$ rpki-client -vvf rpki.apnic.net/member_repository/A91C146D/ECB00B42003711F0BBD72475C4F9AE02/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.mft File: Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.mft (raw, json) Hash identifier: vUycX192X5TMQE3Z72asqfGpcXm0MR8C7wbk3Vr0nrM= Subject key identifier: 9F:1D:BD:71:F3:18:9F:DD:D3:C2:F4:F0:07:36:38:6F:C2:F1:29:E8 Authority key identifier: 66:4E:59:A0:00:B9:1E:72:F8:03:E6:D8:68:41:15:4C:80:56:B8:8A Certificate issuer: /CN=A91C146D/serialNumber=664E59A000B91E72F803E6D86841154C8056B88A Certificate serial: 4D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C146D/ECB00B42003711F0BBD72475C4F9AE02/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.mft Manifest number: 47 Signing time: Sat 19 Jul 2025 07:43:20 +0000 Manifest this update: Sat 19 Jul 2025 07:43:19 +0000 Manifest next update: Sat 26 Jul 2025 07:43:19 +0000 Files and hashes: 1: Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.crl (hash: T1R8nTjHeLlqKmuy3LbUQyZxdOuIIWsoQPso35RsQR4=) 2: 992A7358004211F0AC90656CC4F9AE02.roa (hash: 6uK19EDHQqPyaVVXXtHQJXfGGnOJLngyIEFvwQHYfKo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C146D/ECB00B42003711F0BBD72475C4F9AE02/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.crl rsync://rpki.apnic.net/member_repository/A91C146D/ECB00B42003711F0BBD72475C4F9AE02/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:43:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77 (0x4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C146D, serialNumber=664E59A000B91E72F803E6D86841154C8056B88A Validity Not Before: Jul 19 07:43:19 2025 GMT Not After : Jul 26 07:43:19 2025 GMT Subject: CN=687b4c98-6121 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ec:42:db:18:ab:1a:99:74:3c:ad:12:e4:f6: ed:6e:9b:d5:0a:63:35:19:0a:ad:9d:fa:dc:f8:36: 63:99:f0:29:61:5b:e5:24:08:ca:82:19:99:8f:d0: 80:85:5f:87:90:02:09:06:cb:75:a9:64:9a:60:7a: 6a:b0:9b:f9:8d:9a:84:7f:b8:42:a3:c5:e4:8b:fe: 3f:12:fa:fd:74:93:e5:97:50:43:fc:51:f6:08:ae: 6b:37:8c:3c:e9:b7:4f:9b:b5:2e:fa:f8:68:88:a6: c7:91:c0:6c:ae:d4:fb:70:b9:6b:c2:2e:79:3b:ce: 09:be:dc:56:33:49:c9:f9:0d:d9:bc:e4:92:5e:5c: 66:04:11:62:17:56:cd:8b:99:53:ba:ce:54:51:97: 2e:40:4c:45:e3:37:6a:6a:22:9b:5c:cb:e3:42:0e: 85:0a:4c:59:76:93:ca:98:b7:fd:27:66:c9:7f:79: d1:d3:fe:ae:7f:5c:b3:81:71:5a:e8:94:c5:9a:19: 60:06:b8:c4:63:af:c4:ca:35:1e:c9:87:6f:4a:24: a9:83:01:e9:d1:17:80:20:72:1b:a9:62:4e:12:2f: 22:20:73:b0:6f:02:c6:dc:5d:70:bf:50:87:1c:99: c7:2b:97:e2:c5:78:87:7f:d8:c2:20:9b:a3:47:f8: 14:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:1D:BD:71:F3:18:9F:DD:D3:C2:F4:F0:07:36:38:6F:C2:F1:29:E8 X509v3 Authority Key Identifier: keyid:66:4E:59:A0:00:B9:1E:72:F8:03:E6:D8:68:41:15:4C:80:56:B8:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C146D/ECB00B42003711F0BBD72475C4F9AE02/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C146D/ECB00B42003711F0BBD72475C4F9AE02/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:04:b1:20:1f:c2:0b:ce:68:5b:cf:19:be:7a:62:3c:53:33: 6a:38:bc:13:7a:8a:44:78:b6:f0:c6:71:65:49:4f:82:b0:cc: 92:b4:30:ba:6a:4a:72:ec:76:89:e5:85:c7:b0:f1:39:f9:59: 94:ce:70:50:db:4e:64:1e:c2:56:aa:17:2d:b6:92:f1:29:bf: a1:ad:19:6f:67:2a:f8:46:d5:28:17:e6:f6:39:0b:86:4a:00: dd:17:17:ce:f9:d6:c2:57:a3:d9:0c:9d:da:5f:0e:16:06:f5: 06:bf:95:ad:cd:cc:92:74:ba:c4:7e:ea:b1:1a:61:b5:27:37: 05:54:9b:5a:e7:78:ef:f3:58:f1:23:50:ea:bf:00:5f:4e:3e: ca:a2:9a:0f:e8:31:98:34:bf:ed:e1:dd:dd:31:73:97:89:bf: 0e:2b:65:0b:bf:c1:ca:81:cd:fb:29:10:ec:c7:04:a2:db:13: 73:97:c8:da:e2:a6:5c:28:b0:c2:18:08:c3:c8:25:aa:ae:ef: 03:9b:3f:86:b5:f6:53:25:e3:58:c4:90:ec:dd:37:ab:46:25: 59:d1:28:2e:85:e7:0a:5e:d0:79:ce:ea:74:0f:bc:75:e5:85: 60:36:68:b2:e7:23:b7:75:50:8d:51:fb:27:87:ea:e5:1a:20: c9:cf:b5:86 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MTQ2RDExMC8GA1UEBRMoNjY0RTU5QTAwMEI5MUU3MkY4MDNFNkQ4Njg0MTE1NEM4 MDU2Qjg4QTAeFw0yNTA3MTkwNzQzMTlaFw0yNTA3MjYwNzQzMTlaMBgxFjAUBgNV BAMTDTY4N2I0Yzk4LTYxMjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDK7ELbGKsamXQ8rRLk9u1um9UKYzUZCq2d+tz4NmOZ8ClhW+UkCMqCGZmP0ICF X4eQAgkGy3WpZJpgemqwm/mNmoR/uEKjxeSL/j8S+v10k+WXUEP8UfYIrms3jDzp t0+btS76+GiIpseRwGyu1PtwuWvCLnk7zgm+3FYzScn5Ddm85JJeXGYEEWIXVs2L mVO6zlRRly5ATEXjN2pqIptcy+NCDoUKTFl2k8qYt/0nZsl/edHT/q5/XLOBcVro lMWaGWAGuMRjr8TKNR7Jh29KJKmDAenRF4AgchupYk4SLyIgc7BvAsbcXXC/UIcc mccrl+LFeId/2MIgm6NH+BR3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUnx29cfMY n93TwvTwBzY4b8LxKegwHwYDVR0jBBgwFoAUZk5ZoAC5HnL4A+bYaEEVTIBWuIow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMxNDZEL0VDQjAwQjQyMDAz NzExRjBCQkQ3MjQ3NUM0RjlBRTAyL1prNVpvQUM1SG5MNEEtYllhRUVWVElCV3VJ by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWms1Wm9BQzVIbkw0QS1iWWFFRVZUSUJXdUlvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMx NDZEL0VDQjAwQjQyMDAzNzExRjBCQkQ3MjQ3NUM0RjlBRTAyL1prNVpvQUM1SG5M NEEtYllhRUVWVElCV3VJby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKoEsSAfwgvOaFvPGb56YjxTM2o4vBN6ikR4tvDGcWVJT4KwzJK0MLpq SnLsdonlhcew8Tn5WZTOcFDbTmQewlaqFy22kvEpv6GtGW9nKvhG1SgX5vY5C4ZK AN0XF8751sJXo9kMndpfDhYG9Qa/la3NzJJ0usR+6rEaYbUnNwVUm1rneO/zWPEj UOq/AF9OPsqimg/oMZg0v+3h3d0xc5eJvw4rZQu/wcqBzfspEOzHBKLbE3OXyNri plwosMIYCMPIJaqu7wObP4a19lMl41jEkOzdN6tGJVnRKC6F5wpe0HnO6nQPvHXl hWA2aLLnI7d1UI1R+yeH6uUaIMnPtYY= -----END CERTIFICATE-----Generated at Sun Jul 20 18:38:45 2025 by rpki-client