$ rpki-client -vvf rpki.apnic.net/member_repository/A91752F4/80164F4EF8BC11E2AD91813B5911EA32/Z-1VajxcS_wnyhWKWXdWTDIHzso.mft File: Z-1VajxcS_wnyhWKWXdWTDIHzso.mft (raw, json) Hash identifier: DPtgYBJyr5dE5BqlHL9BOlrfIBMlqB8N2462mOfGzm4= Subject key identifier: B4:20:B8:1D:DC:3F:57:0C:C0:59:A1:E4:3A:94:1B:7B:DD:6C:5B:0C Authority key identifier: 67:ED:55:6A:3C:5C:4B:FC:27:CA:15:8A:59:77:56:4C:32:07:CE:CA Certificate issuer: /CN=A91752F4/serialNumber=67ED556A3C5C4BFC27CA158A5977564C3207CECA Certificate serial: 307B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z-1VajxcS_wnyhWKWXdWTDIHzso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91752F4/80164F4EF8BC11E2AD91813B5911EA32/Z-1VajxcS_wnyhWKWXdWTDIHzso.mft Manifest number: 306C Signing time: Thu 18 Sep 2025 15:31:23 +0000 Manifest this update: Thu 18 Sep 2025 15:31:22 +0000 Manifest next update: Thu 25 Sep 2025 15:31:22 +0000 Files and hashes: 1: Z-1VajxcS_wnyhWKWXdWTDIHzso.crl (hash: 2AHXEriBOgIpKYrcYpnPFCzxQEgKstsC52ZFq7+tqW0=) 2: 22E2E3C24E2911EF8BEE8E10C4F9AE02.roa (hash: hQKUzdzJskNaUaPGl2kmEUdrCcgwSNhHBQ7D6gtHv6A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91752F4/80164F4EF8BC11E2AD91813B5911EA32/Z-1VajxcS_wnyhWKWXdWTDIHzso.crl rsync://rpki.apnic.net/member_repository/A91752F4/80164F4EF8BC11E2AD91813B5911EA32/Z-1VajxcS_wnyhWKWXdWTDIHzso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z-1VajxcS_wnyhWKWXdWTDIHzso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 15:31:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12411 (0x307b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91752F4, serialNumber=67ED556A3C5C4BFC27CA158A5977564C3207CECA Validity Not Before: Sep 18 15:31:22 2025 GMT Not After : Sep 25 15:31:22 2025 GMT Subject: CN=68cc25cb-d792 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:99:d0:83:01:1b:92:61:6a:02:18:2e:dc:2d: 89:d3:bd:24:f2:dc:50:28:19:0a:89:2e:90:8f:de: ca:ca:ed:ba:66:9b:c7:04:85:46:a0:22:ef:db:cd: 7e:92:3b:26:1c:fd:3b:3f:c7:28:dc:ae:f2:e4:2e: a8:b8:9e:2f:33:ce:af:8f:58:e7:74:87:9b:2e:f3: d5:a1:fc:a9:0a:22:7d:cd:25:30:24:2f:e6:65:ef: ba:79:2b:6f:e8:ef:62:fb:70:f7:71:11:88:4d:6e: e7:33:8b:42:1b:a5:6f:2e:69:9f:65:e0:08:b0:ea: 89:1d:69:38:eb:01:b3:8e:b1:71:82:cd:48:08:72: 7d:1b:ba:a5:5e:4c:b6:21:29:33:56:5e:80:85:22: 57:54:a4:92:a2:db:d4:0a:9c:f6:be:90:72:49:6a: 1c:0c:07:ae:1c:f1:df:3d:7e:b5:a6:1a:53:76:6a: 6c:7a:34:f5:6d:74:08:38:e5:b3:ac:7f:27:4c:f7: a4:9c:1b:35:e5:9f:d9:14:21:b6:80:78:8e:5b:e8: 10:de:8d:60:0f:f1:bc:d4:45:fc:8c:8e:b7:10:70: 2c:43:e1:91:f2:6e:8d:50:13:74:91:44:8a:03:7e: cb:e1:20:a3:f2:e0:ea:64:04:aa:f3:16:f2:2f:a5: 12:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:20:B8:1D:DC:3F:57:0C:C0:59:A1:E4:3A:94:1B:7B:DD:6C:5B:0C X509v3 Authority Key Identifier: keyid:67:ED:55:6A:3C:5C:4B:FC:27:CA:15:8A:59:77:56:4C:32:07:CE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91752F4/80164F4EF8BC11E2AD91813B5911EA32/Z-1VajxcS_wnyhWKWXdWTDIHzso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z-1VajxcS_wnyhWKWXdWTDIHzso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91752F4/80164F4EF8BC11E2AD91813B5911EA32/Z-1VajxcS_wnyhWKWXdWTDIHzso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:a0:4b:bd:6e:d2:c6:fc:4e:f0:f9:2e:f8:fb:01:42:b9:04: f2:80:bf:7a:1e:f3:8c:b9:f1:98:94:f6:bb:b3:3a:66:11:30: 4f:ce:d0:49:a0:2a:8f:da:08:d6:51:fd:3a:b2:9f:46:3c:a1: fc:74:bc:a2:e6:c2:a0:fa:22:a2:bc:ea:88:92:2a:f0:e4:06: 23:3e:0e:a9:fa:89:66:ed:ca:23:e3:e3:24:18:ad:69:5a:7c: 5d:63:e2:84:83:c0:5e:19:bc:33:c8:3e:b1:79:f0:c6:6c:70: f8:c7:75:57:e7:8a:c8:35:46:32:a0:e4:4d:ed:4c:0a:db:ae: bc:c4:05:ec:26:a9:d2:4c:73:b0:00:69:5f:bd:06:92:a7:0f: 24:68:0d:3e:ad:c7:d3:72:70:44:91:e9:ab:dd:1c:05:80:a6: ef:c3:13:fe:9a:77:54:12:ef:de:59:ec:b3:3f:88:56:4f:1c: 88:7d:15:6d:2c:38:55:5a:5d:da:6e:fe:f1:39:96:c9:db:2a: 86:54:eb:b2:f6:0a:11:8c:29:bc:df:bd:2f:cb:80:ac:bb:90: 84:7e:24:ff:07:16:5b:da:f6:d9:ca:ac:7a:c9:6f:d3:e5:39: 1b:4e:32:4a:5b:1d:0c:49:93:14:04:b7:87:90:b0:38:a4:b2: 02:d3:0a:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMHswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzUyRjQxMTAvBgNVBAUTKDY3RUQ1NTZBM0M1QzRCRkMyN0NBMTU4QTU5Nzc1NjRD MzIwN0NFQ0EwHhcNMjUwOTE4MTUzMTIyWhcNMjUwOTI1MTUzMTIyWjAYMRYwFAYD VQQDEw02OGNjMjVjYi1kNzkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmJnQgwEbkmFqAhgu3C2J070k8txQKBkKiS6Qj97Kyu26ZpvHBIVGoCLv281+ kjsmHP07P8co3K7y5C6ouJ4vM86vj1jndIebLvPVofypCiJ9zSUwJC/mZe+6eStv 6O9i+3D3cRGITW7nM4tCG6VvLmmfZeAIsOqJHWk46wGzjrFxgs1ICHJ9G7qlXky2 ISkzVl6AhSJXVKSSotvUCpz2vpBySWocDAeuHPHfPX61phpTdmpsejT1bXQIOOWz rH8nTPeknBs15Z/ZFCG2gHiOW+gQ3o1gD/G81EX8jI63EHAsQ+GR8m6NUBN0kUSK A37L4SCj8uDqZASq8xbyL6USrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLQguB3c P1cMwFmh5DqUG3vdbFsMMB8GA1UdIwQYMBaAFGftVWo8XEv8J8oVill3VkwyB87K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTJGNC84MDE2NEY0RUY4 QkMxMUUyQUQ5MTgxM0I1OTExRUEzMi9aLTFWYWp4Y1Nfd255aFdLV1hkV1RESUh6 c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1otMVZhanhjU193bnloV0tXWGRXVERJSHpzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTJGNC84MDE2NEY0RUY4QkMxMUUyQUQ5MTgxM0I1OTExRUEzMi9aLTFWYWp4Y1Nf d255aFdLV1hkV1RESUh6c28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAboEu9btLG/E7w+S74+wFCuQTygL96HvOMufGYlPa7szpmETBPztBJ oCqP2gjWUf06sp9GPKH8dLyi5sKg+iKivOqIkirw5AYjPg6p+olm7coj4+MkGK1p WnxdY+KEg8BeGbwzyD6xefDGbHD4x3VX54rINUYyoORN7UwK2668xAXsJqnSTHOw AGlfvQaSpw8kaA0+rcfTcnBEkemr3RwFgKbvwxP+mndUEu/eWeyzP4hWTxyIfRVt LDhVWl3abv7xOZbJ2yqGVOuy9goRjCm8370vy4Csu5CEfiT/BxZb2vbZyqx6yW/T 5TkbTjJKWx0MSZMUBLeHkLA4pLIC0wru -----END CERTIFICATE-----Generated at Fri Sep 19 08:36:06 2025 by rpki-client