$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.mft File: ZVPDwhgLl-LrN8tx9qHOqnuVykc.mft (raw, json) Hash identifier: HlPxJZcV5/UJEhULRFrgTx9nTYxq4ki6isMG6skEhNY= Subject key identifier: 88:C8:1D:89:19:D5:AB:B4:19:D8:E1:BB:D5:62:D4:38:EA:2C:9A:A3 Authority key identifier: 65:53:C3:C2:18:0B:97:E2:EB:37:CB:71:F6:A1:CE:AA:7B:95:CA:47 Certificate issuer: /CN=A91A8219/serialNumber=6553C3C2180B97E2EB37CB71F6A1CEAA7B95CA47 Certificate serial: 1737 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVPDwhgLl-LrN8tx9qHOqnuVykc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.mft Manifest number: 172B Signing time: Sun 24 Aug 2025 16:36:42 +0000 Manifest this update: Sun 24 Aug 2025 16:36:41 +0000 Manifest next update: Sun 31 Aug 2025 16:36:41 +0000 Files and hashes: 1: ZVPDwhgLl-LrN8tx9qHOqnuVykc.crl (hash: tTwAMAqD+Ng0aAg+SrzpCNXMqxCI9+0uNigz2nMtTKE=) 2: 314E917C651E11E8A8903D42C4F9AE02.roa (hash: PelwRr9hgP7dCYd5KU90WVUNYfa/KyN0aFEd88yUz4U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.crl rsync://rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVPDwhgLl-LrN8tx9qHOqnuVykc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 16:36:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5943 (0x1737) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8219, serialNumber=6553C3C2180B97E2EB37CB71F6A1CEAA7B95CA47 Validity Not Before: Aug 24 16:36:41 2025 GMT Not After : Aug 31 16:36:41 2025 GMT Subject: CN=68ab3f9a-a4fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:87:fd:46:9c:d3:91:76:b4:8e:1a:48:f6:32: 70:db:d2:6e:58:0f:33:85:27:14:29:33:a0:fc:2c: ba:62:fd:a8:30:a1:15:63:41:cd:74:5c:b9:77:1e: 1f:e9:68:67:2f:e2:ff:3e:fe:55:1c:bb:08:d3:8d: 05:68:ca:a5:7e:65:be:ce:16:85:41:90:28:9c:bd: 04:50:09:17:70:b5:41:3f:bb:3a:dd:65:78:66:07: c8:a1:30:11:a7:13:74:f8:34:55:fe:b8:1a:c8:1c: a0:a1:38:c3:69:6d:13:2e:61:a1:f7:c5:db:e5:2f: 13:d0:3e:fe:98:1a:c6:8f:d5:f6:b6:0d:f2:d8:d1: 71:3a:45:02:bb:e1:14:f5:a8:14:5f:59:a5:c4:cb: 40:40:45:72:8b:17:f0:5b:80:8d:7d:55:44:33:03: 99:2e:ca:7b:c2:d0:de:59:4a:bd:d6:f0:e6:bc:26: a7:f5:05:dc:10:f7:4b:33:27:1c:71:db:ce:96:17: ac:68:f3:bc:0f:dd:28:30:c3:f1:29:94:65:76:95: 05:f3:99:fe:98:49:62:2b:1f:e0:d0:8e:37:2c:37: 87:cf:e3:cd:2b:d9:71:25:a0:ef:48:8f:cb:a3:42: 60:7b:05:94:89:1e:f4:9d:1f:24:76:7a:1c:a6:5c: 0c:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:C8:1D:89:19:D5:AB:B4:19:D8:E1:BB:D5:62:D4:38:EA:2C:9A:A3 X509v3 Authority Key Identifier: keyid:65:53:C3:C2:18:0B:97:E2:EB:37:CB:71:F6:A1:CE:AA:7B:95:CA:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVPDwhgLl-LrN8tx9qHOqnuVykc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:ba:4b:f9:6d:0f:c7:39:b2:b5:a6:c5:ae:6b:d9:b6:29:8e: bf:f1:e3:f5:6e:19:70:e3:8b:e4:6d:75:68:f4:3b:bf:a3:3b: b1:77:e2:34:54:90:9e:1f:36:7c:a0:ef:fc:0b:df:6c:ac:f0: 20:aa:99:f2:06:f2:87:11:f6:3a:74:96:b9:f6:15:92:82:62: da:d4:d0:2c:ff:1f:90:61:8e:4c:1c:69:e7:53:78:3a:d3:de: 3d:29:8c:85:b2:c2:2f:36:04:3e:58:50:8f:ee:1c:b1:3a:e4: 07:a2:4b:a4:60:d2:6f:15:04:ff:5a:4c:92:c6:7e:4c:28:5e: 2e:79:03:0b:8f:f8:e5:6d:a9:b5:17:a9:75:d9:2f:26:98:4e: c3:b2:b2:10:6a:d3:f1:f3:ee:c8:1a:e3:1a:64:89:62:57:ac: e0:d6:8c:b8:69:23:1c:5f:3b:9c:c7:bd:2b:c6:00:9d:dd:f8: e3:1a:c8:bb:a8:ff:33:9a:a0:bf:de:2a:49:e8:6e:d7:6d:57: b4:45:ea:34:99:0f:94:ba:f8:fa:3d:d9:53:56:44:77:80:85: 0a:7e:f5:ec:75:66:14:fe:d7:d3:b2:b7:0a:96:3e:cc:72:86: d6:35:d2:59:22:a9:d1:09:73:76:fd:7b:4f:91:d4:50:2e:92: 90:52:a4:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFzcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgyMTkxMTAvBgNVBAUTKDY1NTNDM0MyMTgwQjk3RTJFQjM3Q0I3MUY2QTFDRUFB N0I5NUNBNDcwHhcNMjUwODI0MTYzNjQxWhcNMjUwODMxMTYzNjQxWjAYMRYwFAYD VQQDEw02OGFiM2Y5YS1hNGZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv4f9RpzTkXa0jhpI9jJw29JuWA8zhScUKTOg/Cy6Yv2oMKEVY0HNdFy5dx4f 6WhnL+L/Pv5VHLsI040FaMqlfmW+zhaFQZAonL0EUAkXcLVBP7s63WV4ZgfIoTAR pxN0+DRV/rgayBygoTjDaW0TLmGh98Xb5S8T0D7+mBrGj9X2tg3y2NFxOkUCu+EU 9agUX1mlxMtAQEVyixfwW4CNfVVEMwOZLsp7wtDeWUq91vDmvCan9QXcEPdLMycc cdvOlhesaPO8D90oMMPxKZRldpUF85n+mEliKx/g0I43LDeHz+PNK9lxJaDvSI/L o0JgewWUiR70nR8kdnocplwMLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIjIHYkZ 1au0Gdjhu9Vi1DjqLJqjMB8GA1UdIwQYMBaAFGVTw8IYC5fi6zfLcfahzqp7lcpH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODIxOS9FQzBBNzBGOEVB ODAxMUU3OEI0MkE0MzJDNEY5QUUwMi9aVlBEd2hnTGwtTHJOOHR4OXFIT3FudVZ5 a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pWUER3aGdMbC1Mck44dHg5cUhPcW51VnlrYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODIxOS9FQzBBNzBGOEVBODAxMUU3OEI0MkE0MzJDNEY5QUUwMi9aVlBEd2hnTGwt THJOOHR4OXFIT3FudVZ5a2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFukv5bQ/HObK1psWua9m2KY6/8eP1bhlw44vkbXVo9Du/ozuxd+I0 VJCeHzZ8oO/8C99srPAgqpnyBvKHEfY6dJa59hWSgmLa1NAs/x+QYY5MHGnnU3g6 0949KYyFssIvNgQ+WFCP7hyxOuQHokukYNJvFQT/WkySxn5MKF4ueQMLj/jlbam1 F6l12S8mmE7DsrIQatPx8+7IGuMaZIliV6zg1oy4aSMcXzucx70rxgCd3fjjGsi7 qP8zmqC/3ipJ6G7XbVe0Reo0mQ+Uuvj6PdlTVkR3gIUKfvXsdWYU/tfTsrcKlj7M cobWNdJZIqnRCXN2/XtPkdRQLpKQUqT1 -----END CERTIFICATE-----Generated at Sun Aug 24 22:18:31 2025 by rpki-client