5qrgsxZYWqVsDjEIzwdyL8E+lCWP4acW9+AO6sSEfesSzKzzwkkw6/KqAo qZLzg6kIYdCJmZ8UY50csP4+oofBuLn3JBeQCQzRYFQUPpowbd8CKaxKNEebKFT9 DBISVf4teWyoMjR+99JndU69a5wXusGyDeoToCPApUym5d1HIEnePQTSBfJ9WCEa 8zB7C4dj1WEP382EjVIS4tNeW+MZriAnmzE1jPbFfTCRp5uAIkd4VKSFkJOk7Ici 9PjchqFLgDycaDLMoVSrJdPa1HVM1nmF5SuGjqrAl6Uy/Mc83bD04sehOS3GAtc3 xQHkT6mlk3TzeG+PlOCRkOLOUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGLPezac XogiHebokpnTv5c86+cgMB8GA1UdIwQYMBaAFM+7A4/bg4ZUIElimArSIclBXVz/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEY5Qi9GOTAyRTUzMDVE QkQxMUVGOEEwNkVENDBDNEY5QUUwMi96N3NEajl1RGhsUWdTV0tZQ3RJaHlVRmRY UDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3o3c0RqOXVEaGxRZ1NXS1lDdEloeVVGZFhQOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEY5Qi9GOTAyRTUzMDVEQkQxMUVGOEEwNkVENDBDNEY5QUUwMi96N3NEajl1RGhs UWdTV0tZQ3RJaHlVRmRYUDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbTbQRI78WeLvUgZ65B/8WFCGS69J6j/nJO2EOZ+KOhiGk7mmDB0+6 UON4b/b6aq+h1xp3Mx1+z21TxXQGRt7wyi7UhUJJ2JaZzzWqZ5vecntLwbDu+51z Z4AkfPx9T8xlrpeURzZa7FTZMCd9sr5HZq3j1abllURHPOwowRstUgRMWPwyqHcz mO4bC24/23PaL9CUM2YRDPRhU4T2z+ri360NgPLQfbTL3ZDbxSpRscb6SdqTn0+w RI9mLu82tiNyohKj1kvDYrUjhzTk6dlTgMqdoGSGhPg3hDJ50CyRkvlUZ+K6TSJ1 7sImBtjyxQUkIsttxvHf2eYXLWj9+rff -----END CERTIFICATE-----Generated at Sun Aug 24 00:19:03 2025 by rpki-client