$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft File: zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft (raw, json) Hash identifier: H85bIlzU+lwJXwORY93Mh3Kpo68VU+KbVmDIh1BiGBU= Subject key identifier: CB:A7:E3:82:0F:14:03:3A:2E:2B:8E:48:F9:3D:CF:40:C2:86:85:82 Authority key identifier: CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0 Certificate issuer: /CN=A91EBFB0/serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0 Certificate serial: 0CAC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft Manifest number: 0CA5 Signing time: Mon 04 Aug 2025 18:25:00 +0000 Manifest this update: Mon 04 Aug 2025 18:24:59 +0000 Manifest next update: Mon 11 Aug 2025 18:24:59 +0000 Files and hashes: 1: zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl (hash: grFpvPl4ve0v66hMSv4ajv1pc8463JJHlbOoP2TLJ/Q=) 2: F690CAECF87D11E9A746D05BC4F9AE02.roa (hash: PKzsRoQOFkH0aPoaShEpuvQ+omyVkcjK/WY8mjX8BEM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 18:24:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3244 (0xcac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBFB0, serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0 Validity Not Before: Aug 4 18:24:59 2025 GMT Not After : Aug 11 18:24:59 2025 GMT Subject: CN=6890fafb-1dbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d1:00:4a:1e:24:c6:0c:00:91:5d:88:f1:f9: 4c:a8:78:ec:e1:40:0a:12:23:d2:eb:2f:70:4e:16: a4:8a:db:d6:2c:dc:8e:fd:f0:57:0e:94:a8:27:2e: 65:5b:58:eb:98:b6:3f:d4:fb:fa:2b:c9:b8:36:96: 07:21:71:c9:18:8c:25:80:54:27:72:8b:35:65:f6: cb:2e:09:18:04:d8:a7:9c:ec:1d:22:7c:17:20:63: 59:1d:9e:b8:bf:31:0c:24:36:6b:9b:4b:6d:dc:0a: ad:7a:21:d6:9c:69:41:11:50:f9:06:10:29:37:f5: e2:d4:c1:14:8f:4a:e9:95:dc:9b:0a:b1:ec:46:ce: c0:0b:fb:e6:ab:9f:7b:72:ad:ff:ab:36:ab:68:b2: 51:21:56:6f:ff:35:d6:e1:04:e7:fd:c0:39:99:42: 27:84:25:41:b2:0b:56:3b:ac:3e:26:9f:59:56:65: d2:f2:23:50:dc:de:89:17:ec:02:2c:d7:0c:f4:41: 2c:0d:10:67:f6:49:bc:a1:9a:9e:98:df:40:cd:e4: b1:f6:22:21:08:b9:b6:f3:23:9d:1e:d0:74:ed:47: 31:ed:5e:11:f9:18:a2:dd:ad:4a:49:24:27:71:47: 29:61:b8:b8:62:1e:b8:6d:8b:17:24:b9:e9:1d:76: 78:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:A7:E3:82:0F:14:03:3A:2E:2B:8E:48:F9:3D:CF:40:C2:86:85:82 X509v3 Authority Key Identifier: keyid:CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:cc:9b:45:3b:5c:b4:6e:79:de:bb:d8:e5:53:27:52:cd:88: 72:fe:48:61:8e:a5:37:c5:1e:ee:9c:00:a1:b7:5d:8a:12:08: 0e:1a:48:2e:f5:7f:22:9c:db:2c:ce:62:18:b7:08:b9:7b:25: 8c:4c:d2:27:64:26:c6:04:06:dc:5a:bc:94:22:7c:99:4f:9d: 96:cd:f6:49:ca:b0:42:42:74:5d:f0:4d:7e:99:97:cb:b5:88: b6:49:6f:5b:8f:ea:31:d8:03:39:98:a7:99:ef:41:20:aa:f3: 19:d8:b9:3c:4a:3d:e5:ee:a2:3c:c2:3c:d0:75:50:ce:dd:5d: 05:6f:9f:5f:f2:ce:0f:54:83:18:ea:9d:3d:e4:86:09:27:4a: db:27:1a:bd:84:e5:c2:05:0e:a1:d6:91:cd:e3:b3:8a:8b:24: c0:c9:f9:73:7d:54:65:57:32:58:ea:11:d7:1c:4f:9b:b7:b0: 88:a4:2b:00:d8:76:2d:54:4a:e2:4c:e1:0f:88:eb:2f:11:fe: 71:e5:2a:3a:44:10:9f:ed:3a:a0:08:95:f8:bd:e3:ca:b4:7f: af:05:53:9b:a3:84:23:02:82:a5:f6:91:0a:22:0a:cb:94:2f: 2c:e4:34:70:7a:d7:30:f9:59:06:5c:35:24:78:c2:d6:cc:8c: 79:f4:f3:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGQjAxMTAvBgNVBAUTKENDODUwOUQzMUZCNjNBOERERDZCRjJEM0Q4NEM3QkMw QjJCQTNGQzAwHhcNMjUwODA0MTgyNDU5WhcNMjUwODExMTgyNDU5WjAYMRYwFAYD VQQDEw02ODkwZmFmYi0xZGJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu9EASh4kxgwAkV2I8flMqHjs4UAKEiPS6y9wThakitvWLNyO/fBXDpSoJy5l W1jrmLY/1Pv6K8m4NpYHIXHJGIwlgFQncos1ZfbLLgkYBNinnOwdInwXIGNZHZ64 vzEMJDZrm0tt3AqteiHWnGlBEVD5BhApN/Xi1MEUj0rpldybCrHsRs7AC/vmq597 cq3/qzaraLJRIVZv/zXW4QTn/cA5mUInhCVBsgtWO6w+Jp9ZVmXS8iNQ3N6JF+wC LNcM9EEsDRBn9km8oZqemN9AzeSx9iIhCLm28yOdHtB07Ucx7V4R+Rii3a1KSSQn cUcpYbi4Yh64bYsXJLnpHXZ4YwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMun44IP FAM6LiuOSPk9z0DChoWCMB8GA1UdIwQYMBaAFMyFCdMftjqN3Wvy09hMe8Cyuj/A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZCMC9BM0FCNDNCMkY4 N0MxMUU5QUEyQ0YxNThDNEY5QUUwMi96SVVKMHgtMk9vM2RhX0xUMkV4N3dMSzZQ OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pJVUoweC0yT28zZGFfTFQyRXg3d0xLNlA4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkZCMC9BM0FCNDNCMkY4N0MxMUU5QUEyQ0YxNThDNEY5QUUwMi96SVVKMHgtMk9v M2RhX0xUMkV4N3dMSzZQOEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBizJtFO1y0bnneu9jlUydSzYhy/khhjqU3xR7unACht12KEggOGkgu 9X8inNsszmIYtwi5eyWMTNInZCbGBAbcWryUInyZT52WzfZJyrBCQnRd8E1+mZfL tYi2SW9bj+ox2AM5mKeZ70EgqvMZ2Lk8Sj3l7qI8wjzQdVDO3V0Fb59f8s4PVIMY 6p095IYJJ0rbJxq9hOXCBQ6h1pHN47OKiyTAyflzfVRlVzJY6hHXHE+bt7CIpCsA 2HYtVEriTOEPiOsvEf5x5So6RBCf7TqgCJX4vePKtH+vBVObo4QjAoKl9pEKIgrL lC8s5DRwetcw+VkGXDUkeMLWzIx59POU -----END CERTIFICATE-----Generated at Wed Aug 6 14:21:44 2025 by rpki-client