$ rpki-client -vvf rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/z3nGX0tVAQ-yXObEW4yRnbCToy0.mft File: z3nGX0tVAQ-yXObEW4yRnbCToy0.mft (raw, json) Hash identifier: Gbm4d8uPhY9bayGoIZkrb/6kuPOcEd9B+/xXJJNsoMQ= Subject key identifier: 19:3F:43:48:30:60:5C:51:2D:E0:4F:F1:3D:9D:3F:E7:D9:FA:31:59 Authority key identifier: CF:79:C6:5F:4B:55:01:0F:B2:5C:E6:C4:5B:8C:91:9D:B0:93:A3:2D Certificate issuer: /CN=A912E87E/serialNumber=CF79C65F4B55010FB25CE6C45B8C919DB093A32D Certificate serial: 83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3nGX0tVAQ-yXObEW4yRnbCToy0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/z3nGX0tVAQ-yXObEW4yRnbCToy0.mft Manifest number: 81 Signing time: Sat 19 Jul 2025 06:54:19 +0000 Manifest this update: Sat 19 Jul 2025 06:54:19 +0000 Manifest next update: Sat 26 Jul 2025 06:54:19 +0000 Files and hashes: 1: z3nGX0tVAQ-yXObEW4yRnbCToy0.crl (hash: 0Oe1UUDtIOYIqDk7BzmyMlEiRJlHqyyhthJtjw/6euw=) 2: A48892E4DE4A11EFACE66748C4F9AE02.roa (hash: pAKMszCIjt6MmJA/GOLnpRTl7JGqEZooCz2JSaSabrA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/z3nGX0tVAQ-yXObEW4yRnbCToy0.crl rsync://rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/z3nGX0tVAQ-yXObEW4yRnbCToy0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3nGX0tVAQ-yXObEW4yRnbCToy0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 06:54:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 131 (0x83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E87E, serialNumber=CF79C65F4B55010FB25CE6C45B8C919DB093A32D Validity Not Before: Jul 19 06:54:19 2025 GMT Not After : Jul 26 06:54:19 2025 GMT Subject: CN=687b411b-a7f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:d6:50:c7:6e:7a:fd:2f:ab:ed:79:ec:22:18: 98:04:44:63:9b:81:90:65:af:62:7d:6b:a4:ef:51: b7:a1:d3:73:e4:d7:32:5c:25:7b:5e:27:a9:86:cb: f7:b2:29:97:5e:80:48:1f:3b:24:33:a9:1d:62:a0: a9:93:ac:65:c5:a5:ef:a8:f0:5b:ce:ee:46:ab:79: 39:3a:9e:b3:c6:91:7d:3f:3a:d8:6c:36:ed:7a:46: 1a:52:e6:8a:2c:4e:a3:6f:73:68:bd:65:1a:3f:f7: 4f:15:3e:f6:95:ca:39:03:9a:35:35:04:bb:f9:44: e5:63:df:16:a8:2d:bd:c1:42:0c:63:f2:0d:59:e0: 08:1c:53:9f:8c:98:6a:fe:d1:81:7a:81:f7:36:d0: ce:ee:f5:62:70:28:b3:06:78:d6:d2:b4:9c:57:f5: 96:a4:8f:fd:20:91:55:6e:8d:9a:a2:ea:8e:85:d7: 66:a9:e2:f2:f6:0b:c9:3e:6d:70:57:15:6f:44:34: d3:3c:f1:4d:cc:77:42:d7:06:db:f3:86:b0:f0:49: 9d:49:16:2c:65:4a:bd:3d:d3:62:d5:02:51:0b:db: f6:f3:59:91:7d:f5:46:ed:d2:24:a0:62:41:a8:b2: 7e:f6:7b:62:e8:f5:8b:90:9b:0f:e3:c7:11:a9:87: 3f:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:3F:43:48:30:60:5C:51:2D:E0:4F:F1:3D:9D:3F:E7:D9:FA:31:59 X509v3 Authority Key Identifier: keyid:CF:79:C6:5F:4B:55:01:0F:B2:5C:E6:C4:5B:8C:91:9D:B0:93:A3:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/z3nGX0tVAQ-yXObEW4yRnbCToy0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3nGX0tVAQ-yXObEW4yRnbCToy0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/z3nGX0tVAQ-yXObEW4yRnbCToy0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:5b:93:73:a1:68:ec:ec:75:57:e4:40:4f:dd:c3:c1:48:a6: 86:8a:e7:25:a0:a9:b0:06:1a:88:9e:c1:d7:f0:87:c2:74:86: 53:04:f1:6b:21:61:14:12:32:af:b8:5d:66:d5:4d:8d:42:fc: 4c:46:e0:42:e8:1b:32:88:6e:8c:34:a1:e8:8b:13:d7:a6:16: c4:6d:fa:88:1e:36:3b:bb:fb:bd:7e:b1:16:28:ec:ba:3d:bc: 9e:91:55:80:08:b8:6d:89:c9:93:16:25:ad:22:17:e7:71:ea: 4f:de:29:3f:23:aa:88:4f:fe:49:b2:55:02:2b:cf:25:86:5d: e6:2b:65:f3:ce:8f:9d:e0:b4:f3:62:a4:40:c9:58:18:3e:47: 10:27:5c:52:25:db:5c:74:07:2c:99:c5:a7:9b:6a:a5:8d:34: ad:1b:de:3c:7d:98:19:80:dc:01:91:97:a5:eb:5c:a2:55:63: 9b:ae:f2:43:71:3e:51:31:d4:04:77:55:89:6e:21:a5:fb:c4: 26:69:3c:96:23:38:fd:df:70:46:d7:84:d4:f5:bf:79:88:12: b8:82:94:a3:af:22:ad:7d:90:1c:6d:42:6b:69:4b:05:03:7a: e2:84:86:fd:c0:83:a6:a3:06:9e:3f:0f:58:e0:a0:bb:c7:b1: 5f:23:15:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkU4N0UxMTAvBgNVBAUTKENGNzlDNjVGNEI1NTAxMEZCMjVDRTZDNDVCOEM5MTlE QjA5M0EzMkQwHhcNMjUwNzE5MDY1NDE5WhcNMjUwNzI2MDY1NDE5WjAYMRYwFAYD VQQDEw02ODdiNDExYi1hN2Y2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA19ZQx256/S+r7XnsIhiYBERjm4GQZa9ifWuk71G3odNz5NcyXCV7Xiephsv3 simXXoBIHzskM6kdYqCpk6xlxaXvqPBbzu5Gq3k5Op6zxpF9PzrYbDbtekYaUuaK LE6jb3NovWUaP/dPFT72lco5A5o1NQS7+UTlY98WqC29wUIMY/INWeAIHFOfjJhq /tGBeoH3NtDO7vVicCizBnjW0rScV/WWpI/9IJFVbo2aouqOhddmqeLy9gvJPm1w VxVvRDTTPPFNzHdC1wbb84aw8EmdSRYsZUq9PdNi1QJRC9v281mRffVG7dIkoGJB qLJ+9nti6PWLkJsP48cRqYc/VQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBk/Q0gw YFxRLeBP8T2dP+fZ+jFZMB8GA1UdIwQYMBaAFM95xl9LVQEPslzmxFuMkZ2wk6Mt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTg3RS84NDI4QjlFNkEx Q0YxMUVGODc4RTYwNjFDNEY5QUUwMi96M25HWDB0VkFRLXlYT2JFVzR5Um5iQ1Rv eTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ozbkdYMHRWQVEteVhPYkVXNHlSbmJDVG95MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RTg3RS84NDI4QjlFNkExQ0YxMUVGODc4RTYwNjFDNEY5QUUwMi96M25HWDB0VkFR LXlYT2JFVzR5Um5iQ1RveTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZW5NzoWjs7HVX5EBP3cPBSKaGiucloKmwBhqInsHX8IfCdIZTBPFr IWEUEjKvuF1m1U2NQvxMRuBC6BsyiG6MNKHoixPXphbEbfqIHjY7u/u9frEWKOy6 PbyekVWACLhticmTFiWtIhfncepP3ik/I6qIT/5JslUCK88lhl3mK2Xzzo+d4LTz YqRAyVgYPkcQJ1xSJdtcdAcsmcWnm2qljTStG948fZgZgNwBkZel61yiVWObrvJD cT5RMdQEd1WJbiGl+8QmaTyWIzj933BG14TU9b95iBK4gpSjryKtfZAcbUJraUsF A3rihIb9wIOmowaePw9Y4KC7x7FfIxXp -----END CERTIFICATE-----Generated at Sun Jul 20 03:06:07 2025 by rpki-client