$ rpki-client -vvf rpki.apnic.net/member_repository/A91565C6/D265B0C6F41F11EF81708868C4F9AE02/zVNcfrMaQKP9uKxNXVd6-dbFiEg.mft File: zVNcfrMaQKP9uKxNXVd6-dbFiEg.mft (raw, json) Hash identifier: jXDSsvyLXb6BL3PzGFd2HQWt8zx8ZbAV+k/sM3weOkQ= Subject key identifier: CB:0D:F9:AF:C0:06:98:CB:C5:69:00:70:FC:50:85:56:85:75:E5:27 Authority key identifier: CD:53:5C:7E:B3:1A:40:A3:FD:B8:AC:4D:5D:57:7A:F9:D6:C5:88:48 Certificate issuer: /CN=A91565C6/serialNumber=CD535C7EB31A40A3FDB8AC4D5D577AF9D6C58848 Certificate serial: 67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zVNcfrMaQKP9uKxNXVd6-dbFiEg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91565C6/D265B0C6F41F11EF81708868C4F9AE02/zVNcfrMaQKP9uKxNXVd6-dbFiEg.mft Manifest number: 65 Signing time: Sun 07 Sep 2025 07:31:37 +0000 Manifest this update: Sun 07 Sep 2025 07:31:36 +0000 Manifest next update: Sun 14 Sep 2025 07:31:36 +0000 Files and hashes: 1: zVNcfrMaQKP9uKxNXVd6-dbFiEg.crl (hash: VBaLy9qY8qaovmg2UFO/ruJbeClzZo4XU+Tydwa/2VY=) 2: 296C92D0F5B611EFB7E6426EC4F9AE02.roa (hash: DAG2avo3wM4Iv7tiFSCw0I7iwE7NYk5jbcu93twLDNo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91565C6/D265B0C6F41F11EF81708868C4F9AE02/zVNcfrMaQKP9uKxNXVd6-dbFiEg.crl rsync://rpki.apnic.net/member_repository/A91565C6/D265B0C6F41F11EF81708868C4F9AE02/zVNcfrMaQKP9uKxNXVd6-dbFiEg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zVNcfrMaQKP9uKxNXVd6-dbFiEg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 07:31:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 103 (0x67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91565C6, serialNumber=CD535C7EB31A40A3FDB8AC4D5D577AF9D6C58848 Validity Not Before: Sep 7 07:31:36 2025 GMT Not After : Sep 14 07:31:36 2025 GMT Subject: CN=68bd34d9-a4a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:51:50:06:0d:37:0e:7c:55:f5:55:74:27:41: 24:00:71:40:97:99:f8:94:4c:c1:3a:8a:f1:1f:c0: 39:fc:64:e8:61:d5:0c:0a:8a:c9:ac:e4:39:d6:02: 6f:ca:62:d6:f0:93:da:fb:cb:6d:10:ca:ae:ff:aa: 07:57:d9:a6:e9:bd:27:56:50:e9:43:a4:cc:10:4d: fa:d3:3e:1f:d7:5f:8a:09:dc:d6:ac:d9:56:53:b3: f1:fe:15:c4:40:b7:46:59:d4:31:6c:5a:57:c1:4c: b8:11:a5:7d:90:3a:a1:b0:24:60:a5:02:ca:ab:a5: 8b:f1:8f:e1:ef:9c:c3:a9:cb:48:99:57:a9:cf:54: 67:dd:1c:1c:a8:f0:1d:0c:7d:ce:8e:6c:7d:60:8d: 47:3d:07:6a:48:c2:4b:49:ac:4e:9a:43:2c:9c:7f: ac:a6:c1:c9:d5:53:18:85:9a:94:0d:78:17:06:e0: 26:f4:4f:fa:be:00:85:d0:da:54:88:a2:76:0a:60: ba:49:02:9c:8c:a2:21:9c:db:ac:55:18:10:cb:65: 76:64:08:45:04:63:2c:a8:40:4b:92:e9:b9:13:c1: 02:35:49:4b:6d:2c:d3:37:18:d8:2d:fc:5f:6a:c5: f7:52:44:18:44:e4:19:fd:96:3d:dd:c9:19:05:c9: 1a:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:0D:F9:AF:C0:06:98:CB:C5:69:00:70:FC:50:85:56:85:75:E5:27 X509v3 Authority Key Identifier: keyid:CD:53:5C:7E:B3:1A:40:A3:FD:B8:AC:4D:5D:57:7A:F9:D6:C5:88:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91565C6/D265B0C6F41F11EF81708868C4F9AE02/zVNcfrMaQKP9uKxNXVd6-dbFiEg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zVNcfrMaQKP9uKxNXVd6-dbFiEg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91565C6/D265B0C6F41F11EF81708868C4F9AE02/zVNcfrMaQKP9uKxNXVd6-dbFiEg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:30:da:4c:a6:3e:61:19:b5:a1:16:79:13:3e:07:30:85:06: aa:75:b7:4b:56:19:84:a1:e2:57:95:44:d8:35:13:5b:c8:9d: 79:de:f8:4d:81:e4:de:a9:f9:d8:8f:50:75:39:e9:89:40:b2: 20:8f:9a:2c:69:af:42:ae:22:c9:69:3f:07:5e:7d:93:fb:29: c9:4c:f3:cd:78:8a:77:0b:09:db:7f:71:95:60:f7:91:76:20: 2d:04:84:75:0b:4e:bd:bf:38:ac:a5:90:26:7e:a9:33:c7:d2: 15:63:57:03:f5:9a:40:2b:c4:ae:99:cb:17:de:c7:ed:57:09: 7c:e6:6e:b8:6b:e5:02:7a:3a:44:29:d8:26:fc:2c:e6:d8:cf: 97:cb:3b:ce:4b:b3:64:e8:83:33:80:99:ff:d0:66:8e:e9:14: 46:8a:35:ca:25:a7:af:e1:8b:eb:2f:53:5f:3b:b8:ab:f3:e2: c6:24:65:e9:f0:1d:b7:dd:78:8b:2e:51:dc:00:2d:d8:6d:91: a1:de:35:71:cf:34:98:07:5d:c8:33:cc:95:bb:26:03:39:47: 5c:9d:d7:7f:cc:68:e2:fd:a1:13:23:d5:93:ea:08:f2:48:c8: 1b:0a:d0:95:07:b1:01:af:9d:2f:44:83:66:c6:5f:ad:2d:84: c9:5f:d6:d6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NjVDNjExMC8GA1UEBRMoQ0Q1MzVDN0VCMzFBNDBBM0ZEQjhBQzRENUQ1NzdBRjlE NkM1ODg0ODAeFw0yNTA5MDcwNzMxMzZaFw0yNTA5MTQwNzMxMzZaMBgxFjAUBgNV BAMTDTY4YmQzNGQ5LWE0YTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD1UVAGDTcOfFX1VXQnQSQAcUCXmfiUTME6ivEfwDn8ZOhh1QwKisms5DnWAm/K Ytbwk9r7y20Qyq7/qgdX2abpvSdWUOlDpMwQTfrTPh/XX4oJ3Nas2VZTs/H+FcRA t0ZZ1DFsWlfBTLgRpX2QOqGwJGClAsqrpYvxj+HvnMOpy0iZV6nPVGfdHByo8B0M fc6ObH1gjUc9B2pIwktJrE6aQyycf6ymwcnVUxiFmpQNeBcG4Cb0T/q+AIXQ2lSI onYKYLpJApyMoiGc26xVGBDLZXZkCEUEYyyoQEuS6bkTwQI1SUttLNM3GNgt/F9q xfdSRBhE5Bn9lj3dyRkFyRqLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUyw35r8AG mMvFaQBw/FCFVoV15ScwHwYDVR0jBBgwFoAUzVNcfrMaQKP9uKxNXVd6+dbFiEgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU2NUM2L0QyNjVCMEM2RjQx RjExRUY4MTcwODg2OEM0RjlBRTAyL3pWTmNmck1hUUtQOXVLeE5YVmQ2LWRiRmlF Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvelZOY2ZyTWFRS1A5dUt4TlhWZDYtZGJGaUVnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU2 NUM2L0QyNjVCMEM2RjQxRjExRUY4MTcwODg2OEM0RjlBRTAyL3pWTmNmck1hUUtQ OXVLeE5YVmQ2LWRiRmlFZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABQw2kymPmEZtaEWeRM+BzCFBqp1t0tWGYSh4leVRNg1E1vInXne+E2B 5N6p+diPUHU56YlAsiCPmixpr0KuIslpPwdefZP7KclM8814incLCdt/cZVg95F2 IC0EhHULTr2/OKylkCZ+qTPH0hVjVwP1mkArxK6Zyxfex+1XCXzmbrhr5QJ6OkQp 2Cb8LObYz5fLO85Ls2TogzOAmf/QZo7pFEaKNcolp6/hi+svU187uKvz4sYkZenw HbfdeIsuUdwALdhtkaHeNXHPNJgHXcgzzJW7JgM5R1yd13/MaOL9oRMj1ZPqCPJI yBsK0JUHsQGvnS9Eg2bGX60thMlf1tY= -----END CERTIFICATE-----Generated at Mon Sep 8 13:15:15 2025 by rpki-client