$ rpki-client -vvf rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft File: Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft (raw, json) Hash identifier: gRSIEq1doXq9uyLiGCq717mPgKHlUgWEl/sErOQeo9I= Subject key identifier: 48:81:29:6F:0D:41:B5:EC:0B:D7:5E:70:C8:51:A3:28:15:AA:27:3C Authority key identifier: 66:F6:B8:44:A9:F8:09:AE:30:7B:1B:9C:EE:4B:FD:47:C3:C7:77:1B Certificate issuer: /CN=A91B391F/serialNumber=66F6B844A9F809AE307B1B9CEE4BFD47C3C7771B Certificate serial: BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zva4RKn4Ca4wexuc7kv9R8PHdxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft Manifest number: BE Signing time: Fri 25 Jul 2025 06:09:08 +0000 Manifest this update: Fri 25 Jul 2025 06:09:07 +0000 Manifest next update: Fri 01 Aug 2025 06:09:07 +0000 Files and hashes: 1: Zva4RKn4Ca4wexuc7kv9R8PHdxs.crl (hash: VZD4R1u1ydlgq/EmLSXLY6OFhrahldJOkLgl7OAGm98=) 2: 5069A4E034B311F0B93A6228C4F9AE02.roa (hash: LjkQk5pWU/mOE2Q5+ogi7WUAZwgNRPqYtt1+W47MskQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.crl rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zva4RKn4Ca4wexuc7kv9R8PHdxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 01 Aug 2025 06:09:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 191 (0xbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B391F, serialNumber=66F6B844A9F809AE307B1B9CEE4BFD47C3C7771B Validity Not Before: Jul 25 06:09:07 2025 GMT Not After : Aug 1 06:09:07 2025 GMT Subject: CN=68831f83-e2e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:5d:06:56:06:e0:fc:17:78:6d:4d:8f:bd:0c: 56:9b:94:42:3e:a1:8d:6c:fe:22:c7:c6:8d:5a:bb: 84:0a:24:52:77:d0:08:62:bd:b4:0b:22:96:20:35: b4:9a:18:90:3e:4a:f1:88:75:09:07:ba:14:31:15: 72:35:4c:63:c7:29:15:41:fe:27:54:c1:f7:d9:c8: ef:6c:b0:a2:33:6b:ba:19:b1:aa:0f:c0:ec:4c:3e: b1:01:33:35:4b:65:4d:e7:1f:06:a1:05:bd:71:58: ff:98:9b:b5:fd:e6:c9:5e:44:77:83:f0:f9:96:f5: a8:9f:0f:7a:6c:11:0f:5b:d3:14:ca:f0:fd:6f:53: 69:ff:d1:98:89:c3:73:2a:f9:af:83:7b:90:27:7a: 61:23:88:b5:4f:cb:07:c9:12:e4:c0:e8:5a:e2:09: c6:57:2d:84:ad:5a:b9:c2:f1:86:5a:bb:77:ff:50: 72:12:2f:25:1e:c2:4f:07:e9:1d:9a:96:fc:5b:88: b9:bf:b0:8a:09:ce:18:c8:97:da:1f:68:45:3c:73: 39:1c:26:ae:95:ff:dd:32:48:2c:49:93:64:76:1a: 97:6c:1b:1e:c0:67:51:66:3d:52:e7:72:2e:0a:5c: 87:dc:9f:b9:eb:92:74:43:c9:3b:fd:10:48:cc:c0: 6e:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:81:29:6F:0D:41:B5:EC:0B:D7:5E:70:C8:51:A3:28:15:AA:27:3C X509v3 Authority Key Identifier: keyid:66:F6:B8:44:A9:F8:09:AE:30:7B:1B:9C:EE:4B:FD:47:C3:C7:77:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zva4RKn4Ca4wexuc7kv9R8PHdxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:fc:03:17:55:f9:ec:9f:32:c4:6e:18:e4:35:37:f4:bd:32: 24:cf:4e:9e:85:dc:45:fb:a7:36:71:a4:7e:87:62:5a:45:2d: b0:c6:3c:10:02:8d:b8:0a:d0:0b:3d:b2:ef:ac:7c:80:59:ef: e4:9a:c5:8d:27:22:48:9b:05:21:81:8f:c3:60:e6:fc:c4:75: 3b:10:3a:18:5f:d1:58:e4:d6:06:eb:7a:32:17:ed:46:31:51: a5:67:15:6b:9b:f4:49:2f:2b:62:76:68:ae:c5:72:89:96:a1: 8a:f8:47:ff:9e:25:7a:ee:8c:6f:d7:ad:bd:d4:f1:d5:c0:02: f5:45:e6:5a:f3:2b:13:b0:c5:26:ad:0f:ef:a7:08:9f:bd:b7: 43:3f:99:aa:40:e9:83:1e:fb:d6:83:44:30:f5:93:68:50:ec: 1b:13:d9:30:1c:8c:f7:71:2c:ab:a0:83:19:88:44:2f:30:4d: 49:31:3d:12:d3:3e:5b:74:08:26:e6:77:f4:a2:88:cb:77:56: b6:94:15:94:9d:c0:7f:97:ef:46:6f:82:37:9b:62:64:03:f0: 69:5a:52:dc:f8:b1:bc:1a:2a:f1:ac:10:9b:19:50:ca:82:3e: 25:1b:de:48:52:26:4b:b9:26:31:fc:41:1a:d2:83:59:4e:4a: 51:8c:93:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjM5MUYxMTAvBgNVBAUTKDY2RjZCODQ0QTlGODA5QUUzMDdCMUI5Q0VFNEJGRDQ3 QzNDNzc3MUIwHhcNMjUwNzI1MDYwOTA3WhcNMjUwODAxMDYwOTA3WjAYMRYwFAYD VQQDEw02ODgzMWY4My1lMmUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuV0GVgbg/Bd4bU2PvQxWm5RCPqGNbP4ix8aNWruECiRSd9AIYr20CyKWIDW0 mhiQPkrxiHUJB7oUMRVyNUxjxykVQf4nVMH32cjvbLCiM2u6GbGqD8DsTD6xATM1 S2VN5x8GoQW9cVj/mJu1/ebJXkR3g/D5lvWonw96bBEPW9MUyvD9b1Np/9GYicNz Kvmvg3uQJ3phI4i1T8sHyRLkwOha4gnGVy2ErVq5wvGGWrt3/1ByEi8lHsJPB+kd mpb8W4i5v7CKCc4YyJfaH2hFPHM5HCaulf/dMkgsSZNkdhqXbBsewGdRZj1S53Iu ClyH3J+565J0Q8k7/RBIzMBuowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEiBKW8N QbXsC9decMhRoygVqic8MB8GA1UdIwQYMBaAFGb2uESp+AmuMHsbnO5L/UfDx3cb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzkxRi81OERCODdGMjQ1 NzAxMUVGOUM4QjhFNzFDNEY5QUUwMi9admE0UktuNENhNHdleHVjN2t2OVI4UEhk eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p2YTRSS240Q2E0d2V4dWM3a3Y5UjhQSGR4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzkxRi81OERCODdGMjQ1NzAxMUVGOUM4QjhFNzFDNEY5QUUwMi9admE0UktuNENh NHdleHVjN2t2OVI4UEhkeHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1/AMXVfnsnzLEbhjkNTf0vTIkz06ehdxF+6c2caR+h2JaRS2wxjwQ Ao24CtALPbLvrHyAWe/kmsWNJyJImwUhgY/DYOb8xHU7EDoYX9FY5NYG63oyF+1G MVGlZxVrm/RJLytidmiuxXKJlqGK+Ef/niV67oxv16291PHVwAL1ReZa8ysTsMUm rQ/vpwifvbdDP5mqQOmDHvvWg0Qw9ZNoUOwbE9kwHIz3cSyroIMZiEQvME1JMT0S 0z5bdAgm5nf0oojLd1a2lBWUncB/l+9Gb4I3m2JkA/BpWlLc+LG8GirxrBCbGVDK gj4lG95IUiZLuSYx/EEa0oNZTkpRjJMi -----END CERTIFICATE-----Generated at Fri Jul 25 22:03:42 2025 by rpki-client