$ rpki-client -vvf rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.mft File: d0ZKhG930cTTZqMGuAaTn88qYBo.mft (raw, json) Hash identifier: EmwwzH+5qnPC16f0kl1c75BZ/g5JiTO/SmiDbpmS9QE= Subject key identifier: B5:62:E8:56:06:CB:60:89:2C:64:C5:78:9A:35:D6:E6:27:C6:6D:EB Authority key identifier: 77:46:4A:84:6F:77:D1:C4:D3:66:A3:06:B8:06:93:9F:CF:2A:60:1A Certificate issuer: /CN=A91B74D6/serialNumber=77464A846F77D1C4D366A306B806939FCF2A601A Certificate serial: FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0ZKhG930cTTZqMGuAaTn88qYBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.mft Manifest number: F6 Signing time: Thu 21 Aug 2025 05:25:22 +0000 Manifest this update: Thu 21 Aug 2025 05:25:22 +0000 Manifest next update: Thu 28 Aug 2025 05:25:22 +0000 Files and hashes: 1: d0ZKhG930cTTZqMGuAaTn88qYBo.crl (hash: rvn+vtewTVbHLaC3saH+uJ1IS8uD+7sqeNaz6OHngTc=) 2: ABD84FB00F8A11EF943CC917C4F9AE02.roa (hash: PDnutuYB/riFGiwE/DA4jtgTvwtaDb0EZnLNk2dEE1g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.crl rsync://rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0ZKhG930cTTZqMGuAaTn88qYBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 05:25:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 251 (0xfb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B74D6, serialNumber=77464A846F77D1C4D366A306B806939FCF2A601A Validity Not Before: Aug 21 05:25:22 2025 GMT Not After : Aug 28 05:25:22 2025 GMT Subject: CN=68a6adc2-fd7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:32:04:bb:d4:d3:24:73:49:e4:ab:44:c9:2b: 46:5b:03:fc:b1:74:84:0e:72:79:af:63:48:37:8a: 00:96:f0:1f:09:61:51:2e:11:1a:1e:c7:c2:a0:16: 45:eb:3a:af:e4:91:8c:12:35:01:60:de:ef:ac:7e: 2f:f3:3a:5f:de:53:4a:8e:5e:2d:2a:9d:a0:ef:5d: 50:8d:6c:40:62:02:1a:9d:b7:d6:b8:88:90:99:0d: 17:7c:29:e2:f2:7b:57:bb:9f:35:4b:2a:86:9e:26: 5d:4e:7d:e2:72:20:7f:93:40:fb:fe:69:17:f6:0f: 4e:8a:e9:1b:c7:1d:a6:1a:f2:3a:a9:cf:17:3c:28: ca:bf:43:e1:1d:bb:ec:84:1f:94:8f:e7:55:14:06: 9a:eb:40:99:30:d5:3e:b0:1e:1d:23:1d:62:4c:62: 49:00:b7:68:9b:16:bc:f0:21:81:bc:91:a9:41:27: b3:c8:ca:e9:00:21:d1:f0:03:9d:9c:3a:de:1f:e5: 21:2e:9b:1a:12:ee:92:ff:00:78:96:de:cb:70:c4: 65:a6:84:60:ec:cc:ce:0f:cc:82:ff:51:31:a6:e9: f3:7f:de:c7:6b:80:e9:31:4a:fc:02:a6:dc:78:58: 85:01:a8:c6:0e:1c:cf:2a:45:8a:ce:52:ef:d4:02: 33:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:62:E8:56:06:CB:60:89:2C:64:C5:78:9A:35:D6:E6:27:C6:6D:EB X509v3 Authority Key Identifier: keyid:77:46:4A:84:6F:77:D1:C4:D3:66:A3:06:B8:06:93:9F:CF:2A:60:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0ZKhG930cTTZqMGuAaTn88qYBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:5a:af:08:ed:a9:4a:23:d0:8b:ea:2e:ef:e7:4e:5a:da:77: a0:d3:07:86:ff:ae:2f:99:42:76:e7:a5:70:da:e3:7b:cc:7b: 71:fd:a4:c0:bc:ae:b8:7c:0a:b5:44:5d:ff:6d:1f:f3:b9:90: 19:ce:81:88:a4:00:82:e1:a9:eb:2c:29:dc:0c:85:03:f4:09: c4:dd:f5:af:22:6b:88:60:f3:93:20:96:6b:3a:cc:f6:a8:66: 70:f1:da:a2:2c:31:c6:2f:46:a5:9c:c4:b0:bb:c3:ca:f3:ad: 75:62:e5:59:8d:db:19:fe:05:98:d6:35:cc:fe:66:dd:01:9d: f4:39:fa:ba:c4:c1:30:99:53:df:49:26:57:85:4d:93:3a:37: 08:ff:08:48:3c:e3:42:e7:4e:c4:a6:fc:af:e3:d6:40:88:e8: 37:ff:f8:96:e8:87:42:9e:e0:0c:f2:be:f4:5d:2b:d6:e9:48: 68:94:67:d7:67:ac:68:96:a6:0f:40:e9:e2:05:0f:85:18:1d: d2:00:6a:a1:22:bc:46:1c:79:01:da:64:14:b3:b4:81:55:95: 88:4f:bd:f7:68:7b:ec:51:50:c9:1c:84:82:b7:e4:f2:f3:b1: c2:d0:78:bf:cd:60:1d:29:c2:e6:0e:cd:9a:c9:ee:89:6f:7b: 44:3d:38:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc0RDYxMTAvBgNVBAUTKDc3NDY0QTg0NkY3N0QxQzREMzY2QTMwNkI4MDY5MzlG Q0YyQTYwMUEwHhcNMjUwODIxMDUyNTIyWhcNMjUwODI4MDUyNTIyWjAYMRYwFAYD VQQDEw02OGE2YWRjMi1mZDdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3DIEu9TTJHNJ5KtEyStGWwP8sXSEDnJ5r2NIN4oAlvAfCWFRLhEaHsfCoBZF 6zqv5JGMEjUBYN7vrH4v8zpf3lNKjl4tKp2g711QjWxAYgIanbfWuIiQmQ0XfCni 8ntXu581SyqGniZdTn3iciB/k0D7/mkX9g9Oiukbxx2mGvI6qc8XPCjKv0PhHbvs hB+Uj+dVFAaa60CZMNU+sB4dIx1iTGJJALdomxa88CGBvJGpQSezyMrpACHR8AOd nDreH+UhLpsaEu6S/wB4lt7LcMRlpoRg7MzOD8yC/1Expunzf97Ha4DpMUr8Aqbc eFiFAajGDhzPKkWKzlLv1AIzmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLVi6FYG y2CJLGTFeJo11uYnxm3rMB8GA1UdIwQYMBaAFHdGSoRvd9HE02ajBrgGk5/PKmAa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzRENi9ERTIyQUQyNDBD REYxMUVGOTQ4NEU2MkFDNEY5QUUwMi9kMFpLaEc5MzBjVFRacU1HdUFhVG44OHFZ Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QwWktoRzkzMGNUVFpxTUd1QWFUbjg4cVlCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzRENi9ERTIyQUQyNDBDREYxMUVGOTQ4NEU2MkFDNEY5QUUwMi9kMFpLaEc5MzBj VFRacU1HdUFhVG44OHFZQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATWq8I7alKI9CL6i7v505a2neg0weG/64vmUJ256Vw2uN7zHtx/aTA vK64fAq1RF3/bR/zuZAZzoGIpACC4anrLCncDIUD9AnE3fWvImuIYPOTIJZrOsz2 qGZw8dqiLDHGL0alnMSwu8PK8611YuVZjdsZ/gWY1jXM/mbdAZ30Ofq6xMEwmVPf SSZXhU2TOjcI/whIPONC507Epvyv49ZAiOg3//iW6IdCnuAM8r70XSvW6UholGfX Z6xolqYPQOniBQ+FGB3SAGqhIrxGHHkB2mQUs7SBVZWIT733aHvsUVDJHISCt+Ty 87HC0Hi/zWAdKcLmDs2aye6Jb3tEPTgH -----END CERTIFICATE-----Generated at Fri Aug 22 16:19:02 2025 by rpki-client