$ rpki-client -vvf rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft File: 2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft (raw, json) Hash identifier: xtHvwhpttjnM//KGNvyGVanshT1zcB5iYLnyR0CEL/M= Subject key identifier: AD:C7:B6:00:B1:36:58:78:77:99:8B:4D:07:F8:FE:00:77:39:FC:D1 Authority key identifier: D9:5C:E5:FB:36:91:5C:3D:8C:DB:10:DB:86:4A:4C:71:93:3C:DA:41 Certificate issuer: /CN=A91795CA/serialNumber=D95CE5FB36915C3D8CDB10DB864A4C71933CDA41 Certificate serial: 06A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Vzl-zaRXD2M2xDbhkpMcZM82kE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft Manifest number: 0699 Signing time: Wed 20 Aug 2025 22:24:53 +0000 Manifest this update: Wed 20 Aug 2025 22:24:52 +0000 Manifest next update: Wed 27 Aug 2025 22:24:52 +0000 Files and hashes: 1: 2Vzl-zaRXD2M2xDbhkpMcZM82kE.crl (hash: Kfu7jxVY7afaiu4MHs2A1dfvTOIY14M5oqZt0G3MNRE=) 2: 0BEE202087BA11EBBBA56067C4F9AE02.roa (hash: Lz3W/TkDVHeZx5YYagD6lr1rtN4/8q3JKJK/D1U5/sg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.crl rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Vzl-zaRXD2M2xDbhkpMcZM82kE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 22:24:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1699 (0x6a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91795CA, serialNumber=D95CE5FB36915C3D8CDB10DB864A4C71933CDA41 Validity Not Before: Aug 20 22:24:52 2025 GMT Not After : Aug 27 22:24:52 2025 GMT Subject: CN=68a64b35-0fe6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:de:00:4e:eb:a8:87:62:d6:9d:6c:ca:83:38: 52:69:a4:04:d0:95:f2:6a:e7:e9:25:86:dd:e1:75: a3:03:76:f5:92:6c:31:b0:f5:a6:69:e5:af:1c:88: 26:b3:71:db:f4:88:05:8c:2d:ee:df:37:c6:f6:05: 0b:f0:9c:cf:18:69:62:ff:be:d4:67:4a:12:97:ed: 1d:63:c8:d5:ad:ec:f1:d8:00:71:80:ca:09:85:e5: ca:70:de:86:2b:69:3d:eb:e2:7a:79:f3:3b:ef:50: 89:81:0f:b7:c0:41:07:bf:37:98:93:eb:52:a8:75: 5f:fa:21:66:73:1e:e2:83:8a:09:f5:06:df:37:ab: 09:7b:1d:0c:e2:6a:7a:2f:5c:9d:46:10:4b:8b:8a: a2:9c:08:14:95:d6:02:23:24:9e:60:c1:d7:a9:0c: f7:35:78:f2:e9:8e:f6:e5:5b:fa:be:8b:55:5d:e3: 14:81:57:47:0e:e0:ae:d2:f3:2d:02:4a:e4:09:40: e9:84:7c:20:a2:ee:7f:6d:4d:9e:a5:2e:34:fe:c4: a8:89:62:d2:5c:41:6e:d1:13:aa:ee:d6:52:76:73: 98:dc:18:82:53:5e:c8:0f:3c:a3:94:b4:df:87:f7: 43:8c:26:97:7c:e9:52:6f:9c:b2:a8:5f:a5:ac:dd: fe:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:C7:B6:00:B1:36:58:78:77:99:8B:4D:07:F8:FE:00:77:39:FC:D1 X509v3 Authority Key Identifier: keyid:D9:5C:E5:FB:36:91:5C:3D:8C:DB:10:DB:86:4A:4C:71:93:3C:DA:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Vzl-zaRXD2M2xDbhkpMcZM82kE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:6f:25:95:39:43:8b:18:d9:bd:4b:e4:09:23:cb:b4:68:01: 85:0c:f5:e1:f9:72:07:d3:48:75:73:02:7e:33:dc:bc:f4:93: b4:f7:41:40:16:ad:22:0b:a2:50:79:86:c9:2c:3e:ec:a8:64: c4:3b:74:9e:04:e5:f2:ee:fb:27:78:41:94:94:7d:be:64:b4: a7:06:b6:1a:84:c5:49:58:fd:d5:70:6f:df:38:17:40:36:43: 35:4d:f6:ac:15:87:39:6f:24:5a:c7:60:ca:a9:ac:83:41:06: b2:89:f3:5b:c7:57:3d:39:0c:92:49:35:0d:de:d5:4d:b7:1c: dd:86:ad:7e:b7:72:92:88:bf:cc:ed:a0:b1:57:cb:80:81:e9: a5:69:0c:ee:b0:fd:9a:66:39:92:10:f9:6a:76:af:30:58:50: dd:53:a1:09:c2:18:cc:6d:10:78:93:5e:e8:d3:ff:f7:bf:e1: 56:bf:75:52:74:25:58:36:dc:84:5d:52:a0:0a:d2:eb:bc:44: a0:57:30:02:5f:66:14:f2:b7:fa:9a:5f:bd:01:ba:e1:c6:dd: 69:f1:b4:02:2c:70:81:c2:c2:47:8f:d2:6c:fc:65:e9:ed:80: 52:26:c9:56:dd:85:c9:d1:17:17:67:50:df:5b:dc:a8:a6:2c: 5c:5d:1b:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk1Q0ExMTAvBgNVBAUTKEQ5NUNFNUZCMzY5MTVDM0Q4Q0RCMTBEQjg2NEE0Qzcx OTMzQ0RBNDEwHhcNMjUwODIwMjIyNDUyWhcNMjUwODI3MjIyNDUyWjAYMRYwFAYD VQQDEw02OGE2NGIzNS0wZmU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0t4ATuuoh2LWnWzKgzhSaaQE0JXyaufpJYbd4XWjA3b1kmwxsPWmaeWvHIgm s3Hb9IgFjC3u3zfG9gUL8JzPGGli/77UZ0oSl+0dY8jVrezx2ABxgMoJheXKcN6G K2k96+J6efM771CJgQ+3wEEHvzeYk+tSqHVf+iFmcx7ig4oJ9QbfN6sJex0M4mp6 L1ydRhBLi4qinAgUldYCIySeYMHXqQz3NXjy6Y725Vv6votVXeMUgVdHDuCu0vMt AkrkCUDphHwgou5/bU2epS40/sSoiWLSXEFu0ROq7tZSdnOY3BiCU17IDzyjlLTf h/dDjCaXfOlSb5yyqF+lrN3+EwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK3HtgCx Nlh4d5mLTQf4/gB3OfzRMB8GA1UdIwQYMBaAFNlc5fs2kVw9jNsQ24ZKTHGTPNpB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTVDQS9GMzY0M0IxMDgz MDUxMUVCOTcxODlCMzlDNEY5QUUwMi8yVnpsLXphUlhEMk0yeERiaGtwTWNaTTgy a0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJWemwtemFSWEQyTTJ4RGJoa3BNY1pNODJrRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTVDQS9GMzY0M0IxMDgzMDUxMUVCOTcxODlCMzlDNEY5QUUwMi8yVnpsLXphUlhE Mk0yeERiaGtwTWNaTTgya0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALbyWVOUOLGNm9S+QJI8u0aAGFDPXh+XIH00h1cwJ+M9y89JO090FA Fq0iC6JQeYbJLD7sqGTEO3SeBOXy7vsneEGUlH2+ZLSnBrYahMVJWP3VcG/fOBdA NkM1TfasFYc5byRax2DKqayDQQayifNbx1c9OQySSTUN3tVNtxzdhq1+t3KSiL/M 7aCxV8uAgemlaQzusP2aZjmSEPlqdq8wWFDdU6EJwhjMbRB4k17o0//3v+FWv3VS dCVYNtyEXVKgCtLrvESgVzACX2YU8rf6ml+9Abrhxt1p8bQCLHCBwsJHj9Js/GXp 7YBSJslW3YXJ0RcXZ1DfW9yopixcXRu+ -----END CERTIFICATE-----Generated at Thu Aug 21 07:02:44 2025 by rpki-client