$ rpki-client -vvf rpki.apnic.net/member_repository/A91A759F/0A6F263469C511E2859002452979BB20/cazs8aGtlwhWVdvTRMPru9Vv5HQ.mft File: cazs8aGtlwhWVdvTRMPru9Vv5HQ.mft (raw, json) Hash identifier: TI65FL79/61i6dnuNu95TDffikZX9rj5uiDlRNsmGr8= Subject key identifier: EF:39:FA:0B:48:B4:9E:54:91:77:AD:A2:A5:97:12:17:5B:E7:C9:22 Authority key identifier: 71:AC:EC:F1:A1:AD:97:08:56:55:DB:D3:44:C3:EB:BB:D5:6F:E4:74 Certificate issuer: /CN=A91A759F/serialNumber=71ACECF1A1AD97085655DBD344C3EBBBD56FE474 Certificate serial: 092A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cazs8aGtlwhWVdvTRMPru9Vv5HQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A759F/0A6F263469C511E2859002452979BB20/cazs8aGtlwhWVdvTRMPru9Vv5HQ.mft Manifest number: 3C59 Signing time: Sun 24 Aug 2025 15:20:56 +0000 Manifest this update: Sun 24 Aug 2025 15:20:56 +0000 Manifest next update: Sun 31 Aug 2025 15:20:56 +0000 Files and hashes: 1: cazs8aGtlwhWVdvTRMPru9Vv5HQ.crl (hash: ptUnNY93NYC+iAMp+0QTIE15DfU4bfNjd8bmhqmFciI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A759F/0A6F263469C511E2859002452979BB20/cazs8aGtlwhWVdvTRMPru9Vv5HQ.crl rsync://rpki.apnic.net/member_repository/A91A759F/0A6F263469C511E2859002452979BB20/cazs8aGtlwhWVdvTRMPru9Vv5HQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cazs8aGtlwhWVdvTRMPru9Vv5HQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 15:20:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2346 (0x92a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A759F, serialNumber=71ACECF1A1AD97085655DBD344C3EBBBD56FE474 Validity Not Before: Aug 24 15:20:56 2025 GMT Not After : Aug 31 15:20:56 2025 GMT Subject: CN=68ab2dd8-89ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:e9:8f:bd:ea:56:42:5d:58:30:2f:1f:52:7a: 5e:97:c1:fc:e2:34:39:67:25:65:9b:c1:b6:8a:ef: 5c:17:fd:c5:75:db:7f:23:60:cf:be:20:d8:25:f9: c9:1e:31:46:3b:09:48:ec:88:8a:8f:03:72:79:76: 60:fb:a3:93:a2:da:ec:84:a8:26:59:ba:ff:92:74: 51:a8:c5:a8:b7:f9:0a:27:1a:4c:32:df:fc:d9:42: 08:a2:7f:af:4e:be:bd:c7:37:1f:80:72:c4:e9:f4: 54:4f:ab:83:de:15:ab:0f:9a:75:bc:69:0e:97:e0: e4:e0:d8:b0:f0:f3:4a:fc:b4:1c:e3:7a:86:4d:fe: 08:b5:3c:fd:d3:db:86:d7:61:f7:68:fd:2f:30:9c: 2b:cc:d4:c7:40:21:04:90:eb:69:54:0d:48:14:eb: c7:56:31:96:6d:7c:f4:0f:fc:8a:00:1f:d4:33:db: 98:e9:af:f6:e9:4e:54:d6:9a:06:e5:6f:1d:38:a0: 99:a5:e4:90:cd:b6:fa:4f:64:e9:3e:14:87:70:66: d5:cc:8b:3b:48:75:2b:50:44:47:45:47:9b:5e:2a: 0e:e6:9f:a2:57:95:4d:74:31:fa:96:9c:ec:2e:6f: 34:50:c0:5a:ff:ee:5f:92:9a:56:d0:e1:04:2f:7c: 89:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:39:FA:0B:48:B4:9E:54:91:77:AD:A2:A5:97:12:17:5B:E7:C9:22 X509v3 Authority Key Identifier: keyid:71:AC:EC:F1:A1:AD:97:08:56:55:DB:D3:44:C3:EB:BB:D5:6F:E4:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A759F/0A6F263469C511E2859002452979BB20/cazs8aGtlwhWVdvTRMPru9Vv5HQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cazs8aGtlwhWVdvTRMPru9Vv5HQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A759F/0A6F263469C511E2859002452979BB20/cazs8aGtlwhWVdvTRMPru9Vv5HQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:d5:e8:50:36:ca:39:2c:46:b4:5e:1f:ab:52:e5:ea:01:30: 00:cd:78:99:41:c9:b5:dc:65:52:f0:32:ce:0d:0e:99:d0:e5: a4:b6:99:26:01:24:85:36:4e:bc:36:54:56:1c:f9:bd:14:f8: 25:b1:a1:71:0e:88:2b:34:b6:0b:cd:28:a6:bb:53:55:38:52: 50:52:c5:6c:32:99:54:91:01:0c:39:e3:16:65:1e:73:fb:1c: a7:0d:2b:c9:d8:61:8f:33:44:70:ca:c8:c7:5d:11:d0:ff:23: 55:df:01:32:b1:89:98:63:fe:0d:34:6b:23:48:16:a5:bb:ac: ab:ae:0d:48:89:a2:5b:3c:4e:e7:a2:44:06:cd:fa:ba:29:3f: 7d:e7:73:24:cd:39:67:48:96:f5:5e:16:9b:94:6e:e8:83:91: cb:20:40:1b:3f:d8:46:27:a6:21:35:5d:82:f1:b2:93:04:92: c0:2f:1a:be:2b:3a:41:f6:85:59:08:01:75:19:04:47:f9:ac: e4:58:e8:88:11:0c:11:f1:82:e9:76:21:2c:e0:1a:1b:b6:f1: 43:24:0d:29:45:62:1d:3e:e5:52:8a:0a:a4:f1:24:de:6a:5a: 91:f8:b2:02:da:b9:7b:9b:ae:2f:72:8c:83:f2:d7:60:03:77: 35:16:f6:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCSowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc1OUYxMTAvBgNVBAUTKDcxQUNFQ0YxQTFBRDk3MDg1NjU1REJEMzQ0QzNFQkJC RDU2RkU0NzQwHhcNMjUwODI0MTUyMDU2WhcNMjUwODMxMTUyMDU2WjAYMRYwFAYD VQQDEw02OGFiMmRkOC04OWVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArumPvepWQl1YMC8fUnpel8H84jQ5ZyVlm8G2iu9cF/3Fddt/I2DPviDYJfnJ HjFGOwlI7IiKjwNyeXZg+6OTotrshKgmWbr/knRRqMWot/kKJxpMMt/82UIIon+v Tr69xzcfgHLE6fRUT6uD3hWrD5p1vGkOl+Dk4Niw8PNK/LQc43qGTf4ItTz909uG 12H3aP0vMJwrzNTHQCEEkOtpVA1IFOvHVjGWbXz0D/yKAB/UM9uY6a/26U5U1poG 5W8dOKCZpeSQzbb6T2TpPhSHcGbVzIs7SHUrUERHRUebXioO5p+iV5VNdDH6lpzs Lm80UMBa/+5fkppW0OEEL3yJGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO85+gtI tJ5UkXetoqWXEhdb58kiMB8GA1UdIwQYMBaAFHGs7PGhrZcIVlXb00TD67vVb+R0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzU5Ri8wQTZGMjYzNDY5 QzUxMUUyODU5MDAyNDUyOTc5QkIyMC9jYXpzOGFHdGx3aFdWZHZUUk1QcnU5VnY1 SFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NhenM4YUd0bHdoV1ZkdlRSTVBydTlWdjVIUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzU5Ri8wQTZGMjYzNDY5QzUxMUUyODU5MDAyNDUyOTc5QkIyMC9jYXpzOGFHdGx3 aFdWZHZUUk1QcnU5VnY1SFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAh1ehQNso5LEa0Xh+rUuXqATAAzXiZQcm13GVS8DLODQ6Z0OWktpkm ASSFNk68NlRWHPm9FPglsaFxDogrNLYLzSimu1NVOFJQUsVsMplUkQEMOeMWZR5z +xynDSvJ2GGPM0RwysjHXRHQ/yNV3wEysYmYY/4NNGsjSBalu6yrrg1IiaJbPE7n okQGzfq6KT9953MkzTlnSJb1XhablG7og5HLIEAbP9hGJ6YhNV2C8bKTBJLALxq+ KzpB9oVZCAF1GQRH+azkWOiIEQwR8YLpdiEs4BobtvFDJA0pRWIdPuVSigqk8STe alqR+LIC2rl7m64vcoyD8tdgA3c1FvZJ -----END CERTIFICATE-----Generated at Sun Aug 24 22:11:21 2025 by rpki-client