$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.mft File: ZNKz1lpcbM5NCNeP_tsoVrZB1qM.mft (raw, json) Hash identifier: kL7udNOP+gcAOIMlM1yQDuOWvhOuJMzjxMseeu3/2TY= Subject key identifier: 62:F5:46:FD:77:38:1D:DC:B2:60:C0:71:05:83:3C:26:CF:A3:2F:E9 Authority key identifier: 64:D2:B3:D6:5A:5C:6C:CE:4D:08:D7:8F:FE:DB:28:56:B6:41:D6:A3 Certificate issuer: /CN=A91EBC61/serialNumber=64D2B3D65A5C6CCE4D08D78FFEDB2856B641D6A3 Certificate serial: 73 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.mft Manifest number: 72 Signing time: Sat 19 Jul 2025 07:06:45 +0000 Manifest this update: Sat 19 Jul 2025 07:06:44 +0000 Manifest next update: Sat 26 Jul 2025 07:06:44 +0000 Files and hashes: 1: ZNKz1lpcbM5NCNeP_tsoVrZB1qM.crl (hash: TkZj+wOmWYzXfIlPY6yoPI/fepmlc9p3Ko3H2vc5isI=) 2: 8D26DADCB6C411EF99C3B758C4F9AE02.roa (hash: BCZ1HJoEZyrIFeiF3ZHLW8BBZXBaO4KH4xqAbBol+hw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.crl rsync://rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:06:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 115 (0x73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBC61, serialNumber=64D2B3D65A5C6CCE4D08D78FFEDB2856B641D6A3 Validity Not Before: Jul 19 07:06:44 2025 GMT Not After : Jul 26 07:06:44 2025 GMT Subject: CN=687b4405-a6e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:c1:97:ed:4d:ce:3a:97:25:fb:34:e4:da:23: 6f:e0:21:a8:1f:fc:fe:e8:c7:2f:61:69:49:d0:fa: 5a:e4:9a:d9:4b:77:67:fb:70:00:4f:2e:a4:4c:9f: ca:79:c2:52:ee:0a:b7:16:ae:c5:c4:dd:57:67:c7: f9:1f:b8:67:e8:66:f0:9d:a9:93:1d:98:9d:5d:d2: 44:44:21:74:ab:7b:e3:d2:7a:74:73:70:a6:09:75: e3:40:09:bc:94:e0:75:07:85:7a:a4:87:d8:18:35: 0d:0b:44:c9:b9:ee:9b:e1:82:9f:a3:29:27:e4:3e: 7c:67:94:6f:7d:7c:18:41:f3:07:0e:7e:31:35:7e: bc:02:7b:9a:18:55:af:5a:9c:7b:45:e5:1e:e1:b0: 10:85:c8:33:bf:25:4c:06:1c:43:fb:62:3f:c9:e1: a9:13:be:4f:d8:e1:08:61:15:99:3e:93:78:8a:de: 31:50:73:c2:7e:49:80:9e:3e:dd:21:0c:2f:9b:a8: c3:16:20:73:00:21:c7:65:7c:85:2f:86:f6:18:94: 57:c5:20:aa:bd:47:69:86:41:a2:4b:e0:44:46:c5: 9c:37:79:a5:d7:a0:ad:68:71:ec:bc:9a:95:d9:ad: 6b:42:38:14:08:57:30:61:05:10:3d:08:61:7d:34: 57:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:F5:46:FD:77:38:1D:DC:B2:60:C0:71:05:83:3C:26:CF:A3:2F:E9 X509v3 Authority Key Identifier: keyid:64:D2:B3:D6:5A:5C:6C:CE:4D:08:D7:8F:FE:DB:28:56:B6:41:D6:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:78:3a:d4:75:4e:a2:fb:df:32:70:94:b4:c5:57:1a:9d:6c: 39:21:eb:f7:15:21:72:c7:4c:88:ec:89:2e:6d:72:42:72:15: 5d:3a:52:a9:76:82:5f:0a:41:cb:25:08:fa:07:fd:05:cd:c8: bc:56:51:c1:9c:d2:02:0c:79:da:8e:78:d5:2c:44:7a:2d:bb: c6:ba:e8:08:9b:69:a2:48:4b:c8:56:54:ca:c2:b5:9a:90:14: 19:a5:ed:7d:7f:f5:9a:89:1d:08:13:9e:ad:8c:27:83:fc:fd: 7a:45:23:dd:0e:2b:75:bc:4e:1d:90:ec:41:aa:29:98:bb:ca: af:a2:f6:2c:02:39:91:d8:a5:c0:5b:18:b0:0d:ef:c3:b6:d4: d7:d6:30:81:f9:ee:70:10:f5:5d:11:6c:59:4d:71:89:c2:e5: 86:3c:13:f8:0d:be:60:af:dc:79:4f:f4:29:81:e2:7b:f8:4d: 3e:f7:39:4a:a8:44:67:f5:ea:c8:c6:7b:c0:7f:34:c0:1f:e5: cc:f2:e7:b2:06:f6:00:22:fc:df:f1:be:33:fb:6a:b2:96:bb: e2:e5:ab:6c:7b:9a:7f:10:16:b3:fa:02:d2:bb:4e:fd:cb:c6: b4:bc:d1:30:31:67:ab:12:73:af:4d:00:fa:7d:5a:60:4b:93: 5d:bb:40:f0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBczANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QkM2MTExMC8GA1UEBRMoNjREMkIzRDY1QTVDNkNDRTREMDhENzhGRkVEQjI4NTZC NjQxRDZBMzAeFw0yNTA3MTkwNzA2NDRaFw0yNTA3MjYwNzA2NDRaMBgxFjAUBgNV BAMTDTY4N2I0NDA1LWE2ZTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCywZftTc46lyX7NOTaI2/gIagf/P7oxy9haUnQ+lrkmtlLd2f7cABPLqRMn8p5 wlLuCrcWrsXE3Vdnx/kfuGfoZvCdqZMdmJ1d0kREIXSre+PSenRzcKYJdeNACbyU 4HUHhXqkh9gYNQ0LRMm57pvhgp+jKSfkPnxnlG99fBhB8wcOfjE1frwCe5oYVa9a nHtF5R7hsBCFyDO/JUwGHEP7Yj/J4akTvk/Y4QhhFZk+k3iK3jFQc8J+SYCePt0h DC+bqMMWIHMAIcdlfIUvhvYYlFfFIKq9R2mGQaJL4ERGxZw3eaXXoK1ocey8mpXZ rWtCOBQIVzBhBRA9CGF9NFf9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUYvVG/Xc4 HdyyYMBxBYM8Js+jL+kwHwYDVR0jBBgwFoAUZNKz1lpcbM5NCNeP/tsoVrZB1qMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVCQzYxLzQ0NkJEN0EyQjZD NDExRUZBMjRBQTYxNkM0RjlBRTAyL1pOS3oxbHBjYk01TkNOZVBfdHNvVnJaQjFx TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWk5LejFscGNiTTVOQ05lUF90c29WclpCMXFNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVC QzYxLzQ0NkJEN0EyQjZDNDExRUZBMjRBQTYxNkM0RjlBRTAyL1pOS3oxbHBjYk01 TkNOZVBfdHNvVnJaQjFxTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAC14OtR1TqL73zJwlLTFVxqdbDkh6/cVIXLHTIjsiS5tckJyFV06Uql2 gl8KQcslCPoH/QXNyLxWUcGc0gIMedqOeNUsRHotu8a66AibaaJIS8hWVMrCtZqQ FBml7X1/9ZqJHQgTnq2MJ4P8/XpFI90OK3W8Th2Q7EGqKZi7yq+i9iwCOZHYpcBb GLAN78O21NfWMIH57nAQ9V0RbFlNcYnC5YY8E/gNvmCv3HlP9CmB4nv4TT73OUqo RGf16sjGe8B/NMAf5czy57IG9gAi/N/xvjP7arKWu+Llq2x7mn8QFrP6AtK7Tv3L xrS80TAxZ6sSc69NAPp9WmBLk127QPA= -----END CERTIFICATE-----Generated at Sun Jul 20 07:44:03 2025 by rpki-client