$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE500/49E6FE46C72D11EE9C7C351DC4F9AE02/cz1KHp8pnM0_jnJKteer9Ci7GV0.mft File: cz1KHp8pnM0_jnJKteer9Ci7GV0.mft (raw, json) Hash identifier: ruu34YZbEwdwoVXgx+5sLtpU4cZqIWhPGcNfCITPOJ4= Subject key identifier: 37:9A:70:8B:19:06:95:89:C1:3D:DF:CB:92:3E:E5:72:CE:47:98:A8 Authority key identifier: 73:3D:4A:1E:9F:29:9C:CD:3F:8E:72:4A:B5:E7:AB:F4:28:BB:19:5D Certificate issuer: /CN=A91DE500/serialNumber=733D4A1E9F299CCD3F8E724AB5E7ABF428BB195D Certificate serial: 0136 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cz1KHp8pnM0_jnJKteer9Ci7GV0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE500/49E6FE46C72D11EE9C7C351DC4F9AE02/cz1KHp8pnM0_jnJKteer9Ci7GV0.mft Manifest number: 0132 Signing time: Tue 09 Sep 2025 04:44:15 +0000 Manifest this update: Tue 09 Sep 2025 04:44:14 +0000 Manifest next update: Tue 16 Sep 2025 04:44:14 +0000 Files and hashes: 1: cz1KHp8pnM0_jnJKteer9Ci7GV0.crl (hash: iSgZ99cRAiOHugX6DVmHxg/0jrLMvKSL0k7nEZnHhfQ=) 2: D035B7BE5BC711F097260D5EC4F9AE02.roa (hash: AlpyGioYVyajcJ7eEz9QWJBXQdVphfXg8wGbaRLMJmY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE500/49E6FE46C72D11EE9C7C351DC4F9AE02/cz1KHp8pnM0_jnJKteer9Ci7GV0.crl rsync://rpki.apnic.net/member_repository/A91DE500/49E6FE46C72D11EE9C7C351DC4F9AE02/cz1KHp8pnM0_jnJKteer9Ci7GV0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cz1KHp8pnM0_jnJKteer9Ci7GV0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 04:44:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 310 (0x136) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE500, serialNumber=733D4A1E9F299CCD3F8E724AB5E7ABF428BB195D Validity Not Before: Sep 9 04:44:14 2025 GMT Not After : Sep 16 04:44:14 2025 GMT Subject: CN=68bfb09e-a9a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:80:6d:f5:92:03:5d:9c:2c:8a:f9:fa:27:12: 6a:36:38:69:33:06:c7:67:47:bb:c0:af:70:8c:9b: 3a:7e:98:75:57:bb:f1:c0:88:ca:87:1a:17:01:e5: ee:e4:fc:40:db:e6:33:ab:0b:17:cc:76:8c:27:95: 8f:6f:04:43:4c:cc:26:dc:cc:f7:85:29:93:48:1d: b7:8c:0d:96:bc:f8:e5:35:d8:a4:12:1a:a6:a8:27: 7e:07:5e:ca:71:b5:73:4e:7e:9d:22:9e:83:07:6a: 12:e1:d2:2a:af:8e:0d:82:bb:52:5d:48:20:06:a9: fe:3b:21:bb:8c:b9:29:e9:6e:5e:0b:8b:73:c1:4a: bb:bf:cb:0e:42:9e:ba:dc:0d:a9:89:1c:bb:e8:d8: 4a:98:59:f6:d8:98:bf:83:50:a4:ac:d8:2f:92:20: fe:b1:4f:f7:6f:36:ed:9e:d3:58:03:ed:79:60:87: 0f:fc:b4:76:c3:d1:7b:f5:ec:d3:bd:fc:6b:7a:34: 4c:d7:ec:30:5e:97:28:f7:15:7a:2a:7c:df:f9:38: e3:f3:3d:cc:c0:3f:f4:71:bb:43:60:3a:74:05:39: ac:a8:d1:ee:04:72:6b:79:bb:8a:6b:8b:d7:bb:ed: ff:a1:ff:d0:bb:ff:23:14:c3:c8:6a:f6:12:d2:d1: 53:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:9A:70:8B:19:06:95:89:C1:3D:DF:CB:92:3E:E5:72:CE:47:98:A8 X509v3 Authority Key Identifier: keyid:73:3D:4A:1E:9F:29:9C:CD:3F:8E:72:4A:B5:E7:AB:F4:28:BB:19:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE500/49E6FE46C72D11EE9C7C351DC4F9AE02/cz1KHp8pnM0_jnJKteer9Ci7GV0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cz1KHp8pnM0_jnJKteer9Ci7GV0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE500/49E6FE46C72D11EE9C7C351DC4F9AE02/cz1KHp8pnM0_jnJKteer9Ci7GV0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c6:86:25:d9:a4:b4:8a:bb:94:e6:01:43:b3:c1:44:f2:8d:a1: be:bb:24:50:01:e5:25:9b:80:80:55:9c:58:63:7f:0b:84:a9: 8c:1d:b3:c7:9b:0f:0b:40:8f:98:5f:8f:12:a2:50:47:af:da: 15:eb:29:57:17:d4:52:89:34:8e:5f:75:35:48:0e:8b:f6:07: 57:3e:d9:c0:25:0f:6d:af:63:55:1a:94:fa:0b:e9:bc:da:eb: 46:2d:37:be:62:cd:a1:6d:e1:25:e2:4b:2f:c0:89:97:39:89: 3c:aa:9a:08:16:d6:d5:b3:77:dd:9c:6e:29:41:1b:7e:b5:c5: be:2d:eb:d9:85:33:1c:7d:b7:0e:61:c9:d8:74:10:12:01:55: 3c:7a:83:93:e7:19:12:91:a4:d1:ff:31:37:99:68:8b:53:30: 88:b6:14:39:df:60:a2:71:e9:db:97:fa:8c:9c:8e:de:3b:f2: 4d:3f:2c:f0:d3:55:59:39:86:02:d3:4d:2c:1c:df:25:4e:d4: 2d:0b:46:99:be:32:19:2d:ec:c7:cf:74:8c:80:74:01:f7:6a: a5:ac:fd:98:1e:59:dc:fa:7d:d1:04:fe:8d:f5:43:c0:bb:29: e6:54:4d:6c:c4:a7:7d:49:bd:47:bd:8f:bf:5c:36:c1:21:3c: dc:63:48:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU1MDAxMTAvBgNVBAUTKDczM0Q0QTFFOUYyOTlDQ0QzRjhFNzI0QUI1RTdBQkY0 MjhCQjE5NUQwHhcNMjUwOTA5MDQ0NDE0WhcNMjUwOTE2MDQ0NDE0WjAYMRYwFAYD VQQDEw02OGJmYjA5ZS1hOWE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0YBt9ZIDXZwsivn6JxJqNjhpMwbHZ0e7wK9wjJs6fph1V7vxwIjKhxoXAeXu 5PxA2+YzqwsXzHaMJ5WPbwRDTMwm3Mz3hSmTSB23jA2WvPjlNdikEhqmqCd+B17K cbVzTn6dIp6DB2oS4dIqr44NgrtSXUggBqn+OyG7jLkp6W5eC4tzwUq7v8sOQp66 3A2piRy76NhKmFn22Ji/g1CkrNgvkiD+sU/3bzbtntNYA+15YIcP/LR2w9F79ezT vfxrejRM1+wwXpco9xV6Knzf+Tjj8z3MwD/0cbtDYDp0BTmsqNHuBHJrebuKa4vX u+3/of/Qu/8jFMPIavYS0tFTNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDeacIsZ BpWJwT3fy5I+5XLOR5ioMB8GA1UdIwQYMBaAFHM9Sh6fKZzNP45ySrXnq/Qouxld MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTUwMC80OUU2RkU0NkM3 MkQxMUVFOUM3QzM1MURDNEY5QUUwMi9jejFLSHA4cG5NMF9qbkpLdGVlcjlDaTdH VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N6MUtIcDhwbk0wX2puSkt0ZWVyOUNpN0dWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTUwMC80OUU2RkU0NkM3MkQxMUVFOUM3QzM1MURDNEY5QUUwMi9jejFLSHA4cG5N MF9qbkpLdGVlcjlDaTdHVjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDGhiXZpLSKu5TmAUOzwUTyjaG+uyRQAeUlm4CAVZxYY38LhKmMHbPH mw8LQI+YX48SolBHr9oV6ylXF9RSiTSOX3U1SA6L9gdXPtnAJQ9tr2NVGpT6C+m8 2utGLTe+Ys2hbeEl4ksvwImXOYk8qpoIFtbVs3fdnG4pQRt+tcW+LevZhTMcfbcO YcnYdBASAVU8eoOT5xkSkaTR/zE3mWiLUzCIthQ532Cicenbl/qMnI7eO/JNPyzw 01VZOYYC000sHN8lTtQtC0aZvjIZLezHz3SMgHQB92qlrP2YHlnc+n3RBP6N9UPA uynmVE1sxKd9Sb1HvY+/XDbBITzcY0jE -----END CERTIFICATE-----Generated at Tue Sep 9 13:20:50 2025 by rpki-client