$ rpki-client -vvf rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.mft File: zIO7bQqhd53qFp7bpKQCKN4hvXs.mft (raw, json) Hash identifier: zil4uPWiUXJZ+GAEcWSfibnsd2FqGUWEf1F6gl3Nz20= Subject key identifier: 26:51:87:FE:93:B2:A0:4A:C5:17:23:24:0E:82:62:9E:6B:A0:3C:BF Authority key identifier: CC:83:BB:6D:0A:A1:77:9D:EA:16:9E:DB:A4:A4:02:28:DE:21:BD:7B Certificate issuer: /CN=A91D493B/serialNumber=CC83BB6D0AA1779DEA169EDBA4A40228DE21BD7B Certificate serial: 0343 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIO7bQqhd53qFp7bpKQCKN4hvXs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.mft Manifest number: 033E Signing time: Mon 21 Jul 2025 01:20:09 +0000 Manifest this update: Mon 21 Jul 2025 01:20:09 +0000 Manifest next update: Mon 28 Jul 2025 01:20:09 +0000 Files and hashes: 1: zIO7bQqhd53qFp7bpKQCKN4hvXs.crl (hash: gNCarKWu797JEnlWLWgjM05NOukoKTvjxZUigLpcIz0=) 2: 684DDD32CAB311ECBBCE9843C4F9AE02.roa (hash: qH/kmALWQxd9w+o7ml/PHWheO95UYxgo26aceJX0/p4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.crl rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIO7bQqhd53qFp7bpKQCKN4hvXs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 01:20:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 835 (0x343) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D493B, serialNumber=CC83BB6D0AA1779DEA169EDBA4A40228DE21BD7B Validity Not Before: Jul 21 01:20:09 2025 GMT Not After : Jul 28 01:20:09 2025 GMT Subject: CN=687d95c9-ad1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:bf:f8:16:e9:22:37:61:d3:05:b3:25:4e:d5: a0:af:14:df:c1:0d:7a:01:d4:aa:85:23:0c:7c:c5: aa:f3:ac:46:7c:0a:83:ae:50:cc:12:a6:80:2e:15: 14:3b:01:d5:d7:ad:cb:d2:d3:23:e1:53:3b:db:7b: c0:3b:51:21:6b:f0:92:50:1b:10:c9:ca:8c:dd:4a: a3:de:d2:2f:45:e7:b3:5f:00:73:cd:7b:60:d5:20: bd:b5:18:38:dd:61:b4:b8:22:de:6a:5d:fb:cd:96: e1:0d:07:29:60:82:c2:18:40:f2:39:2b:89:78:0d: 29:93:de:a0:01:b0:51:c2:c0:66:7d:3a:30:fa:9b: c7:5a:ab:77:d3:77:9a:4d:62:f4:d4:4f:26:f7:8d: 9b:63:02:da:dc:ce:2f:a4:18:34:27:e2:db:06:6a: c0:87:7d:f4:f1:06:12:e8:e9:6e:fa:03:09:43:2d: 38:21:4a:64:c8:6b:96:ee:de:ff:c3:85:26:79:13: 45:1b:7d:23:d2:9b:a8:d7:a0:67:d9:7d:7c:12:50: f2:1c:a0:bc:d9:05:e9:88:31:b7:2f:db:d5:23:b6: 36:44:8c:40:6d:ed:a0:a6:e8:45:3e:9e:39:ec:50: 36:75:e5:f1:90:e0:57:c8:fc:56:54:d3:2c:5c:06: de:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:51:87:FE:93:B2:A0:4A:C5:17:23:24:0E:82:62:9E:6B:A0:3C:BF X509v3 Authority Key Identifier: keyid:CC:83:BB:6D:0A:A1:77:9D:EA:16:9E:DB:A4:A4:02:28:DE:21:BD:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIO7bQqhd53qFp7bpKQCKN4hvXs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:98:d0:9f:60:6a:aa:13:0c:94:e7:da:97:80:fb:e9:08:86: ff:c3:10:9b:41:fe:ab:39:bd:54:c7:d8:4c:b8:2d:55:63:55: 12:2f:5b:e9:6a:5c:71:34:41:59:ac:82:5e:a3:96:3d:c0:5c: 65:05:9d:da:91:e5:e9:c7:47:41:3f:d4:71:c7:67:eb:cb:b9: bb:68:b7:6c:a8:67:d1:35:96:14:b7:0a:16:5e:10:26:42:47: 95:4b:24:cc:b4:5f:18:38:f1:b9:8e:86:84:cf:05:b8:f9:6b: f6:85:38:f6:b8:ed:f8:fc:c4:ea:06:52:ab:0b:c1:bb:ab:fb: b5:85:c6:5f:4c:cf:10:37:55:29:93:2f:02:b2:36:f1:b6:0f: d7:ee:3d:1f:4e:1a:cc:70:17:8a:39:11:df:c7:3c:ca:72:7b: 20:91:b4:1b:49:21:e9:a8:83:a7:68:f7:3b:19:63:06:f4:be: a1:56:ef:0f:2d:f6:8d:5c:fc:7f:ee:de:4d:a5:ff:03:3b:e1: bf:b1:71:57:97:4f:58:f3:f8:bb:ab:20:df:be:c2:36:84:c3: 63:f0:c6:e2:1b:19:0a:f0:e3:74:9a:bc:41:65:00:33:51:33: fc:b3:54:71:06:11:ce:ab:87:ed:7d:d0:92:a6:dc:20:49:9b: 79:26:07:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA0MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ5M0IxMTAvBgNVBAUTKENDODNCQjZEMEFBMTc3OURFQTE2OUVEQkE0QTQwMjI4 REUyMUJEN0IwHhcNMjUwNzIxMDEyMDA5WhcNMjUwNzI4MDEyMDA5WjAYMRYwFAYD VQQDEw02ODdkOTVjOS1hZDFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkb/4FukiN2HTBbMlTtWgrxTfwQ16AdSqhSMMfMWq86xGfAqDrlDMEqaALhUU OwHV163L0tMj4VM723vAO1Eha/CSUBsQycqM3Uqj3tIvReezXwBzzXtg1SC9tRg4 3WG0uCLeal37zZbhDQcpYILCGEDyOSuJeA0pk96gAbBRwsBmfTow+pvHWqt303ea TWL01E8m942bYwLa3M4vpBg0J+LbBmrAh3308QYS6Olu+gMJQy04IUpkyGuW7t7/ w4UmeRNFG30j0puo16Bn2X18ElDyHKC82QXpiDG3L9vVI7Y2RIxAbe2gpuhFPp45 7FA2deXxkOBXyPxWVNMsXAbe8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCZRh/6T sqBKxRcjJA6CYp5roDy/MB8GA1UdIwQYMBaAFMyDu20KoXed6hae26SkAijeIb17 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDkzQi9EQkFEMzdBMENB QUUxMUVDODI0MTI4MERDNEY5QUUwMi96SU83YlFxaGQ1M3FGcDdicEtRQ0tONGh2 WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pJTzdiUXFoZDUzcUZwN2JwS1FDS040aHZYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDkzQi9EQkFEMzdBMENBQUUxMUVDODI0MTI4MERDNEY5QUUwMi96SU83YlFxaGQ1 M3FGcDdicEtRQ0tONGh2WHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPmNCfYGqqEwyU59qXgPvpCIb/wxCbQf6rOb1Ux9hMuC1VY1USL1vp alxxNEFZrIJeo5Y9wFxlBZ3akeXpx0dBP9Rxx2fry7m7aLdsqGfRNZYUtwoWXhAm QkeVSyTMtF8YOPG5joaEzwW4+Wv2hTj2uO34/MTqBlKrC8G7q/u1hcZfTM8QN1Up ky8Csjbxtg/X7j0fThrMcBeKORHfxzzKcnsgkbQbSSHpqIOnaPc7GWMG9L6hVu8P LfaNXPx/7t5Npf8DO+G/sXFXl09Y8/i7qyDfvsI2hMNj8MbiGxkK8ON0mrxBZQAz UTP8s1RxBhHOq4ftfdCSptwgSZt5JgcU -----END CERTIFICATE-----Generated at Mon Jul 21 07:14:04 2025 by rpki-client