$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6DD8/F04852421D8611E286118CDE08B02CD2/_Z_UV0WCGIOHdsDcCO-2FVIB42g.mft File: _Z_UV0WCGIOHdsDcCO-2FVIB42g.mft (raw, json) Hash identifier: gSyifJP7/PEXaYz4m5mTVThDiDY0EFkPYMPM5XLOqSk= Subject key identifier: C2:25:26:E5:73:6C:21:ED:93:1B:AE:78:B6:8C:05:F5:18:02:77:4C Authority key identifier: FD:9F:D4:57:45:82:18:83:87:76:C0:DC:08:EF:B6:15:52:01:E3:68 Certificate issuer: /CN=A91C6DD8/serialNumber=FD9FD457458218838776C0DC08EFB6155201E368 Certificate serial: 3510 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Z_UV0WCGIOHdsDcCO-2FVIB42g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6DD8/F04852421D8611E286118CDE08B02CD2/_Z_UV0WCGIOHdsDcCO-2FVIB42g.mft Manifest number: 34E0 Signing time: Fri 08 Aug 2025 14:27:59 +0000 Manifest this update: Fri 08 Aug 2025 14:27:59 +0000 Manifest next update: Fri 15 Aug 2025 14:27:59 +0000 Files and hashes: 1: _Z_UV0WCGIOHdsDcCO-2FVIB42g.crl (hash: +xRQcI6sQAKJ4SEScLL8SMAHcKvRgtyyOTDiNzj3xAM=) 2: 2DED29046A8E11EF948C2811C4F9AE02.roa (hash: CZL34a4C5G0DmjPgUV/R8LPE+CW74MjYbH1UBH/HsLY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6DD8/F04852421D8611E286118CDE08B02CD2/_Z_UV0WCGIOHdsDcCO-2FVIB42g.crl rsync://rpki.apnic.net/member_repository/A91C6DD8/F04852421D8611E286118CDE08B02CD2/_Z_UV0WCGIOHdsDcCO-2FVIB42g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Z_UV0WCGIOHdsDcCO-2FVIB42g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13584 (0x3510) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6DD8, serialNumber=FD9FD457458218838776C0DC08EFB6155201E368 Validity Not Before: Aug 8 14:27:59 2025 GMT Not After : Aug 15 14:27:59 2025 GMT Subject: CN=6896096f-b522 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:35:79:b6:9e:1f:94:c4:c7:b4:66:c5:74:84: 06:0b:08:a4:a2:70:d2:93:0a:7d:d5:f1:42:a9:34: 8b:f4:5a:42:95:b5:41:ea:12:26:e8:82:e6:6f:0d: d6:37:85:bd:b2:28:d2:9c:9e:af:49:77:30:a4:be: 5c:50:6f:6d:2b:41:79:a6:2b:7f:f5:2d:15:41:5b: 41:e3:62:3c:ef:a4:dd:5d:9e:2e:db:3d:03:b7:18: 76:e6:b5:d1:c8:57:ed:38:e2:23:c3:fd:8a:a5:6f: 07:57:43:95:f3:d1:a7:a3:30:47:10:56:cc:49:ec: c7:3e:d8:f1:28:40:57:c0:09:e4:d0:ca:ff:d5:c4: 52:a7:26:46:a7:0e:22:9e:d1:18:c9:ba:6c:90:89: 1c:05:de:f6:85:d3:b5:74:78:c5:6a:da:0a:14:4d: 48:95:6f:b0:e6:15:08:e1:62:df:bf:31:8a:d7:aa: 2c:3a:94:02:a6:69:48:79:0b:ae:88:19:a7:42:76: f0:0c:d2:4a:a2:df:1f:1b:b5:84:6f:61:51:f6:f3: e1:c4:43:ed:de:29:6e:b2:13:24:ba:3c:d6:f3:91: 8a:0e:f7:73:0b:7b:84:b4:f0:45:82:7a:cd:7e:c3: 21:d1:7d:cd:52:5d:02:18:03:9f:74:16:c1:49:04: dd:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:25:26:E5:73:6C:21:ED:93:1B:AE:78:B6:8C:05:F5:18:02:77:4C X509v3 Authority Key Identifier: keyid:FD:9F:D4:57:45:82:18:83:87:76:C0:DC:08:EF:B6:15:52:01:E3:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6DD8/F04852421D8611E286118CDE08B02CD2/_Z_UV0WCGIOHdsDcCO-2FVIB42g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Z_UV0WCGIOHdsDcCO-2FVIB42g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6DD8/F04852421D8611E286118CDE08B02CD2/_Z_UV0WCGIOHdsDcCO-2FVIB42g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:b0:77:be:87:33:4d:f4:fd:1a:cd:cb:09:cb:e9:ef:13:e1: cc:5d:8f:48:b7:2e:df:47:2d:74:ba:b8:1f:cf:93:96:30:0c: 9e:91:1a:e7:3f:15:6e:cc:10:55:ab:cd:fb:34:9d:69:2d:a0: 56:df:98:90:2f:e7:ef:b2:9f:52:74:1a:be:12:c2:8f:e7:ac: a7:73:a1:6c:b7:a1:87:87:a2:43:12:b1:ee:e9:d4:a2:f2:37: 1f:38:14:b9:e0:fc:b1:4f:d4:d4:80:2d:43:56:7c:73:f4:eb: 38:02:a7:15:38:68:34:96:80:1c:61:49:21:45:56:6d:9c:5f: f4:7e:6d:39:a6:76:20:16:b8:4d:e6:91:c6:5e:e6:dc:64:e7: e9:f6:ef:88:31:fe:a8:18:7e:76:83:04:bb:52:90:c0:10:fb: 2d:f5:96:0b:21:01:8d:e6:de:8d:b4:bc:a5:a5:cb:d5:ad:b8: c8:dc:77:c5:53:79:1d:37:84:17:57:56:5c:40:db:a9:14:68: fd:c5:62:29:1e:e4:2b:3e:8d:8a:1f:28:69:00:ec:fa:c6:87: 25:57:22:77:a5:ce:de:46:5c:a4:ea:da:a9:a2:6a:7a:c5:61: 7a:bd:ae:c2:f2:ea:dd:9b:fa:6a:aa:2b:68:53:d4:cf:35:99: 87:58:31:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNRAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZERDgxMTAvBgNVBAUTKEZEOUZENDU3NDU4MjE4ODM4Nzc2QzBEQzA4RUZCNjE1 NTIwMUUzNjgwHhcNMjUwODA4MTQyNzU5WhcNMjUwODE1MTQyNzU5WjAYMRYwFAYD VQQDEw02ODk2MDk2Zi1iNTIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnzV5tp4flMTHtGbFdIQGCwikonDSkwp91fFCqTSL9FpClbVB6hIm6ILmbw3W N4W9sijSnJ6vSXcwpL5cUG9tK0F5pit/9S0VQVtB42I876TdXZ4u2z0Dtxh25rXR yFftOOIjw/2KpW8HV0OV89GnozBHEFbMSezHPtjxKEBXwAnk0Mr/1cRSpyZGpw4i ntEYybpskIkcBd72hdO1dHjFatoKFE1IlW+w5hUI4WLfvzGK16osOpQCpmlIeQuu iBmnQnbwDNJKot8fG7WEb2FR9vPhxEPt3ilushMkujzW85GKDvdzC3uEtPBFgnrN fsMh0X3NUl0CGAOfdBbBSQTdXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMIlJuVz bCHtkxuueLaMBfUYAndMMB8GA1UdIwQYMBaAFP2f1FdFghiDh3bA3AjvthVSAeNo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkREOC9GMDQ4NTI0MjFE ODYxMUUyODYxMThDREUwOEIwMkNEMi9fWl9VVjBXQ0dJT0hkc0RjQ08tMkZWSUI0 MmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19aX1VWMFdDR0lPSGRzRGNDTy0yRlZJQjQyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkREOC9GMDQ4NTI0MjFEODYxMUUyODYxMThDREUwOEIwMkNEMi9fWl9VVjBXQ0dJ T0hkc0RjQ08tMkZWSUI0MmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4sHe+hzNN9P0azcsJy+nvE+HMXY9Ity7fRy10urgfz5OWMAyekRrn PxVuzBBVq837NJ1pLaBW35iQL+fvsp9SdBq+EsKP56ync6Fst6GHh6JDErHu6dSi 8jcfOBS54PyxT9TUgC1DVnxz9Os4AqcVOGg0loAcYUkhRVZtnF/0fm05pnYgFrhN 5pHGXubcZOfp9u+IMf6oGH52gwS7UpDAEPst9ZYLIQGN5t6NtLylpcvVrbjI3HfF U3kdN4QXV1ZcQNupFGj9xWIpHuQrPo2KHyhpAOz6xoclVyJ3pc7eRlyk6tqpomp6 xWF6va7C8urdm/pqqitoU9TPNZmHWDGv -----END CERTIFICATE-----Generated at Fri Aug 8 19:39:06 2025 by rpki-client