$ rpki-client -vvf rpki.apnic.net/member_repository/A91D56CA/914E53F6C0D111E78D1EF82BC4F9AE02/Z1qGdu030Wq7yi_vjqofI_JXsp8.mft File: Z1qGdu030Wq7yi_vjqofI_JXsp8.mft (raw, json) Hash identifier: ZzJqt2h8+vfCYEeGhYrkSCvgwkpzlvr3t9XEilKe560= Subject key identifier: 62:FF:95:3D:23:F7:74:56:FE:14:FC:27:37:2A:7D:C8:00:55:02:40 Authority key identifier: 67:5A:86:76:ED:37:D1:6A:BB:CA:2F:EF:8E:AA:1F:23:F2:57:B2:9F Certificate issuer: /CN=A91D56CA/serialNumber=675A8676ED37D16ABBCA2FEF8EAA1F23F257B29F Certificate serial: 1810 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z1qGdu030Wq7yi_vjqofI_JXsp8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D56CA/914E53F6C0D111E78D1EF82BC4F9AE02/Z1qGdu030Wq7yi_vjqofI_JXsp8.mft Manifest number: 17FD Signing time: Sun 10 Aug 2025 16:31:16 +0000 Manifest this update: Sun 10 Aug 2025 16:31:15 +0000 Manifest next update: Sun 17 Aug 2025 16:31:15 +0000 Files and hashes: 1: Z1qGdu030Wq7yi_vjqofI_JXsp8.crl (hash: ZvhEaqroICZ6THArZLr9TX3yKbgGio880I+dVLPpQys=) 2: A6DF4CF8C34B11ECAFB25A68C4F9AE02.roa (hash: o72VLQ1AaTbDR0LUWxX7H2rR6ueROwUZcL0xiM3p7KI=) 3: 0EE83FA4C34611EC9290F072C4F9AE02.roa (hash: XSMOrkD+VKk/yODIQVEJZLLi9dBXNMbWFRIFf5Gr+QI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D56CA/914E53F6C0D111E78D1EF82BC4F9AE02/Z1qGdu030Wq7yi_vjqofI_JXsp8.crl rsync://rpki.apnic.net/member_repository/A91D56CA/914E53F6C0D111E78D1EF82BC4F9AE02/Z1qGdu030Wq7yi_vjqofI_JXsp8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z1qGdu030Wq7yi_vjqofI_JXsp8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6160 (0x1810) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D56CA, serialNumber=675A8676ED37D16ABBCA2FEF8EAA1F23F257B29F Validity Not Before: Aug 10 16:31:15 2025 GMT Not After : Aug 17 16:31:15 2025 GMT Subject: CN=6898c953-d9cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:c2:a6:96:4c:cf:6b:19:8b:9c:f3:b3:df:f9: ca:58:9e:1e:a0:54:d9:a8:03:c8:c1:ee:ae:2a:d7: 4b:3b:9d:9c:e2:84:cf:9e:81:e0:8d:1a:c3:9c:ad: 02:5a:08:5c:9e:b7:e9:22:8c:d4:01:1a:ae:c8:05: f4:77:30:6d:a4:81:a7:e4:83:db:46:90:85:79:f7: 4e:76:ca:59:cb:dc:10:7c:cf:e9:8e:a8:ff:c6:b5: 5a:0f:8c:48:cd:31:6c:df:82:3f:71:70:6e:53:aa: ad:96:2f:57:e6:8e:ff:19:6d:9f:28:4d:1f:b5:2c: e3:45:28:f3:0d:f1:d2:63:f0:24:3d:7b:d8:96:4a: 5c:02:c8:86:19:75:d6:39:e0:3e:cb:1d:26:27:23: 1b:ab:45:09:17:e9:eb:5c:34:ea:9b:21:d4:33:d6: b2:c7:08:e7:61:3d:5d:64:be:f8:d1:3d:f3:2a:1b: f3:2f:35:58:8d:79:19:16:5e:84:87:64:fe:6a:d5: 92:78:c4:3b:e9:83:e6:3e:f4:3c:cd:91:44:9b:52: b4:09:74:59:a1:2b:5f:70:0a:2b:50:f5:12:64:e0: f4:8f:de:4d:b7:da:96:62:58:93:48:ca:f7:1d:b1: 28:41:1e:ab:2e:52:c8:43:a1:ae:57:c4:a0:c8:de: 71:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:FF:95:3D:23:F7:74:56:FE:14:FC:27:37:2A:7D:C8:00:55:02:40 X509v3 Authority Key Identifier: keyid:67:5A:86:76:ED:37:D1:6A:BB:CA:2F:EF:8E:AA:1F:23:F2:57:B2:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D56CA/914E53F6C0D111E78D1EF82BC4F9AE02/Z1qGdu030Wq7yi_vjqofI_JXsp8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z1qGdu030Wq7yi_vjqofI_JXsp8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D56CA/914E53F6C0D111E78D1EF82BC4F9AE02/Z1qGdu030Wq7yi_vjqofI_JXsp8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:c8:8d:8e:92:9a:08:2c:50:27:e2:5d:e8:5f:82:c4:cf:a6: 60:4f:4c:4d:67:cc:db:5d:dc:c2:ec:5e:f3:09:e6:5c:15:3d: d8:a9:e1:77:ab:61:72:f8:3f:f3:be:68:b2:d8:56:d7:3d:18: fd:62:dc:fe:bc:18:cc:76:10:39:cc:67:ae:da:10:2f:a6:a3: df:ae:69:f7:9c:84:3f:3c:92:1b:4e:48:a8:44:23:b3:05:53: 75:26:ea:ad:38:92:33:db:3e:a6:a4:8b:2b:c1:67:d1:b7:80: 16:84:e3:6c:86:bf:3e:a9:7b:69:b4:9a:a0:94:65:c7:4f:ca: 40:37:7a:96:af:01:12:a6:5b:ac:56:38:6b:3e:98:e5:73:01: 54:eb:af:8b:f4:2c:6f:a4:2e:d1:77:50:f9:a1:6f:04:af:3a: cc:e1:4c:c6:5c:ef:46:54:2d:10:f7:51:42:80:6f:45:49:5c: 2a:da:76:cd:b6:93:58:cf:d3:ec:4a:a0:9d:ba:53:e3:8e:ec: 93:b6:a6:00:07:a9:db:75:6d:77:85:b8:29:73:8e:80:52:85: 81:af:e2:f0:ea:74:2e:60:b3:7d:eb:bf:28:6d:67:dd:02:ab: 3b:40:40:65:c2:d9:b3:19:ba:2a:12:0f:d8:64:19:ad:51:ad: d2:8b:e6:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGBAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDU2Q0ExMTAvBgNVBAUTKDY3NUE4Njc2RUQzN0QxNkFCQkNBMkZFRjhFQUExRjIz RjI1N0IyOUYwHhcNMjUwODEwMTYzMTE1WhcNMjUwODE3MTYzMTE1WjAYMRYwFAYD VQQDEw02ODk4Yzk1My1kOWNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAosKmlkzPaxmLnPOz3/nKWJ4eoFTZqAPIwe6uKtdLO52c4oTPnoHgjRrDnK0C WghcnrfpIozUARquyAX0dzBtpIGn5IPbRpCFefdOdspZy9wQfM/pjqj/xrVaD4xI zTFs34I/cXBuU6qtli9X5o7/GW2fKE0ftSzjRSjzDfHSY/AkPXvYlkpcAsiGGXXW OeA+yx0mJyMbq0UJF+nrXDTqmyHUM9ayxwjnYT1dZL740T3zKhvzLzVYjXkZFl6E h2T+atWSeMQ76YPmPvQ8zZFEm1K0CXRZoStfcAorUPUSZOD0j95Nt9qWYliTSMr3 HbEoQR6rLlLIQ6GuV8SgyN5xuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGL/lT0j 93RW/hT8JzcqfcgAVQJAMB8GA1UdIwQYMBaAFGdahnbtN9Fqu8ov746qHyPyV7Kf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTZDQS85MTRFNTNGNkMw RDExMUU3OEQxRUY4MkJDNEY5QUUwMi9aMXFHZHUwMzBXcTd5aV92anFvZklfSlhz cDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1oxcUdkdTAzMFdxN3lpX3ZqcW9mSV9KWHNwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTZDQS85MTRFNTNGNkMwRDExMUU3OEQxRUY4MkJDNEY5QUUwMi9aMXFHZHUwMzBX cTd5aV92anFvZklfSlhzcDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVyI2OkpoILFAn4l3oX4LEz6ZgT0xNZ8zbXdzC7F7zCeZcFT3YqeF3 q2Fy+D/zvmiy2FbXPRj9Ytz+vBjMdhA5zGeu2hAvpqPfrmn3nIQ/PJIbTkioRCOz BVN1JuqtOJIz2z6mpIsrwWfRt4AWhONshr8+qXtptJqglGXHT8pAN3qWrwESplus VjhrPpjlcwFU66+L9CxvpC7Rd1D5oW8ErzrM4UzGXO9GVC0Q91FCgG9FSVwq2nbN tpNYz9PsSqCdulPjjuyTtqYAB6nbdW13hbgpc46AUoWBr+Lw6nQuYLN9678obWfd Aqs7QEBlwtmzGboqEg/YZBmtUa3Si+Yf -----END CERTIFICATE-----Generated at Mon Aug 11 09:34:36 2025 by rpki-client