$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft File: CZyBX8poKm4oYE_pYv0QcVgn6V0.mft (raw, json) Hash identifier: +760Vi5/7gYm1smVGjfwDVzMF9SJPBZRjnr0w6a6XG4= Subject key identifier: 6E:83:A3:3E:E3:56:AA:B6:A8:C4:37:53:0C:8E:30:AD:7C:97:D1:FB Authority key identifier: 09:9C:81:5F:CA:68:2A:6E:28:60:4F:E9:62:FD:10:71:58:27:E9:5D Certificate issuer: /CN=A91DEB2E/serialNumber=099C815FCA682A6E28604FE962FD10715827E95D Certificate serial: 01E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZyBX8poKm4oYE_pYv0QcVgn6V0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft Manifest number: 01DD Signing time: Sat 19 Jul 2025 02:55:20 +0000 Manifest this update: Sat 19 Jul 2025 02:55:20 +0000 Manifest next update: Sat 26 Jul 2025 02:55:20 +0000 Files and hashes: 1: CZyBX8poKm4oYE_pYv0QcVgn6V0.crl (hash: x5+z52m5PkZpzHd85HDXtyN9AM0HBoTn5YZ00rS5bqw=) 2: 3CB103648C2511EDB64DB410C4F9AE02.roa (hash: MmbQus/ep65NlWLekYokD81GuyXquRa4J0H16aokObA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.crl rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZyBX8poKm4oYE_pYv0QcVgn6V0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 02:55:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 483 (0x1e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEB2E, serialNumber=099C815FCA682A6E28604FE962FD10715827E95D Validity Not Before: Jul 19 02:55:20 2025 GMT Not After : Jul 26 02:55:20 2025 GMT Subject: CN=687b0918-8ee3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:d3:69:47:04:d4:55:f0:68:c1:c0:5c:ea:95: 0a:4d:39:21:fc:26:79:8a:e7:c2:b7:66:c5:10:c4: 2c:3e:10:5a:6e:c5:8e:00:5e:82:73:d7:49:26:b5: 8c:06:2b:97:34:8a:24:39:aa:48:0d:6a:60:e3:83: 0f:f4:29:5d:62:2b:6c:b8:9b:1e:54:88:61:c5:8a: 59:a3:44:5f:73:26:ae:9b:97:61:ef:4e:64:f7:6e: 9d:e3:aa:ab:7e:24:24:eb:44:30:c7:65:66:e5:34: 92:7e:41:34:0c:df:6b:3f:51:36:6b:2f:d5:c1:01: 72:2f:b4:7e:a4:87:e8:6d:48:d3:86:12:d6:62:94: ac:29:66:0f:a8:d0:33:0d:4f:18:40:2b:86:fc:8a: c6:5e:96:b8:3d:dc:f7:92:5e:ba:e1:8a:15:df:3e: 42:d9:c8:d8:b5:f8:7b:fc:17:da:98:fb:c3:65:8a: 87:e7:76:c0:16:38:93:41:ef:b1:b1:07:23:b5:ed: ec:35:df:51:7d:bf:03:e6:c2:1b:6b:87:2e:1f:3f: c8:74:fc:b6:d0:36:51:e7:cb:2d:2b:2b:fd:a6:29: 70:9f:e2:e9:8a:6e:b7:47:b3:0f:92:d4:12:c1:05: 0b:2c:99:85:3b:fd:c9:bb:0b:51:80:bc:70:7e:3d: 60:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:83:A3:3E:E3:56:AA:B6:A8:C4:37:53:0C:8E:30:AD:7C:97:D1:FB X509v3 Authority Key Identifier: keyid:09:9C:81:5F:CA:68:2A:6E:28:60:4F:E9:62:FD:10:71:58:27:E9:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZyBX8poKm4oYE_pYv0QcVgn6V0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:03:5e:04:d9:d3:0c:1d:97:89:23:6c:66:c6:b3:e7:a4:9e: 39:fd:93:17:6b:24:37:39:f0:52:85:cc:93:95:e2:f7:d3:c2: f3:81:77:5d:05:a7:38:fa:4b:36:29:6f:00:d3:2f:12:bd:cf: 84:3e:37:a7:a4:5e:14:8e:fa:e4:70:df:eb:f0:94:ca:53:72: 2a:5e:d0:73:59:99:c7:c7:18:83:14:2d:79:19:89:b5:0d:8b: 30:ed:a4:d5:6e:ea:08:74:ee:98:00:9c:bc:80:f8:58:97:c4: e8:8f:35:30:72:19:78:cf:e8:56:5d:83:50:92:77:7f:18:25: e3:c7:c3:c9:9d:3c:fa:1d:6d:69:e1:6a:b1:4b:bf:71:73:72: 83:38:67:a2:05:a7:57:c3:aa:8c:d5:37:80:79:25:0b:da:9d: 5b:fd:9f:3e:b9:a2:51:2b:80:0c:f5:03:60:de:5b:e8:5d:96: ee:ab:50:2f:00:dd:66:71:e4:11:d0:1f:7f:ce:c1:66:2c:a8: b6:11:93:1b:6f:a9:9a:8a:bf:f5:9e:13:e2:41:91:28:13:c0: e0:81:84:3f:c4:0f:33:cb:6d:05:4e:57:74:19:f9:81:52:f9: 12:c6:fa:da:0e:1a:2f:21:ee:cd:55:da:ce:73:8e:f5:be:c0: ba:68:f3:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVCMkUxMTAvBgNVBAUTKDA5OUM4MTVGQ0E2ODJBNkUyODYwNEZFOTYyRkQxMDcx NTgyN0U5NUQwHhcNMjUwNzE5MDI1NTIwWhcNMjUwNzI2MDI1NTIwWjAYMRYwFAYD VQQDEw02ODdiMDkxOC04ZWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmtNpRwTUVfBowcBc6pUKTTkh/CZ5iufCt2bFEMQsPhBabsWOAF6Cc9dJJrWM BiuXNIokOapIDWpg44MP9CldYitsuJseVIhhxYpZo0Rfcyaum5dh705k926d46qr fiQk60Qwx2Vm5TSSfkE0DN9rP1E2ay/VwQFyL7R+pIfobUjThhLWYpSsKWYPqNAz DU8YQCuG/IrGXpa4Pdz3kl664YoV3z5C2cjYtfh7/BfamPvDZYqH53bAFjiTQe+x sQcjte3sNd9Rfb8D5sIba4cuHz/IdPy20DZR58stKyv9pilwn+Lpim63R7MPktQS wQULLJmFO/3JuwtRgLxwfj1gSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG6Doz7j Vqq2qMQ3UwyOMK18l9H7MB8GA1UdIwQYMBaAFAmcgV/KaCpuKGBP6WL9EHFYJ+ld MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUIyRS82RkM4QkZERThD MjExMUVEQjJCMkYzMEFDNEY5QUUwMi9DWnlCWDhwb0ttNG9ZRV9wWXYwUWNWZ242 VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaeUJYOHBvS200b1lFX3BZdjBRY1ZnbjZWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUIyRS82RkM4QkZERThDMjExMUVEQjJCMkYzMEFDNEY5QUUwMi9DWnlCWDhwb0tt NG9ZRV9wWXYwUWNWZ242VjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsA14E2dMMHZeJI2xmxrPnpJ45/ZMXayQ3OfBShcyTleL308LzgXdd Bac4+ks2KW8A0y8Svc+EPjenpF4UjvrkcN/r8JTKU3IqXtBzWZnHxxiDFC15GYm1 DYsw7aTVbuoIdO6YAJy8gPhYl8TojzUwchl4z+hWXYNQknd/GCXjx8PJnTz6HW1p 4WqxS79xc3KDOGeiBadXw6qM1TeAeSUL2p1b/Z8+uaJRK4AM9QNg3lvoXZbuq1Av AN1mceQR0B9/zsFmLKi2EZMbb6mair/1nhPiQZEoE8DggYQ/xA8zy20FTld0GfmB UvkSxvraDhovIe7NVdrOc471vsC6aPP+ -----END CERTIFICATE-----Generated at Sun Jul 20 06:28:32 2025 by rpki-client