$ rpki-client -vvf rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.mft File: zlgHMAQJCIdOtirydgUp51w9XGg.mft (raw, json) Hash identifier: DE82pH2hVd/dbb/iI2I1v6cV9/c3s2rrt3pnb/EbVSE= Subject key identifier: 57:7C:47:58:95:19:AC:46:F8:CC:AF:08:2E:09:46:6A:C4:D8:AC:FE Authority key identifier: CE:58:07:30:04:09:08:87:4E:B6:2A:F2:76:05:29:E7:5C:3D:5C:68 Certificate issuer: /CN=A91E89CD/serialNumber=CE580730040908874EB62AF2760529E75C3D5C68 Certificate serial: 08FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zlgHMAQJCIdOtirydgUp51w9XGg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.mft Manifest number: 08EB Signing time: Wed 02 Jul 2025 20:38:52 +0000 Manifest this update: Wed 02 Jul 2025 20:38:52 +0000 Manifest next update: Wed 09 Jul 2025 20:38:52 +0000 Files and hashes: 1: zlgHMAQJCIdOtirydgUp51w9XGg.crl (hash: 5B5MyUMROuqu1zHjHf490l3NpjxI9XBfIh+V3lL1hpc=) 2: 8698CD28A42211EB91621734C4F9AE02.roa (hash: liguL5yWelfphfIz9rHVaKh3TqmzzrhEVoBWguDMI9M=) 3: D3ECF4B8E61D11EBB92C167BC4F9AE02.roa (hash: /n6JoBCxKb39xofyDRMG1k20W82UdWlbULQ4CPVAgMo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.crl rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zlgHMAQJCIdOtirydgUp51w9XGg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:38:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2298 (0x8fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E89CD, serialNumber=CE580730040908874EB62AF2760529E75C3D5C68 Validity Not Before: Jul 2 20:38:52 2025 GMT Not After : Jul 9 20:38:52 2025 GMT Subject: CN=686598dc-b5d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:31:77:97:b6:cb:c7:8a:50:7d:1c:67:49:51: c4:02:11:5b:2b:d8:31:a9:22:8b:66:59:e1:c4:f8: 17:01:f9:93:44:7b:4f:f1:e4:78:62:4b:08:11:64: 34:bb:7e:08:fa:55:51:c4:ac:e7:95:36:bd:ca:d8: 06:d6:c4:2a:d2:40:2d:d8:4b:86:76:d6:c2:32:90: 5d:f0:a4:ad:88:0e:f5:67:1d:57:3f:5c:fa:70:9a: c2:c8:a2:8f:a4:fb:e4:7e:39:24:86:39:d1:7c:37: 96:0c:2a:e8:ed:01:48:28:8c:0a:e2:59:d4:0f:85: bf:ab:af:47:5a:47:ba:44:12:16:af:7c:3f:9f:1c: 76:f9:f3:da:e8:ad:8b:23:64:3a:61:b6:80:51:cc: 6d:83:d3:43:a7:e9:b0:fc:33:8a:3f:05:aa:2d:43: a2:c9:4f:a7:e9:7d:71:d3:cc:b6:6f:5e:15:bd:29: 67:86:fb:a7:04:c3:9d:ee:61:6e:ff:5a:85:e2:a1: af:90:b4:b7:47:2e:c6:7c:1d:2c:8b:85:bb:81:80: 78:11:83:85:02:c7:40:c3:68:b1:eb:34:6d:8c:f8: 4d:41:25:82:b6:c2:fd:c4:40:48:9c:67:29:17:cf: 96:a0:cf:ac:a6:6c:e6:e3:86:af:6b:59:4f:14:b6: f4:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:7C:47:58:95:19:AC:46:F8:CC:AF:08:2E:09:46:6A:C4:D8:AC:FE X509v3 Authority Key Identifier: keyid:CE:58:07:30:04:09:08:87:4E:B6:2A:F2:76:05:29:E7:5C:3D:5C:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zlgHMAQJCIdOtirydgUp51w9XGg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:4f:a0:2a:51:ba:c5:2e:53:9a:b0:90:03:23:bb:9f:07:81: 5e:0e:67:3e:c3:ed:7e:86:e7:99:b6:cb:ca:64:a3:98:0f:1f: 84:b4:21:5e:79:8a:97:a5:8e:12:82:ce:8b:6f:a7:0e:f2:cb: d3:28:8c:40:de:12:e1:82:50:84:2c:39:b1:3c:cc:94:29:bc: 7f:e9:2f:5f:5e:ba:71:e0:ef:5a:25:e2:48:aa:79:5d:13:48: e9:64:0f:2f:74:a4:68:31:63:02:2d:d7:66:9a:e6:59:08:90: 3b:0a:11:09:de:f3:f4:fc:6a:72:1a:e4:56:6d:7b:93:8b:b4: 1a:55:c1:29:c2:d3:17:79:21:a5:aa:95:83:40:d3:19:36:97: 16:b0:f0:20:96:f8:70:30:e6:cf:1a:e2:24:35:80:3b:d5:bf: 9d:e6:79:f7:bd:65:77:9b:6b:63:a1:c4:8f:54:4e:91:63:78: 91:5d:68:21:61:2b:05:93:0a:f9:28:af:31:df:10:4f:12:4f: ce:8d:32:8a:2c:fe:59:96:c4:d6:30:06:ee:71:f6:09:24:96: 6c:27:04:33:12:4d:4e:15:ca:9f:77:dc:76:1b:bb:02:c8:06: 26:85:96:4e:d6:23:44:a2:91:90:05:8b:88:ea:b9:f6:ad:67: 63:f7:2a:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCPowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg5Q0QxMTAvBgNVBAUTKENFNTgwNzMwMDQwOTA4ODc0RUI2MkFGMjc2MDUyOUU3 NUMzRDVDNjgwHhcNMjUwNzAyMjAzODUyWhcNMjUwNzA5MjAzODUyWjAYMRYwFAYD VQQDEw02ODY1OThkYy1iNWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyzF3l7bLx4pQfRxnSVHEAhFbK9gxqSKLZlnhxPgXAfmTRHtP8eR4YksIEWQ0 u34I+lVRxKznlTa9ytgG1sQq0kAt2EuGdtbCMpBd8KStiA71Zx1XP1z6cJrCyKKP pPvkfjkkhjnRfDeWDCro7QFIKIwK4lnUD4W/q69HWke6RBIWr3w/nxx2+fPa6K2L I2Q6YbaAUcxtg9NDp+mw/DOKPwWqLUOiyU+n6X1x08y2b14VvSlnhvunBMOd7mFu /1qF4qGvkLS3Ry7GfB0si4W7gYB4EYOFAsdAw2ix6zRtjPhNQSWCtsL9xEBInGcp F8+WoM+spmzm44ava1lPFLb0vQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFd8R1iV GaxG+MyvCC4JRmrE2Kz+MB8GA1UdIwQYMBaAFM5YBzAECQiHTrYq8nYFKedcPVxo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODlDRC8zQzBENEExNkIw NTUxMUVBQTA0NUI4MEVDNEY5QUUwMi96bGdITUFRSkNJZE90aXJ5ZGdVcDUxdzlY R2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3psZ0hNQVFKQ0lkT3RpcnlkZ1VwNTF3OVhHZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODlDRC8zQzBENEExNkIwNTUxMUVBQTA0NUI4MEVDNEY5QUUwMi96bGdITUFRSkNJ ZE90aXJ5ZGdVcDUxdzlYR2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTT6AqUbrFLlOasJADI7ufB4FeDmc+w+1+hueZtsvKZKOYDx+EtCFe eYqXpY4Sgs6Lb6cO8svTKIxA3hLhglCELDmxPMyUKbx/6S9fXrpx4O9aJeJIqnld E0jpZA8vdKRoMWMCLddmmuZZCJA7ChEJ3vP0/GpyGuRWbXuTi7QaVcEpwtMXeSGl qpWDQNMZNpcWsPAglvhwMObPGuIkNYA71b+d5nn3vWV3m2tjocSPVE6RY3iRXWgh YSsFkwr5KK8x3xBPEk/OjTKKLP5ZlsTWMAbucfYJJJZsJwQzEk1OFcqfd9x2G7sC yAYmhZZO1iNEopGQBYuI6rn2rWdj9yrv -----END CERTIFICATE-----Generated at Fri Jul 4 09:55:40 2025 by rpki-client