$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.mft File: Z187oflqnh7CsBN2YsdU2x0eAHM.mft (raw, json) Hash identifier: lFxK2+hFGMwBP4x+OyjNpSWlqRwwn1UKpaXKrUwMb04= Subject key identifier: 8A:B5:8A:B3:8D:C4:9E:D6:B7:80:4D:93:2F:A8:54:2A:08:66:2C:FE Authority key identifier: 67:5F:3B:A1:F9:6A:9E:1E:C2:B0:13:76:62:C7:54:DB:1D:1E:00:73 Certificate issuer: /CN=A91A4517/serialNumber=675F3BA1F96A9E1EC2B0137662C754DB1D1E0073 Certificate serial: 2949 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z187oflqnh7CsBN2YsdU2x0eAHM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.mft Manifest number: 2928 Signing time: Mon 08 Sep 2025 15:35:41 +0000 Manifest this update: Mon 08 Sep 2025 15:35:40 +0000 Manifest next update: Mon 15 Sep 2025 15:35:40 +0000 Files and hashes: 1: Z187oflqnh7CsBN2YsdU2x0eAHM.crl (hash: EXsq+pf9VKDAigqC+WWtnDH6AnYHHIRI1aiYsOgxT48=) 2: F4246CDA561811E98A165872C4F9AE02.roa (hash: C/PaFQfpTy7SRBE+0XzPzL+bck/ugVag2KSCjWGbACs=) 3: 58292E96774111F0A079543BC4F9AE02.roa (hash: cB0aG0QBKc7lbuLj1XFyRNR3680AdznFwoFOUAcWcEg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.crl rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z187oflqnh7CsBN2YsdU2x0eAHM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 15:35:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10569 (0x2949) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4517, serialNumber=675F3BA1F96A9E1EC2B0137662C754DB1D1E0073 Validity Not Before: Sep 8 15:35:40 2025 GMT Not After : Sep 15 15:35:40 2025 GMT Subject: CN=68bef7cc-ac2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:6f:b9:29:41:ce:94:34:e3:97:de:40:d4:e9: 74:eb:22:e5:e4:38:37:e2:8e:58:7c:63:57:da:20: 01:bd:ec:45:32:e6:d1:02:92:24:bf:52:8a:88:7c: 43:83:4d:dc:b2:35:ca:da:67:f4:88:89:bf:d8:1a: 5a:bd:92:59:e1:fa:08:f3:1a:a3:82:ae:1c:85:84: 48:49:e1:53:44:f7:19:74:60:cf:ee:3d:5b:53:f3: f0:31:05:5e:46:b5:55:3c:46:ae:b9:51:98:d7:54: 65:f2:ec:6a:c6:12:c7:9d:7d:c8:91:23:9f:37:e1: 15:ef:b8:da:95:f5:ad:b6:c2:b8:5c:74:09:df:89: 8b:2c:90:4a:00:40:eb:62:f2:48:2b:30:9c:00:6d: e2:05:fb:c9:72:fb:1b:b1:64:2a:bc:b1:6c:1e:42: 49:66:f8:1d:b9:0d:0a:08:6d:3b:30:59:1c:92:d3: 6d:d5:06:d8:1d:ac:4c:94:83:1d:b4:30:7d:c0:36: e3:26:0c:3b:d7:61:27:a1:33:ec:6b:dc:53:a4:7a: bb:5c:ae:26:b1:f6:3b:37:e8:e6:3d:71:2a:f0:3e: 72:c6:0a:52:55:8f:57:7c:05:01:86:f8:35:0a:3b: 64:df:d0:0d:99:8e:8d:8f:74:16:57:b2:34:c3:65: cd:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:B5:8A:B3:8D:C4:9E:D6:B7:80:4D:93:2F:A8:54:2A:08:66:2C:FE X509v3 Authority Key Identifier: keyid:67:5F:3B:A1:F9:6A:9E:1E:C2:B0:13:76:62:C7:54:DB:1D:1E:00:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z187oflqnh7CsBN2YsdU2x0eAHM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d5:3a:68:95:a6:bb:dc:0a:fc:8b:c4:da:66:d0:83:80:c5:24: 70:80:65:3c:88:fe:47:d0:df:38:4d:ef:b9:5f:13:27:0d:02: 52:b5:69:5a:9a:af:aa:54:50:c6:5b:ab:2d:fe:3f:ae:e5:10: b4:3d:2a:a9:81:02:92:95:26:54:f7:3b:26:63:50:ec:76:9a: 9a:47:cf:99:09:1a:d6:37:43:b7:a4:e5:85:c7:c0:13:48:e7: 92:42:53:f0:fb:d2:9f:09:e0:9c:91:cf:ed:d7:30:4f:af:45: 9f:93:fd:32:12:d9:8a:87:11:f9:61:01:f2:69:b0:e0:e4:32: f7:f2:e1:f0:9a:02:4e:94:72:c0:8a:c5:7c:91:52:0a:68:32: b1:cb:e3:f1:48:28:3f:92:a4:f5:73:8a:e5:c8:9d:d3:fd:63: bf:2a:88:1c:55:a7:28:73:be:4f:87:cf:a7:f0:58:4f:8b:5c: c1:48:d9:4a:d7:ca:3f:62:21:6b:3e:ed:dd:3b:04:89:20:91: 8b:e9:a5:1f:7a:ed:64:28:ca:f5:b2:06:39:d5:a6:28:8f:7c: d3:3a:26:bf:c1:d0:ec:d5:6b:bf:3f:e4:e8:a5:8a:00:32:31: 8d:fe:74:6d:47:e5:92:15:da:76:b1:b7:4f:16:be:78:ab:33: 78:d6:73:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKUkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ1MTcxMTAvBgNVBAUTKDY3NUYzQkExRjk2QTlFMUVDMkIwMTM3NjYyQzc1NERC MUQxRTAwNzMwHhcNMjUwOTA4MTUzNTQwWhcNMjUwOTE1MTUzNTQwWjAYMRYwFAYD VQQDEw02OGJlZjdjYy1hYzJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmm+5KUHOlDTjl95A1Ol06yLl5Dg34o5YfGNX2iABvexFMubRApIkv1KKiHxD g03csjXK2mf0iIm/2BpavZJZ4foI8xqjgq4chYRISeFTRPcZdGDP7j1bU/PwMQVe RrVVPEauuVGY11Rl8uxqxhLHnX3IkSOfN+EV77jalfWttsK4XHQJ34mLLJBKAEDr YvJIKzCcAG3iBfvJcvsbsWQqvLFsHkJJZvgduQ0KCG07MFkcktNt1QbYHaxMlIMd tDB9wDbjJgw712EnoTPsa9xTpHq7XK4msfY7N+jmPXEq8D5yxgpSVY9XfAUBhvg1 Cjtk39ANmY6Nj3QWV7I0w2XNlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIq1irON xJ7Wt4BNky+oVCoIZiz+MB8GA1UdIwQYMBaAFGdfO6H5ap4ewrATdmLHVNsdHgBz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDUxNy80MDZGOTA0QzZB RTYxMUU0OTE5MTQ2ODdDNEY5QUUwMi9aMTg3b2ZscW5oN0NzQk4yWXNkVTJ4MGVB SE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1oxODdvZmxxbmg3Q3NCTjJZc2RVMngwZUFITS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDUxNy80MDZGOTA0QzZBRTYxMUU0OTE5MTQ2ODdDNEY5QUUwMi9aMTg3b2ZscW5o N0NzQk4yWXNkVTJ4MGVBSE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDVOmiVprvcCvyLxNpm0IOAxSRwgGU8iP5H0N84Te+5XxMnDQJStWla mq+qVFDGW6st/j+u5RC0PSqpgQKSlSZU9zsmY1DsdpqaR8+ZCRrWN0O3pOWFx8AT SOeSQlPw+9KfCeCckc/t1zBPr0Wfk/0yEtmKhxH5YQHyabDg5DL38uHwmgJOlHLA isV8kVIKaDKxy+PxSCg/kqT1c4rlyJ3T/WO/KogcVacoc75Ph8+n8FhPi1zBSNlK 18o/YiFrPu3dOwSJIJGL6aUfeu1kKMr1sgY51aYoj3zTOia/wdDs1Wu/P+TopYoA MjGN/nRtR+WSFdp2sbdPFr54qzN41nP9 -----END CERTIFICATE-----Generated at Tue Sep 9 13:24:26 2025 by rpki-client