$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE0FB/86F689BA259911EC92031A79C4F9AE02/ZLG7hwJN3720QVqQHYB-Pd2Kc2E.mft File: ZLG7hwJN3720QVqQHYB-Pd2Kc2E.mft (raw, json) Hash identifier: 03TGic5wdB71iMbhIWmXOIYQB9GhE+4XRmFW/aALFCc= Subject key identifier: E2:B9:B7:48:1B:64:47:F9:59:DB:41:66:3E:31:8E:1F:EA:AC:B7:36 Authority key identifier: 64:B1:BB:87:02:4D:DF:BD:B4:41:5A:90:1D:80:7E:3D:DD:8A:73:61 Certificate issuer: /CN=A91CE0FB/serialNumber=64B1BB87024DDFBDB4415A901D807E3DDD8A7361 Certificate serial: 04E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZLG7hwJN3720QVqQHYB-Pd2Kc2E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE0FB/86F689BA259911EC92031A79C4F9AE02/ZLG7hwJN3720QVqQHYB-Pd2Kc2E.mft Manifest number: 04E3 Signing time: Sun 27 Jul 2025 00:00:54 +0000 Manifest this update: Sun 27 Jul 2025 00:00:54 +0000 Manifest next update: Sun 03 Aug 2025 00:00:54 +0000 Files and hashes: 1: ZLG7hwJN3720QVqQHYB-Pd2Kc2E.crl (hash: 1QjUxfQZb4LY1AMVyyu+PLLVZml352+E0zejvG6CWoY=) 2: 47170244259D11ECA74AC10AC4F9AE02.roa (hash: Y+S7v1lT5zJbNq1zlpCJhhazIK4L/t7cDHpXVyy+Cr4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE0FB/86F689BA259911EC92031A79C4F9AE02/ZLG7hwJN3720QVqQHYB-Pd2Kc2E.crl rsync://rpki.apnic.net/member_repository/A91CE0FB/86F689BA259911EC92031A79C4F9AE02/ZLG7hwJN3720QVqQHYB-Pd2Kc2E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZLG7hwJN3720QVqQHYB-Pd2Kc2E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 Aug 2025 00:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1256 (0x4e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE0FB, serialNumber=64B1BB87024DDFBDB4415A901D807E3DDD8A7361 Validity Not Before: Jul 27 00:00:54 2025 GMT Not After : Aug 3 00:00:54 2025 GMT Subject: CN=68856c36-7d68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:2a:f4:7b:68:6a:9c:c6:41:2c:df:24:54:99: 7d:76:29:2a:7d:50:d5:ee:7e:f8:e6:46:07:25:89: 05:2f:02:e7:13:fe:d2:11:45:9a:8d:1e:57:58:31: d8:4c:ab:0c:1b:f5:f7:53:97:20:f6:3e:6e:09:53: bc:3c:3c:db:23:26:0f:95:d8:a2:c2:0b:70:89:44: 32:31:31:a1:77:05:db:45:57:b4:f2:24:b1:bf:09: ae:cd:1a:bd:11:aa:ce:7a:d4:b7:57:96:5f:8d:10: 67:c5:12:40:32:63:eb:cc:4e:83:6c:dd:3f:e3:13: 63:f5:6c:2f:be:76:8c:70:47:bc:a9:a1:f2:1e:9a: 52:c3:ec:ab:a1:f0:a8:96:63:5b:04:01:83:21:8f: a7:d5:df:dd:6f:78:4b:6d:63:45:ee:66:8b:d8:85: 66:dc:eb:e0:22:d1:ee:b2:a3:e8:c7:e6:2a:29:46: 41:b2:7c:f4:ee:6b:13:47:58:66:8d:e0:94:2c:19: 1d:51:dd:e9:b2:63:33:f7:87:41:a4:11:61:81:c4: 35:9b:b7:33:53:07:dd:c7:d9:76:45:f8:f5:9f:6e: ee:c0:ee:17:f7:99:75:c1:cb:ff:da:0d:9f:d4:7d: d8:6d:55:e4:67:d4:8d:55:71:73:15:df:c8:ec:d7: a6:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:B9:B7:48:1B:64:47:F9:59:DB:41:66:3E:31:8E:1F:EA:AC:B7:36 X509v3 Authority Key Identifier: keyid:64:B1:BB:87:02:4D:DF:BD:B4:41:5A:90:1D:80:7E:3D:DD:8A:73:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE0FB/86F689BA259911EC92031A79C4F9AE02/ZLG7hwJN3720QVqQHYB-Pd2Kc2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZLG7hwJN3720QVqQHYB-Pd2Kc2E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE0FB/86F689BA259911EC92031A79C4F9AE02/ZLG7hwJN3720QVqQHYB-Pd2Kc2E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:a9:1a:4f:51:13:47:3a:a3:76:39:0a:d5:3f:bb:61:d0:bb: 7b:e1:bb:74:e7:3c:f4:8b:14:12:b2:13:60:cd:f5:6f:d8:9d: 58:69:10:a9:7a:c4:7a:58:40:4f:dc:fa:2f:af:ac:f8:a7:76: be:b8:d7:fa:54:f0:a5:20:f9:70:4f:45:bb:cb:f2:c6:c0:7a: 83:9f:87:0b:aa:22:b3:c7:34:36:be:6a:6b:9e:79:3b:01:0f: 01:39:b0:1f:66:7b:0f:17:2e:cb:0d:79:52:a9:33:b3:5c:c9: c2:86:57:52:c3:a1:ad:ea:f5:0c:fa:46:83:59:75:60:26:1c: f3:c3:c9:68:28:18:5e:4a:af:df:58:f3:d2:a7:86:84:a4:66: c4:b1:fa:b8:d9:11:6e:a7:99:05:82:58:96:7a:c9:ce:1c:7d: cc:00:37:f1:92:5c:65:23:36:35:21:81:06:d4:28:61:20:4e: be:b8:7c:b8:41:f6:99:b2:55:29:1b:24:14:4f:d4:bc:6d:c6: a9:60:36:69:2c:8e:e8:3d:fb:60:7f:59:a0:2b:1e:5e:91:90: 43:bb:ae:ca:b9:3e:c9:f4:f5:e0:3c:31:71:d9:1f:7f:8a:da: 73:58:c0:16:06:e3:15:69:7e:1d:c2:ee:34:c1:3f:01:c8:7a: 7c:21:d6:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UwRkIxMTAvBgNVBAUTKDY0QjFCQjg3MDI0RERGQkRCNDQxNUE5MDFEODA3RTNE REQ4QTczNjEwHhcNMjUwNzI3MDAwMDU0WhcNMjUwODAzMDAwMDU0WjAYMRYwFAYD VQQDEw02ODg1NmMzNi03ZDY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4yr0e2hqnMZBLN8kVJl9dikqfVDV7n745kYHJYkFLwLnE/7SEUWajR5XWDHY TKsMG/X3U5cg9j5uCVO8PDzbIyYPldiiwgtwiUQyMTGhdwXbRVe08iSxvwmuzRq9 EarOetS3V5ZfjRBnxRJAMmPrzE6DbN0/4xNj9WwvvnaMcEe8qaHyHppSw+yrofCo lmNbBAGDIY+n1d/db3hLbWNF7maL2IVm3OvgItHusqPox+YqKUZBsnz07msTR1hm jeCULBkdUd3psmMz94dBpBFhgcQ1m7czUwfdx9l2Rfj1n27uwO4X95l1wcv/2g2f 1H3YbVXkZ9SNVXFzFd/I7NemWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOK5t0gb ZEf5WdtBZj4xjh/qrLc2MB8GA1UdIwQYMBaAFGSxu4cCTd+9tEFakB2Afj3dinNh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTBGQi84NkY2ODlCQTI1 OTkxMUVDOTIwMzFBNzlDNEY5QUUwMi9aTEc3aHdKTjM3MjBRVnFRSFlCLVBkMktj MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pMRzdod0pOMzcyMFFWcVFIWUItUGQyS2MyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTBGQi84NkY2ODlCQTI1OTkxMUVDOTIwMzFBNzlDNEY5QUUwMi9aTEc3aHdKTjM3 MjBRVnFRSFlCLVBkMktjMkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKqRpPURNHOqN2OQrVP7th0Lt74bt05zz0ixQSshNgzfVv2J1YaRCp esR6WEBP3Povr6z4p3a+uNf6VPClIPlwT0W7y/LGwHqDn4cLqiKzxzQ2vmprnnk7 AQ8BObAfZnsPFy7LDXlSqTOzXMnChldSw6Gt6vUM+kaDWXVgJhzzw8loKBheSq/f WPPSp4aEpGbEsfq42RFup5kFgliWesnOHH3MADfxklxlIzY1IYEG1ChhIE6+uHy4 QfaZslUpGyQUT9S8bcapYDZpLI7oPftgf1mgKx5ekZBDu67KuT7J9PXgPDFx2R9/ itpzWMAWBuMVaX4dwu40wT8ByHp8Idad -----END CERTIFICATE-----Generated at Sun Jul 27 06:09:57 2025 by rpki-client