$ rpki-client -vvf rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft File: zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft (raw, json) Hash identifier: MMDCytlmjg1MtBiIgHaYBei10l2Ss/HZEBVxQbt7Xl0= Subject key identifier: D8:75:EA:95:A4:64:DC:1C:A0:00:87:D4:3F:1D:38:1D:02:32:31:F8 Authority key identifier: CD:A4:7E:0A:1E:EB:52:5F:3B:5A:0F:AF:B2:FA:0D:BB:36:3B:FA:4D Certificate issuer: /CN=A91594AE/serialNumber=CDA47E0A1EEB525F3B5A0FAFB2FA0DBB363BFA4D Certificate serial: 0AF5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft Manifest number: 0AED Signing time: Thu 18 Sep 2025 19:36:25 +0000 Manifest this update: Thu 18 Sep 2025 19:36:25 +0000 Manifest next update: Thu 25 Sep 2025 19:36:25 +0000 Files and hashes: 1: zaR-Ch7rUl87Wg-vsvoNuzY7-k0.crl (hash: o4QUoIXKxBpAZ1zCL4qS7HvcqjLf4Wx1wg6PuTJdYsM=) 2: 38CAF4EC52B911EAACE8041BC4F9AE02.roa (hash: lj/CFwKu+N9KL+BN8rOtiVH/zU3sp7+mG9hyAnPkezU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.crl rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 19:36:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2805 (0xaf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91594AE, serialNumber=CDA47E0A1EEB525F3B5A0FAFB2FA0DBB363BFA4D Validity Not Before: Sep 18 19:36:25 2025 GMT Not After : Sep 25 19:36:25 2025 GMT Subject: CN=68cc5f39-8da4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:d3:9a:71:11:b8:c6:11:42:37:6a:b4:29:c8: 89:fb:e2:2c:98:1a:dc:2e:4a:3a:ea:e4:6a:b9:eb: 8c:be:8b:e5:db:80:b4:2d:10:3c:89:8d:8d:92:9a: 86:1f:69:04:db:53:52:eb:80:50:dd:3c:5e:ad:9a: cd:76:e2:f5:c1:d2:b4:1d:5a:2c:c4:fa:f3:03:27: 20:33:ea:cc:9d:72:75:3b:77:37:9d:13:3b:e9:0c: 7c:4e:3d:97:c9:cb:46:df:fa:91:8f:73:15:ee:b1: 5c:4a:08:c3:70:11:f0:d9:18:a9:23:fc:9d:44:a9: 10:c4:5a:0e:30:19:80:0b:f2:0f:4d:1a:bc:21:d7: 04:c3:0b:5f:50:ac:31:42:6e:28:e8:fa:86:f2:0b: ed:e7:5c:2a:15:3c:d1:d1:e0:fe:0e:8c:7e:05:7a: 7a:74:30:35:82:13:38:f6:d3:f7:b8:c8:14:40:35: a1:40:e4:6e:ef:56:b6:31:4b:5b:aa:ae:5f:1a:4c: 55:b8:f8:d6:ad:78:af:90:98:3a:ce:fb:76:2a:f5: 88:1d:d6:8d:7b:13:d2:cf:11:8e:ed:01:aa:57:f7: 1d:a0:9e:70:2f:b4:4d:ec:a2:27:e8:58:04:4c:dd: 3d:08:37:f2:cc:71:b8:bf:c6:72:49:8b:ad:e9:98: 80:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:75:EA:95:A4:64:DC:1C:A0:00:87:D4:3F:1D:38:1D:02:32:31:F8 X509v3 Authority Key Identifier: keyid:CD:A4:7E:0A:1E:EB:52:5F:3B:5A:0F:AF:B2:FA:0D:BB:36:3B:FA:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:55:d1:22:3b:27:0c:e6:fd:7b:cf:ee:07:44:4b:2c:9b:88: 4d:b5:dc:26:30:dd:55:c2:19:c0:a0:1d:32:5f:e6:9e:f9:dc: fd:8d:a5:1d:eb:2b:c2:66:4d:24:48:49:70:2b:26:fa:c2:0b: 28:81:68:a0:96:d7:e8:55:b1:c6:ee:1b:f0:ba:66:10:e3:5d: 4d:20:43:a2:4d:ac:0d:26:5e:b0:1f:03:6f:9f:9e:52:64:85: 72:c3:1f:e9:6b:b2:85:d5:a5:8a:04:21:e4:a9:d6:3a:86:8d: 0b:ff:ee:09:b3:dd:cd:c8:be:89:87:ab:aa:75:00:28:35:65: 04:da:38:57:35:09:c1:d1:43:94:c8:da:0d:77:09:36:b6:5d: c5:06:9d:42:63:72:39:53:0a:ea:7a:9b:d2:1f:57:09:91:2f: 1d:60:3a:31:d7:74:20:14:f7:27:71:e0:06:46:b1:d4:db:9d: 04:94:13:b5:90:f1:cd:12:80:71:e5:82:18:e1:00:e3:5a:a3: 2f:25:a7:56:cb:50:be:bc:f4:e2:d9:6d:57:fc:47:d4:09:4c: 59:7c:ef:0b:25:3b:40:85:46:f3:14:ea:6e:17:e6:a5:08:0f: 43:44:50:74:3e:6d:f0:84:5f:86:c6:0d:df:0e:3a:69:ac:14: 0f:98:79:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCvUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTk0QUUxMTAvBgNVBAUTKENEQTQ3RTBBMUVFQjUyNUYzQjVBMEZBRkIyRkEwREJC MzYzQkZBNEQwHhcNMjUwOTE4MTkzNjI1WhcNMjUwOTI1MTkzNjI1WjAYMRYwFAYD VQQDEw02OGNjNWYzOS04ZGE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq9OacRG4xhFCN2q0KciJ++IsmBrcLko66uRqueuMvovl24C0LRA8iY2NkpqG H2kE21NS64BQ3TxerZrNduL1wdK0HVosxPrzAycgM+rMnXJ1O3c3nRM76Qx8Tj2X yctG3/qRj3MV7rFcSgjDcBHw2RipI/ydRKkQxFoOMBmAC/IPTRq8IdcEwwtfUKwx Qm4o6PqG8gvt51wqFTzR0eD+Dox+BXp6dDA1ghM49tP3uMgUQDWhQORu71a2MUtb qq5fGkxVuPjWrXivkJg6zvt2KvWIHdaNexPSzxGO7QGqV/cdoJ5wL7RN7KIn6FgE TN09CDfyzHG4v8ZySYut6ZiAPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNh16pWk ZNwcoACH1D8dOB0CMjH4MB8GA1UdIwQYMBaAFM2kfgoe61JfO1oPr7L6Dbs2O/pN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTRBRS8zRDhCOEM0ODUy QjUxMUVBQTRBOUQyMEVDNEY5QUUwMi96YVItQ2g3clVsODdXZy12c3ZvTnV6WTct azAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3phUi1DaDdyVWw4N1dnLXZzdm9OdXpZNy1rMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OTRBRS8zRDhCOEM0ODUyQjUxMUVBQTRBOUQyMEVDNEY5QUUwMi96YVItQ2g3clVs ODdXZy12c3ZvTnV6WTctazAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8VdEiOycM5v17z+4HREssm4hNtdwmMN1VwhnAoB0yX+ae+dz9jaUd 6yvCZk0kSElwKyb6wgsogWigltfoVbHG7hvwumYQ411NIEOiTawNJl6wHwNvn55S ZIVywx/pa7KF1aWKBCHkqdY6ho0L/+4Js93NyL6Jh6uqdQAoNWUE2jhXNQnB0UOU yNoNdwk2tl3FBp1CY3I5UwrqepvSH1cJkS8dYDox13QgFPcnceAGRrHU250ElBO1 kPHNEoBx5YIY4QDjWqMvJadWy1C+vPTi2W1X/EfUCUxZfO8LJTtAhUbzFOpuF+al CA9DRFB0Pm3whF+Gxg3fDjpprBQPmHlB -----END CERTIFICATE-----Generated at Thu Sep 18 23:10:28 2025 by rpki-client