$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.mft File: cl_Zd85zS7qZM_KUPcJpOfoGCKc.mft (raw, json) Hash identifier: Ze9TufVq7+I9NbQosWV+ep2TI42EolHoXIiHSN27H6M= Subject key identifier: 77:60:5A:84:98:55:2E:73:DD:B5:29:43:F4:E8:E2:E1:CF:B9:C6:91 Authority key identifier: 72:5F:D9:77:CE:73:4B:BA:99:33:F2:94:3D:C2:69:39:FA:06:08:A7 Certificate issuer: /CN=A91E0D87/serialNumber=725FD977CE734BBA9933F2943DC26939FA0608A7 Certificate serial: 052F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cl_Zd85zS7qZM_KUPcJpOfoGCKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.mft Manifest number: 0514 Signing time: Fri 22 Aug 2025 23:52:40 +0000 Manifest this update: Fri 22 Aug 2025 23:52:39 +0000 Manifest next update: Fri 29 Aug 2025 23:52:39 +0000 Files and hashes: 1: cl_Zd85zS7qZM_KUPcJpOfoGCKc.crl (hash: qYml62O+T8SDZtqURb9SjZjItE8AWz6Hzhn/q8Sndwc=) 2: F02FB190775C11F0AAB66573C4F9AE02.roa (hash: 1cnz4qLGOZM90/y9wRTb9HHBjCN3hSPgSpg/4lYiJyU=) 3: 0C61CFD8775D11F0B5C19073C4F9AE02.roa (hash: dwH9ceoHGi/wx5zHjlHJemmm0Xu3vmgKYVu6P4OYiPI=) 4: 17C20748736C11F08782972FC4F9AE02.roa (hash: uD/+VbEQuvKB4FlDEdrzat2jHSaev4WUMeRzTzDdRDA=) 5: 345F56F87FE311EF80C0F71FC4F9AE02.roa (hash: GPBxxSS7tjXB56EHA0eFK8gRXpMRgACbmw5NUyFguDY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.crl rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cl_Zd85zS7qZM_KUPcJpOfoGCKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:52:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1327 (0x52f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0D87, serialNumber=725FD977CE734BBA9933F2943DC26939FA0608A7 Validity Not Before: Aug 22 23:52:39 2025 GMT Not After : Aug 29 23:52:39 2025 GMT Subject: CN=68a902c7-cd2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:96:cc:7d:2e:87:87:3f:50:fe:af:12:0b:9d: 8c:28:ac:e1:8e:83:19:d5:64:b6:f3:45:5a:91:7a: 1e:04:32:b3:60:d2:16:38:1d:35:c0:cc:78:57:a3: ca:ec:2e:02:69:fd:a8:80:68:70:07:0c:6b:1a:84: 4e:09:5f:e1:b4:5c:f8:b2:f4:1b:a5:83:8a:70:99: 3d:0b:b9:65:e8:bb:33:e9:b6:4b:45:08:73:d2:72: 14:09:91:49:69:95:14:6a:b2:3d:67:43:2a:da:a4: 8c:4d:ce:a8:3e:42:a7:d8:55:c6:ab:9b:59:f2:ad: 72:45:9b:66:68:a0:cc:9e:51:cb:77:55:32:bc:ba: 87:dc:45:b5:f8:8a:a6:41:99:08:ce:42:dd:ed:6c: e2:45:87:89:e5:40:8e:42:66:f5:09:05:81:5d:dc: 10:7a:9b:a0:6a:b3:0b:24:b3:c3:3c:cb:52:a2:1d: b0:bc:7b:d5:61:6b:b5:9a:be:c7:5a:ea:53:76:5d: 21:ba:8c:9c:bb:7b:4f:60:4d:56:c6:3e:e6:36:11: 3a:28:9a:fc:b5:3b:d6:0b:ac:a3:0b:ad:f7:62:aa: e1:6e:d7:dd:33:06:3e:c8:0e:60:f0:e0:8f:14:4e: f0:ef:47:86:33:7a:ce:5d:ae:47:e6:51:94:04:9e: f6:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:60:5A:84:98:55:2E:73:DD:B5:29:43:F4:E8:E2:E1:CF:B9:C6:91 X509v3 Authority Key Identifier: keyid:72:5F:D9:77:CE:73:4B:BA:99:33:F2:94:3D:C2:69:39:FA:06:08:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cl_Zd85zS7qZM_KUPcJpOfoGCKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:7d:70:30:e3:9c:79:88:d3:91:cf:07:79:8e:6f:4d:cf:ca: be:9e:c5:cd:f4:a2:69:0c:67:fa:cf:3a:14:23:0d:2c:03:d4: e8:14:f6:3d:b7:6f:f0:ec:e6:35:eb:2c:71:5f:77:f6:42:cd: f8:ef:65:32:6e:3b:38:66:2e:cd:ff:35:57:e5:12:ca:6c:2b: bd:bd:a9:f5:48:73:97:4d:0b:05:19:47:a4:b1:cd:89:69:67: c4:00:8e:a8:28:bd:f6:db:8c:4e:f9:9a:9f:5b:a4:04:0b:23: 9b:41:8e:e4:dc:28:8c:9f:dd:ff:c9:d1:bf:06:02:a1:e0:fc: fc:5b:14:f7:70:f9:ad:db:8a:7a:74:ae:40:d9:fb:61:33:e5: 0e:99:3d:70:1b:22:46:0d:b0:df:33:03:fa:13:5b:24:04:78: 82:c3:3b:63:23:49:4b:70:af:05:6d:b7:b8:69:e7:64:66:b8: 07:f9:68:71:a2:97:9b:8d:fa:8e:ce:d5:81:0b:99:ec:d6:19: bd:88:31:97:d7:3d:e3:7a:aa:68:3b:5d:0a:1d:e3:4e:9a:05: 6e:e4:b7:b9:e6:b9:c8:c1:a4:cf:fb:8b:6e:1d:bc:b4:03:b8: 21:57:9f:f5:b9:d7:63:2b:ee:c1:64:56:b5:a2:a2:36:fd:1b: 22:f3:09:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBEODcxMTAvBgNVBAUTKDcyNUZEOTc3Q0U3MzRCQkE5OTMzRjI5NDNEQzI2OTM5 RkEwNjA4QTcwHhcNMjUwODIyMjM1MjM5WhcNMjUwODI5MjM1MjM5WjAYMRYwFAYD VQQDEw02OGE5MDJjNy1jZDJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwZbMfS6Hhz9Q/q8SC52MKKzhjoMZ1WS280VakXoeBDKzYNIWOB01wMx4V6PK 7C4Caf2ogGhwBwxrGoROCV/htFz4svQbpYOKcJk9C7ll6Lsz6bZLRQhz0nIUCZFJ aZUUarI9Z0Mq2qSMTc6oPkKn2FXGq5tZ8q1yRZtmaKDMnlHLd1UyvLqH3EW1+Iqm QZkIzkLd7WziRYeJ5UCOQmb1CQWBXdwQepugarMLJLPDPMtSoh2wvHvVYWu1mr7H WupTdl0huoycu3tPYE1Wxj7mNhE6KJr8tTvWC6yjC633YqrhbtfdMwY+yA5g8OCP FE7w70eGM3rOXa5H5lGUBJ72PQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHdgWoSY VS5z3bUpQ/To4uHPucaRMB8GA1UdIwQYMBaAFHJf2XfOc0u6mTPylD3CaTn6Bgin MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEQ4Ny9GNjgzQ0VGMjIx RUIxMUVDOTI1MDE4MTlDNEY5QUUwMi9jbF9aZDg1elM3cVpNX0tVUGNKcE9mb0dD S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NsX1pkODV6UzdxWk1fS1VQY0pwT2ZvR0NLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MEQ4Ny9GNjgzQ0VGMjIxRUIxMUVDOTI1MDE4MTlDNEY5QUUwMi9jbF9aZDg1elM3 cVpNX0tVUGNKcE9mb0dDS2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCifXAw45x5iNORzwd5jm9Nz8q+nsXN9KJpDGf6zzoUIw0sA9ToFPY9 t2/w7OY16yxxX3f2Qs3472Uybjs4Zi7N/zVX5RLKbCu9van1SHOXTQsFGUeksc2J aWfEAI6oKL3224xO+ZqfW6QECyObQY7k3CiMn93/ydG/BgKh4Pz8WxT3cPmt24p6 dK5A2fthM+UOmT1wGyJGDbDfMwP6E1skBHiCwztjI0lLcK8Fbbe4aedkZrgH+Whx opebjfqOztWBC5ns1hm9iDGX1z3jeqpoO10KHeNOmgVu5Le55rnIwaTP+4tuHby0 A7ghV5/1uddjK+7BZFa1oqI2/Rsi8wm0 -----END CERTIFICATE-----Generated at Sat Aug 23 17:14:27 2025 by rpki-client