$ rpki-client -vvf rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.mft File: zlgHMAQJCIdOtirydgUp51w9XGg.mft (raw, json) Hash identifier: cXoffQzwLbbLBZEUzoYOPlZjae7oSf8Q7OGld69jPAM= Subject key identifier: FF:DF:D8:6E:55:27:C9:07:B7:12:F5:B4:BE:C9:19:8F:C8:3D:4E:28 Authority key identifier: CE:58:07:30:04:09:08:87:4E:B6:2A:F2:76:05:29:E7:5C:3D:5C:68 Certificate issuer: /CN=A91E89CD/serialNumber=CE580730040908874EB62AF2760529E75C3D5C68 Certificate serial: 0914 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zlgHMAQJCIdOtirydgUp51w9XGg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.mft Manifest number: 0905 Signing time: Fri 22 Aug 2025 20:27:49 +0000 Manifest this update: Fri 22 Aug 2025 20:27:48 +0000 Manifest next update: Fri 29 Aug 2025 20:27:48 +0000 Files and hashes: 1: zlgHMAQJCIdOtirydgUp51w9XGg.crl (hash: +viUAat4kKPaqIaPsWTQvmj4fXB7QKIvmt6JGfLTvO4=) 2: 8698CD28A42211EB91621734C4F9AE02.roa (hash: liguL5yWelfphfIz9rHVaKh3TqmzzrhEVoBWguDMI9M=) 3: D3ECF4B8E61D11EBB92C167BC4F9AE02.roa (hash: /n6JoBCxKb39xofyDRMG1k20W82UdWlbULQ4CPVAgMo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.crl rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zlgHMAQJCIdOtirydgUp51w9XGg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:27:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2324 (0x914) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E89CD, serialNumber=CE580730040908874EB62AF2760529E75C3D5C68 Validity Not Before: Aug 22 20:27:48 2025 GMT Not After : Aug 29 20:27:48 2025 GMT Subject: CN=68a8d2c4-ecd1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:d8:1c:91:aa:02:1f:69:45:a9:75:f4:02:9a: 66:8e:af:f3:96:ed:b3:d3:91:a8:6b:d2:36:54:1a: b2:8b:1b:a6:09:08:ee:9a:4c:9a:90:47:58:af:f2: 3e:be:2a:f7:ec:ba:6f:aa:88:cf:3a:28:a0:82:28: 94:e3:a3:af:06:8d:e0:64:99:5f:42:4e:fc:1c:38: 1f:95:51:1e:9e:1e:2c:08:9d:4a:40:e3:93:b5:5d: 8d:bc:84:14:b0:80:17:eb:5c:c5:bf:5f:d1:33:ca: e3:d4:43:d7:f7:79:e7:f3:43:cf:2a:b8:c1:a2:05: 78:66:3b:92:48:e6:48:8d:4a:df:59:92:3b:f6:e9: 5d:f9:31:1d:e3:81:26:ab:9c:ce:cf:79:9a:71:24: 12:11:e7:13:74:a0:b3:bd:e3:88:2f:0d:3f:ab:c2: 7e:25:be:9e:df:22:9a:6e:53:e6:d2:9e:47:6a:86: 34:49:05:45:21:84:04:b9:95:fd:6e:9d:86:e4:e9: 3f:d3:1c:3b:ad:54:05:43:e2:d4:21:98:fc:f2:79: 20:2a:85:5a:ae:0b:ae:e3:18:cd:b7:0b:8d:e7:20: 64:08:f3:13:f0:21:81:ee:94:57:27:a9:b0:52:3a: 4c:83:f7:b8:6d:04:70:7b:d1:fe:19:dd:69:7b:c9: f2:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:DF:D8:6E:55:27:C9:07:B7:12:F5:B4:BE:C9:19:8F:C8:3D:4E:28 X509v3 Authority Key Identifier: keyid:CE:58:07:30:04:09:08:87:4E:B6:2A:F2:76:05:29:E7:5C:3D:5C:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zlgHMAQJCIdOtirydgUp51w9XGg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:de:21:59:57:34:dc:35:1e:80:52:cf:b9:fb:62:ee:5d:93: ad:d8:63:64:a3:c1:e9:b5:e9:b0:87:18:9f:06:ec:4a:fc:72: 72:9f:9a:e3:4b:f1:34:0d:c8:46:bf:fd:51:51:a8:36:51:00: 1c:31:70:b1:b4:40:db:e0:01:70:4a:08:36:78:2c:6d:ac:99: 56:60:f5:1a:0b:bd:43:6e:63:78:61:fb:aa:8a:5c:59:e8:04: fe:af:28:68:fd:fb:39:d2:55:2e:f0:14:c8:3f:f2:8c:52:8b: 29:7f:61:4d:ce:b1:c5:6a:92:2a:72:04:03:4c:f6:3b:a0:b1: 33:3a:45:77:13:8f:7a:aa:db:7c:dd:37:86:37:17:c2:9f:d5: 11:5e:7b:07:f9:56:80:8b:56:b2:4c:a9:4e:90:75:f5:ca:13: d5:19:89:f4:84:cb:f8:dc:3d:25:15:1c:79:df:c8:93:20:1d: 72:9a:1e:89:ce:4c:7c:95:79:6b:8f:b9:78:d8:63:e4:1f:ab: 14:2c:f6:27:90:12:9f:15:26:ad:f2:89:20:c8:35:96:f6:8a: 68:d2:5f:c5:07:9f:6d:e8:d7:99:a3:49:12:dd:4f:ed:34:e1: 34:3c:71:1a:94:26:53:51:96:c6:21:2a:85:24:ba:db:b9:aa: de:2b:32:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCRQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg5Q0QxMTAvBgNVBAUTKENFNTgwNzMwMDQwOTA4ODc0RUI2MkFGMjc2MDUyOUU3 NUMzRDVDNjgwHhcNMjUwODIyMjAyNzQ4WhcNMjUwODI5MjAyNzQ4WjAYMRYwFAYD VQQDEw02OGE4ZDJjNC1lY2QxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0dgckaoCH2lFqXX0Appmjq/zlu2z05Goa9I2VBqyixumCQjumkyakEdYr/I+ vir37LpvqojPOiiggiiU46OvBo3gZJlfQk78HDgflVEenh4sCJ1KQOOTtV2NvIQU sIAX61zFv1/RM8rj1EPX93nn80PPKrjBogV4ZjuSSOZIjUrfWZI79uld+TEd44Em q5zOz3macSQSEecTdKCzveOILw0/q8J+Jb6e3yKablPm0p5HaoY0SQVFIYQEuZX9 bp2G5Ok/0xw7rVQFQ+LUIZj88nkgKoVarguu4xjNtwuN5yBkCPMT8CGB7pRXJ6mw UjpMg/e4bQRwe9H+Gd1pe8nywQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP/f2G5V J8kHtxL1tL7JGY/IPU4oMB8GA1UdIwQYMBaAFM5YBzAECQiHTrYq8nYFKedcPVxo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODlDRC8zQzBENEExNkIw NTUxMUVBQTA0NUI4MEVDNEY5QUUwMi96bGdITUFRSkNJZE90aXJ5ZGdVcDUxdzlY R2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3psZ0hNQVFKQ0lkT3RpcnlkZ1VwNTF3OVhHZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODlDRC8zQzBENEExNkIwNTUxMUVBQTA0NUI4MEVDNEY5QUUwMi96bGdITUFRSkNJ ZE90aXJ5ZGdVcDUxdzlYR2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBk3iFZVzTcNR6AUs+5+2LuXZOt2GNko8HptemwhxifBuxK/HJyn5rj S/E0DchGv/1RUag2UQAcMXCxtEDb4AFwSgg2eCxtrJlWYPUaC71DbmN4YfuqilxZ 6AT+ryho/fs50lUu8BTIP/KMUospf2FNzrHFapIqcgQDTPY7oLEzOkV3E496qtt8 3TeGNxfCn9URXnsH+VaAi1ayTKlOkHX1yhPVGYn0hMv43D0lFRx538iTIB1ymh6J zkx8lXlrj7l42GPkH6sULPYnkBKfFSat8okgyDWW9opo0l/FB59t6NeZo0kS3U/t NOE0PHEalCZTUZbGISqFJLrbuareKzKp -----END CERTIFICATE-----Generated at Sat Aug 23 13:41:28 2025 by rpki-client