$ rpki-client -vvf rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft File: zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft (raw, json) Hash identifier: OfS8lnv4HKwitMZaqhwdJ5pD5JZ4rjkabc4kTTCjVIM= Subject key identifier: EC:52:08:6F:02:89:B0:75:BF:84:C0:C0:87:3F:DD:B4:13:E3:CE:B6 Authority key identifier: CD:A4:7E:0A:1E:EB:52:5F:3B:5A:0F:AF:B2:FA:0D:BB:36:3B:FA:4D Certificate issuer: /CN=A91594AE/serialNumber=CDA47E0A1EEB525F3B5A0FAFB2FA0DBB363BFA4D Certificate serial: 0AE7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft Manifest number: 0ADF Signing time: Fri 22 Aug 2025 19:32:59 +0000 Manifest this update: Fri 22 Aug 2025 19:32:58 +0000 Manifest next update: Fri 29 Aug 2025 19:32:58 +0000 Files and hashes: 1: zaR-Ch7rUl87Wg-vsvoNuzY7-k0.crl (hash: qRbzcMPpcoPe+nPWP49NkEIzhYTXceQrfuVicJWJGWE=) 2: 38CAF4EC52B911EAACE8041BC4F9AE02.roa (hash: lj/CFwKu+N9KL+BN8rOtiVH/zU3sp7+mG9hyAnPkezU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.crl rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:32:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2791 (0xae7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91594AE, serialNumber=CDA47E0A1EEB525F3B5A0FAFB2FA0DBB363BFA4D Validity Not Before: Aug 22 19:32:58 2025 GMT Not After : Aug 29 19:32:58 2025 GMT Subject: CN=68a8c5ea-86b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:ea:1f:39:66:ad:38:f4:89:6b:ad:ff:94:95: c7:1f:3f:9e:07:36:c7:2b:0e:32:25:10:7b:ab:89: 9b:e3:34:04:25:a1:e5:81:2f:a5:ca:d3:b0:f9:69: 8c:e3:f3:be:ea:79:1e:35:aa:4d:6e:be:9a:d1:a0: 9d:fc:7c:38:31:9a:7a:55:c1:7b:cb:eb:ed:27:ce: 2f:2c:61:74:7d:cd:97:50:fb:da:35:c4:24:9d:bd: ce:97:f7:51:d3:bd:03:77:48:a7:c1:da:74:3c:8c: 8f:b7:9f:88:38:2e:85:63:c9:f4:b8:21:df:27:70: 4e:f6:30:a5:b9:28:4f:7f:ab:b6:8a:1b:b1:9e:c8: 65:f3:27:55:eb:ef:14:0e:70:a8:e5:05:dc:53:41: 1b:42:81:ed:d1:2a:ba:69:50:95:11:69:19:e1:6c: 49:3f:75:45:bd:f5:dd:45:48:9f:6e:53:4c:5a:a1: ab:e6:03:00:6d:a7:8b:cd:54:93:98:00:f0:65:61: db:e9:05:13:34:81:e2:21:ec:cd:22:f9:c5:cc:7e: db:a3:8d:00:f2:31:d3:59:28:6f:fa:74:e6:c9:9b: 9e:ae:83:a6:14:93:79:93:bb:0a:38:c5:46:42:e6: dc:70:41:fd:6c:8c:b8:05:b3:94:af:ec:37:61:52: 73:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:52:08:6F:02:89:B0:75:BF:84:C0:C0:87:3F:DD:B4:13:E3:CE:B6 X509v3 Authority Key Identifier: keyid:CD:A4:7E:0A:1E:EB:52:5F:3B:5A:0F:AF:B2:FA:0D:BB:36:3B:FA:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:f0:f5:0b:66:07:00:5b:60:0d:ac:4c:1d:68:0e:84:a7:dd: 17:b5:a3:cf:58:17:28:5f:17:91:75:60:58:b2:23:97:da:e4: b6:24:8d:08:75:df:75:4f:f7:a1:99:48:69:cd:20:2e:4b:83: 12:19:fc:d0:85:ff:11:32:38:3c:2d:b6:4b:fa:7d:e5:3b:9b: 54:52:60:c8:61:06:ac:f4:10:4e:5e:00:4d:8a:e3:7a:5a:15: a3:5e:a0:c8:ce:38:87:5c:85:ce:49:65:84:a3:7b:1c:58:3b: da:29:43:3e:05:a3:36:1b:39:61:03:19:85:4a:37:72:dc:1a: 40:fa:d2:8b:04:5b:f6:e7:78:24:e1:52:63:9e:2b:e0:af:c2: 6c:60:6f:ab:35:c9:b0:11:b7:c5:27:cd:1d:fc:0a:6b:66:c3: b3:a7:d7:19:af:50:81:c2:0c:1a:22:7c:72:32:d5:cb:3d:ec: 7b:b9:57:d5:2a:ed:5e:f4:4a:a9:58:ea:86:e7:28:cc:5e:ad: 6c:69:5f:15:df:f0:56:c1:cd:b9:6a:74:ac:58:6d:7c:fd:88: 41:c1:8d:7e:53:45:cc:6f:f6:98:72:87:f3:70:54:fd:d5:96: 3e:e8:04:f8:9e:7e:3a:11:25:66:4c:ec:06:5f:e3:f3:85:6e: ba:90:30:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCucwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTk0QUUxMTAvBgNVBAUTKENEQTQ3RTBBMUVFQjUyNUYzQjVBMEZBRkIyRkEwREJC MzYzQkZBNEQwHhcNMjUwODIyMTkzMjU4WhcNMjUwODI5MTkzMjU4WjAYMRYwFAYD VQQDEw02OGE4YzVlYS04NmIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmuofOWatOPSJa63/lJXHHz+eBzbHKw4yJRB7q4mb4zQEJaHlgS+lytOw+WmM 4/O+6nkeNapNbr6a0aCd/Hw4MZp6VcF7y+vtJ84vLGF0fc2XUPvaNcQknb3Ol/dR 070Dd0inwdp0PIyPt5+IOC6FY8n0uCHfJ3BO9jCluShPf6u2ihuxnshl8ydV6+8U DnCo5QXcU0EbQoHt0Sq6aVCVEWkZ4WxJP3VFvfXdRUifblNMWqGr5gMAbaeLzVST mADwZWHb6QUTNIHiIezNIvnFzH7bo40A8jHTWShv+nTmyZueroOmFJN5k7sKOMVG QubccEH9bIy4BbOUr+w3YVJzdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOxSCG8C ibB1v4TAwIc/3bQT4862MB8GA1UdIwQYMBaAFM2kfgoe61JfO1oPr7L6Dbs2O/pN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTRBRS8zRDhCOEM0ODUy QjUxMUVBQTRBOUQyMEVDNEY5QUUwMi96YVItQ2g3clVsODdXZy12c3ZvTnV6WTct azAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3phUi1DaDdyVWw4N1dnLXZzdm9OdXpZNy1rMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OTRBRS8zRDhCOEM0ODUyQjUxMUVBQTRBOUQyMEVDNEY5QUUwMi96YVItQ2g3clVs ODdXZy12c3ZvTnV6WTctazAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCj8PULZgcAW2ANrEwdaA6Ep90XtaPPWBcoXxeRdWBYsiOX2uS2JI0I dd91T/ehmUhpzSAuS4MSGfzQhf8RMjg8LbZL+n3lO5tUUmDIYQas9BBOXgBNiuN6 WhWjXqDIzjiHXIXOSWWEo3scWDvaKUM+BaM2GzlhAxmFSjdy3BpA+tKLBFv253gk 4VJjnivgr8JsYG+rNcmwEbfFJ80d/AprZsOzp9cZr1CBwgwaInxyMtXLPex7uVfV Ku1e9EqpWOqG5yjMXq1saV8V3/BWwc25anSsWG18/YhBwY1+U0XMb/aYcofzcFT9 1ZY+6AT4nn46ESVmTOwGX+PzhW66kDDN -----END CERTIFICATE-----Generated at Sat Aug 23 19:34:43 2025 by rpki-client