$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3869/75DA447C1F4D11EA90505762C4F9AE02/ZQWXw3xtTUdvSZVECzYEpnG7_bA.mft File: ZQWXw3xtTUdvSZVECzYEpnG7_bA.mft (raw, json) Hash identifier: XE0wsXDYQKTyab+IJf3KPukiWamfORPaDelW7H+3nxA= Subject key identifier: 1B:29:F4:A8:53:FB:B5:75:18:89:96:B5:30:35:7C:98:16:96:15:F5 Authority key identifier: 65:05:97:C3:7C:6D:4D:47:6F:49:95:44:0B:36:04:A6:71:BB:FD:B0 Certificate issuer: /CN=A91C3869/serialNumber=650597C37C6D4D476F4995440B3604A671BBFDB0 Certificate serial: 0C03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZQWXw3xtTUdvSZVECzYEpnG7_bA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3869/75DA447C1F4D11EA90505762C4F9AE02/ZQWXw3xtTUdvSZVECzYEpnG7_bA.mft Manifest number: 0BF6 Signing time: Sun 24 Aug 2025 18:49:35 +0000 Manifest this update: Sun 24 Aug 2025 18:49:35 +0000 Manifest next update: Sun 31 Aug 2025 18:49:35 +0000 Files and hashes: 1: ZQWXw3xtTUdvSZVECzYEpnG7_bA.crl (hash: qSq5TkX8QEbLL0uyTbfBqyXpUW6z7XprERGPIGy26zA=) 2: 9D8E0AF4E18C11ECB1697F55C4F9AE02.roa (hash: AhG5EQmnKsHYz3IRggOMcJqSh+00kQLALDjFL//vrE8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3869/75DA447C1F4D11EA90505762C4F9AE02/ZQWXw3xtTUdvSZVECzYEpnG7_bA.crl rsync://rpki.apnic.net/member_repository/A91C3869/75DA447C1F4D11EA90505762C4F9AE02/ZQWXw3xtTUdvSZVECzYEpnG7_bA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZQWXw3xtTUdvSZVECzYEpnG7_bA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 18:49:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3075 (0xc03) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3869, serialNumber=650597C37C6D4D476F4995440B3604A671BBFDB0 Validity Not Before: Aug 24 18:49:35 2025 GMT Not After : Aug 31 18:49:35 2025 GMT Subject: CN=68ab5ebf-f175 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:22:b1:87:d8:6b:5d:50:fd:c1:2c:76:1a:e8: ff:4b:26:46:7a:40:e7:09:e7:68:ab:9d:5f:e7:a1: f4:fe:c8:2c:4e:1e:58:81:29:06:bd:0c:a1:d0:48: 8e:0b:1d:cd:d5:d8:63:37:1c:d6:71:2a:1f:a4:4b: 5a:1a:bc:7d:6c:7e:e1:56:70:51:9a:21:11:0d:43: 83:c6:72:3f:03:e1:24:44:89:2c:bd:4e:41:41:2e: cf:ee:9a:a1:13:d5:e7:d9:47:44:15:0f:51:ef:d4: 3d:84:c6:35:64:78:b0:0e:fe:9c:59:9a:57:84:7a: f2:30:49:d5:ea:df:21:9b:33:1c:0c:de:df:36:e1: c8:dd:c9:b9:b8:e3:5a:ab:3d:d1:92:a7:72:c7:28: 07:3f:2f:1f:dc:f5:b3:aa:a7:86:14:87:ab:d8:45: 1e:1f:72:ad:8c:da:f7:5a:f2:66:4d:f7:79:8b:18: 8d:2b:5a:9b:5e:0f:ee:8f:3c:ff:13:e2:e8:73:70: 0e:fb:0d:2d:15:84:b7:65:4c:bb:32:a4:31:9e:a9: f1:6e:12:7a:de:3d:7d:c4:74:86:57:87:4a:93:60: 91:ff:76:98:32:79:68:b3:f3:07:e8:1f:45:df:00: 5c:fe:33:d2:2b:df:1d:cb:01:ce:b8:16:ea:d5:53: 79:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:29:F4:A8:53:FB:B5:75:18:89:96:B5:30:35:7C:98:16:96:15:F5 X509v3 Authority Key Identifier: keyid:65:05:97:C3:7C:6D:4D:47:6F:49:95:44:0B:36:04:A6:71:BB:FD:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3869/75DA447C1F4D11EA90505762C4F9AE02/ZQWXw3xtTUdvSZVECzYEpnG7_bA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZQWXw3xtTUdvSZVECzYEpnG7_bA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3869/75DA447C1F4D11EA90505762C4F9AE02/ZQWXw3xtTUdvSZVECzYEpnG7_bA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:ce:34:33:78:8f:d1:cf:ef:5d:1a:3d:70:b4:df:20:89:49: 74:f1:0f:e3:99:e6:85:aa:d6:a4:94:1d:02:d8:d7:d5:00:0e: da:93:72:f9:93:71:11:18:f2:53:03:5f:8e:a0:18:30:80:d2: a4:bb:de:05:9e:49:3b:e2:8c:36:c4:9c:35:bc:21:be:a8:29: 6e:6f:c4:a1:84:ce:78:8d:5c:e8:6b:c0:b6:37:e9:3c:5e:4a: e0:94:5f:67:d9:ba:e6:82:93:fa:d9:82:e9:92:85:25:af:5c: 43:09:07:67:80:cb:9b:7b:d8:6d:07:20:ec:d8:92:b7:e8:2d: 69:0a:c9:1b:aa:0b:ae:dc:04:5d:76:9d:dd:2a:40:6f:23:2d: c8:2d:c5:17:20:88:b9:a6:36:eb:60:c7:02:13:67:0d:0f:d2: b9:be:c7:a9:10:58:62:27:0f:3b:7d:a2:66:92:5e:83:71:7b: 5f:5a:41:f8:da:74:2a:6b:65:c7:3d:6d:31:9f:0e:27:13:fc: 48:b2:3c:7d:6b:fd:85:1a:b0:db:29:e0:39:01:ec:a3:5d:bf: 0b:c4:be:ea:97:51:29:70:05:32:f3:51:56:3e:f9:7d:8c:a1: 36:43:32:ae:cf:03:5e:72:75:22:bd:2f:13:15:c8:5d:9a:66: 7e:bf:bd:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDAMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzM4NjkxMTAvBgNVBAUTKDY1MDU5N0MzN0M2RDRENDc2RjQ5OTU0NDBCMzYwNEE2 NzFCQkZEQjAwHhcNMjUwODI0MTg0OTM1WhcNMjUwODMxMTg0OTM1WjAYMRYwFAYD VQQDEw02OGFiNWViZi1mMTc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6yKxh9hrXVD9wSx2Guj/SyZGekDnCedoq51f56H0/sgsTh5YgSkGvQyh0EiO Cx3N1dhjNxzWcSofpEtaGrx9bH7hVnBRmiERDUODxnI/A+EkRIksvU5BQS7P7pqh E9Xn2UdEFQ9R79Q9hMY1ZHiwDv6cWZpXhHryMEnV6t8hmzMcDN7fNuHI3cm5uONa qz3RkqdyxygHPy8f3PWzqqeGFIer2EUeH3KtjNr3WvJmTfd5ixiNK1qbXg/ujzz/ E+Loc3AO+w0tFYS3ZUy7MqQxnqnxbhJ63j19xHSGV4dKk2CR/3aYMnlos/MH6B9F 3wBc/jPSK98dywHOuBbq1VN5pwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBsp9KhT +7V1GImWtTA1fJgWlhX1MB8GA1UdIwQYMBaAFGUFl8N8bU1Hb0mVRAs2BKZxu/2w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzg2OS83NURBNDQ3QzFG NEQxMUVBOTA1MDU3NjJDNEY5QUUwMi9aUVdYdzN4dFRVZHZTWlZFQ3pZRXBuRzdf YkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pRV1h3M3h0VFVkdlNaVkVDellFcG5HN19iQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Mzg2OS83NURBNDQ3QzFGNEQxMUVBOTA1MDU3NjJDNEY5QUUwMi9aUVdYdzN4dFRV ZHZTWlZFQ3pZRXBuRzdfYkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpzjQzeI/Rz+9dGj1wtN8giUl08Q/jmeaFqtaklB0C2NfVAA7ak3L5 k3ERGPJTA1+OoBgwgNKku94Fnkk74ow2xJw1vCG+qClub8ShhM54jVzoa8C2N+k8 XkrglF9n2brmgpP62YLpkoUlr1xDCQdngMube9htByDs2JK36C1pCskbqguu3ARd dp3dKkBvIy3ILcUXIIi5pjbrYMcCE2cND9K5vsepEFhiJw87faJmkl6DcXtfWkH4 2nQqa2XHPW0xnw4nE/xIsjx9a/2FGrDbKeA5AeyjXb8LxL7ql1EpcAUy81FWPvl9 jKE2QzKuzwNecnUivS8TFchdmmZ+v70h -----END CERTIFICATE-----Generated at Sun Aug 24 22:09:14 2025 by rpki-client