$ rpki-client -vvf rpki.apnic.net/member_repository/A91180E8/3A9FAC54E9D611EF8D04B677C4F9AE02/Z_KbNaiUKqa39Brvs0oGdv1pUJc.mft File: Z_KbNaiUKqa39Brvs0oGdv1pUJc.mft (raw, json) Hash identifier: vvCY8UzfLnDvHrQe9+2uWfPfVBZNa68haQhQN42yzSE= Subject key identifier: D8:92:AE:91:0C:1B:0E:4E:D9:3B:B1:9E:1D:17:4F:60:58:0F:E5:F3 Authority key identifier: 67:F2:9B:35:A8:94:2A:A6:B7:F4:1A:EF:B3:4A:06:76:FD:69:50:97 Certificate issuer: /CN=A91180E8/serialNumber=67F29B35A8942AA6B7F41AEFB34A0676FD695097 Certificate serial: 51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z_KbNaiUKqa39Brvs0oGdv1pUJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91180E8/3A9FAC54E9D611EF8D04B677C4F9AE02/Z_KbNaiUKqa39Brvs0oGdv1pUJc.mft Manifest number: 50 Signing time: Sat 19 Jul 2025 07:30:16 +0000 Manifest this update: Sat 19 Jul 2025 07:30:16 +0000 Manifest next update: Sat 26 Jul 2025 07:30:16 +0000 Files and hashes: 1: Z_KbNaiUKqa39Brvs0oGdv1pUJc.crl (hash: o7oe7nft9ephX9Mde+L/iEt78PImLbdd1xQSC+rPZQo=) 2: E368BEF2E9D611EFAC604979C4F9AE02.roa (hash: HfXLWtads28iS5LrLz0AFXei2F6BGIFKfg02w7QPxkY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91180E8/3A9FAC54E9D611EF8D04B677C4F9AE02/Z_KbNaiUKqa39Brvs0oGdv1pUJc.crl rsync://rpki.apnic.net/member_repository/A91180E8/3A9FAC54E9D611EF8D04B677C4F9AE02/Z_KbNaiUKqa39Brvs0oGdv1pUJc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z_KbNaiUKqa39Brvs0oGdv1pUJc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:30:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 81 (0x51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91180E8, serialNumber=67F29B35A8942AA6B7F41AEFB34A0676FD695097 Validity Not Before: Jul 19 07:30:16 2025 GMT Not After : Jul 26 07:30:16 2025 GMT Subject: CN=687b4988-1744 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a5:7d:e9:b9:7e:30:13:33:d0:dc:74:92:f1: a1:0c:26:5e:89:ad:7b:80:a3:eb:3c:db:00:07:32: 04:b4:1a:d0:4d:86:fb:34:ee:77:cf:de:f1:1b:45: 93:b1:3c:f1:dd:ee:72:ab:98:76:aa:7a:6f:63:86: 47:28:e0:01:04:0b:f3:ef:9c:11:d2:aa:b9:98:86: d1:a8:77:f5:fe:f5:b1:92:3a:c7:44:cc:b0:04:5d: ec:50:5d:73:18:de:71:e0:d1:e2:2d:74:52:cf:00: 16:d1:67:f0:4c:59:63:0f:20:c4:0a:fe:48:46:64: 56:a1:2a:34:89:d5:e4:bd:55:07:36:41:35:bd:0b: 2f:1b:2e:ec:1a:ae:83:6e:ea:6f:d8:f5:d9:4a:b8: d4:55:11:da:09:08:6d:34:ba:8f:c5:02:58:eb:dc: 26:5a:6c:b4:82:58:7f:d9:1a:33:f8:79:db:01:14: 9e:45:fb:2d:1b:c2:88:df:ea:48:7f:0a:69:db:ea: ba:98:65:70:7b:10:91:b8:3f:48:21:7c:83:9d:8a: 9d:19:bd:a7:6d:55:d0:af:bc:93:4e:85:77:e8:2d: fa:88:ad:6c:eb:84:07:c1:ae:25:ac:0b:3a:37:b0: c2:83:74:b0:be:ec:d4:01:96:69:cc:53:08:3d:c7: 50:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:92:AE:91:0C:1B:0E:4E:D9:3B:B1:9E:1D:17:4F:60:58:0F:E5:F3 X509v3 Authority Key Identifier: keyid:67:F2:9B:35:A8:94:2A:A6:B7:F4:1A:EF:B3:4A:06:76:FD:69:50:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91180E8/3A9FAC54E9D611EF8D04B677C4F9AE02/Z_KbNaiUKqa39Brvs0oGdv1pUJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z_KbNaiUKqa39Brvs0oGdv1pUJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91180E8/3A9FAC54E9D611EF8D04B677C4F9AE02/Z_KbNaiUKqa39Brvs0oGdv1pUJc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:5a:28:e4:8a:93:f1:61:bd:2b:4c:f2:89:9e:c9:9f:1b:1f: 35:26:90:ec:62:11:5a:9c:e1:db:33:e7:19:29:64:d3:c5:6c: fe:6a:17:44:18:5b:f0:7c:7a:91:a5:e7:b4:f5:f0:60:88:83: 39:5b:85:4f:cc:30:a4:13:39:a6:7e:3a:88:4c:09:01:3d:41: d4:30:eb:3d:91:42:05:28:de:e3:34:80:bb:38:28:01:2e:f1: a5:2b:9a:0e:5b:2b:a1:38:87:cd:d3:91:d6:1a:b7:bb:ef:28: f1:1a:b5:1c:43:35:61:a6:21:f1:40:50:6d:d2:b8:f5:f3:44: 78:8a:3e:fe:bb:c6:67:38:48:a6:2c:74:b5:aa:cf:5f:17:4b: 00:e7:88:52:10:87:5d:ae:9b:ba:23:32:80:2e:f5:e9:61:bc: 26:6c:b3:42:6e:f5:3d:75:34:f9:cf:34:2d:ca:85:2f:c5:9d: 02:c3:7a:b8:60:7f:4e:32:42:ee:43:a3:37:7a:8d:3e:b2:c3: 45:af:75:f5:fa:8b:ec:a1:27:77:58:31:df:25:f3:e9:cc:84: 85:bc:4f:c5:46:0e:ef:2b:2b:32:e6:18:03:34:1a:ca:74:df: e2:14:a6:68:69:62:eb:c8:0b:8c:55:42:17:90:4f:e0:e0:b0: 56:f4:2b:55 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx ODBFODExMC8GA1UEBRMoNjdGMjlCMzVBODk0MkFBNkI3RjQxQUVGQjM0QTA2NzZG RDY5NTA5NzAeFw0yNTA3MTkwNzMwMTZaFw0yNTA3MjYwNzMwMTZaMBgxFjAUBgNV BAMTDTY4N2I0OTg4LTE3NDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1pX3puX4wEzPQ3HSS8aEMJl6JrXuAo+s82wAHMgS0GtBNhvs07nfP3vEbRZOx PPHd7nKrmHaqem9jhkco4AEEC/PvnBHSqrmYhtGod/X+9bGSOsdEzLAEXexQXXMY 3nHg0eItdFLPABbRZ/BMWWMPIMQK/khGZFahKjSJ1eS9VQc2QTW9Cy8bLuwaroNu 6m/Y9dlKuNRVEdoJCG00uo/FAljr3CZabLSCWH/ZGjP4edsBFJ5F+y0bwojf6kh/ Cmnb6rqYZXB7EJG4P0ghfIOdip0ZvadtVdCvvJNOhXfoLfqIrWzrhAfBriWsCzo3 sMKDdLC+7NQBlmnMUwg9x1CNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU2JKukQwb Dk7ZO7GeHRdPYFgP5fMwHwYDVR0jBBgwFoAUZ/KbNaiUKqa39Brvs0oGdv1pUJcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE4MEU4LzNBOUZBQzU0RTlE NjExRUY4RDA0QjY3N0M0RjlBRTAyL1pfS2JOYWlVS3FhMzlCcnZzMG9HZHYxcFVK Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWl9LYk5haVVLcWEzOUJydnMwb0dkdjFwVUpjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE4 MEU4LzNBOUZBQzU0RTlENjExRUY4RDA0QjY3N0M0RjlBRTAyL1pfS2JOYWlVS3Fh MzlCcnZzMG9HZHYxcFVKYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGlaKOSKk/FhvStM8omeyZ8bHzUmkOxiEVqc4dsz5xkpZNPFbP5qF0QY W/B8epGl57T18GCIgzlbhU/MMKQTOaZ+OohMCQE9QdQw6z2RQgUo3uM0gLs4KAEu 8aUrmg5bK6E4h83TkdYat7vvKPEatRxDNWGmIfFAUG3SuPXzRHiKPv67xmc4SKYs dLWqz18XSwDniFIQh12um7ojMoAu9elhvCZss0Ju9T11NPnPNC3KhS/FnQLDerhg f04yQu5Dozd6jT6yw0WvdfX6i+yhJ3dYMd8l8+nMhIW8T8VGDu8rKzLmGAM0Gsp0 3+IUpmhpYuvIC4xVQheQT+DgsFb0K1U= -----END CERTIFICATE-----Generated at Sun Jul 20 07:55:35 2025 by rpki-client