$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft File: 5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft (raw, json) Hash identifier: U5QHDNzUm1HYqjUZ7sp0mfCcYmsxYEAVBqVkaWNVxJ4= Subject key identifier: BC:A8:90:45:0D:F5:8E:F9:4D:CA:9F:61:BD:12:16:A1:4C:35:CC:8D Authority key identifier: E7:3F:B8:86:8D:D3:B4:61:EA:1A:67:3C:7A:36:94:52:35:E9:CA:AE Certificate issuer: /CN=A91FCEB1/serialNumber=E73FB8868DD3B461EA1A673C7A36945235E9CAAE Certificate serial: 0734 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5z-4ho3TtGHqGmc8ejaUUjXpyq4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft Manifest number: 21D9 Signing time: Sat 06 Sep 2025 16:00:07 +0000 Manifest this update: Sat 06 Sep 2025 16:00:07 +0000 Manifest next update: Sat 13 Sep 2025 16:00:07 +0000 Files and hashes: 1: 5z-4ho3TtGHqGmc8ejaUUjXpyq4.crl (hash: 4FYLQr1Bp+NpkCN4nWl1eNdxTSR6NDgXPJ/b09vWVQE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.crl rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5z-4ho3TtGHqGmc8ejaUUjXpyq4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 16:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1844 (0x734) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FCEB1, serialNumber=E73FB8868DD3B461EA1A673C7A36945235E9CAAE Validity Not Before: Sep 6 16:00:07 2025 GMT Not After : Sep 13 16:00:07 2025 GMT Subject: CN=68bc5a87-0797 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:f7:f9:7a:58:25:c1:7f:e9:05:ea:10:7c:fe: 6b:db:a4:3f:ad:58:49:be:d7:bb:48:09:f3:55:e9: 32:c7:bd:1b:9b:34:24:9a:c5:66:f0:6a:ea:53:d9: 35:15:64:a4:db:c2:38:92:ee:ef:bb:b8:7a:28:1e: bb:8d:9c:6f:4d:ce:b7:20:7e:2b:1a:de:6f:4a:49: 2b:55:c8:0a:28:04:de:6a:61:b6:d9:99:96:03:82: 68:75:ff:6c:00:89:32:88:a4:aa:9c:0d:97:52:67: a0:28:0c:db:08:8d:c5:71:30:67:80:57:94:32:02: 17:59:d2:b9:3c:58:99:49:ca:c2:ca:8a:14:02:b1: 43:ce:6e:93:26:1d:05:7d:ea:a5:ff:31:11:a7:4e: b8:a9:44:2f:c1:1c:40:c7:2f:9d:13:ac:11:7d:5c: 01:7f:59:36:d8:6d:39:de:4b:a4:7c:4e:35:eb:46: 24:1f:ac:59:da:28:31:7e:aa:23:5a:29:8e:1f:a2: ae:29:6d:47:f9:76:c9:a4:82:19:c1:3d:cf:73:55: 9b:43:fe:93:f7:d7:73:18:80:67:3b:e9:2f:6f:a4: b6:96:87:af:60:4c:d6:63:aa:c8:2f:9c:cc:8d:77: ea:bc:1a:ae:a1:aa:c9:fe:07:0b:e6:0f:3f:5b:e7: ae:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:A8:90:45:0D:F5:8E:F9:4D:CA:9F:61:BD:12:16:A1:4C:35:CC:8D X509v3 Authority Key Identifier: keyid:E7:3F:B8:86:8D:D3:B4:61:EA:1A:67:3C:7A:36:94:52:35:E9:CA:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5z-4ho3TtGHqGmc8ejaUUjXpyq4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:56:83:c4:72:3e:4e:62:86:a9:1f:20:90:8e:9b:b6:42:51: 74:24:34:44:20:93:95:fe:ae:54:2d:44:9d:df:57:88:b7:2a: b6:fb:6b:46:a7:ea:a8:a3:e5:3d:96:29:8e:c5:fb:47:7a:1f: ab:cb:a4:60:5b:ec:d1:a7:4d:99:b3:79:6a:b8:94:c9:ec:26: d3:2f:7a:0e:4a:54:0a:f0:9d:ff:69:77:e4:3b:ed:ad:c0:9e: 9e:72:c9:81:80:c5:c2:cc:20:34:7c:fc:68:df:39:10:32:bc: f4:11:da:52:f6:88:b7:da:b3:4e:cf:13:33:48:e4:81:9c:1c: 8f:c9:24:21:5a:79:84:1c:1e:41:97:df:3b:44:4a:b8:94:50: 34:89:5d:e0:72:10:a4:0d:5d:74:c3:c0:e1:03:d1:cf:98:8c: 8c:02:2e:95:46:41:6b:4d:af:0d:1d:55:f0:12:f6:b5:95:1d: 9a:55:2c:9f:7a:00:67:7f:47:6b:ac:1d:04:7c:8b:09:47:04: e8:ba:98:43:ed:59:4c:e9:d9:ba:ca:d7:85:de:54:15:70:6e: 51:83:65:68:a8:86:63:3d:17:ac:5e:e2:4c:1e:03:7e:47:af: 02:ec:26:2e:31:17:f3:77:0c:1d:09:9b:33:57:3b:24:3b:eb: 9a:b4:9a:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBzQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkNFQjExMTAvBgNVBAUTKEU3M0ZCODg2OEREM0I0NjFFQTFBNjczQzdBMzY5NDUy MzVFOUNBQUUwHhcNMjUwOTA2MTYwMDA3WhcNMjUwOTEzMTYwMDA3WjAYMRYwFAYD VQQDEw02OGJjNWE4Ny0wNzk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsPf5elglwX/pBeoQfP5r26Q/rVhJvte7SAnzVekyx70bmzQkmsVm8GrqU9k1 FWSk28I4ku7vu7h6KB67jZxvTc63IH4rGt5vSkkrVcgKKATeamG22ZmWA4Jodf9s AIkyiKSqnA2XUmegKAzbCI3FcTBngFeUMgIXWdK5PFiZScrCyooUArFDzm6TJh0F feql/zERp064qUQvwRxAxy+dE6wRfVwBf1k22G053kukfE4160YkH6xZ2igxfqoj WimOH6KuKW1H+XbJpIIZwT3Pc1WbQ/6T99dzGIBnO+kvb6S2loevYEzWY6rIL5zM jXfqvBquoarJ/gcL5g8/W+euSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLyokEUN 9Y75TcqfYb0SFqFMNcyNMB8GA1UdIwQYMBaAFOc/uIaN07Rh6hpnPHo2lFI16cqu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQ0VCMS85QzE0QjQwNjNB MjExMUU3OUFBMEQ1MUNDNEY5QUUwMi81ei00aG8zVHRHSHFHbWM4ZWphVVVqWHB5 cTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzV6LTRobzNUdEdIcUdtYzhlamFVVWpYcHlxNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Q0VCMS85QzE0QjQwNjNBMjExMUU3OUFBMEQ1MUNDNEY5QUUwMi81ei00aG8zVHRH SHFHbWM4ZWphVVVqWHB5cTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVVoPEcj5OYoapHyCQjpu2QlF0JDREIJOV/q5ULUSd31eItyq2+2tG p+qoo+U9limOxftHeh+ry6RgW+zRp02Zs3lquJTJ7CbTL3oOSlQK8J3/aXfkO+2t wJ6ecsmBgMXCzCA0fPxo3zkQMrz0EdpS9oi32rNOzxMzSOSBnByPySQhWnmEHB5B l987REq4lFA0iV3gchCkDV10w8DhA9HPmIyMAi6VRkFrTa8NHVXwEva1lR2aVSyf egBnf0drrB0EfIsJRwTouphD7VlM6dm6yteF3lQVcG5Rg2VoqIZjPResXuJMHgN+ R68C7CYuMRfzdwwdCZszVzskO+uatJpc -----END CERTIFICATE-----Generated at Sat Sep 6 21:05:09 2025 by rpki-client