$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8D56/1BC8E1B6630A11ECAAA1414EC4F9AE02/zxWtEC7t37zKaFhab1w4F_6KGNU.mft File: zxWtEC7t37zKaFhab1w4F_6KGNU.mft (raw, json) Hash identifier: byCdBr17o2bxyWWdKgxySk1k0U1YXbc0u6VtorqDfOM= Subject key identifier: 11:92:9D:CA:3B:48:71:FB:C2:4A:16:DF:6F:E1:76:D7:19:CB:BE:5F Authority key identifier: CF:15:AD:10:2E:ED:DF:BC:CA:68:58:5A:6F:5C:38:17:FE:8A:18:D5 Certificate issuer: /CN=A91B8D56/serialNumber=CF15AD102EEDDFBCCA68585A6F5C3817FE8A18D5 Certificate serial: 0452 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zxWtEC7t37zKaFhab1w4F_6KGNU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8D56/1BC8E1B6630A11ECAAA1414EC4F9AE02/zxWtEC7t37zKaFhab1w4F_6KGNU.mft Manifest number: 044A Signing time: Mon 21 Jul 2025 00:31:29 +0000 Manifest this update: Mon 21 Jul 2025 00:31:29 +0000 Manifest next update: Mon 28 Jul 2025 00:31:29 +0000 Files and hashes: 1: zxWtEC7t37zKaFhab1w4F_6KGNU.crl (hash: H6GqoRjek0CsLlezvMC0YU0GW5Z9cK9pIf2A0xP9rH8=) 2: 70638510630E11ECB30DB557C4F9AE02.roa (hash: ZALlhJBTLI4BjBMPBnHu5MEZWPef4Y4mZVh7l9q61P0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8D56/1BC8E1B6630A11ECAAA1414EC4F9AE02/zxWtEC7t37zKaFhab1w4F_6KGNU.crl rsync://rpki.apnic.net/member_repository/A91B8D56/1BC8E1B6630A11ECAAA1414EC4F9AE02/zxWtEC7t37zKaFhab1w4F_6KGNU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zxWtEC7t37zKaFhab1w4F_6KGNU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 00:31:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1106 (0x452) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8D56, serialNumber=CF15AD102EEDDFBCCA68585A6F5C3817FE8A18D5 Validity Not Before: Jul 21 00:31:29 2025 GMT Not After : Jul 28 00:31:29 2025 GMT Subject: CN=687d8a61-1215 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:70:e6:44:66:76:b8:33:e5:08:68:15:8d:ac: ce:09:fb:d0:4e:21:02:a2:66:30:ed:15:43:f7:18: 36:ad:d3:77:74:75:53:ea:97:d5:5b:f6:44:9e:4a: ae:68:19:da:da:27:ba:3d:39:07:68:5a:70:40:3a: 52:41:4f:e5:d8:6a:8b:14:47:10:b5:a8:48:c7:ad: 46:79:d4:fb:d6:2d:0e:a0:90:d7:62:fb:9c:d1:c6: 2e:f3:4a:84:94:01:53:d7:0f:be:0f:ee:eb:61:bb: 1d:0c:75:b5:05:5b:b1:06:de:be:a7:ff:07:e4:73: 3c:4b:1d:20:c5:25:c4:ce:0c:c6:f6:66:8f:c8:b1: 34:fd:57:04:13:5c:ef:66:10:5b:91:22:02:19:6d: 09:33:23:99:e4:87:e3:69:f9:7e:a5:8f:a3:67:70: 52:89:ce:ee:6c:30:c9:94:e0:b1:6d:16:6c:fd:5d: 5e:6c:91:16:3a:f0:f6:04:e7:37:91:16:42:96:54: ec:8a:c3:e7:e9:d4:08:df:7e:85:4b:50:e8:f2:28: 36:85:fa:db:54:59:54:b1:09:43:9b:8f:ec:90:9e: e8:4d:7b:37:b2:1c:aa:ba:a4:30:5c:48:3f:eb:7f: 3d:8c:e6:8e:2b:ae:8e:ce:b4:92:bf:d3:26:14:b3: bb:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:92:9D:CA:3B:48:71:FB:C2:4A:16:DF:6F:E1:76:D7:19:CB:BE:5F X509v3 Authority Key Identifier: keyid:CF:15:AD:10:2E:ED:DF:BC:CA:68:58:5A:6F:5C:38:17:FE:8A:18:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8D56/1BC8E1B6630A11ECAAA1414EC4F9AE02/zxWtEC7t37zKaFhab1w4F_6KGNU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zxWtEC7t37zKaFhab1w4F_6KGNU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8D56/1BC8E1B6630A11ECAAA1414EC4F9AE02/zxWtEC7t37zKaFhab1w4F_6KGNU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:bd:85:60:db:63:92:c9:1b:c2:33:65:b4:09:16:f1:e2:1e: 60:f8:9a:1a:a1:0e:e1:80:ff:3b:9e:b2:d9:08:b1:f7:05:8c: 4a:6f:20:ea:96:de:dc:e4:7f:06:b0:50:a3:63:a8:df:10:32: 0d:17:de:bc:3b:a1:75:09:c1:72:8e:b4:26:57:b6:5d:c8:dc: 41:6f:f1:f7:71:22:cb:ed:7e:cd:29:0c:72:bf:80:57:9e:a4: fa:57:48:cf:91:89:59:fe:ee:5e:0d:8c:55:6f:2f:5b:0a:85: 1e:e3:2b:c2:f2:4e:df:34:33:33:ac:f1:1d:1d:a2:79:5d:5e: 1f:fd:a4:7e:31:f0:10:ea:2c:74:0f:95:39:28:e9:f3:ba:dc: 2f:f6:7f:a9:e4:10:3d:0a:93:4a:3a:4b:db:3d:8c:39:ca:74: 3b:01:7d:19:4c:af:34:9c:82:75:ea:00:11:f1:51:2e:56:58: e3:8b:fb:76:2f:0e:92:3d:36:0e:ef:94:35:35:8d:69:44:0e: c8:fc:d5:49:12:de:c9:ed:66:27:14:03:62:b5:ee:12:22:62: f8:4d:2b:8f:21:f5:b1:6f:3f:79:02:d1:67:8d:c9:ae:92:62: 2b:15:c5:94:cf:62:df:0d:3b:a3:3c:a0:19:b6:15:60:1c:11: ba:c6:bc:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhENTYxMTAvBgNVBAUTKENGMTVBRDEwMkVFRERGQkNDQTY4NTg1QTZGNUMzODE3 RkU4QTE4RDUwHhcNMjUwNzIxMDAzMTI5WhcNMjUwNzI4MDAzMTI5WjAYMRYwFAYD VQQDEw02ODdkOGE2MS0xMjE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAznDmRGZ2uDPlCGgVjazOCfvQTiEComYw7RVD9xg2rdN3dHVT6pfVW/ZEnkqu aBna2ie6PTkHaFpwQDpSQU/l2GqLFEcQtahIx61GedT71i0OoJDXYvuc0cYu80qE lAFT1w++D+7rYbsdDHW1BVuxBt6+p/8H5HM8Sx0gxSXEzgzG9maPyLE0/VcEE1zv ZhBbkSICGW0JMyOZ5Ifjafl+pY+jZ3BSic7ubDDJlOCxbRZs/V1ebJEWOvD2BOc3 kRZCllTsisPn6dQI336FS1Do8ig2hfrbVFlUsQlDm4/skJ7oTXs3shyquqQwXEg/ 6389jOaOK66OzrSSv9MmFLO7vQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBGSnco7 SHH7wkoW32/hdtcZy75fMB8GA1UdIwQYMBaAFM8VrRAu7d+8ymhYWm9cOBf+ihjV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEQ1Ni8xQkM4RTFCNjYz MEExMUVDQUFBMTQxNEVDNEY5QUUwMi96eFd0RUM3dDM3ekthRmhhYjF3NEZfNktH TlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p4V3RFQzd0Mzd6S2FGaGFiMXc0Rl82S0dOVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEQ1Ni8xQkM4RTFCNjYzMEExMUVDQUFBMTQxNEVDNEY5QUUwMi96eFd0RUM3dDM3 ekthRmhhYjF3NEZfNktHTlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlvYVg22OSyRvCM2W0CRbx4h5g+JoaoQ7hgP87nrLZCLH3BYxKbyDq lt7c5H8GsFCjY6jfEDINF968O6F1CcFyjrQmV7ZdyNxBb/H3cSLL7X7NKQxyv4BX nqT6V0jPkYlZ/u5eDYxVby9bCoUe4yvC8k7fNDMzrPEdHaJ5XV4f/aR+MfAQ6ix0 D5U5KOnzutwv9n+p5BA9CpNKOkvbPYw5ynQ7AX0ZTK80nIJ16gAR8VEuVljji/t2 Lw6SPTYO75Q1NY1pRA7I/NVJEt7J7WYnFANite4SImL4TSuPIfWxbz95AtFnjcmu kmIrFcWUz2LfDTujPKAZthVgHBG6xrzC -----END CERTIFICATE-----Generated at Mon Jul 21 07:22:33 2025 by rpki-client