$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBA0C/41531B0CAECD11EE86F1B249C4F9AE02/zVzVkJE-T4mvPRym4p-rPAZ9IU4.mft File: zVzVkJE-T4mvPRym4p-rPAZ9IU4.mft (raw, json) Hash identifier: JAtsXFtd9bnuATyssb7+3jcnaTW4Qzaf3n/NPHlb5nE= Subject key identifier: BD:98:4B:61:5C:CD:AD:8D:6C:BC:D6:37:E9:A7:A4:FB:42:2C:A7:05 Authority key identifier: CD:5C:D5:90:91:3E:4F:89:AF:3D:1C:A6:E2:9F:AB:3C:06:7D:21:4E Certificate issuer: /CN=A91FBA0C/serialNumber=CD5CD590913E4F89AF3D1CA6E29FAB3C067D214E Certificate serial: 0123 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zVzVkJE-T4mvPRym4p-rPAZ9IU4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBA0C/41531B0CAECD11EE86F1B249C4F9AE02/zVzVkJE-T4mvPRym4p-rPAZ9IU4.mft Manifest number: 0120 Signing time: Mon 21 Jul 2025 04:50:32 +0000 Manifest this update: Mon 21 Jul 2025 04:50:32 +0000 Manifest next update: Mon 28 Jul 2025 04:50:32 +0000 Files and hashes: 1: zVzVkJE-T4mvPRym4p-rPAZ9IU4.crl (hash: miTPhLDZrghobrtiUUmgEpWPjXLS/y7wFrlDbuIih2c=) 2: 91056478AF6A11EE93DDE73AC4F9AE02.roa (hash: ewevHTVGmqHpvpOV2d+aqrkd9ftzXTkReJQtB5PG940=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBA0C/41531B0CAECD11EE86F1B249C4F9AE02/zVzVkJE-T4mvPRym4p-rPAZ9IU4.crl rsync://rpki.apnic.net/member_repository/A91FBA0C/41531B0CAECD11EE86F1B249C4F9AE02/zVzVkJE-T4mvPRym4p-rPAZ9IU4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zVzVkJE-T4mvPRym4p-rPAZ9IU4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 04:50:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 291 (0x123) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBA0C, serialNumber=CD5CD590913E4F89AF3D1CA6E29FAB3C067D214E Validity Not Before: Jul 21 04:50:32 2025 GMT Not After : Jul 28 04:50:32 2025 GMT Subject: CN=687dc718-1bea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:9f:8e:a9:99:a4:bd:08:7d:df:6a:a1:d5:c5: 83:e9:62:28:e4:d2:ef:39:d5:a2:69:f0:c1:bb:b6: 5b:c8:16:74:b2:92:11:54:15:dd:31:8d:63:70:1a: 3c:de:80:79:f0:c6:02:d1:b8:1c:f3:78:4d:7c:62: 98:7b:0a:1c:81:ca:7a:7d:b6:e8:66:9e:33:c8:53: 21:52:13:a7:df:d6:52:1d:a9:ad:a4:6a:5f:54:0a: 5c:52:07:c7:4a:cf:67:e6:8b:b2:97:52:a6:30:14: c9:8a:34:14:d4:24:95:94:c9:3d:da:5b:07:d0:0c: aa:a6:cd:03:25:64:f9:e1:d3:7e:6c:d5:12:d6:ed: 5a:99:8f:94:f1:b7:5a:2a:9d:73:32:df:31:0b:7a: 16:af:fe:2d:75:ed:2e:e6:66:c7:fc:4f:fa:e8:4f: c2:6a:6e:1a:41:11:48:82:2b:d5:21:e0:07:6e:ae: 8e:1b:5a:2b:f4:05:c6:4f:28:85:c4:f8:da:6f:d0: b5:8d:b3:ba:55:e2:01:dd:38:d5:65:dd:76:1a:c5: 0f:94:ed:4c:c5:74:74:fc:d0:57:25:50:86:51:7b: 6c:32:5d:e4:a6:77:10:2c:ab:c0:df:26:25:9a:76: 81:11:26:94:aa:b7:bd:95:aa:17:07:82:4a:aa:0b: 09:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:98:4B:61:5C:CD:AD:8D:6C:BC:D6:37:E9:A7:A4:FB:42:2C:A7:05 X509v3 Authority Key Identifier: keyid:CD:5C:D5:90:91:3E:4F:89:AF:3D:1C:A6:E2:9F:AB:3C:06:7D:21:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBA0C/41531B0CAECD11EE86F1B249C4F9AE02/zVzVkJE-T4mvPRym4p-rPAZ9IU4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zVzVkJE-T4mvPRym4p-rPAZ9IU4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBA0C/41531B0CAECD11EE86F1B249C4F9AE02/zVzVkJE-T4mvPRym4p-rPAZ9IU4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:85:fe:da:d1:38:b8:08:64:8a:3e:fd:09:66:5b:d4:95:71: 14:36:1c:3d:44:df:f7:15:46:81:47:fb:c5:7a:e5:03:04:df: fa:e6:03:e6:1f:da:6d:c3:53:a5:e0:1d:98:63:51:e1:de:1d: dc:97:0c:38:5b:ba:3d:ed:e9:98:c2:7e:8d:52:d2:72:13:8e: 37:93:9c:30:a6:a8:35:69:fb:8f:7c:6d:f0:14:c8:a4:c4:25: a9:fd:19:f5:45:9f:b3:22:21:f6:28:41:ce:f6:72:4c:ac:21: e9:97:22:b2:7e:8a:13:a8:d0:f4:db:22:bb:8f:1f:90:71:04: f5:e1:df:48:a0:30:00:01:d7:a8:af:18:1c:e7:56:04:24:79: 78:c5:bd:7e:ed:60:dd:7f:e1:89:99:cd:3c:50:58:96:8e:4f: cd:12:8f:8a:5e:3f:bb:86:83:7a:cd:b1:d3:c9:03:ff:e2:e2: c7:30:10:0e:e3:c1:aa:ed:d8:36:09:7d:aa:c1:f7:6a:a9:7e: 7b:78:13:13:8e:eb:31:0c:2e:9c:f8:3d:d2:bf:b2:66:fc:77: 46:24:c6:22:f7:88:f3:f5:ae:c5:e1:3d:9d:43:52:c8:33:5a: f2:79:e0:2d:ea:44:4e:c8:f0:e4:7f:cd:ce:7b:19:d8:8b:e1: 69:7f:ef:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkJBMEMxMTAvBgNVBAUTKENENUNENTkwOTEzRTRGODlBRjNEMUNBNkUyOUZBQjND MDY3RDIxNEUwHhcNMjUwNzIxMDQ1MDMyWhcNMjUwNzI4MDQ1MDMyWjAYMRYwFAYD VQQDEw02ODdkYzcxOC0xYmVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuJ+OqZmkvQh932qh1cWD6WIo5NLvOdWiafDBu7ZbyBZ0spIRVBXdMY1jcBo8 3oB58MYC0bgc83hNfGKYewocgcp6fbboZp4zyFMhUhOn39ZSHamtpGpfVApcUgfH Ss9n5ouyl1KmMBTJijQU1CSVlMk92lsH0Ayqps0DJWT54dN+bNUS1u1amY+U8bda Kp1zMt8xC3oWr/4tde0u5mbH/E/66E/Cam4aQRFIgivVIeAHbq6OG1or9AXGTyiF xPjab9C1jbO6VeIB3TjVZd12GsUPlO1MxXR0/NBXJVCGUXtsMl3kpncQLKvA3yYl mnaBESaUqre9laoXB4JKqgsJXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL2YS2Fc za2NbLzWN+mnpPtCLKcFMB8GA1UdIwQYMBaAFM1c1ZCRPk+Jrz0cpuKfqzwGfSFO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQkEwQy80MTUzMUIwQ0FF Q0QxMUVFODZGMUIyNDlDNEY5QUUwMi96VnpWa0pFLVQ0bXZQUnltNHAtclBBWjlJ VTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pWelZrSkUtVDRtdlBSeW00cC1yUEFaOUlVNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QkEwQy80MTUzMUIwQ0FFQ0QxMUVFODZGMUIyNDlDNEY5QUUwMi96VnpWa0pFLVQ0 bXZQUnltNHAtclBBWjlJVTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJhf7a0Ti4CGSKPv0JZlvUlXEUNhw9RN/3FUaBR/vFeuUDBN/65gPm H9ptw1Ol4B2YY1Hh3h3clww4W7o97emYwn6NUtJyE443k5wwpqg1afuPfG3wFMik xCWp/Rn1RZ+zIiH2KEHO9nJMrCHplyKyfooTqND02yK7jx+QcQT14d9IoDAAAdeo rxgc51YEJHl4xb1+7WDdf+GJmc08UFiWjk/NEo+KXj+7hoN6zbHTyQP/4uLHMBAO 48Gq7dg2CX2qwfdqqX57eBMTjusxDC6c+D3Sv7Jm/HdGJMYi94jz9a7F4T2dQ1LI M1ryeeAt6kROyPDkf83OexnYi+Fpf++o -----END CERTIFICATE-----Generated at Mon Jul 21 06:57:42 2025 by rpki-client