$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/zIQ-FAouPvvguUneDtgDg5BgVB0.mft File: zIQ-FAouPvvguUneDtgDg5BgVB0.mft (raw, json) Hash identifier: WyGyKKSZiEaHFfder3dioHXByu4jnghjaSGNqmsjkzw= Subject key identifier: 43:6A:52:C5:DB:B4:88:6B:43:16:B9:96:37:32:BD:AB:A7:46:D6:AB Authority key identifier: CC:84:3E:14:0A:2E:3E:FB:E0:B9:49:DE:0E:D8:03:83:90:60:54:1D Certificate issuer: /CN=A91C1A37/serialNumber=CC843E140A2E3EFBE0B949DE0ED803839060541D Certificate serial: 30D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIQ-FAouPvvguUneDtgDg5BgVB0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/zIQ-FAouPvvguUneDtgDg5BgVB0.mft Manifest number: 30BF Signing time: Fri 22 Aug 2025 15:29:06 +0000 Manifest this update: Fri 22 Aug 2025 15:29:06 +0000 Manifest next update: Fri 29 Aug 2025 15:29:06 +0000 Files and hashes: 1: zIQ-FAouPvvguUneDtgDg5BgVB0.crl (hash: wyrEeKOzBi0KPYIIIY+zQS6eKaEoE5jz0nUUBkfHGsM=) 2: C3F53A0654F011E7BE4A6431C4F9AE02.roa (hash: 54WI7bxOwof+H1Cz8+uPiLZ+tzpprbk2GuCnR0w5MUY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/zIQ-FAouPvvguUneDtgDg5BgVB0.crl rsync://rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/zIQ-FAouPvvguUneDtgDg5BgVB0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIQ-FAouPvvguUneDtgDg5BgVB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:29:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12504 (0x30d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1A37, serialNumber=CC843E140A2E3EFBE0B949DE0ED803839060541D Validity Not Before: Aug 22 15:29:06 2025 GMT Not After : Aug 29 15:29:06 2025 GMT Subject: CN=68a88cc2-21c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:ba:5e:94:81:b8:41:7c:9c:4c:c5:95:c7:aa: bc:0e:b1:2b:75:b7:8e:0a:4d:56:87:94:e9:45:28: 40:cb:d1:67:fc:45:b4:fb:94:f4:c3:7f:26:ea:e7: 9a:67:e8:08:35:63:ee:f0:a6:98:98:ec:f3:31:18: 0b:69:1c:71:60:dd:13:0a:db:4a:40:f6:db:10:69: 9e:37:10:d7:a5:0a:9b:4c:34:0b:d2:c0:84:21:ea: 83:9d:41:51:bc:87:61:cd:c7:71:d4:ec:07:f8:10: f5:63:75:cf:c9:e8:98:d0:5d:17:e0:b6:c8:7e:c8: 00:74:af:b8:74:11:64:23:1b:d5:44:6a:85:45:9c: 2d:2a:5c:cd:81:7a:b0:60:80:ee:98:75:eb:68:4d: 56:f3:d6:68:21:f6:7c:33:7e:a9:72:80:f3:27:e9: 6e:97:26:9e:66:62:3e:b0:83:60:18:60:e1:b9:d2: 19:d8:9c:2e:2a:fa:44:9c:ad:4b:02:c5:9a:6d:f8: 90:56:5f:fc:6f:e8:88:f6:cc:7a:27:73:09:3f:30: f8:92:3f:10:60:db:66:f8:51:de:2c:07:23:7f:bb: 86:1b:a0:f6:02:98:cf:a6:32:a2:51:8a:4c:cd:b2: 3a:af:f1:c5:b5:b2:20:21:3a:de:42:f2:fb:3b:4b: d0:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:6A:52:C5:DB:B4:88:6B:43:16:B9:96:37:32:BD:AB:A7:46:D6:AB X509v3 Authority Key Identifier: keyid:CC:84:3E:14:0A:2E:3E:FB:E0:B9:49:DE:0E:D8:03:83:90:60:54:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/zIQ-FAouPvvguUneDtgDg5BgVB0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIQ-FAouPvvguUneDtgDg5BgVB0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/zIQ-FAouPvvguUneDtgDg5BgVB0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:6c:83:3c:c0:07:7d:5b:c1:65:f7:17:79:eb:9f:b8:97:af: 4f:09:dc:9d:bc:bd:2a:f6:b3:57:4e:3d:d1:9a:10:ab:5a:2a: 04:b2:c3:05:3f:94:5b:7d:4f:f2:53:29:b5:ca:71:26:2e:77: e6:be:70:3e:57:d2:a7:ba:bc:23:9f:d1:fe:bd:33:ac:b8:ef: fb:14:c6:52:b7:55:0e:16:ce:53:b1:85:20:13:fa:ee:7b:b9: 6e:66:76:e2:83:79:9d:5e:e6:69:2f:fa:9d:54:f8:9e:65:a1: ef:bd:a7:fb:2a:c5:aa:72:04:1f:58:1c:07:4e:0d:8a:b4:04: 10:b3:5f:f9:ee:7e:53:01:a8:00:48:cb:e9:74:26:08:ed:a0: 7f:c9:a3:9d:51:aa:15:3f:97:c2:46:14:19:ef:3e:5d:99:cb: e9:51:4a:d5:c2:1b:73:be:6b:14:65:1c:48:64:8a:d3:68:9f: a6:c5:11:b0:ab:55:10:fb:2a:3f:dd:27:a6:1b:16:75:bd:d9: f0:d3:aa:94:a2:58:c6:ba:d9:3d:33:06:96:50:c9:c7:e9:cf: 2e:2c:20:d5:20:88:50:ab:55:cd:df:8b:d9:1f:4a:06:0b:44: 54:cc:4c:ab:f2:11:f9:80:cd:79:33:1a:64:a6:b3:89:65:9f: 20:ce:d1:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMNgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFBMzcxMTAvBgNVBAUTKENDODQzRTE0MEEyRTNFRkJFMEI5NDlERTBFRDgwMzgz OTA2MDU0MUQwHhcNMjUwODIyMTUyOTA2WhcNMjUwODI5MTUyOTA2WjAYMRYwFAYD VQQDEw02OGE4OGNjMi0yMWM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA77pelIG4QXycTMWVx6q8DrErdbeOCk1Wh5TpRShAy9Fn/EW0+5T0w38m6uea Z+gINWPu8KaYmOzzMRgLaRxxYN0TCttKQPbbEGmeNxDXpQqbTDQL0sCEIeqDnUFR vIdhzcdx1OwH+BD1Y3XPyeiY0F0X4LbIfsgAdK+4dBFkIxvVRGqFRZwtKlzNgXqw YIDumHXraE1W89ZoIfZ8M36pcoDzJ+lulyaeZmI+sINgGGDhudIZ2JwuKvpEnK1L AsWabfiQVl/8b+iI9sx6J3MJPzD4kj8QYNtm+FHeLAcjf7uGG6D2ApjPpjKiUYpM zbI6r/HFtbIgITreQvL7O0vQVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFENqUsXb tIhrQxa5ljcyvaunRtarMB8GA1UdIwQYMBaAFMyEPhQKLj774LlJ3g7YA4OQYFQd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMUEzNy82ODY4RTAyOEU3 RjAxMUUyOEMyODA1ODQ1OTExRUEzMi96SVEtRkFvdVB2dmd1VW5lRHRnRGc1QmdW QjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pJUS1GQW91UHZ2Z3VVbmVEdGdEZzVCZ1ZCMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MUEzNy82ODY4RTAyOEU3RjAxMUUyOEMyODA1ODQ1OTExRUEzMi96SVEtRkFvdVB2 dmd1VW5lRHRnRGc1QmdWQjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbbIM8wAd9W8Fl9xd565+4l69PCdydvL0q9rNXTj3RmhCrWioEssMF P5RbfU/yUym1ynEmLnfmvnA+V9Knurwjn9H+vTOsuO/7FMZSt1UOFs5TsYUgE/ru e7luZnbig3mdXuZpL/qdVPieZaHvvaf7KsWqcgQfWBwHTg2KtAQQs1/57n5TAagA SMvpdCYI7aB/yaOdUaoVP5fCRhQZ7z5dmcvpUUrVwhtzvmsUZRxIZIrTaJ+mxRGw q1UQ+yo/3SemGxZ1vdnw06qUoljGutk9MwaWUMnH6c8uLCDVIIhQq1XN34vZH0oG C0RUzEyr8hH5gM15MxpkprOJZZ8gztGL -----END CERTIFICATE-----Generated at Sat Aug 23 20:35:06 2025 by rpki-client