$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8C12/3ED0852691A611EDB72C5956C4F9AE02/zI7F8Y4keEmlxwbphTthhkju8qY.mft File: zI7F8Y4keEmlxwbphTthhkju8qY.mft (raw, json) Hash identifier: xEAtwui2o3yAUwlELHvzMyzp0sBWPkZm0eMahCSZzIk= Subject key identifier: 6F:18:92:32:C2:0A:10:4C:01:27:D6:BC:88:E8:F3:31:26:69:09:6B Authority key identifier: CC:8E:C5:F1:8E:24:78:49:A5:C7:06:E9:85:3B:61:86:48:EE:F2:A6 Certificate issuer: /CN=A91B8C12/serialNumber=CC8EC5F18E247849A5C706E9853B618648EEF2A6 Certificate serial: 01EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zI7F8Y4keEmlxwbphTthhkju8qY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8C12/3ED0852691A611EDB72C5956C4F9AE02/zI7F8Y4keEmlxwbphTthhkju8qY.mft Manifest number: 01E8 Signing time: Sat 23 Aug 2025 02:43:20 +0000 Manifest this update: Sat 23 Aug 2025 02:43:19 +0000 Manifest next update: Sat 30 Aug 2025 02:43:19 +0000 Files and hashes: 1: zI7F8Y4keEmlxwbphTthhkju8qY.crl (hash: fpBtKTHT9p8XxCIqHq0lVCiaJXkGgLKikxz8ow5Y3/0=) 2: F9141F4891AA11EDBEE1242EC4F9AE02.roa (hash: wW1wDfapN4aqyKsyA7zutue+89v5koktR+64VobzRks=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8C12/3ED0852691A611EDB72C5956C4F9AE02/zI7F8Y4keEmlxwbphTthhkju8qY.crl rsync://rpki.apnic.net/member_repository/A91B8C12/3ED0852691A611EDB72C5956C4F9AE02/zI7F8Y4keEmlxwbphTthhkju8qY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zI7F8Y4keEmlxwbphTthhkju8qY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:43:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 491 (0x1eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8C12, serialNumber=CC8EC5F18E247849A5C706E9853B618648EEF2A6 Validity Not Before: Aug 23 02:43:19 2025 GMT Not After : Aug 30 02:43:19 2025 GMT Subject: CN=68a92ac7-e32b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:c2:f6:9b:07:95:18:e5:a8:76:97:a6:e8:9a: 56:52:12:cd:cb:dc:2a:12:2e:02:7e:16:30:d9:58: 0e:e3:f3:d4:8b:2e:74:bf:78:0e:db:1c:0d:ba:77: 22:5c:0c:46:f0:6e:b3:8b:ef:af:c5:8a:c5:59:17: b6:9f:2d:a2:21:fd:b7:1e:04:b0:5c:b4:ab:3c:51: 79:8f:4d:e0:d9:ea:4b:cc:b5:5d:22:5c:51:2c:0f: 0c:0f:dc:93:d6:ab:2b:b9:22:5f:a4:9f:76:13:86: a1:97:b2:b7:c0:62:de:8e:3b:9d:a1:7f:43:fc:af: 53:cf:5d:9a:28:8d:e3:ca:b8:b8:1d:90:af:ff:0f: 05:ef:3b:64:92:fb:c4:9b:7a:92:58:f2:f3:14:f7: 4e:19:de:df:3b:f9:3e:54:92:ea:0f:8c:ea:53:21: b3:bb:ea:da:53:21:d9:3f:5c:7f:32:4e:04:84:d1: 17:94:6e:da:45:32:19:c5:38:80:72:76:7a:03:ca: 56:af:37:65:e5:bc:e6:89:52:80:25:80:3d:11:e3: 7b:fe:e5:2f:f8:17:57:66:da:71:6c:53:72:07:d8: fb:2d:1c:25:cd:af:0e:3a:f3:94:c4:7b:44:c8:39: 51:52:c7:c0:ca:07:73:24:fd:64:07:c8:2d:e6:6b: 8c:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:18:92:32:C2:0A:10:4C:01:27:D6:BC:88:E8:F3:31:26:69:09:6B X509v3 Authority Key Identifier: keyid:CC:8E:C5:F1:8E:24:78:49:A5:C7:06:E9:85:3B:61:86:48:EE:F2:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8C12/3ED0852691A611EDB72C5956C4F9AE02/zI7F8Y4keEmlxwbphTthhkju8qY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zI7F8Y4keEmlxwbphTthhkju8qY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8C12/3ED0852691A611EDB72C5956C4F9AE02/zI7F8Y4keEmlxwbphTthhkju8qY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:9d:47:de:1f:95:48:20:0d:9f:5d:6e:9d:81:02:30:24:62: 45:d0:6f:32:59:78:66:ca:9b:d6:20:90:6f:c7:5d:57:0c:90: 7e:8a:e9:1d:af:e7:8e:bf:14:e3:81:d6:7a:c2:d4:e2:03:85: 83:24:04:fd:fd:85:30:0a:0c:1d:8f:da:28:c3:73:5a:b9:ea: e5:3c:ee:f7:d7:8f:3f:6d:e3:12:49:16:04:cd:ac:9f:1a:ba: ca:a1:28:30:29:bc:b8:37:fc:00:c7:6f:97:6d:25:29:35:41: ef:48:77:e8:82:6a:8a:91:8f:32:1d:b1:0e:20:44:ff:85:e2: 47:53:6f:1b:29:2d:8f:d1:0a:63:d0:18:c3:f7:30:54:a4:f4: 72:d3:15:45:f4:84:ba:50:6c:e9:8b:d4:a1:87:4e:d6:b2:16: 45:38:ba:37:b7:fa:58:60:7e:86:88:5b:66:b6:9d:9e:e1:bf: 04:b1:bb:1b:ea:7d:0f:2b:19:a0:93:aa:4c:f7:0c:f6:3f:8d: a3:73:46:3d:5b:e4:f0:67:cc:0f:06:ce:17:67:31:8b:4b:09: e2:e4:46:c6:57:2a:b2:ca:77:8c:2e:75:8a:b0:3b:c0:77:0d: ec:bf:b0:5a:06:f7:df:81:00:30:3e:56:a4:81:7c:51:1a:7b: e5:09:6d:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhDMTIxMTAvBgNVBAUTKENDOEVDNUYxOEUyNDc4NDlBNUM3MDZFOTg1M0I2MTg2 NDhFRUYyQTYwHhcNMjUwODIzMDI0MzE5WhcNMjUwODMwMDI0MzE5WjAYMRYwFAYD VQQDEw02OGE5MmFjNy1lMzJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1cL2mweVGOWodpem6JpWUhLNy9wqEi4CfhYw2VgO4/PUiy50v3gO2xwNunci XAxG8G6zi++vxYrFWRe2ny2iIf23HgSwXLSrPFF5j03g2epLzLVdIlxRLA8MD9yT 1qsruSJfpJ92E4ahl7K3wGLejjudoX9D/K9Tz12aKI3jyri4HZCv/w8F7ztkkvvE m3qSWPLzFPdOGd7fO/k+VJLqD4zqUyGzu+raUyHZP1x/Mk4EhNEXlG7aRTIZxTiA cnZ6A8pWrzdl5bzmiVKAJYA9EeN7/uUv+BdXZtpxbFNyB9j7LRwlza8OOvOUxHtE yDlRUsfAygdzJP1kB8gt5muM9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG8YkjLC ChBMASfWvIjo8zEmaQlrMB8GA1UdIwQYMBaAFMyOxfGOJHhJpccG6YU7YYZI7vKm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEMxMi8zRUQwODUyNjkx QTYxMUVEQjcyQzU5NTZDNEY5QUUwMi96STdGOFk0a2VFbWx4d2JwaFR0aGhranU4 cVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pJN0Y4WTRrZUVtbHh3YnBoVHRoaGtqdThxWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEMxMi8zRUQwODUyNjkxQTYxMUVEQjcyQzU5NTZDNEY5QUUwMi96STdGOFk0a2VF bWx4d2JwaFR0aGhranU4cVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqnUfeH5VIIA2fXW6dgQIwJGJF0G8yWXhmypvWIJBvx11XDJB+iukd r+eOvxTjgdZ6wtTiA4WDJAT9/YUwCgwdj9oow3NauerlPO73148/beMSSRYEzayf GrrKoSgwKby4N/wAx2+XbSUpNUHvSHfogmqKkY8yHbEOIET/heJHU28bKS2P0Qpj 0BjD9zBUpPRy0xVF9IS6UGzpi9Shh07WshZFOLo3t/pYYH6GiFtmtp2e4b8Esbsb 6n0PKxmgk6pM9wz2P42jc0Y9W+TwZ8wPBs4XZzGLSwni5EbGVyqyyneMLnWKsDvA dw3sv7BaBvffgQAwPlakgXxRGnvlCW20 -----END CERTIFICATE-----Generated at Sun Aug 24 22:14:23 2025 by rpki-client