$ rpki-client -vvf rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/ZI5HI0RBcbar4W19wDDonAbwUNw.mft File: ZI5HI0RBcbar4W19wDDonAbwUNw.mft (raw, json) Hash identifier: FlRp6Gjtmy3OWxZPznVCHs4GcWOaYR8uWRXhn3svvZ0= Subject key identifier: FC:87:BE:AE:02:2A:C1:62:FC:6D:60:68:E2:75:3B:22:68:EB:D0:76 Authority key identifier: 64:8E:47:23:44:41:71:B6:AB:E1:6D:7D:C0:30:E8:9C:06:F0:50:DC Certificate issuer: /CN=A91408BE/serialNumber=648E4723444171B6ABE16D7DC030E89C06F050DC Certificate serial: 0B4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZI5HI0RBcbar4W19wDDonAbwUNw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/ZI5HI0RBcbar4W19wDDonAbwUNw.mft Manifest number: 0B44 Signing time: Tue 16 Sep 2025 19:20:48 +0000 Manifest this update: Tue 16 Sep 2025 19:20:47 +0000 Manifest next update: Tue 23 Sep 2025 19:20:47 +0000 Files and hashes: 1: ZI5HI0RBcbar4W19wDDonAbwUNw.crl (hash: snWXXMLfLrfiPz/4MijEcqMpMwf9hBuuidLSFSTsRfQ=) 2: 5DCB0A0C410C11EA8A6C412DC4F9AE02.roa (hash: J/8oDeRELdGOcwKCSIyZI2ucZRyx8ILa8bbFd/o79oQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/ZI5HI0RBcbar4W19wDDonAbwUNw.crl rsync://rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/ZI5HI0RBcbar4W19wDDonAbwUNw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZI5HI0RBcbar4W19wDDonAbwUNw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Sep 2025 19:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2890 (0xb4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91408BE, serialNumber=648E4723444171B6ABE16D7DC030E89C06F050DC Validity Not Before: Sep 16 19:20:47 2025 GMT Not After : Sep 23 19:20:47 2025 GMT Subject: CN=68c9b88f-9f29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:96:df:22:24:e4:b6:e6:db:d2:c7:7a:0c:10: ae:93:50:e8:43:24:ce:ae:37:bf:50:08:e2:05:23: ff:eb:c2:b5:cc:1c:3c:aa:46:55:09:70:2d:3d:4b: 20:60:5a:75:2a:94:f3:07:4d:c6:f4:d6:6d:bc:5f: 18:70:1b:65:f4:6e:9c:14:cf:10:73:2e:b4:53:25: 52:ed:be:79:7d:30:2b:62:3f:cc:47:dc:04:ec:3d: 9b:fd:a9:49:f0:2c:6e:d0:42:4a:c8:46:6a:cd:97: 30:51:4b:1d:62:71:77:5d:00:03:6f:e3:84:89:bc: c1:70:87:30:dc:19:cb:ea:2d:18:52:19:ee:a0:f1: cd:28:b5:2e:ec:8d:5b:7b:ab:93:ba:d6:79:ab:73: 8b:c3:2e:84:d5:db:fa:de:a6:7e:7d:48:e7:0b:a2: e5:c1:f5:82:3c:5a:09:a1:af:94:4e:8a:e4:09:8a: c6:4f:92:11:96:6a:c1:86:0b:89:ac:2a:08:ef:c4: 60:77:75:72:00:8e:ea:0a:8f:4e:3b:4b:16:04:c9: 0a:09:63:f2:3b:dd:7e:3f:77:91:c0:21:20:9a:d7: 3f:f9:52:f5:3a:e3:eb:c9:17:7b:e8:df:be:db:d9: ca:01:32:18:30:0a:d9:fe:7d:b4:0e:f1:ac:bc:64: 0d:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:87:BE:AE:02:2A:C1:62:FC:6D:60:68:E2:75:3B:22:68:EB:D0:76 X509v3 Authority Key Identifier: keyid:64:8E:47:23:44:41:71:B6:AB:E1:6D:7D:C0:30:E8:9C:06:F0:50:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/ZI5HI0RBcbar4W19wDDonAbwUNw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZI5HI0RBcbar4W19wDDonAbwUNw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/ZI5HI0RBcbar4W19wDDonAbwUNw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:f4:00:0e:8c:b3:a9:5b:60:d8:a8:61:24:6f:3d:e7:1a:44: e0:e7:31:16:50:69:4b:07:52:63:ae:ef:25:1b:b5:57:76:ee: d3:9c:7d:b2:4e:14:8f:22:58:66:c4:49:f8:8a:5a:18:3b:ba: 7c:15:a4:d5:12:ac:d2:89:d0:fd:a8:d0:cf:3f:42:eb:20:47: 66:da:52:05:24:79:a6:e2:ad:04:dc:83:06:da:57:91:43:db: 9d:a8:0c:f7:ee:16:0c:a7:a1:66:64:47:9b:50:f8:90:7d:d9: 2e:fd:48:02:4e:45:e1:32:15:42:76:12:e5:ca:9d:d1:71:e8: 7d:80:da:5d:60:f3:79:50:f1:44:e6:00:d3:3a:0d:f6:3a:5d: 5f:c4:7d:00:a1:f4:e3:8b:07:2e:d0:bd:e6:d4:ec:98:e8:55: b3:93:9f:1b:4e:70:7f:77:ed:84:4d:d4:e3:c2:04:5f:f8:f5: bd:0e:65:85:8c:26:67:7c:83:10:25:29:a9:78:e5:74:23:47: 11:b5:5c:41:37:97:c9:dd:50:30:f7:46:22:a1:b8:a6:d5:8d: fc:03:07:53:4a:9a:83:b1:a2:65:37:8e:fb:9a:d0:e6:38:04: 2b:88:c4:a9:6f:4c:37:e0:0f:31:51:4b:fb:8d:5f:ac:91:20: 07:5f:15:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC0owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA4QkUxMTAvBgNVBAUTKDY0OEU0NzIzNDQ0MTcxQjZBQkUxNkQ3REMwMzBFODlD MDZGMDUwREMwHhcNMjUwOTE2MTkyMDQ3WhcNMjUwOTIzMTkyMDQ3WjAYMRYwFAYD VQQDEw02OGM5Yjg4Zi05ZjI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzZbfIiTktubb0sd6DBCuk1DoQyTOrje/UAjiBSP/68K1zBw8qkZVCXAtPUsg YFp1KpTzB03G9NZtvF8YcBtl9G6cFM8Qcy60UyVS7b55fTArYj/MR9wE7D2b/alJ 8Cxu0EJKyEZqzZcwUUsdYnF3XQADb+OEibzBcIcw3BnL6i0YUhnuoPHNKLUu7I1b e6uTutZ5q3OLwy6E1dv63qZ+fUjnC6LlwfWCPFoJoa+UTorkCYrGT5IRlmrBhguJ rCoI78Rgd3VyAI7qCo9OO0sWBMkKCWPyO91+P3eRwCEgmtc/+VL1OuPryRd76N++ 29nKATIYMArZ/n20DvGsvGQNZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPyHvq4C KsFi/G1gaOJ1OyJo69B2MB8GA1UdIwQYMBaAFGSORyNEQXG2q+FtfcAw6JwG8FDc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDhCRS9BMkM4MjdFRTQx MEIxMUVBQjY5NTRBMkNDNEY5QUUwMi9aSTVISTBSQmNiYXI0VzE5d0REb25BYndV TncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pJNUhJMFJCY2JhcjRXMTl3RERvbkFid1VOdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MDhCRS9BMkM4MjdFRTQxMEIxMUVBQjY5NTRBMkNDNEY5QUUwMi9aSTVISTBSQmNi YXI0VzE5d0REb25BYndVTncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBt9AAOjLOpW2DYqGEkbz3nGkTg5zEWUGlLB1Jjru8lG7VXdu7TnH2y ThSPIlhmxEn4iloYO7p8FaTVEqzSidD9qNDPP0LrIEdm2lIFJHmm4q0E3IMG2leR Q9udqAz37hYMp6FmZEebUPiQfdku/UgCTkXhMhVCdhLlyp3Rceh9gNpdYPN5UPFE 5gDTOg32Ol1fxH0AofTjiwcu0L3m1OyY6FWzk58bTnB/d+2ETdTjwgRf+PW9DmWF jCZnfIMQJSmpeOV0I0cRtVxBN5fJ3VAw90Yiobim1Y38AwdTSpqDsaJlN477mtDm OAQriMSpb0w34A8xUUv7jV+skSAHXxXW -----END CERTIFICATE-----Generated at Thu Sep 18 18:58:44 2025 by rpki-client