$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft File: RZTy7BffVsPQZUDzZtKvEYsxfx4.mft (raw, json) Hash identifier: eiwFj5aL1J40V/JxI9g8aBEQUZDfXhTURDCsNfOoP10= Subject key identifier: AD:F3:DB:42:6E:D2:29:6C:3D:AD:E3:09:4D:00:BE:8C:BF:4A:91:BB Authority key identifier: 45:94:F2:EC:17:DF:56:C3:D0:65:40:F3:66:D2:AF:11:8B:31:7F:1E Certificate issuer: /CN=A91CE978/serialNumber=4594F2EC17DF56C3D06540F366D2AF118B317F1E Certificate serial: 013B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RZTy7BffVsPQZUDzZtKvEYsxfx4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft Manifest number: 0138 Signing time: Mon 08 Sep 2025 14:51:08 +0000 Manifest this update: Mon 08 Sep 2025 14:51:08 +0000 Manifest next update: Mon 15 Sep 2025 14:51:08 +0000 Files and hashes: 1: RZTy7BffVsPQZUDzZtKvEYsxfx4.crl (hash: 6vX5Prab2JzRAsSV6ND+O1a5LjMerZ/4hb+tRiprWts=) 2: 30EAE110B9AD11EE83063243C4F9AE02.roa (hash: /mgu4P2twSDACdGUYPekQQEcvJH+CFlbuOsPxwdYvXg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.crl rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RZTy7BffVsPQZUDzZtKvEYsxfx4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 14:51:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 315 (0x13b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE978, serialNumber=4594F2EC17DF56C3D06540F366D2AF118B317F1E Validity Not Before: Sep 8 14:51:08 2025 GMT Not After : Sep 15 14:51:08 2025 GMT Subject: CN=68beed5c-4b24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:29:f6:fd:39:ab:56:d7:a1:fc:52:be:a1:8c: 70:1e:1c:b4:45:05:3d:2d:01:fd:a6:3d:90:81:43: 6f:52:b3:90:63:ef:f1:e0:39:75:9d:4b:91:37:ac: c8:53:90:d0:d7:bc:de:62:75:96:e5:c3:8d:38:ba: 54:03:07:e7:d9:0c:f0:09:d6:23:f1:e8:43:10:7e: aa:65:93:74:9d:89:db:49:09:f8:66:44:b0:38:2f: b5:ab:45:a3:ee:29:72:74:8b:89:8c:50:61:fb:e5: 1f:ab:2d:f8:98:66:0a:58:68:e1:52:3a:92:d8:06: 45:3a:33:0b:fd:c3:55:b3:62:e8:40:d8:97:dc:7a: 7b:13:ce:be:1a:62:3c:89:25:48:dd:13:69:43:23: c7:5d:54:1a:3f:d7:82:be:0d:c1:b2:4f:da:49:e7: ea:5a:8a:3c:63:86:7b:cc:8f:e5:fb:47:33:9b:98: a1:ef:6e:fe:05:74:7b:a5:ec:7c:b7:ac:c1:79:88: f4:30:f4:8e:fc:42:05:ac:74:ee:60:e2:2c:ac:69: e7:06:8b:f1:5f:ba:96:01:1e:70:72:78:41:60:64: bf:32:a9:06:a1:64:57:9f:01:3c:ee:6f:b6:aa:2d: fb:bc:c4:f0:b7:aa:ee:f0:2f:b6:0e:0d:69:fe:a9: 24:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:F3:DB:42:6E:D2:29:6C:3D:AD:E3:09:4D:00:BE:8C:BF:4A:91:BB X509v3 Authority Key Identifier: keyid:45:94:F2:EC:17:DF:56:C3:D0:65:40:F3:66:D2:AF:11:8B:31:7F:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RZTy7BffVsPQZUDzZtKvEYsxfx4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:97:c1:17:34:0a:fb:26:90:e8:ca:75:cb:7b:92:3b:cf:26: e0:08:59:78:20:3b:bd:a0:65:4b:67:2d:7b:82:92:2d:4f:51: b2:16:f4:86:47:44:29:9d:f9:40:7f:5a:43:aa:9a:1f:10:9b: 29:33:29:fa:43:4e:66:ea:82:ec:a2:dd:f4:bf:5e:cb:2f:fc: 7f:df:b5:4c:83:6a:5b:62:52:82:db:85:15:df:f7:1e:d6:f8: 9f:ac:29:dd:92:6d:30:f6:41:5b:f2:6e:5c:de:d0:45:46:ea: bd:b0:bf:fc:6d:13:bd:58:eb:4b:b1:a1:c6:0b:e1:8b:8a:5a: 18:76:70:5d:06:45:ac:a2:ce:15:35:90:3e:5c:08:fe:b5:85: 9b:db:8b:ae:fd:a6:57:92:5b:5c:ee:c3:b5:fa:8a:5c:3e:5d: 65:56:20:5e:a9:4d:d7:1a:02:d4:b5:40:cd:ce:f4:af:e7:9f: aa:e5:de:f8:68:14:ea:fb:37:bd:e7:7f:13:74:e6:ec:d6:61: bc:0f:c7:0d:3e:bb:b5:3e:00:72:5f:04:d2:16:10:2a:fd:2a: 0d:c6:a9:1c:d5:1e:ea:71:de:da:cf:ce:00:ce:03:58:f5:18: 6b:e4:3e:35:a7:a8:eb:14:28:9b:28:b3:4b:2e:bf:16:75:b3: 20:46:05:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5NzgxMTAvBgNVBAUTKDQ1OTRGMkVDMTdERjU2QzNEMDY1NDBGMzY2RDJBRjEx OEIzMTdGMUUwHhcNMjUwOTA4MTQ1MTA4WhcNMjUwOTE1MTQ1MTA4WjAYMRYwFAYD VQQDEw02OGJlZWQ1Yy00YjI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzCn2/TmrVteh/FK+oYxwHhy0RQU9LQH9pj2QgUNvUrOQY+/x4Dl1nUuRN6zI U5DQ17zeYnWW5cONOLpUAwfn2QzwCdYj8ehDEH6qZZN0nYnbSQn4ZkSwOC+1q0Wj 7ilydIuJjFBh++Ufqy34mGYKWGjhUjqS2AZFOjML/cNVs2LoQNiX3Hp7E86+GmI8 iSVI3RNpQyPHXVQaP9eCvg3Bsk/aSefqWoo8Y4Z7zI/l+0czm5ih727+BXR7pex8 t6zBeYj0MPSO/EIFrHTuYOIsrGnnBovxX7qWAR5wcnhBYGS/MqkGoWRXnwE87m+2 qi37vMTwt6ru8C+2Dg1p/qkkBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK3z20Ju 0ilsPa3jCU0Avoy/SpG7MB8GA1UdIwQYMBaAFEWU8uwX31bD0GVA82bSrxGLMX8e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTk3OC81REI1NTVBQUI4 REExMUVFQkM0QkVDMkRDNEY5QUUwMi9SWlR5N0JmZlZzUFFaVUR6WnRLdkVZc3hm eDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JaVHk3QmZmVnNQUVpVRHpadEt2RVlzeGZ4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTk3OC81REI1NTVBQUI4REExMUVFQkM0QkVDMkRDNEY5QUUwMi9SWlR5N0JmZlZz UFFaVUR6WnRLdkVZc3hmeDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3l8EXNAr7JpDoynXLe5I7zybgCFl4IDu9oGVLZy17gpItT1GyFvSG R0QpnflAf1pDqpofEJspMyn6Q05m6oLsot30v17LL/x/37VMg2pbYlKC24UV3/ce 1vifrCndkm0w9kFb8m5c3tBFRuq9sL/8bRO9WOtLsaHGC+GLiloYdnBdBkWsos4V NZA+XAj+tYWb24uu/aZXkltc7sO1+opcPl1lViBeqU3XGgLUtUDNzvSv55+q5d74 aBTq+ze9538TdObs1mG8D8cNPru1PgByXwTSFhAq/SoNxqkc1R7qcd7az84AzgNY 9Rhr5D41p6jrFCibKLNLLr8WdbMgRgWj -----END CERTIFICATE-----Generated at Tue Sep 9 07:48:01 2025 by rpki-client