$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.mft File: ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.mft (raw, json) Hash identifier: 5gENIBXKHBXJ+Xl073eE2/P7LJaFXIcQiswNZJkg6gs= Subject key identifier: 5F:52:98:04:FB:FC:EB:96:1C:4F:D8:8C:6C:2D:92:04:4D:EF:EF:D6 Authority key identifier: 65:54:2C:EC:28:11:1F:C5:4B:A3:D2:AE:E3:3F:4C:E8:7B:7F:90:AD Certificate issuer: /CN=A91E4743/serialNumber=65542CEC28111FC54BA3D2AEE33F4CE87B7F90AD Certificate serial: 08D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.mft Manifest number: 08CC Signing time: Fri 22 Aug 2025 20:34:52 +0000 Manifest this update: Fri 22 Aug 2025 20:34:52 +0000 Manifest next update: Fri 29 Aug 2025 20:34:52 +0000 Files and hashes: 1: ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.crl (hash: rxIvtMo3yRuLhlbiGhZxI0vT4rtCaWfLlLm/jITCQHw=) 2: 1B2E0738BB7011EA93F7DE4EC4F9AE02.roa (hash: Kkq3FSGMJtrxAckL14K8lEjZBbSHWGV4MxpopXgePZY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.crl rsync://rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2261 (0x8d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4743, serialNumber=65542CEC28111FC54BA3D2AEE33F4CE87B7F90AD Validity Not Before: Aug 22 20:34:52 2025 GMT Not After : Aug 29 20:34:52 2025 GMT Subject: CN=68a8d46c-232c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:55:b7:e0:79:aa:cc:04:b8:75:f6:b5:28:8a: 4f:9b:00:98:8a:bf:de:32:84:3c:39:3e:d8:8f:72: ba:50:35:96:a0:3e:cf:4b:75:fd:bd:af:03:fa:35: a1:bd:1b:fd:ea:06:e2:a1:18:74:5b:2f:b1:cd:b3: e7:53:df:05:df:82:68:51:b7:54:05:d3:5d:dd:12: 7b:c1:89:70:22:5f:a4:bf:6b:b3:da:f9:d1:37:05: 39:14:0b:a5:31:fd:e2:e4:d6:b1:95:df:07:27:22: ed:a7:db:c3:81:9a:ed:18:ce:e8:53:34:a0:ce:28: ec:23:ef:2a:86:78:62:c7:99:87:db:5a:9a:ab:6e: ff:b6:13:95:e7:53:f3:3b:09:69:02:3c:4f:5a:7d: 0e:b0:cb:09:e5:66:9c:c2:9a:67:be:a4:fd:ff:d6: fd:9b:29:d8:8c:50:33:ad:70:47:a8:39:92:3b:32: b8:b1:85:01:85:31:47:63:50:26:49:9b:b6:1c:1a: 5b:d5:26:d3:73:e9:9c:e2:60:41:2b:a2:6a:f6:26: 22:26:37:53:bd:12:d6:a9:74:3b:5d:f5:b2:6e:ef: 58:66:4e:8b:be:e7:91:45:b8:57:11:4a:e9:fe:b3: 24:4c:92:0f:8a:45:8a:de:66:66:c4:e4:c3:d7:51: 3c:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:52:98:04:FB:FC:EB:96:1C:4F:D8:8C:6C:2D:92:04:4D:EF:EF:D6 X509v3 Authority Key Identifier: keyid:65:54:2C:EC:28:11:1F:C5:4B:A3:D2:AE:E3:3F:4C:E8:7B:7F:90:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:2e:39:d8:7f:d9:ee:5c:c3:7d:a9:96:f6:6e:89:e5:55:c5: 2c:b9:0c:56:6f:52:8b:fa:7d:35:a1:de:35:3a:ca:6a:96:98: 6e:9b:88:a7:fd:4f:a0:6e:a9:3d:83:b4:8c:67:24:31:8b:30: 0e:23:17:9b:c3:20:45:91:8d:35:57:56:de:1d:fb:16:fb:76: e9:00:0d:6b:83:75:e9:08:55:e2:7f:56:03:0c:7c:b9:ac:4f: 2c:01:d8:49:05:01:0e:fe:62:9f:d5:03:a1:99:96:a0:ce:ba: 47:1d:ac:97:4e:d3:1e:22:4b:f5:66:c7:90:1c:21:bf:d6:e0: f2:24:8d:17:58:33:c5:2f:42:b0:8f:b8:4f:2e:ff:f9:a4:9b: db:b5:92:6c:dd:eb:99:fa:dd:23:9d:9d:7a:64:e6:96:4b:5d: dc:70:0d:38:47:f5:24:c9:d2:9e:28:04:df:00:a6:39:30:be: f6:dd:a2:88:17:d3:06:2e:f7:ce:91:44:84:82:98:d8:a8:7a: 6f:0a:2e:4b:ea:d0:36:65:6e:9d:73:3f:5e:46:04:97:54:bd: c5:cc:3f:0c:a7:12:6e:a7:b8:0f:e2:4e:b4:62:18:e1:47:85: bd:02:0a:cc:f3:a2:1b:0b:f8:59:9b:0e:96:9e:49:e5:46:23: c3:eb:66:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCNUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ3NDMxMTAvBgNVBAUTKDY1NTQyQ0VDMjgxMTFGQzU0QkEzRDJBRUUzM0Y0Q0U4 N0I3RjkwQUQwHhcNMjUwODIyMjAzNDUyWhcNMjUwODI5MjAzNDUyWjAYMRYwFAYD VQQDEw02OGE4ZDQ2Yy0yMzJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvlW34HmqzAS4dfa1KIpPmwCYir/eMoQ8OT7Yj3K6UDWWoD7PS3X9va8D+jWh vRv96gbioRh0Wy+xzbPnU98F34JoUbdUBdNd3RJ7wYlwIl+kv2uz2vnRNwU5FAul Mf3i5Naxld8HJyLtp9vDgZrtGM7oUzSgzijsI+8qhnhix5mH21qaq27/thOV51Pz OwlpAjxPWn0OsMsJ5WacwppnvqT9/9b9mynYjFAzrXBHqDmSOzK4sYUBhTFHY1Am SZu2HBpb1SbTc+mc4mBBK6Jq9iYiJjdTvRLWqXQ7XfWybu9YZk6LvueRRbhXEUrp /rMkTJIPikWK3mZmxOTD11E8HwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF9SmAT7 /OuWHE/YjGwtkgRN7+/WMB8GA1UdIwQYMBaAFGVULOwoER/FS6PSruM/TOh7f5Ct MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDc0My82NzBGODA5MkJC NkYxMUVBOTYxRkI4NEVDNEY5QUUwMi9aVlFzN0NnUkg4VkxvOUt1NHo5TTZIdF9r SzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pWUXM3Q2dSSDhWTG85S3U0ejlNNkh0X2tLMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDc0My82NzBGODA5MkJCNkYxMUVBOTYxRkI4NEVDNEY5QUUwMi9aVlFzN0NnUkg4 VkxvOUt1NHo5TTZIdF9rSzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDLjnYf9nuXMN9qZb2bonlVcUsuQxWb1KL+n01od41Ospqlphum4in /U+gbqk9g7SMZyQxizAOIxebwyBFkY01V1beHfsW+3bpAA1rg3XpCFXif1YDDHy5 rE8sAdhJBQEO/mKf1QOhmZagzrpHHayXTtMeIkv1ZseQHCG/1uDyJI0XWDPFL0Kw j7hPLv/5pJvbtZJs3euZ+t0jnZ16ZOaWS13ccA04R/UkydKeKATfAKY5ML723aKI F9MGLvfOkUSEgpjYqHpvCi5L6tA2ZW6dcz9eRgSXVL3FzD8MpxJup7gP4k60Yhjh R4W9AgrM86IbC/hZmw6WnknlRiPD62Yb -----END CERTIFICATE-----Generated at Sat Aug 23 18:26:19 2025 by rpki-client