$ rpki-client -vvf rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/z3rG54U-SVgocAZDAHZYRlfgyVA.mft File: z3rG54U-SVgocAZDAHZYRlfgyVA.mft (raw, json) Hash identifier: CZY1cMDsxyGossNd2NFAzRZBLDTcqslPDpHLlWqWBl8= Subject key identifier: 7F:2F:8C:97:F1:0B:0B:B0:DA:AF:9C:28:39:3B:3E:ED:F9:80:C7:4D Authority key identifier: CF:7A:C6:E7:85:3E:49:58:28:70:06:43:00:76:58:46:57:E0:C9:50 Certificate issuer: /CN=A91F916A/serialNumber=CF7AC6E7853E4958287006430076584657E0C950 Certificate serial: 24CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3rG54U-SVgocAZDAHZYRlfgyVA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/z3rG54U-SVgocAZDAHZYRlfgyVA.mft Manifest number: 24B5 Signing time: Fri 22 Aug 2025 15:49:29 +0000 Manifest this update: Fri 22 Aug 2025 15:49:29 +0000 Manifest next update: Fri 29 Aug 2025 15:49:29 +0000 Files and hashes: 1: z3rG54U-SVgocAZDAHZYRlfgyVA.crl (hash: E6ksb2NJFbFJHZ7wNtDKB0WBXQxQTzZ16ppSnVmyKUU=) 2: 93957C3A25B211ECB5356475C4F9AE02.roa (hash: BdOiTbzqh5XSdUEde1pJSh9jcSbYou4UnLUcs5Z11Mw=) 3: 54040CE414F111F08814732CC4F9AE02.roa (hash: uhWwpX7EH4SHxyPNQgHJ8g+4j0iOnCO5ph2jjf0SUwo=) 4: 81C0C29CB0F311E5AB30F151C4F9AE02.roa (hash: OW7j0FFz0XfQbm3/I5GoSRUOzPWQeOb92johNE2e0dM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/z3rG54U-SVgocAZDAHZYRlfgyVA.crl rsync://rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/z3rG54U-SVgocAZDAHZYRlfgyVA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3rG54U-SVgocAZDAHZYRlfgyVA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:49:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9423 (0x24cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F916A, serialNumber=CF7AC6E7853E4958287006430076584657E0C950 Validity Not Before: Aug 22 15:49:29 2025 GMT Not After : Aug 29 15:49:29 2025 GMT Subject: CN=68a89189-79a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:28:b3:a7:86:5a:44:be:61:84:4f:7a:0b:19: a8:6a:7d:81:f9:13:24:af:f7:f3:f0:c5:47:a4:d9: ed:a5:0a:46:dc:4c:46:c6:76:a9:42:da:c5:e9:85: f7:79:47:a5:a2:89:6a:96:65:36:ef:2e:25:8b:7d: 11:a4:49:c6:0a:3a:37:d0:75:8d:ce:e2:65:37:8a: 40:56:c6:de:35:ef:6f:57:23:16:31:ca:ce:c0:f6: 2e:8c:ce:bd:26:0f:65:4a:92:77:72:47:ec:59:8d: 29:b8:ba:6c:e3:2c:81:51:17:99:61:c9:91:17:35: ef:76:e5:88:9d:7f:35:71:61:c9:67:a9:2b:71:62: ec:a1:0c:3d:13:cc:14:2b:7d:df:81:5c:68:0f:2c: 1a:8f:44:8a:59:9f:5f:03:e6:71:00:61:13:8c:fe: dc:85:2a:8c:8a:82:33:5c:15:65:69:6a:0c:69:31: b4:49:be:bf:ed:84:6e:4f:e5:1b:ef:1a:33:41:af: 48:40:82:93:ea:8f:10:97:e2:3a:e4:4d:40:92:57: 5f:bc:ea:8d:ae:74:ab:22:c4:4f:df:dc:74:88:28: 2f:e6:ee:91:bb:77:8b:07:d0:fc:e7:55:08:32:cb: 0c:5a:5a:b1:2d:17:89:3c:62:fe:52:00:e1:9b:88: 67:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:2F:8C:97:F1:0B:0B:B0:DA:AF:9C:28:39:3B:3E:ED:F9:80:C7:4D X509v3 Authority Key Identifier: keyid:CF:7A:C6:E7:85:3E:49:58:28:70:06:43:00:76:58:46:57:E0:C9:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/z3rG54U-SVgocAZDAHZYRlfgyVA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3rG54U-SVgocAZDAHZYRlfgyVA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/z3rG54U-SVgocAZDAHZYRlfgyVA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:a9:ee:21:27:c3:d5:28:d4:bd:6a:8c:f7:e6:ef:9f:00:4a: 2c:ec:11:39:10:5d:13:9d:ec:2f:d0:bd:3a:9a:b3:30:81:83: 42:83:3c:1b:54:f7:4d:73:37:6e:1d:62:46:a3:33:97:8d:45: 62:b4:57:cd:a4:27:d1:07:87:d0:0b:d7:85:35:9f:d3:f1:7d: 8d:ea:d2:c0:af:8b:18:12:b0:1f:84:8f:69:c4:60:61:1d:bc: d6:cc:6e:e3:4f:5b:26:15:cc:31:65:a8:ed:3e:be:ce:48:cd: 24:5b:b3:b7:03:9c:7f:dd:44:98:08:0e:61:dd:09:24:43:ac: aa:00:34:e7:fd:e6:03:89:70:06:18:8f:83:9d:00:00:84:39: 3b:22:85:74:18:af:94:c1:f8:f4:6a:48:de:61:9f:02:49:2c: cf:c0:84:c5:bc:5f:22:6f:ef:b5:5c:a0:79:96:c3:65:4f:77: cd:c5:e1:06:b6:09:59:bc:a6:c3:87:85:1a:7a:ef:1f:9b:a7: a5:b2:98:79:23:5d:cb:31:ca:87:d1:10:56:ce:b6:85:30:fd: da:ae:f4:5d:b9:47:38:72:5f:9e:30:ce:6b:fc:da:90:d4:ce: 81:0c:ed:7e:b3:2a:8a:bb:fa:ee:1b:e6:ab:8f:fe:8d:c2:01: d3:f8:d9:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjkxNkExMTAvBgNVBAUTKENGN0FDNkU3ODUzRTQ5NTgyODcwMDY0MzAwNzY1ODQ2 NTdFMEM5NTAwHhcNMjUwODIyMTU0OTI5WhcNMjUwODI5MTU0OTI5WjAYMRYwFAYD VQQDEw02OGE4OTE4OS03OWE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwSizp4ZaRL5hhE96Cxmoan2B+RMkr/fz8MVHpNntpQpG3ExGxnapQtrF6YX3 eUeloolqlmU27y4li30RpEnGCjo30HWNzuJlN4pAVsbeNe9vVyMWMcrOwPYujM69 Jg9lSpJ3ckfsWY0puLps4yyBUReZYcmRFzXvduWInX81cWHJZ6krcWLsoQw9E8wU K33fgVxoDywaj0SKWZ9fA+ZxAGETjP7chSqMioIzXBVlaWoMaTG0Sb6/7YRuT+Ub 7xozQa9IQIKT6o8Ql+I65E1AkldfvOqNrnSrIsRP39x0iCgv5u6Ru3eLB9D851UI MssMWlqxLReJPGL+UgDhm4hnpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH8vjJfx Cwuw2q+cKDk7Pu35gMdNMB8GA1UdIwQYMBaAFM96xueFPklYKHAGQwB2WEZX4MlQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOTE2QS8xRDdBRDBCQTQ1 OEQxMUU1QjM5NTdBNzlDNEY5QUUwMi96M3JHNTRVLVNWZ29jQVpEQUhaWVJsZmd5 VkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ozckc1NFUtU1Znb2NBWkRBSFpZUmxmZ3lWQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OTE2QS8xRDdBRDBCQTQ1OEQxMUU1QjM5NTdBNzlDNEY5QUUwMi96M3JHNTRVLVNW Z29jQVpEQUhaWVJsZmd5VkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARqe4hJ8PVKNS9aoz35u+fAEos7BE5EF0Tnewv0L06mrMwgYNCgzwb VPdNczduHWJGozOXjUVitFfNpCfRB4fQC9eFNZ/T8X2N6tLAr4sYErAfhI9pxGBh HbzWzG7jT1smFcwxZajtPr7OSM0kW7O3A5x/3USYCA5h3QkkQ6yqADTn/eYDiXAG GI+DnQAAhDk7IoV0GK+Uwfj0akjeYZ8CSSzPwITFvF8ib++1XKB5lsNlT3fNxeEG tglZvKbDh4Uaeu8fm6elsph5I13LMcqH0RBWzraFMP3arvRduUc4cl+eMM5r/NqQ 1M6BDO1+syqKu/ruG+arj/6NwgHT+NmZ -----END CERTIFICATE-----Generated at Sat Aug 23 19:42:04 2025 by rpki-client