$ rpki-client -vvf rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft File: z64jGpiXN_YdrZV8wk0hNYWBjtw.mft (raw, json) Hash identifier: Atk5PncIWgmUrnuBcL5dc7YWXlJsT9V2gqqzYRF1ITc= Subject key identifier: 7B:1D:6F:9A:8A:67:49:9C:CA:39:96:7B:81:8D:89:FC:94:5E:B0:CA Authority key identifier: CF:AE:23:1A:98:97:37:F6:1D:AD:95:7C:C2:4D:21:35:85:81:8E:DC Certificate issuer: /CN=A914B45F/serialNumber=CFAE231A989737F61DAD957CC24D213585818EDC Certificate serial: 0183 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z64jGpiXN_YdrZV8wk0hNYWBjtw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft Manifest number: 0181 Signing time: Thu 21 Aug 2025 03:42:48 +0000 Manifest this update: Thu 21 Aug 2025 03:42:47 +0000 Manifest next update: Thu 28 Aug 2025 03:42:47 +0000 Files and hashes: 1: z64jGpiXN_YdrZV8wk0hNYWBjtw.crl (hash: u4LzYXlOcK1gKEnt7/ievd+PAUoaufwmUwxj1MGkcrw=) 2: 578C92D62F6611EE9CAFAA58C4F9AE02.roa (hash: Km7Ntr3HPW+9p2/xgcR3/NDs3gM06IRtzM1XksYLFiE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.crl rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z64jGpiXN_YdrZV8wk0hNYWBjtw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 03:42:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 387 (0x183) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B45F, serialNumber=CFAE231A989737F61DAD957CC24D213585818EDC Validity Not Before: Aug 21 03:42:47 2025 GMT Not After : Aug 28 03:42:47 2025 GMT Subject: CN=68a695b7-9535 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:3f:d5:9c:24:ed:c0:99:58:db:bc:7f:d0:24: 15:7c:e9:a1:69:d6:21:83:a5:e5:9d:83:7a:79:b2: db:e5:5f:a5:b1:e1:2c:31:93:6b:dd:2d:25:cb:7f: f7:cd:22:06:44:a2:be:31:db:f0:b0:2c:6b:91:72: 6a:4c:c1:dd:63:dc:17:7c:8c:1c:7f:f8:2d:30:8d: 57:30:4e:41:b9:4d:1c:7b:8f:6b:b5:f1:18:96:1c: 11:0e:17:81:64:0f:f2:21:aa:a1:4c:09:4b:2e:5f: d7:86:81:08:02:f7:d7:c8:ba:0c:5b:ef:f9:a2:e0: 10:59:04:33:d4:f1:98:31:18:84:19:27:5d:6d:14: e6:6e:08:38:34:61:50:d7:6e:1f:ab:9f:f6:cb:41: 2c:a0:ca:7a:31:d3:60:9a:68:c2:bd:f8:56:85:54: 3a:6c:3a:c8:30:68:20:f0:bc:ce:5e:cf:ee:da:79: e5:92:39:da:bb:b5:fd:7f:1f:d9:8b:1b:66:66:1e: 0f:c9:42:38:31:47:5b:65:ad:e8:a0:eb:18:58:54: 0b:44:54:b4:fc:ba:6f:bf:de:60:8c:b9:fd:ff:7f: 1c:48:b6:4e:c9:4b:30:54:2d:c4:e1:ee:ff:bb:2b: 43:71:3b:fb:f0:42:e9:c4:b0:0e:f6:5f:e2:9c:8c: 93:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:1D:6F:9A:8A:67:49:9C:CA:39:96:7B:81:8D:89:FC:94:5E:B0:CA X509v3 Authority Key Identifier: keyid:CF:AE:23:1A:98:97:37:F6:1D:AD:95:7C:C2:4D:21:35:85:81:8E:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z64jGpiXN_YdrZV8wk0hNYWBjtw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:2d:dd:6d:54:61:88:8f:87:ff:9d:98:8d:88:2d:65:18:30: e2:88:bd:4f:c2:e2:fe:58:d8:05:f4:a4:2e:19:2d:f7:24:3d: 94:2a:f7:2c:12:62:f3:02:13:9a:48:73:57:16:32:65:2e:25: 06:9c:4f:5f:65:a1:6d:0b:97:32:b5:c5:f7:25:21:5d:00:6e: 20:37:63:46:89:2f:db:56:5b:07:a9:79:7e:b3:a8:02:59:d0: a6:24:76:cd:8d:88:f5:61:3a:f3:79:79:2b:75:fc:fb:5d:6b: 87:dc:21:8a:4c:72:f3:bc:12:15:30:f5:96:17:6c:b7:5e:64: f4:7a:ea:4f:3a:90:cc:1d:0e:e8:ad:69:39:87:52:73:07:a4: bc:27:19:01:81:01:dd:a8:bb:0a:a9:c5:b2:21:aa:c9:89:c4: c8:c4:88:1b:c8:ce:25:0b:16:f8:60:1e:0d:06:44:16:0e:a2: 3a:c3:67:d5:dd:da:f5:e2:ed:e8:3f:fe:e8:8f:ab:f7:78:c2: a2:9e:01:1b:3f:47:2f:96:40:4c:fc:ec:e3:c4:fd:49:5e:42: 36:2d:53:88:30:da:9f:25:ed:47:4a:e2:c6:3d:5b:50:36:a8: 23:4c:5e:2a:48:f9:03:bc:95:d2:89:55:79:5e:bc:60:7d:3f: 4f:a1:dd:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEI0NUYxMTAvBgNVBAUTKENGQUUyMzFBOTg5NzM3RjYxREFEOTU3Q0MyNEQyMTM1 ODU4MThFREMwHhcNMjUwODIxMDM0MjQ3WhcNMjUwODI4MDM0MjQ3WjAYMRYwFAYD VQQDEw02OGE2OTViNy05NTM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoj/VnCTtwJlY27x/0CQVfOmhadYhg6XlnYN6ebLb5V+lseEsMZNr3S0ly3/3 zSIGRKK+MdvwsCxrkXJqTMHdY9wXfIwcf/gtMI1XME5BuU0ce49rtfEYlhwRDheB ZA/yIaqhTAlLLl/XhoEIAvfXyLoMW+/5ouAQWQQz1PGYMRiEGSddbRTmbgg4NGFQ 124fq5/2y0EsoMp6MdNgmmjCvfhWhVQ6bDrIMGgg8LzOXs/u2nnlkjnau7X9fx/Z ixtmZh4PyUI4MUdbZa3ooOsYWFQLRFS0/Lpvv95gjLn9/38cSLZOyUswVC3E4e7/ uytDcTv78ELpxLAO9l/inIyTDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHsdb5qK Z0mcyjmWe4GNifyUXrDKMB8GA1UdIwQYMBaAFM+uIxqYlzf2Ha2VfMJNITWFgY7c MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjQ1Ri80MEJCMTU3NDJG NjUxMUVFOTVGREVENTZDNEY5QUUwMi96NjRqR3BpWE5fWWRyWlY4d2swaE5ZV0Jq dHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3o2NGpHcGlYTl9ZZHJaVjh3azBoTllXQmp0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjQ1Ri80MEJCMTU3NDJGNjUxMUVFOTVGREVENTZDNEY5QUUwMi96NjRqR3BpWE5f WWRyWlY4d2swaE5ZV0JqdHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKLd1tVGGIj4f/nZiNiC1lGDDiiL1PwuL+WNgF9KQuGS33JD2UKvcs EmLzAhOaSHNXFjJlLiUGnE9fZaFtC5cytcX3JSFdAG4gN2NGiS/bVlsHqXl+s6gC WdCmJHbNjYj1YTrzeXkrdfz7XWuH3CGKTHLzvBIVMPWWF2y3XmT0eupPOpDMHQ7o rWk5h1JzB6S8JxkBgQHdqLsKqcWyIarJicTIxIgbyM4lCxb4YB4NBkQWDqI6w2fV 3dr14u3oP/7oj6v3eMKingEbP0cvlkBM/OzjxP1JXkI2LVOIMNqfJe1HSuLGPVtQ NqgjTF4qSPkDvJXSiVV5XrxgfT9Pod1s -----END CERTIFICATE-----Generated at Fri Aug 22 16:36:07 2025 by rpki-client