$ rpki-client -vvf rpki.apnic.net/member_repository/A91410C5/DB0AE436572E11F095F7FE48C4F9AE02/ZGfpJsIUTs0PJ0j4STKPhfAorpQ.mft File: ZGfpJsIUTs0PJ0j4STKPhfAorpQ.mft (raw, json) Hash identifier: ItK7YaGhi5PwatNLq5lvObj1iUmN42SbUGj8vX68OoU= Subject key identifier: 46:F4:27:59:0A:EB:C0:61:40:7C:8A:CE:28:29:81:EA:2F:E9:06:5D Authority key identifier: 64:67:E9:26:C2:14:4E:CD:0F:27:48:F8:49:32:8F:85:F0:28:AE:94 Certificate issuer: /CN=A91410C5/serialNumber=6467E926C2144ECD0F2748F849328F85F028AE94 Certificate serial: 1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZGfpJsIUTs0PJ0j4STKPhfAorpQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91410C5/DB0AE436572E11F095F7FE48C4F9AE02/ZGfpJsIUTs0PJ0j4STKPhfAorpQ.mft Manifest number: 1D Signing time: Sat 23 Aug 2025 08:07:46 +0000 Manifest this update: Sat 23 Aug 2025 08:07:45 +0000 Manifest next update: Sat 30 Aug 2025 08:07:45 +0000 Files and hashes: 1: ZGfpJsIUTs0PJ0j4STKPhfAorpQ.crl (hash: yfVmbI/rHAHO1WVYNemSyIF+quk+qgVRAIlsAwEc1+Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91410C5/DB0AE436572E11F095F7FE48C4F9AE02/ZGfpJsIUTs0PJ0j4STKPhfAorpQ.crl rsync://rpki.apnic.net/member_repository/A91410C5/DB0AE436572E11F095F7FE48C4F9AE02/ZGfpJsIUTs0PJ0j4STKPhfAorpQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZGfpJsIUTs0PJ0j4STKPhfAorpQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 08:07:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29 (0x1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91410C5, serialNumber=6467E926C2144ECD0F2748F849328F85F028AE94 Validity Not Before: Aug 23 08:07:45 2025 GMT Not After : Aug 30 08:07:45 2025 GMT Subject: CN=68a976d1-8cb8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:b3:1a:18:a5:53:d5:26:75:98:34:04:89:51: 6d:2c:c7:fd:69:96:d3:8f:3d:28:cb:fa:23:62:4b: 42:45:5a:b1:12:e6:f3:3e:ce:65:50:03:59:23:9b: 01:87:32:e5:d7:9b:23:57:a4:b8:40:c9:36:8a:88: 87:4f:3a:6c:02:da:c2:23:3a:90:98:9e:db:6d:a4: 76:f5:b4:b8:0d:34:ee:bb:1e:8d:b7:f8:41:ce:96: 31:6f:cb:b3:e1:fe:06:32:81:29:99:54:4a:59:3c: 04:6f:e4:00:5e:cc:0c:6e:42:77:f5:87:f1:a0:2b: 78:c4:df:40:00:8a:29:dc:51:f1:0f:b8:34:9b:ae: aa:84:a9:21:e4:9d:a8:6c:4d:e2:dd:6c:42:74:71: 71:79:e2:53:3f:19:8b:11:56:b8:1b:38:29:46:64: c6:fa:c5:83:5f:20:30:cf:fb:b1:d6:12:d0:2a:55: ab:9d:19:d6:4c:ce:12:2d:5c:6f:e5:25:b1:45:8a: 16:0b:df:de:2e:ae:85:9d:e9:82:a4:42:bd:9b:e5: 36:71:ca:a4:c0:1a:60:93:53:99:85:e4:c5:be:4a: f8:be:c9:7d:1b:47:6b:2a:33:a4:fc:dd:11:d3:3f: dd:ba:93:e6:71:50:b4:d1:e8:48:e9:a7:57:43:01: ca:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:F4:27:59:0A:EB:C0:61:40:7C:8A:CE:28:29:81:EA:2F:E9:06:5D X509v3 Authority Key Identifier: keyid:64:67:E9:26:C2:14:4E:CD:0F:27:48:F8:49:32:8F:85:F0:28:AE:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91410C5/DB0AE436572E11F095F7FE48C4F9AE02/ZGfpJsIUTs0PJ0j4STKPhfAorpQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZGfpJsIUTs0PJ0j4STKPhfAorpQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91410C5/DB0AE436572E11F095F7FE48C4F9AE02/ZGfpJsIUTs0PJ0j4STKPhfAorpQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:ea:13:9a:1c:2c:2d:b5:30:cd:31:2e:ce:8d:9c:b7:8a:42: c4:dd:26:89:a0:75:b2:bc:0c:b3:f5:29:eb:1c:f6:92:6d:1b: 94:72:2f:f6:6f:54:ab:18:3c:0a:ae:67:89:c4:9c:51:26:3f: a7:0f:18:d7:b3:8c:41:66:4e:26:59:56:5b:fb:e9:18:6f:27: 8d:bb:b1:62:92:af:47:49:25:d3:0b:35:21:3c:5d:05:b6:03: 88:17:76:5d:f0:35:48:00:8f:2c:c7:a6:4a:9d:cc:53:a3:5c: 73:21:2c:03:6b:e1:67:e8:b5:38:b8:d3:c3:2a:38:df:fc:4f: 0c:3c:c5:b7:c9:27:d2:9e:22:7b:85:c7:95:3b:8e:66:28:dc: 40:8e:e9:a9:90:29:28:0a:34:d9:33:0a:f5:49:d3:d4:4c:93: 4b:59:3b:23:9c:c4:c1:bb:6a:20:c1:9e:48:be:d2:b4:7f:9e: 0e:11:52:a6:dd:a5:d9:7a:8f:ae:0b:d5:76:17:f5:26:e5:09: a3:3d:9a:d5:c9:c1:7e:45:01:78:a0:6e:95:f7:41:34:2e:f6: b2:3c:5d:aa:e8:f6:2f:04:3a:6a:46:ca:29:c5:8f:26:22:30: ad:3d:03:8c:ef:37:da:24:d1:dd:38:90:53:a4:b5:49:75:3e: 3a:ae:64:e8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MTBDNTExMC8GA1UEBRMoNjQ2N0U5MjZDMjE0NEVDRDBGMjc0OEY4NDkzMjhGODVG MDI4QUU5NDAeFw0yNTA4MjMwODA3NDVaFw0yNTA4MzAwODA3NDVaMBgxFjAUBgNV BAMTDTY4YTk3NmQxLThjYjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCgsxoYpVPVJnWYNASJUW0sx/1pltOPPSjL+iNiS0JFWrES5vM+zmVQA1kjmwGH MuXXmyNXpLhAyTaKiIdPOmwC2sIjOpCYntttpHb1tLgNNO67Ho23+EHOljFvy7Ph /gYygSmZVEpZPARv5ABezAxuQnf1h/GgK3jE30AAiincUfEPuDSbrqqEqSHknahs TeLdbEJ0cXF54lM/GYsRVrgbOClGZMb6xYNfIDDP+7HWEtAqVaudGdZMzhItXG/l JbFFihYL394uroWd6YKkQr2b5TZxyqTAGmCTU5mF5MW+Svi+yX0bR2sqM6T83RHT P926k+ZxULTR6Ejpp1dDAcqdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQURvQnWQrr wGFAfIrOKCmB6i/pBl0wHwYDVR0jBBgwFoAUZGfpJsIUTs0PJ0j4STKPhfAorpQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQxMEM1L0RCMEFFNDM2NTcy RTExRjA5NUY3RkU0OEM0RjlBRTAyL1pHZnBKc0lVVHMwUEowajRTVEtQaGZBb3Jw US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWkdmcEpzSVVUczBQSjBqNFNUS1BoZkFvcnBRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQx MEM1L0RCMEFFNDM2NTcyRTExRjA5NUY3RkU0OEM0RjlBRTAyL1pHZnBKc0lVVHMw UEowajRTVEtQaGZBb3JwUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAInqE5ocLC21MM0xLs6NnLeKQsTdJomgdbK8DLP1Kesc9pJtG5RyL/Zv VKsYPAquZ4nEnFEmP6cPGNezjEFmTiZZVlv76RhvJ427sWKSr0dJJdMLNSE8XQW2 A4gXdl3wNUgAjyzHpkqdzFOjXHMhLANr4WfotTi408MqON/8Tww8xbfJJ9KeInuF x5U7jmYo3ECO6amQKSgKNNkzCvVJ09RMk0tZOyOcxMG7aiDBnki+0rR/ng4RUqbd pdl6j64L1XYX9SblCaM9mtXJwX5FAXigbpX3QTQu9rI8Xaro9i8EOmpGyinFjyYi MK09A4zvN9ok0d04kFOktUl1PjquZOg= -----END CERTIFICATE-----Generated at Sun Aug 24 21:44:35 2025 by rpki-client