$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft File: zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft (raw, json) Hash identifier: tx4A7baFaohDk4WpxAm5urOFyjms71W15uX3cCJ0WsM= Subject key identifier: BD:97:F1:DF:C7:9F:7B:47:92:12:64:5F:1D:7A:2C:28:6A:7E:DD:49 Authority key identifier: CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0 Certificate issuer: /CN=A91EBFB0/serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0 Certificate serial: 0CB5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft Manifest number: 0CAE Signing time: Fri 22 Aug 2025 18:18:35 +0000 Manifest this update: Fri 22 Aug 2025 18:18:34 +0000 Manifest next update: Fri 29 Aug 2025 18:18:34 +0000 Files and hashes: 1: zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl (hash: xqznIQw9NDIQIPNjUg6MGQ/w8oOdJfJ3BocdBlWkdB0=) 2: F690CAECF87D11E9A746D05BC4F9AE02.roa (hash: PKzsRoQOFkH0aPoaShEpuvQ+omyVkcjK/WY8mjX8BEM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:18:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3253 (0xcb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBFB0, serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0 Validity Not Before: Aug 22 18:18:34 2025 GMT Not After : Aug 29 18:18:34 2025 GMT Subject: CN=68a8b47b-1437 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:48:c5:73:4b:2b:04:47:51:13:0b:d7:81:4f: 92:e7:e7:e4:d6:df:4e:32:a1:e3:b6:57:89:bb:60: dd:5a:74:a9:c0:ce:d8:4b:44:cb:ef:d2:52:79:95: d1:60:08:aa:bc:45:77:c1:b7:80:6c:f5:d1:f6:f4: ec:43:63:94:9d:fb:e1:27:55:d3:a4:63:07:db:1c: 90:d4:5b:88:3a:05:04:98:df:2c:9f:f4:68:a8:e9: b1:4a:77:a9:27:03:93:56:a3:59:14:1a:0d:6d:6e: fc:2f:bd:ea:49:36:89:be:69:7d:4e:d3:c3:1c:a7: 0f:02:f1:5c:52:79:57:0e:f7:22:72:28:01:c4:5f: 6d:cf:d1:5a:0f:c8:05:30:fa:df:c2:03:90:5e:3b: e9:f8:5f:31:7c:fd:97:54:0a:26:da:07:80:26:42: ca:16:0a:91:ae:a2:5e:e8:d1:ba:06:d6:e5:5d:8a: 02:99:d3:e0:ff:ff:f7:39:47:f9:88:d5:cb:38:0e: f9:0e:3d:a8:47:1a:8a:01:cd:2e:2e:73:39:9a:7f: 03:5f:92:7f:ea:e8:13:48:e0:1e:78:bf:ff:2e:0b: a5:bb:0d:a6:ee:5f:d0:4e:63:30:51:14:f9:79:e1: a5:e1:a7:77:b0:ab:c8:68:58:7e:95:58:33:1f:76: 70:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:97:F1:DF:C7:9F:7B:47:92:12:64:5F:1D:7A:2C:28:6A:7E:DD:49 X509v3 Authority Key Identifier: keyid:CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:df:dc:10:d4:39:2b:92:d6:19:b5:80:28:b0:4d:ed:fc:c1: bd:8f:63:00:04:df:4f:ab:eb:56:3c:65:c8:f7:ba:52:57:56: 63:bb:59:18:e7:50:1a:9a:6c:80:48:eb:45:86:23:56:ea:cf: 50:a5:bd:ef:27:a1:39:58:b3:4e:69:b9:25:92:f9:e5:e7:37: 3e:15:4f:39:59:bb:14:7d:ea:6e:09:a8:4f:78:b3:a5:1e:5c: 2a:23:b4:5f:f2:86:5d:07:e4:0c:93:ec:50:e9:23:48:ac:7f: a6:d0:68:43:0d:5c:73:b1:8e:87:f9:f0:f0:ac:16:d0:01:ae: 27:89:92:f4:cc:68:fa:b8:88:d3:1c:49:ef:f5:f4:2b:fa:98: 5d:ff:21:87:84:7b:35:a0:77:3f:30:1a:08:0a:55:47:2f:8b: 7b:b2:6c:77:b4:d9:b7:1a:13:18:38:c1:ee:bd:56:aa:58:f0: 9c:10:c1:d0:7b:83:e8:32:32:7e:6f:46:e7:14:b7:12:c5:6a: 7a:83:1c:d3:a5:ed:09:d1:d3:14:43:e8:c7:5b:19:b2:19:e3: fb:24:a9:93:fe:e5:14:be:8d:04:87:51:14:cd:1b:14:bb:84: 24:8f:04:b3:d2:7d:7f:97:26:56:d2:46:7d:49:4a:5d:b2:93: 95:6d:d5:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDLUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGQjAxMTAvBgNVBAUTKENDODUwOUQzMUZCNjNBOERERDZCRjJEM0Q4NEM3QkMw QjJCQTNGQzAwHhcNMjUwODIyMTgxODM0WhcNMjUwODI5MTgxODM0WjAYMRYwFAYD VQQDEw02OGE4YjQ3Yi0xNDM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAskjFc0srBEdREwvXgU+S5+fk1t9OMqHjtleJu2DdWnSpwM7YS0TL79JSeZXR YAiqvEV3wbeAbPXR9vTsQ2OUnfvhJ1XTpGMH2xyQ1FuIOgUEmN8sn/RoqOmxSnep JwOTVqNZFBoNbW78L73qSTaJvml9TtPDHKcPAvFcUnlXDvcicigBxF9tz9FaD8gF MPrfwgOQXjvp+F8xfP2XVAom2geAJkLKFgqRrqJe6NG6BtblXYoCmdPg///3OUf5 iNXLOA75Dj2oRxqKAc0uLnM5mn8DX5J/6ugTSOAeeL//Lguluw2m7l/QTmMwURT5 eeGl4ad3sKvIaFh+lVgzH3Zw2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL2X8d/H n3tHkhJkXx16LChqft1JMB8GA1UdIwQYMBaAFMyFCdMftjqN3Wvy09hMe8Cyuj/A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZCMC9BM0FCNDNCMkY4 N0MxMUU5QUEyQ0YxNThDNEY5QUUwMi96SVVKMHgtMk9vM2RhX0xUMkV4N3dMSzZQ OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pJVUoweC0yT28zZGFfTFQyRXg3d0xLNlA4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkZCMC9BM0FCNDNCMkY4N0MxMUU5QUEyQ0YxNThDNEY5QUUwMi96SVVKMHgtMk9v M2RhX0xUMkV4N3dMSzZQOEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAb39wQ1DkrktYZtYAosE3t/MG9j2MABN9Pq+tWPGXI97pSV1Zju1kY 51AammyASOtFhiNW6s9Qpb3vJ6E5WLNOabklkvnl5zc+FU85WbsUfepuCahPeLOl HlwqI7Rf8oZdB+QMk+xQ6SNIrH+m0GhDDVxzsY6H+fDwrBbQAa4niZL0zGj6uIjT HEnv9fQr+phd/yGHhHs1oHc/MBoIClVHL4t7smx3tNm3GhMYOMHuvVaqWPCcEMHQ e4PoMjJ+b0bnFLcSxWp6gxzTpe0J0dMUQ+jHWxmyGeP7JKmT/uUUvo0Eh1EUzRsU u4QkjwSz0n1/lyZW0kZ9SUpdspOVbdXj -----END CERTIFICATE-----Generated at Sat Aug 23 16:31:56 2025 by rpki-client