$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF23F/338B2F484A2F11EFAE96C915C4F9AE02/zNz_ISpraZpXC0qdF18WI3GDLKU.mft File: zNz_ISpraZpXC0qdF18WI3GDLKU.mft (raw, json) Hash identifier: 4tPSqpBDThHZUfBaGLCPC/YJpDFMDqfgwIc3gdFA2K8= Subject key identifier: F5:5A:06:65:7F:C1:73:44:2C:DC:C3:AA:7A:88:5C:28:A4:12:6E:DA Authority key identifier: CC:DC:FF:21:2A:6B:69:9A:57:0B:4A:9D:17:5F:16:23:71:83:2C:A5 Certificate issuer: /CN=A91BF23F/serialNumber=CCDCFF212A6B699A570B4A9D175F162371832CA5 Certificate serial: CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zNz_ISpraZpXC0qdF18WI3GDLKU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF23F/338B2F484A2F11EFAE96C915C4F9AE02/zNz_ISpraZpXC0qdF18WI3GDLKU.mft Manifest number: CA Signing time: Thu 21 Aug 2025 05:55:37 +0000 Manifest this update: Thu 21 Aug 2025 05:55:36 +0000 Manifest next update: Thu 28 Aug 2025 05:55:36 +0000 Files and hashes: 1: zNz_ISpraZpXC0qdF18WI3GDLKU.crl (hash: hu8VgcYyoiJWrnLDuH052KqHbHrdbFaLGmNDbquL/Qg=) 2: 00606C184A3011EFBC542C18C4F9AE02.roa (hash: Y3ZFXjyQq0LuHhQHwB/WF8wGIt775M6n4ea3rF+TXp4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF23F/338B2F484A2F11EFAE96C915C4F9AE02/zNz_ISpraZpXC0qdF18WI3GDLKU.crl rsync://rpki.apnic.net/member_repository/A91BF23F/338B2F484A2F11EFAE96C915C4F9AE02/zNz_ISpraZpXC0qdF18WI3GDLKU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zNz_ISpraZpXC0qdF18WI3GDLKU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 05:55:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 204 (0xcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF23F, serialNumber=CCDCFF212A6B699A570B4A9D175F162371832CA5 Validity Not Before: Aug 21 05:55:36 2025 GMT Not After : Aug 28 05:55:36 2025 GMT Subject: CN=68a6b4d9-4fed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:2c:3f:de:cf:72:c6:4e:a3:0a:e6:db:a4:5c: 6e:6d:5c:22:83:fe:d9:68:b7:62:36:51:1a:c5:5d: f8:42:2a:18:55:27:ff:9a:84:90:98:91:40:cc:50: 77:34:3b:5a:3c:57:a6:17:38:aa:3e:a7:43:09:76: a9:d5:7e:2d:9d:c0:e1:c3:f3:0e:cf:08:4f:c3:f0: c0:fa:42:9d:31:e1:57:78:43:41:08:62:75:f9:20: 4a:5e:e9:d0:43:6c:73:bc:63:d3:e3:b1:e0:bc:13: 6e:be:70:17:12:55:4a:ba:06:ab:04:ee:ce:41:30: 96:59:08:4d:62:38:d4:6d:d6:2e:12:7d:12:bb:f7: e9:76:4a:da:c5:df:85:e6:e4:ad:bf:42:af:1a:1d: 51:3a:ba:4d:bd:cb:cd:f7:9b:d4:b9:10:e5:d3:42: 29:f9:87:db:c9:92:a6:22:d8:46:5a:d9:fe:03:91: 26:4c:e2:a6:ca:d4:b3:4f:86:c9:bb:cb:a9:1d:13: 63:d1:04:72:cc:2b:4f:ac:7f:c0:ed:c2:24:e2:2e: 27:2c:91:65:d3:ae:aa:05:44:77:4c:7a:ec:19:1a: 99:07:f9:e5:b8:8d:e3:70:06:c8:70:0f:69:99:68: 1c:af:6c:d5:31:f7:0e:75:c7:9b:71:da:a5:b8:80: 3a:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:5A:06:65:7F:C1:73:44:2C:DC:C3:AA:7A:88:5C:28:A4:12:6E:DA X509v3 Authority Key Identifier: keyid:CC:DC:FF:21:2A:6B:69:9A:57:0B:4A:9D:17:5F:16:23:71:83:2C:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF23F/338B2F484A2F11EFAE96C915C4F9AE02/zNz_ISpraZpXC0qdF18WI3GDLKU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zNz_ISpraZpXC0qdF18WI3GDLKU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF23F/338B2F484A2F11EFAE96C915C4F9AE02/zNz_ISpraZpXC0qdF18WI3GDLKU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:ce:49:1a:62:41:d5:90:55:df:a6:4c:d2:92:0c:94:95:5d: 00:31:d3:77:88:5d:c0:53:d4:e9:34:6c:d5:1b:c6:1b:5e:57: fa:3e:39:d3:90:ca:5c:63:26:63:95:0c:67:6c:6c:c5:e5:52: 1c:fd:16:f1:01:5c:71:0a:51:b2:20:88:b4:51:d7:95:a4:0f: 78:9c:80:a3:e2:fb:9e:c0:5f:c1:4a:20:bd:29:86:2f:cb:f1: 48:45:6a:bc:eb:04:ed:eb:49:8b:67:c8:b1:1a:46:e7:30:69: 68:69:4a:b1:5a:ab:a7:8b:42:20:b5:d6:b0:ff:88:1f:5a:b8: bb:b3:9e:08:32:71:08:5f:7d:a6:29:1a:52:99:37:1a:5e:35: a0:6e:50:e3:4f:03:a2:36:af:38:4c:0f:80:ed:8a:54:3a:9b: f0:99:d9:52:37:d2:26:8e:6c:45:18:83:36:71:3d:65:31:ab: 69:aa:8a:9e:c0:b6:6a:3d:f8:d8:49:24:7c:94:70:0a:0f:9f: 47:7a:28:8c:73:1f:a7:aa:35:f1:68:d7:f9:74:b4:19:ee:d4: a7:40:50:ba:35:4c:e1:23:7c:cd:10:bc:c3:ba:9d:e0:a9:65: 61:45:33:df:13:f4:bb:48:37:d7:48:f4:f3:65:f5:c7:02:bc: b7:2b:e1:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYyM0YxMTAvBgNVBAUTKENDRENGRjIxMkE2QjY5OUE1NzBCNEE5RDE3NUYxNjIz NzE4MzJDQTUwHhcNMjUwODIxMDU1NTM2WhcNMjUwODI4MDU1NTM2WjAYMRYwFAYD VQQDEw02OGE2YjRkOS00ZmVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtSw/3s9yxk6jCubbpFxubVwig/7ZaLdiNlEaxV34QioYVSf/moSQmJFAzFB3 NDtaPFemFziqPqdDCXap1X4tncDhw/MOzwhPw/DA+kKdMeFXeENBCGJ1+SBKXunQ Q2xzvGPT47HgvBNuvnAXElVKugarBO7OQTCWWQhNYjjUbdYuEn0Su/fpdkraxd+F 5uStv0KvGh1ROrpNvcvN95vUuRDl00Ip+YfbyZKmIthGWtn+A5EmTOKmytSzT4bJ u8upHRNj0QRyzCtPrH/A7cIk4i4nLJFl066qBUR3THrsGRqZB/nluI3jcAbIcA9p mWgcr2zVMfcOdcebcdqluIA6YwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPVaBmV/ wXNELNzDqnqIXCikEm7aMB8GA1UdIwQYMBaAFMzc/yEqa2maVwtKnRdfFiNxgyyl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjIzRi8zMzhCMkY0ODRB MkYxMUVGQUU5NkM5MTVDNEY5QUUwMi96TnpfSVNwcmFacFhDMHFkRjE4V0kzR0RM S1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pOel9JU3ByYVpwWEMwcWRGMThXSTNHRExLVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjIzRi8zMzhCMkY0ODRBMkYxMUVGQUU5NkM5MTVDNEY5QUUwMi96TnpfSVNwcmFa cFhDMHFkRjE4V0kzR0RMS1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBzkkaYkHVkFXfpkzSkgyUlV0AMdN3iF3AU9TpNGzVG8YbXlf6PjnT kMpcYyZjlQxnbGzF5VIc/RbxAVxxClGyIIi0UdeVpA94nICj4vuewF/BSiC9KYYv y/FIRWq86wTt60mLZ8ixGkbnMGloaUqxWquni0Igtdaw/4gfWri7s54IMnEIX32m KRpSmTcaXjWgblDjTwOiNq84TA+A7YpUOpvwmdlSN9ImjmxFGIM2cT1lMatpqoqe wLZqPfjYSSR8lHAKD59HeiiMcx+nqjXxaNf5dLQZ7tSnQFC6NUzhI3zNELzDup3g qWVhRTPfE/S7SDfXSPTzZfXHAry3K+Fv -----END CERTIFICATE-----Generated at Fri Aug 22 16:27:10 2025 by rpki-client