$ rpki-client -vvf rpki.apnic.net/member_repository/A91100B2/0AF6EB2A73E811EA8851F87CC4F9AE02/ZnMLuaQLNc_lmxGF9iLb0JAMbZA.mft File: ZnMLuaQLNc_lmxGF9iLb0JAMbZA.mft (raw, json) Hash identifier: //fVSvZOfrjs3Od0NMcmwTQ+EOnVoWWb0bnDpHSlizo= Subject key identifier: 01:FF:39:90:C8:85:A4:81:FF:11:BE:AA:9B:4B:FF:E3:AC:4F:81:E8 Authority key identifier: 66:73:0B:B9:A4:0B:35:CF:E5:9B:11:85:F6:22:DB:D0:90:0C:6D:90 Certificate issuer: /CN=A91100B2/serialNumber=66730BB9A40B35CFE59B1185F622DBD0900C6D90 Certificate serial: 0A41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZnMLuaQLNc_lmxGF9iLb0JAMbZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91100B2/0AF6EB2A73E811EA8851F87CC4F9AE02/ZnMLuaQLNc_lmxGF9iLb0JAMbZA.mft Manifest number: 11AC Signing time: Thu 18 Sep 2025 19:56:33 +0000 Manifest this update: Thu 18 Sep 2025 19:56:33 +0000 Manifest next update: Thu 25 Sep 2025 19:56:33 +0000 Files and hashes: 1: ZnMLuaQLNc_lmxGF9iLb0JAMbZA.crl (hash: uQI7ZLoMhTtgbkxT0ACJ7qam+JGA2zRDGsfSaM+7OVQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91100B2/0AF6EB2A73E811EA8851F87CC4F9AE02/ZnMLuaQLNc_lmxGF9iLb0JAMbZA.crl rsync://rpki.apnic.net/member_repository/A91100B2/0AF6EB2A73E811EA8851F87CC4F9AE02/ZnMLuaQLNc_lmxGF9iLb0JAMbZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZnMLuaQLNc_lmxGF9iLb0JAMbZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 19:56:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2625 (0xa41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91100B2, serialNumber=66730BB9A40B35CFE59B1185F622DBD0900C6D90 Validity Not Before: Sep 18 19:56:33 2025 GMT Not After : Sep 25 19:56:33 2025 GMT Subject: CN=68cc63f1-5726 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:c7:66:87:25:ea:33:12:32:b8:e7:bf:74:36: 48:f6:40:39:41:22:97:0e:f7:f5:be:a8:da:57:d3: 4b:a7:58:f1:05:f6:89:69:86:51:e0:dc:7f:ce:d8: 70:0c:fa:5f:e3:46:66:aa:18:c0:cd:23:85:8b:46: 5f:98:c2:0e:2a:a5:3a:8f:a0:62:7e:26:c1:6b:e3: 33:a7:30:d6:de:dc:7c:fd:d3:00:dd:91:68:13:44: 23:c1:f8:fc:c7:40:86:56:18:50:37:10:c4:bf:eb: 23:8b:ef:4e:72:cc:85:21:f4:6f:52:d3:ab:91:02: 5c:6c:1a:25:b6:b1:c4:b7:90:c1:a1:78:a4:eb:f9: 3f:6f:2c:b1:60:00:fe:e7:7a:6e:77:03:ea:af:2a: 08:0c:9d:cb:3c:a6:2a:a3:6d:93:c3:93:58:b0:d0: 15:5d:56:88:fa:2c:0b:f5:45:90:8c:53:32:45:05: 55:7d:da:f5:09:72:0d:61:17:88:48:d9:9b:90:7b: 0c:76:f3:1c:67:99:c0:75:e2:9a:f7:06:0e:d4:38: a9:60:c0:6c:ec:9d:6d:ff:86:17:81:80:ff:15:b2: 55:65:ac:1c:fe:b7:f8:6c:e5:e1:53:ab:99:9e:98: 43:5c:b2:55:c2:53:b3:b2:fc:cd:ad:11:2f:d6:50: ef:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:FF:39:90:C8:85:A4:81:FF:11:BE:AA:9B:4B:FF:E3:AC:4F:81:E8 X509v3 Authority Key Identifier: keyid:66:73:0B:B9:A4:0B:35:CF:E5:9B:11:85:F6:22:DB:D0:90:0C:6D:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91100B2/0AF6EB2A73E811EA8851F87CC4F9AE02/ZnMLuaQLNc_lmxGF9iLb0JAMbZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZnMLuaQLNc_lmxGF9iLb0JAMbZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91100B2/0AF6EB2A73E811EA8851F87CC4F9AE02/ZnMLuaQLNc_lmxGF9iLb0JAMbZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:a0:a9:9a:7a:e5:0c:5d:5a:d5:a1:46:5c:4b:d1:8d:97:22: 84:3e:db:c8:d0:8a:73:42:d2:21:42:74:42:12:7a:6b:f8:7f: 07:e5:28:5d:47:6d:e8:43:7c:fa:2f:99:a7:af:ec:95:08:30: 72:be:8f:40:49:85:dd:f1:5d:7e:8c:bc:47:1b:e9:9d:33:7e: 01:05:1b:58:f6:13:c3:03:aa:13:44:7d:dc:11:15:f6:9b:6c: ce:2f:88:10:02:12:2a:67:19:60:0d:a6:1c:2a:8e:55:ba:7d: 38:68:db:9e:a4:d2:5b:ed:7c:09:24:22:bf:d5:53:12:03:40: d8:cd:82:1c:7e:a7:6d:c4:6d:16:10:04:91:02:74:93:a8:99: 66:8c:95:40:92:a1:30:4e:93:fc:85:e9:be:fe:46:3e:ae:c2: 9f:83:b0:e4:fb:91:9f:3c:09:d6:df:8c:2e:0d:d2:50:75:dd: 7f:2c:11:d1:ba:61:c9:c7:e6:94:44:7d:25:64:bd:0d:63:c9: d1:3c:08:a9:eb:12:f8:fe:f8:cb:83:fe:08:31:c7:42:51:75: 99:34:e4:49:c4:e8:50:29:f0:92:df:54:f2:57:92:1a:81:79: 53:76:0e:1a:d7:f0:db:67:f7:44:7a:57:8a:7f:9b:6b:a5:d0: ad:78:4a:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCkEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTAwQjIxMTAvBgNVBAUTKDY2NzMwQkI5QTQwQjM1Q0ZFNTlCMTE4NUY2MjJEQkQw OTAwQzZEOTAwHhcNMjUwOTE4MTk1NjMzWhcNMjUwOTI1MTk1NjMzWjAYMRYwFAYD VQQDEw02OGNjNjNmMS01NzI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnMdmhyXqMxIyuOe/dDZI9kA5QSKXDvf1vqjaV9NLp1jxBfaJaYZR4Nx/zthw DPpf40ZmqhjAzSOFi0ZfmMIOKqU6j6BifibBa+MzpzDW3tx8/dMA3ZFoE0Qjwfj8 x0CGVhhQNxDEv+sji+9OcsyFIfRvUtOrkQJcbBoltrHEt5DBoXik6/k/byyxYAD+ 53pudwPqryoIDJ3LPKYqo22Tw5NYsNAVXVaI+iwL9UWQjFMyRQVVfdr1CXINYReI SNmbkHsMdvMcZ5nAdeKa9wYO1DipYMBs7J1t/4YXgYD/FbJVZawc/rf4bOXhU6uZ nphDXLJVwlOzsvzNrREv1lDvtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAH/OZDI haSB/xG+qptL/+OsT4HoMB8GA1UdIwQYMBaAFGZzC7mkCzXP5ZsRhfYi29CQDG2Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDBCMi8wQUY2RUIyQTcz RTgxMUVBODg1MUY4N0NDNEY5QUUwMi9abk1MdWFRTE5jX2xteEdGOWlMYjBKQU1i WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1puTUx1YVFMTmNfbG14R0Y5aUxiMEpBTWJaQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDBCMi8wQUY2RUIyQTczRTgxMUVBODg1MUY4N0NDNEY5QUUwMi9abk1MdWFRTE5j X2xteEdGOWlMYjBKQU1iWkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkoKmaeuUMXVrVoUZcS9GNlyKEPtvI0IpzQtIhQnRCEnpr+H8H5Shd R23oQ3z6L5mnr+yVCDByvo9ASYXd8V1+jLxHG+mdM34BBRtY9hPDA6oTRH3cERX2 m2zOL4gQAhIqZxlgDaYcKo5Vun04aNuepNJb7XwJJCK/1VMSA0DYzYIcfqdtxG0W EASRAnSTqJlmjJVAkqEwTpP8hem+/kY+rsKfg7Dk+5GfPAnW34wuDdJQdd1/LBHR umHJx+aURH0lZL0NY8nRPAip6xL4/vjLg/4IMcdCUXWZNORJxOhQKfCS31TyV5Ia gXlTdg4a1/DbZ/dEeleKf5trpdCteErp -----END CERTIFICATE-----Generated at Fri Sep 19 03:42:10 2025 by rpki-client