$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.mft File: iV-zzi-cLke5FLsqa2bHfVOXpAo.mft (raw, json) Hash identifier: wAVcAHNwPovB87e4uDrXsl6F0y6t5nJxOA1tngJTePA= Subject key identifier: 3D:CC:5B:13:0F:2C:CA:3A:19:D7:DA:33:D3:39:4B:58:2C:8F:96:3E Authority key identifier: 89:5F:B3:CE:2F:9C:2E:47:B9:14:BB:2A:6B:66:C7:7D:53:97:A4:0A Certificate issuer: /CN=A91E6419/serialNumber=895FB3CE2F9C2E47B914BB2A6B66C77D5397A40A Certificate serial: 0209 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV-zzi-cLke5FLsqa2bHfVOXpAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.mft Manifest number: 0204 Signing time: Mon 21 Jul 2025 02:22:31 +0000 Manifest this update: Mon 21 Jul 2025 02:22:30 +0000 Manifest next update: Mon 28 Jul 2025 02:22:30 +0000 Files and hashes: 1: iV-zzi-cLke5FLsqa2bHfVOXpAo.crl (hash: q10+NlFVeIROxAM30yfCtsoQvxPF+Kl7W/vfUHNubvQ=) 2: 38DEC3C04ED611ED84336740C4F9AE02.roa (hash: GwA8WNqmVW1s9tawzkiqtYC7xFjjdtlbsl+Ur+WNSNc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.crl rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV-zzi-cLke5FLsqa2bHfVOXpAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 02:22:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 521 (0x209) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6419, serialNumber=895FB3CE2F9C2E47B914BB2A6B66C77D5397A40A Validity Not Before: Jul 21 02:22:30 2025 GMT Not After : Jul 28 02:22:30 2025 GMT Subject: CN=687da467-ba12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:89:8a:7c:fa:12:c8:72:15:b6:b6:85:1f:74: b4:57:e0:7f:18:59:72:66:77:0a:35:01:3a:4e:98: 3b:aa:ac:b5:6e:d5:13:c7:f1:bd:eb:b5:1a:49:a2: 08:e9:53:2c:41:33:da:6a:81:95:0d:78:6a:e3:bc: 44:a5:9c:26:5e:ae:fe:3e:c5:89:ed:06:72:6f:91: 07:a4:53:11:46:19:77:2b:74:cc:ef:2b:59:93:75: 08:c0:e6:66:2d:1e:e5:73:82:68:70:20:9a:2c:dc: f6:43:4e:cd:a1:58:02:de:d0:b1:85:08:ea:ba:ae: e4:d5:fd:5f:0d:80:d8:51:ba:b5:6b:5a:29:b6:6b: a7:70:d2:71:38:27:4f:d3:1d:55:0d:f1:15:c7:4e: ef:84:a5:78:2b:45:8b:b8:0c:68:6a:a1:9e:9e:aa: f7:32:8e:df:5e:f3:f6:f9:c9:f1:48:5c:82:6d:85: 8d:6c:44:8b:29:eb:dd:05:6c:5d:e2:92:b8:84:ab: d4:a3:a5:69:79:ff:f2:3f:bd:c6:92:ed:01:0c:a4: 99:fe:69:db:08:d1:d6:73:72:bc:40:35:3f:e4:f9: c5:53:b6:5d:f9:d4:f0:ea:04:80:58:c7:f0:51:7f: a5:56:bf:92:7a:e6:ad:1f:3a:3e:90:9a:45:6f:ff: 55:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:CC:5B:13:0F:2C:CA:3A:19:D7:DA:33:D3:39:4B:58:2C:8F:96:3E X509v3 Authority Key Identifier: keyid:89:5F:B3:CE:2F:9C:2E:47:B9:14:BB:2A:6B:66:C7:7D:53:97:A4:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV-zzi-cLke5FLsqa2bHfVOXpAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:7c:64:7b:34:be:71:89:dd:f7:71:d0:ba:8a:9a:7c:32:e6: eb:dc:6f:ba:8a:de:c2:07:f4:88:ab:89:bb:12:f6:f1:9b:48: 0f:9b:18:01:b3:18:48:55:f5:cf:47:dd:42:45:43:3f:22:77: 52:07:6e:c6:8d:52:42:67:84:46:d5:17:15:50:61:b6:55:e6: e6:a4:a7:20:d9:7f:c4:23:65:39:dc:15:66:a6:b9:57:3a:e7: 81:46:39:86:22:55:b9:44:77:99:b5:bf:40:d9:73:46:39:7a: ca:1c:50:b0:2e:5f:73:18:6e:08:c1:7a:d7:ef:d6:ca:0d:de: c3:e2:55:3c:d4:98:1e:f4:37:27:1d:85:45:09:5f:e3:cd:a2: 20:6a:57:51:98:15:c0:a2:e1:50:8c:47:3e:66:17:2a:76:6d: 02:fd:c8:a7:b0:32:e9:45:95:0a:a9:11:7a:60:2c:cc:d1:21: 27:a7:b9:aa:aa:1b:0b:85:01:64:49:5b:71:54:98:f7:0a:e4: 5c:bc:7f:14:29:4a:ed:ff:a4:19:fb:32:81:65:05:61:6d:8a: 59:91:2b:18:18:e1:5d:21:44:5e:b8:ba:18:37:8d:c7:67:70: 47:50:01:35:3e:90:be:df:f2:09:d1:3f:57:88:ac:00:65:c8: c5:76:90:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTY0MTkxMTAvBgNVBAUTKDg5NUZCM0NFMkY5QzJFNDdCOTE0QkIyQTZCNjZDNzdE NTM5N0E0MEEwHhcNMjUwNzIxMDIyMjMwWhcNMjUwNzI4MDIyMjMwWjAYMRYwFAYD VQQDEw02ODdkYTQ2Ny1iYTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA24mKfPoSyHIVtraFH3S0V+B/GFlyZncKNQE6Tpg7qqy1btUTx/G967UaSaII 6VMsQTPaaoGVDXhq47xEpZwmXq7+PsWJ7QZyb5EHpFMRRhl3K3TM7ytZk3UIwOZm LR7lc4JocCCaLNz2Q07NoVgC3tCxhQjquq7k1f1fDYDYUbq1a1optmuncNJxOCdP 0x1VDfEVx07vhKV4K0WLuAxoaqGenqr3Mo7fXvP2+cnxSFyCbYWNbESLKevdBWxd 4pK4hKvUo6Vpef/yP73Gku0BDKSZ/mnbCNHWc3K8QDU/5PnFU7Zd+dTw6gSAWMfw UX+lVr+SeuatHzo+kJpFb/9VOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD3MWxMP LMo6GdfaM9M5S1gsj5Y+MB8GA1UdIwQYMBaAFIlfs84vnC5HuRS7Kmtmx31Tl6QK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjQxOS9GQTZFMzZDQzRF RDMxMUVEQTVFNTMwNDBDNEY5QUUwMi9pVi16emktY0xrZTVGTHNxYTJiSGZWT1hw QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lWLXp6aS1jTGtlNUZMc3FhMmJIZlZPWHBBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NjQxOS9GQTZFMzZDQzRFRDMxMUVEQTVFNTMwNDBDNEY5QUUwMi9pVi16emktY0xr ZTVGTHNxYTJiSGZWT1hwQW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqfGR7NL5xid33cdC6ipp8Mubr3G+6it7CB/SIq4m7Evbxm0gPmxgB sxhIVfXPR91CRUM/IndSB27GjVJCZ4RG1RcVUGG2VebmpKcg2X/EI2U53BVmprlX OueBRjmGIlW5RHeZtb9A2XNGOXrKHFCwLl9zGG4IwXrX79bKDd7D4lU81Jge9Dcn HYVFCV/jzaIgaldRmBXAouFQjEc+Zhcqdm0C/cinsDLpRZUKqRF6YCzM0SEnp7mq qhsLhQFkSVtxVJj3CuRcvH8UKUrt/6QZ+zKBZQVhbYpZkSsYGOFdIUReuLoYN43H Z3BHUAE1PpC+3/IJ0T9XiKwAZcjFdpCb -----END CERTIFICATE-----Generated at Mon Jul 21 12:27:13 2025 by rpki-client