$ rpki-client -vvf rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.mft File: zlgHMAQJCIdOtirydgUp51w9XGg.mft (raw, json) Hash identifier: qVpbVJa0/9knE1n5pieLlcvjZjYco296emTQ1gTYVUo= Subject key identifier: DF:96:8F:7B:EC:2C:CE:D5:88:43:DE:A3:55:4A:B9:CF:C6:21:1C:58 Authority key identifier: CE:58:07:30:04:09:08:87:4E:B6:2A:F2:76:05:29:E7:5C:3D:5C:68 Certificate issuer: /CN=A91E89CD/serialNumber=CE580730040908874EB62AF2760529E75C3D5C68 Certificate serial: 0902 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zlgHMAQJCIdOtirydgUp51w9XGg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.mft Manifest number: 08F3 Signing time: Fri 18 Jul 2025 20:36:38 +0000 Manifest this update: Fri 18 Jul 2025 20:36:38 +0000 Manifest next update: Fri 25 Jul 2025 20:36:38 +0000 Files and hashes: 1: zlgHMAQJCIdOtirydgUp51w9XGg.crl (hash: 2N8OQXm7idOrTJZg76EQPAn8U2SJUXtzNfJLNNi7lQ8=) 2: 8698CD28A42211EB91621734C4F9AE02.roa (hash: liguL5yWelfphfIz9rHVaKh3TqmzzrhEVoBWguDMI9M=) 3: D3ECF4B8E61D11EBB92C167BC4F9AE02.roa (hash: /n6JoBCxKb39xofyDRMG1k20W82UdWlbULQ4CPVAgMo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.crl rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zlgHMAQJCIdOtirydgUp51w9XGg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 20:36:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2306 (0x902) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E89CD, serialNumber=CE580730040908874EB62AF2760529E75C3D5C68 Validity Not Before: Jul 18 20:36:38 2025 GMT Not After : Jul 25 20:36:38 2025 GMT Subject: CN=687ab056-f417 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:0a:b2:93:4d:f5:25:87:40:2f:c0:f6:48:81: 7e:e3:39:8f:70:2f:b1:77:72:9e:76:a3:6d:ba:0f: 48:da:00:23:79:19:37:50:57:16:76:27:95:c7:cf: ff:7f:1a:dd:f2:0e:7b:1e:4f:4a:a4:f9:f8:2b:30: 99:cd:13:96:62:eb:9a:f9:1f:03:58:fe:c1:58:17: 6c:15:81:af:24:1e:95:a4:d2:69:36:7c:87:a8:39: 45:90:7d:6d:6e:56:b6:30:0b:50:e2:b2:f7:ef:6b: 67:84:11:4a:9a:90:91:d1:08:55:76:42:80:bb:31: d6:3c:24:6b:f1:60:cf:e7:a1:14:69:2f:2b:78:77: 7b:c9:9e:97:82:9e:d5:ac:5a:47:e8:3b:b2:6b:f2: ab:98:8c:42:d9:0a:1f:d6:0a:7e:d7:8b:c4:0b:f6: 50:ef:86:d5:6e:c6:45:af:19:06:66:11:5f:a5:e1: a1:84:fd:84:87:fb:72:86:f4:22:65:e4:15:ba:eb: c3:b0:7c:7c:40:b9:4a:b9:b7:45:c6:8c:9a:8f:81: 2e:e0:0d:18:de:7d:84:17:5f:05:33:c1:21:3c:18: 64:d0:df:6f:41:ff:d0:ba:b5:ca:ab:26:c0:b9:91: 51:40:26:c4:0d:88:2e:96:65:0e:8a:5e:98:8c:12: a2:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:96:8F:7B:EC:2C:CE:D5:88:43:DE:A3:55:4A:B9:CF:C6:21:1C:58 X509v3 Authority Key Identifier: keyid:CE:58:07:30:04:09:08:87:4E:B6:2A:F2:76:05:29:E7:5C:3D:5C:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zlgHMAQJCIdOtirydgUp51w9XGg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:d5:e2:ce:f9:12:31:bf:88:17:6a:ef:55:6e:1a:1a:9b:e2: 79:57:49:ba:3e:e9:5c:16:ad:92:c2:fb:f5:7a:71:52:ec:2b: 40:b8:99:6a:66:4a:f9:28:92:4b:25:9b:45:c5:93:e6:48:71: a6:c7:93:21:b8:36:8b:e7:b3:0f:e6:e5:41:d7:21:a2:12:fe: 25:d0:71:f2:7b:ac:32:70:e3:6b:3f:3e:3e:89:4f:ef:53:1b: e6:2a:b5:5e:5d:22:9d:dc:68:1f:73:17:25:2a:57:5a:9b:ae: 65:de:ca:f2:d1:c8:86:c7:e8:f5:2c:7f:08:0b:f7:d9:14:8e: b4:f9:69:ea:0e:1c:5c:fd:57:ad:8a:b6:f8:16:71:a3:fb:8f: 5d:52:71:bf:fc:e5:bb:9e:bf:cf:89:20:dc:b8:67:0c:4f:27: 5d:2b:ff:9d:65:f7:73:b8:38:96:10:06:c1:bf:f7:a3:88:de: ed:0f:6e:af:59:01:17:98:45:a3:62:dc:9d:dc:2c:69:39:87: 12:4f:cc:65:64:f6:b2:c9:c4:77:9d:52:0c:7e:d4:83:46:96: 6c:d9:97:97:9d:bf:a8:b5:ad:dc:b6:61:e4:3c:f2:5a:d7:7b: 67:97:11:0f:2d:58:c2:15:9d:83:04:0a:eb:09:c1:10:1c:37: 03:0c:a7:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCQIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg5Q0QxMTAvBgNVBAUTKENFNTgwNzMwMDQwOTA4ODc0RUI2MkFGMjc2MDUyOUU3 NUMzRDVDNjgwHhcNMjUwNzE4MjAzNjM4WhcNMjUwNzI1MjAzNjM4WjAYMRYwFAYD VQQDEw02ODdhYjA1Ni1mNDE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlgqyk031JYdAL8D2SIF+4zmPcC+xd3KedqNtug9I2gAjeRk3UFcWdieVx8// fxrd8g57Hk9KpPn4KzCZzROWYuua+R8DWP7BWBdsFYGvJB6VpNJpNnyHqDlFkH1t bla2MAtQ4rL372tnhBFKmpCR0QhVdkKAuzHWPCRr8WDP56EUaS8reHd7yZ6Xgp7V rFpH6Duya/KrmIxC2Qof1gp+14vEC/ZQ74bVbsZFrxkGZhFfpeGhhP2Eh/tyhvQi ZeQVuuvDsHx8QLlKubdFxoyaj4Eu4A0Y3n2EF18FM8EhPBhk0N9vQf/QurXKqybA uZFRQCbEDYgulmUOil6YjBKiIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN+Wj3vs LM7ViEPeo1VKuc/GIRxYMB8GA1UdIwQYMBaAFM5YBzAECQiHTrYq8nYFKedcPVxo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODlDRC8zQzBENEExNkIw NTUxMUVBQTA0NUI4MEVDNEY5QUUwMi96bGdITUFRSkNJZE90aXJ5ZGdVcDUxdzlY R2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3psZ0hNQVFKQ0lkT3RpcnlkZ1VwNTF3OVhHZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODlDRC8zQzBENEExNkIwNTUxMUVBQTA0NUI4MEVDNEY5QUUwMi96bGdITUFRSkNJ ZE90aXJ5ZGdVcDUxdzlYR2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCX1eLO+RIxv4gXau9Vbhoam+J5V0m6PulcFq2Swvv1enFS7CtAuJlq Zkr5KJJLJZtFxZPmSHGmx5MhuDaL57MP5uVB1yGiEv4l0HHye6wycONrPz4+iU/v UxvmKrVeXSKd3GgfcxclKldam65l3sry0ciGx+j1LH8IC/fZFI60+WnqDhxc/Vet irb4FnGj+49dUnG//OW7nr/PiSDcuGcMTyddK/+dZfdzuDiWEAbBv/ejiN7tD26v WQEXmEWjYtyd3CxpOYcST8xlZPayycR3nVIMftSDRpZs2ZeXnb+ota3ctmHkPPJa 13tnlxEPLVjCFZ2DBArrCcEQHDcDDKff -----END CERTIFICATE-----Generated at Sun Jul 20 11:14:31 2025 by rpki-client