$ rpki-client -vvf rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft File: Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft (raw, json) Hash identifier: ILq7ZvGHvPItDxmT3zOnbbrjLas8SFrKhCDFhWljf9w= Subject key identifier: C5:E8:D9:7B:33:29:36:54:06:FE:A4:A5:6D:A8:35:83:BB:D2:8F:A1 Authority key identifier: 66:F6:B8:44:A9:F8:09:AE:30:7B:1B:9C:EE:4B:FD:47:C3:C7:77:1B Certificate issuer: /CN=A91B391F/serialNumber=66F6B844A9F809AE307B1B9CEE4BFD47C3C7771B Certificate serial: DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zva4RKn4Ca4wexuc7kv9R8PHdxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft Manifest number: DC Signing time: Wed 17 Sep 2025 06:09:39 +0000 Manifest this update: Wed 17 Sep 2025 06:09:38 +0000 Manifest next update: Wed 24 Sep 2025 06:09:38 +0000 Files and hashes: 1: Zva4RKn4Ca4wexuc7kv9R8PHdxs.crl (hash: 4RCzGh5XQaXU4OkMGgdUsXK2tLn8Txk9ydbNWwcWCZc=) 2: 5069A4E034B311F0B93A6228C4F9AE02.roa (hash: Ds5OYRTGE1+nmc/fXAPDPY24vX1TYbGT7zDa8IDd+kc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.crl rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zva4RKn4Ca4wexuc7kv9R8PHdxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 06:09:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 222 (0xde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B391F, serialNumber=66F6B844A9F809AE307B1B9CEE4BFD47C3C7771B Validity Not Before: Sep 17 06:09:38 2025 GMT Not After : Sep 24 06:09:38 2025 GMT Subject: CN=68ca50a2-ee02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:16:e2:6f:a7:ce:09:1c:aa:4a:c5:b9:7f:5a: 39:aa:8e:ef:e1:a6:b8:af:c1:20:47:50:ac:24:84: 7b:c4:3d:5f:31:f2:73:f0:a7:16:0b:34:89:e4:1e: 9d:09:28:f4:2b:de:47:08:51:d6:f4:dc:c5:8d:f9: 6e:f2:28:85:c0:58:94:fd:04:62:5d:14:6c:10:0b: 5f:29:30:02:3e:4d:4b:b1:79:0c:f3:59:d4:1a:f4: 2e:4a:f0:20:17:a9:43:6c:3e:ad:4e:0f:83:b2:5e: a2:36:68:28:e7:5b:ba:73:6e:1f:e6:1d:71:75:70: 3c:6b:61:7c:24:48:36:d4:0a:4a:1d:33:2d:df:5b: 06:56:27:dc:54:7f:20:1f:a5:1b:b5:1c:eb:f2:87: 1a:c6:f5:aa:01:e5:84:5b:0a:e2:23:97:f0:06:44: dd:81:37:24:58:5f:0b:93:8c:cf:8e:e4:23:0d:64: fb:ee:7c:f2:2e:00:f9:b0:99:f7:63:01:bd:7a:ff: 76:ee:cb:64:f4:1e:8a:6f:af:7d:58:55:1e:10:62: 95:18:51:95:47:7b:b0:e6:56:de:47:66:ab:3d:72: d8:a6:01:b7:f4:91:ce:f1:21:80:fe:1d:f9:01:db: 45:b2:f3:f8:4f:dd:cd:95:92:02:e9:1d:1e:69:dc: 30:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:E8:D9:7B:33:29:36:54:06:FE:A4:A5:6D:A8:35:83:BB:D2:8F:A1 X509v3 Authority Key Identifier: keyid:66:F6:B8:44:A9:F8:09:AE:30:7B:1B:9C:EE:4B:FD:47:C3:C7:77:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zva4RKn4Ca4wexuc7kv9R8PHdxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:4d:e5:8b:0a:57:18:70:7f:4f:3f:94:77:96:13:67:17:46: d1:3f:0d:47:84:54:5b:a1:89:cb:ea:e7:f3:07:44:fb:ed:cc: b9:22:ae:93:94:2c:27:b2:a7:71:bc:a4:eb:0d:8c:a6:d3:c6: a3:23:d6:fe:f9:76:c0:54:e2:56:04:13:91:f9:b3:50:34:6b: 1e:8f:48:37:33:c7:b1:0e:36:5d:f6:17:88:c7:9e:bc:2a:30: ae:69:d6:79:e8:61:6b:f4:51:e9:d6:a2:24:78:aa:d2:ad:35: 5d:e7:fe:bf:3d:55:f8:3e:47:9e:2e:51:08:a9:8e:2f:eb:7d: 97:fd:ca:14:72:13:8c:22:e8:8f:ae:93:96:5b:4c:3a:3a:b6: 23:5e:1b:88:fc:95:28:e1:84:d4:ec:fb:39:8d:68:4f:0c:75: 5e:3f:1c:18:a9:2d:c1:11:10:7a:06:c7:0b:43:71:ee:34:21: 9e:92:80:3f:e3:26:8f:fc:38:41:32:15:f9:7b:9d:28:30:86: 28:75:3b:94:93:ef:f2:a6:aa:69:b0:8b:86:5b:0e:6d:37:74: a5:4b:d4:73:82:87:5d:6c:db:c2:70:ad:a2:e7:2c:f4:e3:bd: c2:5a:4a:2a:b1:6e:98:99:85:97:fc:96:a4:cc:60:be:f0:d5: 8c:99:92:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjM5MUYxMTAvBgNVBAUTKDY2RjZCODQ0QTlGODA5QUUzMDdCMUI5Q0VFNEJGRDQ3 QzNDNzc3MUIwHhcNMjUwOTE3MDYwOTM4WhcNMjUwOTI0MDYwOTM4WjAYMRYwFAYD VQQDEw02OGNhNTBhMi1lZTAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuxbib6fOCRyqSsW5f1o5qo7v4aa4r8EgR1CsJIR7xD1fMfJz8KcWCzSJ5B6d CSj0K95HCFHW9NzFjflu8iiFwFiU/QRiXRRsEAtfKTACPk1LsXkM81nUGvQuSvAg F6lDbD6tTg+Dsl6iNmgo51u6c24f5h1xdXA8a2F8JEg21ApKHTMt31sGVifcVH8g H6UbtRzr8ocaxvWqAeWEWwriI5fwBkTdgTckWF8Lk4zPjuQjDWT77nzyLgD5sJn3 YwG9ev927stk9B6Kb699WFUeEGKVGFGVR3uw5lbeR2arPXLYpgG39JHO8SGA/h35 AdtFsvP4T93NlZIC6R0eadwwkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMXo2Xsz KTZUBv6kpW2oNYO70o+hMB8GA1UdIwQYMBaAFGb2uESp+AmuMHsbnO5L/UfDx3cb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzkxRi81OERCODdGMjQ1 NzAxMUVGOUM4QjhFNzFDNEY5QUUwMi9admE0UktuNENhNHdleHVjN2t2OVI4UEhk eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p2YTRSS240Q2E0d2V4dWM3a3Y5UjhQSGR4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzkxRi81OERCODdGMjQ1NzAxMUVGOUM4QjhFNzFDNEY5QUUwMi9admE0UktuNENh NHdleHVjN2t2OVI4UEhkeHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbTeWLClcYcH9PP5R3lhNnF0bRPw1HhFRboYnL6ufzB0T77cy5Iq6T lCwnsqdxvKTrDYym08ajI9b++XbAVOJWBBOR+bNQNGsej0g3M8exDjZd9heIx568 KjCuadZ56GFr9FHp1qIkeKrSrTVd5/6/PVX4PkeeLlEIqY4v632X/coUchOMIuiP rpOWW0w6OrYjXhuI/JUo4YTU7Ps5jWhPDHVePxwYqS3BERB6BscLQ3HuNCGekoA/ 4yaP/DhBMhX5e50oMIYodTuUk+/ypqppsIuGWw5tN3SlS9RzgoddbNvCcK2i5yz0 473CWkoqsW6YmYWX/JakzGC+8NWMmZJU -----END CERTIFICATE-----Generated at Thu Sep 18 20:23:21 2025 by rpki-client