$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft File: r_zmN5iBZebFG_v-vRKD1REkAZA.mft (raw, json) Hash identifier: xa+XME1MLQJgNCQLVF/7sqHRQIOCio1AMZp6M+6gtHE= Subject key identifier: 56:49:D4:A9:F7:58:F5:66:9D:84:AF:81:67:F1:96:5B:15:1A:4B:8A Authority key identifier: AF:FC:E6:37:98:81:65:E6:C5:1B:FB:FE:BD:12:83:D5:11:24:01:90 Certificate issuer: /CN=A91E4468/serialNumber=AFFCE637988165E6C51BFBFEBD1283D511240190 Certificate serial: 0142 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_zmN5iBZebFG_v-vRKD1REkAZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft Manifest number: 013A Signing time: Sat 19 Jul 2025 04:43:19 +0000 Manifest this update: Sat 19 Jul 2025 04:43:18 +0000 Manifest next update: Sat 26 Jul 2025 04:43:18 +0000 Files and hashes: 1: r_zmN5iBZebFG_v-vRKD1REkAZA.crl (hash: eJVZEYqUeEVtd4a80E22r0xNiIddK6cJNi7bghn7Mpo=) 2: C531DD12226F11EF8D24AD63C4F9AE02.roa (hash: a2/vehSWDoff6mLTg7VEADcM0ey8iDfcQQZxJYEqkDM=) 3: C608133C226F11EF8D24AD63C4F9AE02.roa (hash: GATUqbNDhKaVb/i1ZjCIO1rgwevFVCyWk8Ts83izVL4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.crl rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_zmN5iBZebFG_v-vRKD1REkAZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 04:43:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 322 (0x142) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4468, serialNumber=AFFCE637988165E6C51BFBFEBD1283D511240190 Validity Not Before: Jul 19 04:43:18 2025 GMT Not After : Jul 26 04:43:18 2025 GMT Subject: CN=687b2266-80f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:9f:d7:3b:65:fd:71:38:a3:7d:bc:33:10:9d: 51:22:59:1e:09:e2:bd:36:ab:1d:2c:f8:8a:02:6e: 9d:8d:db:93:1b:82:72:1e:50:74:40:e8:c6:9d:c3: 44:2f:37:25:c6:8c:b1:0f:1d:a5:4e:a9:1f:3b:fb: 6d:11:22:64:2c:f1:d6:71:a5:e5:07:29:9c:0b:5d: f5:79:04:34:f2:ae:6a:6d:f1:82:de:4f:47:a4:26: 99:46:01:d3:74:35:4a:ea:3b:bf:25:f4:25:43:a0: c3:cc:0a:57:58:5a:34:34:8e:73:62:9c:1d:19:04: ee:2b:b1:66:60:ad:06:87:b8:27:0d:b9:ee:78:cf: f3:ce:03:76:78:5f:a1:98:15:ec:39:55:52:74:aa: b4:aa:84:a2:a6:81:58:3c:56:68:03:cf:eb:61:1b: f7:10:f6:1e:a0:0a:60:9e:de:07:70:7f:0f:cd:fa: 44:5b:2b:34:84:07:b2:95:1a:f6:d8:d8:6c:29:70: 33:81:54:38:4a:32:99:93:f4:c2:a0:4c:af:4e:1c: 50:bb:60:47:08:21:4b:0c:5e:6e:cd:b6:39:ce:c3: 09:2a:b1:d8:01:76:00:29:7d:1a:48:55:71:a6:00: 5b:35:77:70:44:c3:1f:2e:29:6a:1b:a2:92:da:86: 15:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:49:D4:A9:F7:58:F5:66:9D:84:AF:81:67:F1:96:5B:15:1A:4B:8A X509v3 Authority Key Identifier: keyid:AF:FC:E6:37:98:81:65:E6:C5:1B:FB:FE:BD:12:83:D5:11:24:01:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_zmN5iBZebFG_v-vRKD1REkAZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:47:41:b8:bb:ad:4b:07:56:6c:0f:25:ac:b2:88:3a:4c:27: ad:f0:da:10:cf:9a:03:13:f8:27:ec:35:26:78:12:d7:ef:25: da:8f:fd:23:66:eb:99:b7:be:a2:19:7b:c4:97:2c:5b:c9:34: 9a:e2:ca:14:09:68:7a:89:67:58:1f:6e:86:c9:3e:37:95:b6: 44:73:6a:af:5a:a4:ce:e6:5c:8a:cf:49:bd:a4:f5:64:79:7f: 0e:ec:b3:73:a1:05:eb:7d:c4:73:37:cd:73:10:f2:09:38:f3: 4a:7f:6c:c5:2a:94:a3:ae:b4:bb:64:19:3d:45:da:33:54:28: 75:0b:89:09:39:e4:78:a1:cd:44:04:d8:19:62:3b:32:de:02: d1:02:94:1d:63:14:7e:c9:27:0f:e6:7a:62:00:a5:aa:69:d0: f4:22:ce:45:1b:03:c4:14:68:b4:9b:1f:4d:1b:87:b6:c1:cc: cc:58:07:bd:4a:9f:23:90:bb:e4:52:2d:03:89:49:c1:46:63: 4b:ba:17:f1:06:8c:8d:e0:d3:37:ec:2d:af:ca:b0:82:0f:e1: cd:57:99:1b:8b:44:76:dd:4b:1a:82:e5:ab:6f:84:4e:06:00: 21:f2:10:35:34:64:4d:2c:24:71:a8:c0:88:4b:59:10:51:2a: 67:69:ec:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ0NjgxMTAvBgNVBAUTKEFGRkNFNjM3OTg4MTY1RTZDNTFCRkJGRUJEMTI4M0Q1 MTEyNDAxOTAwHhcNMjUwNzE5MDQ0MzE4WhcNMjUwNzI2MDQ0MzE4WjAYMRYwFAYD VQQDEw02ODdiMjI2Ni04MGYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn5/XO2X9cTijfbwzEJ1RIlkeCeK9NqsdLPiKAm6djduTG4JyHlB0QOjGncNE LzclxoyxDx2lTqkfO/ttESJkLPHWcaXlBymcC131eQQ08q5qbfGC3k9HpCaZRgHT dDVK6ju/JfQlQ6DDzApXWFo0NI5zYpwdGQTuK7FmYK0Gh7gnDbnueM/zzgN2eF+h mBXsOVVSdKq0qoSipoFYPFZoA8/rYRv3EPYeoApgnt4HcH8PzfpEWys0hAeylRr2 2NhsKXAzgVQ4SjKZk/TCoEyvThxQu2BHCCFLDF5uzbY5zsMJKrHYAXYAKX0aSFVx pgBbNXdwRMMfLilqG6KS2oYVvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFZJ1Kn3 WPVmnYSvgWfxllsVGkuKMB8GA1UdIwQYMBaAFK/85jeYgWXmxRv7/r0Sg9URJAGQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDQ2OC84Mjc1MjRFODhF RTUxMUVFQTJFRUREMTJDNEY5QUUwMi9yX3ptTjVpQlplYkZHX3YtdlJLRDFSRWtB WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Jfem1ONWlCWmViRkdfdi12UktEMVJFa0FaQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDQ2OC84Mjc1MjRFODhFRTUxMUVFQTJFRUREMTJDNEY5QUUwMi9yX3ptTjVpQlpl YkZHX3YtdlJLRDFSRWtBWkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiR0G4u61LB1ZsDyWssog6TCet8NoQz5oDE/gn7DUmeBLX7yXaj/0j ZuuZt76iGXvElyxbyTSa4soUCWh6iWdYH26GyT43lbZEc2qvWqTO5lyKz0m9pPVk eX8O7LNzoQXrfcRzN81zEPIJOPNKf2zFKpSjrrS7ZBk9RdozVCh1C4kJOeR4oc1E BNgZYjsy3gLRApQdYxR+yScP5npiAKWqadD0Is5FGwPEFGi0mx9NG4e2wczMWAe9 Sp8jkLvkUi0DiUnBRmNLuhfxBoyN4NM37C2vyrCCD+HNV5kbi0R23UsaguWrb4RO BgAh8hA1NGRNLCRxqMCIS1kQUSpnaezg -----END CERTIFICATE-----Generated at Sun Jul 20 16:29:21 2025 by rpki-client