$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft File: zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft (raw, json) Hash identifier: r9jOa+/e0eiAuLOS/0rQz4Xx5o2sFXZ7xU25of14hsk= Subject key identifier: 64:DC:9D:48:EC:39:88:F8:93:2F:DD:FA:D4:FB:A5:73:62:3B:16:77 Authority key identifier: CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0 Certificate issuer: /CN=A91EBFB0/serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0 Certificate serial: 0CA4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft Manifest number: 0C9D Signing time: Sun 20 Jul 2025 18:15:00 +0000 Manifest this update: Sun 20 Jul 2025 18:14:59 +0000 Manifest next update: Sun 27 Jul 2025 18:14:59 +0000 Files and hashes: 1: zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl (hash: NqDaKoOjLhyL+EgMDc9ydS2vRT6A4N8uF4iTqFdatW4=) 2: F690CAECF87D11E9A746D05BC4F9AE02.roa (hash: PKzsRoQOFkH0aPoaShEpuvQ+omyVkcjK/WY8mjX8BEM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 18:14:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3236 (0xca4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBFB0, serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0 Validity Not Before: Jul 20 18:14:59 2025 GMT Not After : Jul 27 18:14:59 2025 GMT Subject: CN=687d3223-e0d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:4d:ea:a5:4f:12:32:e3:c4:2c:c8:c0:52:b0: 5e:95:d3:ee:b6:bb:e6:6a:ca:47:df:1b:16:7c:9e: a2:9a:30:57:6b:5c:85:0b:f0:0d:4e:d1:0e:23:49: 49:f9:8b:62:62:67:a8:83:e4:f4:93:96:0c:3a:d6: d5:c7:76:78:e8:d6:cd:62:0d:60:6c:9d:1f:2c:82: 29:71:45:e6:d2:44:06:3d:c3:73:6d:86:bb:c9:ec: 04:18:62:e3:22:31:c5:e9:20:04:d4:6e:68:61:4c: 7a:ed:a0:33:63:8a:0e:a7:4e:f7:6d:35:14:0c:78: da:01:aa:d7:e5:4a:24:ba:a4:ff:a4:48:d6:a0:f5: db:91:62:00:38:22:25:f2:9f:7b:a7:85:e8:4e:7e: 7e:1b:dc:50:c0:ea:9c:c6:96:1a:5f:06:f6:1c:04: 54:c1:ac:0a:31:e7:ee:c8:ac:4b:5a:cd:6a:72:e7: 19:56:86:1a:ef:9b:44:f9:09:85:6e:08:c8:5c:f1: 33:7d:b2:ba:ba:ec:d0:0d:6d:ba:a4:7b:53:8a:5e: b6:13:cd:50:6d:90:c4:86:59:2b:df:0d:30:c7:56: 75:20:e1:8a:52:11:5e:06:29:c0:b1:ac:6e:93:b9: de:8c:ca:05:a4:4e:3e:9b:21:a0:b2:ad:b9:9f:5b: 32:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:DC:9D:48:EC:39:88:F8:93:2F:DD:FA:D4:FB:A5:73:62:3B:16:77 X509v3 Authority Key Identifier: keyid:CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:4e:55:a2:ad:d8:23:05:dd:6c:57:4a:28:a8:42:e8:5a:8c: b3:69:01:1c:a6:28:37:1a:61:89:15:8b:86:c0:f5:c2:64:8d: 98:55:68:c1:2c:c0:c5:4e:d6:cc:5a:ba:4b:f8:6b:ee:3b:cd: e6:b0:0d:39:7a:d3:a5:15:a4:d5:ee:3a:8f:e9:5d:ff:c1:59: f4:dd:5f:13:4e:ef:be:79:3b:68:9c:e1:87:d6:d8:19:dc:9a: 91:36:67:66:64:d1:b0:19:94:4d:93:64:ae:97:bb:da:62:a9: a5:3f:1e:93:bd:b7:3f:85:da:67:07:ff:38:46:50:e7:17:b4: b7:0f:f6:8a:4a:8b:8b:55:04:a5:43:84:a5:d2:3d:b8:43:2c: e7:9f:a0:ca:21:27:61:a9:3c:f1:4c:b7:11:88:d1:d8:aa:60: 72:70:e7:9f:3e:62:a2:2a:36:8b:6f:18:90:a1:c9:d7:85:9e: 71:67:68:32:43:46:3e:49:d9:f4:71:f6:fc:fe:30:1e:5f:41: 8b:07:83:86:3e:c6:87:65:43:99:85:0d:5e:81:c3:65:ee:07: 3b:e3:5b:7e:14:5e:21:c8:9a:3f:8c:0d:55:53:72:24:41:d6: f3:05:00:39:80:7a:4f:b1:3d:2d:05:57:4f:40:f6:dc:09:d4: 5e:72:d9:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDKQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGQjAxMTAvBgNVBAUTKENDODUwOUQzMUZCNjNBOERERDZCRjJEM0Q4NEM3QkMw QjJCQTNGQzAwHhcNMjUwNzIwMTgxNDU5WhcNMjUwNzI3MTgxNDU5WjAYMRYwFAYD VQQDEw02ODdkMzIyMy1lMGQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0U3qpU8SMuPELMjAUrBeldPutrvmaspH3xsWfJ6imjBXa1yFC/ANTtEOI0lJ +YtiYmeog+T0k5YMOtbVx3Z46NbNYg1gbJ0fLIIpcUXm0kQGPcNzbYa7yewEGGLj IjHF6SAE1G5oYUx67aAzY4oOp073bTUUDHjaAarX5UokuqT/pEjWoPXbkWIAOCIl 8p97p4XoTn5+G9xQwOqcxpYaXwb2HARUwawKMefuyKxLWs1qcucZVoYa75tE+QmF bgjIXPEzfbK6uuzQDW26pHtTil62E81QbZDEhlkr3w0wx1Z1IOGKUhFeBinAsaxu k7nejMoFpE4+myGgsq25n1syCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGTcnUjs OYj4ky/d+tT7pXNiOxZ3MB8GA1UdIwQYMBaAFMyFCdMftjqN3Wvy09hMe8Cyuj/A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZCMC9BM0FCNDNCMkY4 N0MxMUU5QUEyQ0YxNThDNEY5QUUwMi96SVVKMHgtMk9vM2RhX0xUMkV4N3dMSzZQ OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pJVUoweC0yT28zZGFfTFQyRXg3d0xLNlA4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkZCMC9BM0FCNDNCMkY4N0MxMUU5QUEyQ0YxNThDNEY5QUUwMi96SVVKMHgtMk9v M2RhX0xUMkV4N3dMSzZQOEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtTlWirdgjBd1sV0ooqELoWoyzaQEcpig3GmGJFYuGwPXCZI2YVWjB LMDFTtbMWrpL+GvuO83msA05etOlFaTV7jqP6V3/wVn03V8TTu++eTtonOGH1tgZ 3JqRNmdmZNGwGZRNk2Sul7vaYqmlPx6Tvbc/hdpnB/84RlDnF7S3D/aKSouLVQSl Q4Sl0j24Qyznn6DKISdhqTzxTLcRiNHYqmBycOefPmKiKjaLbxiQocnXhZ5xZ2gy Q0Y+Sdn0cfb8/jAeX0GLB4OGPsaHZUOZhQ1egcNl7gc741t+FF4hyJo/jA1VU3Ik QdbzBQA5gHpPsT0tBVdPQPbcCdRectlq -----END CERTIFICATE-----Generated at Mon Jul 21 06:07:11 2025 by rpki-client