$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft File: RZTy7BffVsPQZUDzZtKvEYsxfx4.mft (raw, json) Hash identifier: S3WRoIC5faAJC1cCHPijm1l25B2mWDcGMB9PLGV0EBk= Subject key identifier: CE:0B:BE:12:43:0A:3B:77:C6:09:2D:61:38:7C:83:03:2F:43:20:65 Authority key identifier: 45:94:F2:EC:17:DF:56:C3:D0:65:40:F3:66:D2:AF:11:8B:31:7F:1E Certificate issuer: /CN=A91CE978/serialNumber=4594F2EC17DF56C3D06540F366D2AF118B317F1E Certificate serial: 0121 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RZTy7BffVsPQZUDzZtKvEYsxfx4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft Manifest number: 011E Signing time: Sun 20 Jul 2025 14:54:16 +0000 Manifest this update: Sun 20 Jul 2025 14:54:16 +0000 Manifest next update: Sun 27 Jul 2025 14:54:16 +0000 Files and hashes: 1: RZTy7BffVsPQZUDzZtKvEYsxfx4.crl (hash: D6uNrRxJSp5yQ4z6i0hr6g+DC/e83QKjJeTDWeFYKRY=) 2: 30EAE110B9AD11EE83063243C4F9AE02.roa (hash: /mgu4P2twSDACdGUYPekQQEcvJH+CFlbuOsPxwdYvXg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.crl rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RZTy7BffVsPQZUDzZtKvEYsxfx4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:54:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 289 (0x121) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE978, serialNumber=4594F2EC17DF56C3D06540F366D2AF118B317F1E Validity Not Before: Jul 20 14:54:16 2025 GMT Not After : Jul 27 14:54:16 2025 GMT Subject: CN=687d0318-9d6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:3c:af:14:6c:f4:cb:60:b0:26:d0:a0:4c:df: 8b:88:26:29:bb:96:47:7a:97:0c:02:c0:dd:01:d5: c6:7e:63:bc:77:bc:89:e6:5a:cb:75:4b:bd:27:50: ce:d0:5b:7d:2e:25:50:55:85:0f:3c:27:f6:0f:11: 96:d8:01:10:e2:ec:16:97:1d:71:23:e7:f3:04:5c: 96:3e:9b:96:db:f4:d3:f3:b7:66:9d:f6:b8:dd:b5: 0a:63:07:af:25:6c:50:49:01:a3:14:57:04:d7:29: 04:ec:02:c0:6a:08:51:8b:4a:0c:93:0b:29:cb:f1: 81:7b:56:b4:54:9c:7c:fc:30:b2:fe:1b:ca:4f:c9: 2a:a6:85:6d:1c:7a:aa:7b:e0:26:63:ad:81:b9:98: 37:49:53:6d:42:6b:98:d1:62:a5:af:5e:9b:88:0c: c6:11:a0:c9:fa:1d:90:a0:4f:b2:d5:41:6c:e6:4e: a7:cd:be:2f:ef:0b:0c:a0:fe:a3:8e:78:14:d1:d6: 1a:6a:ee:fd:29:12:56:c8:48:c1:57:56:a2:50:f0: cc:4d:e1:9a:84:fb:68:7a:7e:3c:68:83:cc:b4:41: eb:08:60:38:60:9d:5e:b6:53:97:8b:73:21:9b:2c: d8:a4:cb:bc:ec:b8:c6:03:b6:d2:8f:24:2b:d0:ad: c6:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:0B:BE:12:43:0A:3B:77:C6:09:2D:61:38:7C:83:03:2F:43:20:65 X509v3 Authority Key Identifier: keyid:45:94:F2:EC:17:DF:56:C3:D0:65:40:F3:66:D2:AF:11:8B:31:7F:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RZTy7BffVsPQZUDzZtKvEYsxfx4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:2a:5e:8e:51:e7:3e:d1:87:b0:b0:8b:e4:2f:4b:b2:76:f5: 8f:83:6f:e3:39:26:95:35:d1:7a:9f:91:a1:15:6c:3a:f5:d1: fb:f6:cb:0b:d2:9d:64:ac:fa:cd:91:fb:f7:be:a1:1d:6b:92: 07:d4:c8:cf:a8:d2:17:5e:e4:2a:4c:70:0a:1f:20:e7:c9:31: e4:80:02:cb:46:5b:fb:70:ae:f6:6f:11:7b:2c:19:4a:c9:87: da:be:ce:f2:de:20:b3:23:cc:3b:d8:0a:7d:77:9a:18:37:89: 6e:88:55:9f:6f:b0:41:da:33:da:c1:3b:24:82:00:b6:2c:21: a5:7f:a8:15:4f:ac:9f:28:06:f3:50:d4:71:9e:d4:41:94:c0: e5:50:b9:bf:87:82:67:37:fb:f8:86:6a:b9:f5:f2:ef:70:de: 56:54:c7:2e:5e:c4:a8:ef:94:b9:e5:2c:04:27:64:60:75:b7: f6:d0:13:3a:76:f4:86:b2:40:06:e6:3b:40:7a:c8:f1:4e:04: 33:75:f6:e1:84:98:a7:bb:d8:34:05:e1:c3:70:90:14:c2:5b: 4f:be:3d:c5:f2:f0:22:24:a1:21:8b:97:1b:60:08:f0:19:99: 10:d1:fc:51:be:b4:94:1a:2c:31:3d:a1:4b:2c:1f:e4:7b:33: 12:16:82:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5NzgxMTAvBgNVBAUTKDQ1OTRGMkVDMTdERjU2QzNEMDY1NDBGMzY2RDJBRjEx OEIzMTdGMUUwHhcNMjUwNzIwMTQ1NDE2WhcNMjUwNzI3MTQ1NDE2WjAYMRYwFAYD VQQDEw02ODdkMDMxOC05ZDZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxjyvFGz0y2CwJtCgTN+LiCYpu5ZHepcMAsDdAdXGfmO8d7yJ5lrLdUu9J1DO 0Ft9LiVQVYUPPCf2DxGW2AEQ4uwWlx1xI+fzBFyWPpuW2/TT87dmnfa43bUKYwev JWxQSQGjFFcE1ykE7ALAaghRi0oMkwspy/GBe1a0VJx8/DCy/hvKT8kqpoVtHHqq e+AmY62BuZg3SVNtQmuY0WKlr16biAzGEaDJ+h2QoE+y1UFs5k6nzb4v7wsMoP6j jngU0dYaau79KRJWyEjBV1aiUPDMTeGahPtoen48aIPMtEHrCGA4YJ1etlOXi3Mh myzYpMu87LjGA7bSjyQr0K3GZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM4LvhJD Cjt3xgktYTh8gwMvQyBlMB8GA1UdIwQYMBaAFEWU8uwX31bD0GVA82bSrxGLMX8e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTk3OC81REI1NTVBQUI4 REExMUVFQkM0QkVDMkRDNEY5QUUwMi9SWlR5N0JmZlZzUFFaVUR6WnRLdkVZc3hm eDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JaVHk3QmZmVnNQUVpVRHpadEt2RVlzeGZ4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTk3OC81REI1NTVBQUI4REExMUVFQkM0QkVDMkRDNEY5QUUwMi9SWlR5N0JmZlZz UFFaVUR6WnRLdkVZc3hmeDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHKl6OUec+0YewsIvkL0uydvWPg2/jOSaVNdF6n5GhFWw69dH79ssL 0p1krPrNkfv3vqEda5IH1MjPqNIXXuQqTHAKHyDnyTHkgALLRlv7cK72bxF7LBlK yYfavs7y3iCzI8w72Ap9d5oYN4luiFWfb7BB2jPawTskggC2LCGlf6gVT6yfKAbz UNRxntRBlMDlULm/h4JnN/v4hmq59fLvcN5WVMcuXsSo75S55SwEJ2Rgdbf20BM6 dvSGskAG5jtAesjxTgQzdfbhhJinu9g0BeHDcJAUwltPvj3F8vAiJKEhi5cbYAjw GZkQ0fxRvrSUGiwxPaFLLB/kezMSFoL9 -----END CERTIFICATE-----Generated at Mon Jul 21 02:04:44 2025 by rpki-client