$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.mft File: zdfMWZTjQE5sI66UKlkhi1fFwTE.mft (raw, json) Hash identifier: A82KHgklvH95hEmbdzXC/l62fgFAqwF8KRwtoicixsw= Subject key identifier: C1:A4:C8:DE:05:BF:CA:63:EB:6C:16:32:A5:4F:74:C1:C5:16:4E:0C Authority key identifier: CD:D7:CC:59:94:E3:40:4E:6C:23:AE:94:2A:59:21:8B:57:C5:C1:31 Certificate issuer: /CN=A91EA6A1/serialNumber=CDD7CC5994E3404E6C23AE942A59218B57C5C131 Certificate serial: 01AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zdfMWZTjQE5sI66UKlkhi1fFwTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.mft Manifest number: 01A3 Signing time: Sat 23 Aug 2025 03:24:07 +0000 Manifest this update: Sat 23 Aug 2025 03:24:06 +0000 Manifest next update: Sat 30 Aug 2025 03:24:06 +0000 Files and hashes: 1: zdfMWZTjQE5sI66UKlkhi1fFwTE.crl (hash: 3wIJwjS1pUS3l+nzKmq9OWtMOfXnOzdmDWp6uLbHsjI=) 2: 1D45B78003C211EEB2272068C4F9AE02.roa (hash: F77Ohmhr+pSmcNMBmLDootHjfm49x1IrVzvlaFQhQZo=) 3: 1E7F6B9603C211EEB2272068C4F9AE02.roa (hash: T4SsvxhOJ8NmSlYF5F0QyIn0S5EcCqMNYfFfIGZadlw=) 4: 1DDE652A03C211EEB2272068C4F9AE02.roa (hash: 3jNUoCccmrM56z8z19CQSeUZl708g7HitdvgnX+ByM8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.crl rsync://rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zdfMWZTjQE5sI66UKlkhi1fFwTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:24:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 428 (0x1ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA6A1, serialNumber=CDD7CC5994E3404E6C23AE942A59218B57C5C131 Validity Not Before: Aug 23 03:24:06 2025 GMT Not After : Aug 30 03:24:06 2025 GMT Subject: CN=68a93456-0e3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:26:82:48:66:4a:c8:b5:15:f6:89:5e:04:eb: 98:41:69:ab:e4:93:a5:52:5a:1b:02:bf:ca:37:48: 2c:ea:eb:a1:ba:65:41:70:00:e2:b1:1f:8c:bb:dc: 9d:35:24:37:42:8a:16:71:f2:7f:96:77:23:5d:25: 1a:5c:59:e0:7e:b7:cd:09:bf:37:26:e1:77:2e:9f: 11:ae:3a:dc:58:e3:f6:92:32:50:1d:86:b1:6f:eb: a8:3d:71:0c:c8:9e:d4:80:25:f2:42:79:9d:56:17: 82:e2:af:60:fb:48:f0:10:65:89:f4:d1:ec:b9:be: fd:66:46:8b:83:d2:a3:fb:a6:48:47:7b:22:03:42: d3:a1:36:bc:72:3a:a4:ac:24:a4:0e:ce:6a:f5:52: 08:ae:6a:d4:26:c1:ad:1e:2c:f4:3e:f4:5f:78:e7: 4d:55:b0:5d:4f:1d:18:6f:af:4b:70:89:1e:3e:ee: 70:9d:1f:c2:77:cc:4b:a6:c8:7b:e9:9d:ba:91:54: 67:cb:a5:23:30:0c:21:fc:a1:35:e7:5b:16:c5:b5: f6:b2:8a:e5:55:a1:c2:60:ff:a1:1c:a4:55:b6:62: 06:08:2c:3b:38:62:95:d4:17:79:69:ca:d8:be:71: f2:4b:1f:10:d1:26:b7:9a:58:ae:3b:1f:b3:77:f2: 49:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:A4:C8:DE:05:BF:CA:63:EB:6C:16:32:A5:4F:74:C1:C5:16:4E:0C X509v3 Authority Key Identifier: keyid:CD:D7:CC:59:94:E3:40:4E:6C:23:AE:94:2A:59:21:8B:57:C5:C1:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zdfMWZTjQE5sI66UKlkhi1fFwTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e3:84:55:76:fc:50:12:42:de:d0:3d:93:ef:69:e8:e5:d7:53: 65:d1:96:53:95:71:7b:77:2e:b9:29:f0:0c:33:9f:52:b5:69: 62:11:57:cf:1c:98:fc:cd:5a:62:b5:be:1e:a7:26:0c:d2:87: 6e:ba:01:8c:40:e6:82:f2:a1:02:60:0e:eb:df:73:5c:8d:fe: a0:2a:fe:f2:43:ac:05:c5:8c:ee:0b:a1:23:ae:fe:ed:d7:0f: e5:3d:46:e3:02:f8:24:97:5c:01:f0:ab:66:04:8a:30:45:c1: 16:c8:de:55:3f:f2:a0:ac:99:f9:6c:de:30:a3:1c:d0:03:f7: 26:ac:b2:b6:a3:78:71:b1:8d:42:08:50:cb:aa:86:31:5d:fe: 9b:f2:74:00:d8:40:f6:5e:e1:15:81:28:38:9e:94:ea:8f:b3: 6b:18:3b:6e:35:77:04:35:3b:21:17:93:38:4f:f9:b7:e5:ca: d4:fd:c7:51:c5:63:bd:90:59:7a:b9:1a:02:41:60:a4:fd:dd: c8:9b:f5:d8:b9:27:1a:e6:60:28:5f:06:71:22:05:3d:f8:a0: 5d:eb:05:a7:a7:4d:5c:7d:2f:db:0b:a4:66:70:01:be:3a:fc: b1:ff:7f:b1:76:d9:76:70:bc:a6:7a:a3:32:7a:7f:68:85:a1: be:0e:46:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAawwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE2QTExMTAvBgNVBAUTKENERDdDQzU5OTRFMzQwNEU2QzIzQUU5NDJBNTkyMThC NTdDNUMxMzEwHhcNMjUwODIzMDMyNDA2WhcNMjUwODMwMDMyNDA2WjAYMRYwFAYD VQQDEw02OGE5MzQ1Ni0wZTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0CaCSGZKyLUV9oleBOuYQWmr5JOlUlobAr/KN0gs6uuhumVBcADisR+Mu9yd NSQ3QooWcfJ/lncjXSUaXFngfrfNCb83JuF3Lp8RrjrcWOP2kjJQHYaxb+uoPXEM yJ7UgCXyQnmdVheC4q9g+0jwEGWJ9NHsub79ZkaLg9Kj+6ZIR3siA0LToTa8cjqk rCSkDs5q9VIIrmrUJsGtHiz0PvRfeOdNVbBdTx0Yb69LcIkePu5wnR/Cd8xLpsh7 6Z26kVRny6UjMAwh/KE151sWxbX2sorlVaHCYP+hHKRVtmIGCCw7OGKV1Bd5acrY vnHySx8Q0Sa3mliuOx+zd/JJDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMGkyN4F v8pj62wWMqVPdMHFFk4MMB8GA1UdIwQYMBaAFM3XzFmU40BObCOulCpZIYtXxcEx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTZBMS8zMTVCN0UwOEZG N0IxMUVEQTYyREYxMEVDNEY5QUUwMi96ZGZNV1pUalFFNXNJNjZVS2xraGkxZkZ3 VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pkZk1XWlRqUUU1c0k2NlVLbGtoaTFmRndURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTZBMS8zMTVCN0UwOEZGN0IxMUVEQTYyREYxMEVDNEY5QUUwMi96ZGZNV1pUalFF NXNJNjZVS2xraGkxZkZ3VEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDjhFV2/FASQt7QPZPvaejl11Nl0ZZTlXF7dy65KfAMM59StWliEVfP HJj8zVpitb4epyYM0oduugGMQOaC8qECYA7r33Ncjf6gKv7yQ6wFxYzuC6Ejrv7t 1w/lPUbjAvgkl1wB8KtmBIowRcEWyN5VP/KgrJn5bN4woxzQA/cmrLK2o3hxsY1C CFDLqoYxXf6b8nQA2ED2XuEVgSg4npTqj7NrGDtuNXcENTshF5M4T/m35crU/cdR xWO9kFl6uRoCQWCk/d3Im/XYuSca5mAoXwZxIgU9+KBd6wWnp01cfS/bC6RmcAG+ Ovyx/3+xdtl2cLymeqMyen9ohaG+DkZ/ -----END CERTIFICATE-----Generated at Sun Aug 24 04:56:05 2025 by rpki-client