$ rpki-client -vvf rpki.apnic.net/member_repository/A91728E2/97013A4E504011ED8AECAA6FC4F9AE02/AZcEvn5KzguhIRSzKOsCBxHvTq8.mft File: AZcEvn5KzguhIRSzKOsCBxHvTq8.mft (raw, json) Hash identifier: UnGrGkNIAZ+bXv1v4I759Wns1olNtnuKC2JCIXmY6jg= Subject key identifier: BC:CC:0E:85:B7:D9:4E:CE:15:5C:23:E8:A0:5E:59:B0:4F:F1:D4:7C Authority key identifier: 01:97:04:BE:7E:4A:CE:0B:A1:21:14:B3:28:EB:02:07:11:EF:4E:AF Certificate issuer: /CN=A91728E2/serialNumber=019704BE7E4ACE0BA12114B328EB020711EF4EAF Certificate serial: 021A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AZcEvn5KzguhIRSzKOsCBxHvTq8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91728E2/97013A4E504011ED8AECAA6FC4F9AE02/AZcEvn5KzguhIRSzKOsCBxHvTq8.mft Manifest number: 0216 Signing time: Thu 21 Aug 2025 02:14:20 +0000 Manifest this update: Thu 21 Aug 2025 02:14:20 +0000 Manifest next update: Thu 28 Aug 2025 02:14:20 +0000 Files and hashes: 1: AZcEvn5KzguhIRSzKOsCBxHvTq8.crl (hash: wpGTXPlCzLcqIF5oraBXX6wbQrBYh/lddpnNeHFJiO0=) 2: 85AEBA76504C11ED829F7D24C4F9AE02.roa (hash: MijbaBFOBmjVn0NZXYmQ25vm+DrZhkqNokVzBodlkOI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91728E2/97013A4E504011ED8AECAA6FC4F9AE02/AZcEvn5KzguhIRSzKOsCBxHvTq8.crl rsync://rpki.apnic.net/member_repository/A91728E2/97013A4E504011ED8AECAA6FC4F9AE02/AZcEvn5KzguhIRSzKOsCBxHvTq8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AZcEvn5KzguhIRSzKOsCBxHvTq8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 02:14:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 538 (0x21a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91728E2, serialNumber=019704BE7E4ACE0BA12114B328EB020711EF4EAF Validity Not Before: Aug 21 02:14:20 2025 GMT Not After : Aug 28 02:14:20 2025 GMT Subject: CN=68a680fc-64dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:1b:8f:6c:2d:67:18:f0:53:78:7a:8d:c7:b9: f7:a2:03:dc:00:92:ec:87:49:15:8e:c0:f5:fd:fb: 01:6f:f4:87:a4:54:73:41:45:98:31:32:01:56:88: 30:83:63:ef:0d:5d:ec:5d:20:46:2c:ef:61:55:53: 3b:ab:ad:42:fb:5b:39:7e:2e:f9:4f:2f:cf:5c:fa: 79:81:f3:35:cc:c3:0b:9d:35:2a:84:95:bc:ed:7e: 92:c8:ce:a2:e8:c7:1a:2f:4b:68:d1:92:fd:ab:f1: d3:eb:50:93:fe:1f:a9:3a:04:92:fd:e2:2d:c7:40: 97:e3:ff:31:72:f5:62:66:cb:57:23:e9:e2:d1:6a: 74:f4:22:c0:95:3e:86:f3:c4:0b:d1:6b:3a:c3:83: 27:b0:c6:08:ae:70:6e:56:67:d3:9b:02:15:b2:1f: 18:bb:db:69:90:ff:d2:18:c0:00:fc:ff:13:14:30: e2:4d:eb:2c:4e:e8:16:2c:ee:78:e3:a6:7b:c7:0a: 91:44:79:6c:fb:10:c9:66:4d:62:3b:6c:72:12:c7: 00:02:7c:c7:5b:2d:15:0a:a4:ee:be:30:00:55:0d: 6d:75:90:bd:ca:0d:08:88:0c:b9:cc:55:1e:28:bd: a1:dd:41:0b:97:06:57:8f:3f:43:4c:a8:84:30:93: 96:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:CC:0E:85:B7:D9:4E:CE:15:5C:23:E8:A0:5E:59:B0:4F:F1:D4:7C X509v3 Authority Key Identifier: keyid:01:97:04:BE:7E:4A:CE:0B:A1:21:14:B3:28:EB:02:07:11:EF:4E:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91728E2/97013A4E504011ED8AECAA6FC4F9AE02/AZcEvn5KzguhIRSzKOsCBxHvTq8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AZcEvn5KzguhIRSzKOsCBxHvTq8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91728E2/97013A4E504011ED8AECAA6FC4F9AE02/AZcEvn5KzguhIRSzKOsCBxHvTq8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:1a:5c:30:f8:ba:0e:97:c6:58:63:87:e2:95:13:a5:05:f7: 22:77:71:e6:21:78:56:6d:71:65:39:9f:62:91:2a:cc:ee:85: 0f:f4:27:fb:47:a6:97:f0:ad:a2:6f:66:90:a7:44:fb:c2:c1: c6:55:86:ab:d4:4d:6b:61:ff:12:7f:30:09:6b:7f:08:9d:8e: 30:f9:27:50:4c:73:6f:d8:3a:a6:40:9d:71:d5:92:99:14:2d: f2:ff:45:c0:db:04:97:ab:e1:c0:f2:fc:e8:06:0e:80:ae:1f: d0:45:70:df:c0:0b:89:40:75:bd:fc:df:58:e1:f4:f3:d1:ff: 17:3c:a8:11:0c:b5:e9:ae:a3:e6:81:5f:2b:d7:10:b6:48:35: 0d:0d:a5:d4:60:e1:9a:9b:0a:39:56:cb:cd:79:1c:73:4b:e3: 48:9a:16:49:64:8e:5d:81:4b:8d:dc:06:ed:42:34:36:57:60: c8:52:38:c1:9b:87:47:09:ce:d8:2e:03:d3:31:19:0f:47:63: eb:e7:a9:58:84:a0:5c:fd:01:26:e3:31:c6:73:05:a6:de:cd: b9:a4:37:d2:34:7e:b2:73:fd:46:5d:7d:cc:f4:d5:3d:47:6c: 22:79:f0:c4:47:bb:73:8c:88:db:41:23:0b:5b:6f:4f:c6:5b: 5f:50:71:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzI4RTIxMTAvBgNVBAUTKDAxOTcwNEJFN0U0QUNFMEJBMTIxMTRCMzI4RUIwMjA3 MTFFRjRFQUYwHhcNMjUwODIxMDIxNDIwWhcNMjUwODI4MDIxNDIwWjAYMRYwFAYD VQQDEw02OGE2ODBmYy02NGRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzRuPbC1nGPBTeHqNx7n3ogPcAJLsh0kVjsD1/fsBb/SHpFRzQUWYMTIBVogw g2PvDV3sXSBGLO9hVVM7q61C+1s5fi75Ty/PXPp5gfM1zMMLnTUqhJW87X6SyM6i 6McaL0to0ZL9q/HT61CT/h+pOgSS/eItx0CX4/8xcvViZstXI+ni0Wp09CLAlT6G 88QL0Ws6w4MnsMYIrnBuVmfTmwIVsh8Yu9tpkP/SGMAA/P8TFDDiTessTugWLO54 46Z7xwqRRHls+xDJZk1iO2xyEscAAnzHWy0VCqTuvjAAVQ1tdZC9yg0IiAy5zFUe KL2h3UELlwZXjz9DTKiEMJOW+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLzMDoW3 2U7OFVwj6KBeWbBP8dR8MB8GA1UdIwQYMBaAFAGXBL5+Ss4LoSEUsyjrAgcR706v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjhFMi85NzAxM0E0RTUw NDAxMUVEOEFFQ0FBNkZDNEY5QUUwMi9BWmNFdm41S3pndWhJUlN6S09zQ0J4SHZU cTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FaY0V2bjVLemd1aElSU3pLT3NDQnhIdlRxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjhFMi85NzAxM0E0RTUwNDAxMUVEOEFFQ0FBNkZDNEY5QUUwMi9BWmNFdm41S3pn dWhJUlN6S09zQ0J4SHZUcTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1Glww+LoOl8ZYY4filROlBfcid3HmIXhWbXFlOZ9ikSrM7oUP9Cf7 R6aX8K2ib2aQp0T7wsHGVYar1E1rYf8SfzAJa38InY4w+SdQTHNv2DqmQJ1x1ZKZ FC3y/0XA2wSXq+HA8vzoBg6Arh/QRXDfwAuJQHW9/N9Y4fTz0f8XPKgRDLXprqPm gV8r1xC2SDUNDaXUYOGamwo5VsvNeRxzS+NImhZJZI5dgUuN3AbtQjQ2V2DIUjjB m4dHCc7YLgPTMRkPR2Pr56lYhKBc/QEm4zHGcwWm3s25pDfSNH6yc/1GXX3M9NU9 R2wiefDER7tzjIjbQSMLW29PxltfUHE7 -----END CERTIFICATE-----Generated at Fri Aug 22 16:33:12 2025 by rpki-client