$ rpki-client -vvf rpki.apnic.net/member_repository/A91D462A/4CBD3F8450D511E79313AE12C4F9AE02/z3Ess4nuhNoZypgd5jD1Cf9EzUU.mft File: z3Ess4nuhNoZypgd5jD1Cf9EzUU.mft (raw, json) Hash identifier: W3k/4K6mxPIMaSZwLND7fbwSiINYEwUAiMr3drJTgxw= Subject key identifier: 8B:20:1A:9A:9C:8A:2A:83:9B:B4:24:4D:27:EE:52:30:1F:50:2C:9E Authority key identifier: CF:71:2C:B3:89:EE:84:DA:19:CA:98:1D:E6:30:F5:09:FF:44:CD:45 Certificate issuer: /CN=A91D462A/serialNumber=CF712CB389EE84DA19CA981DE630F509FF44CD45 Certificate serial: 1A6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3Ess4nuhNoZypgd5jD1Cf9EzUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D462A/4CBD3F8450D511E79313AE12C4F9AE02/z3Ess4nuhNoZypgd5jD1Cf9EzUU.mft Manifest number: 1A50 Signing time: Thu 04 Sep 2025 16:28:16 +0000 Manifest this update: Thu 04 Sep 2025 16:28:15 +0000 Manifest next update: Thu 11 Sep 2025 16:28:15 +0000 Files and hashes: 1: z3Ess4nuhNoZypgd5jD1Cf9EzUU.crl (hash: 1EI+oseJhOGi3f+qj6PtkdLaYqlAJMZsFIN+LsNL3IQ=) 2: 84559BB01D4611EDBB06705BC4F9AE02.roa (hash: nliRTAkVAtJ8FfxKEHQS9HqVovT0tZ32fPM48Sk/l8k=) 3: F39D90EE561B11EFB51A9149C4F9AE02.roa (hash: EijUWJlocJ1+GHXxh5XIDZa+yD2/CG2e199ekLmtdEY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D462A/4CBD3F8450D511E79313AE12C4F9AE02/z3Ess4nuhNoZypgd5jD1Cf9EzUU.crl rsync://rpki.apnic.net/member_repository/A91D462A/4CBD3F8450D511E79313AE12C4F9AE02/z3Ess4nuhNoZypgd5jD1Cf9EzUU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3Ess4nuhNoZypgd5jD1Cf9EzUU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 16:28:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6764 (0x1a6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D462A, serialNumber=CF712CB389EE84DA19CA981DE630F509FF44CD45 Validity Not Before: Sep 4 16:28:15 2025 GMT Not After : Sep 11 16:28:15 2025 GMT Subject: CN=68b9be20-cdf7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:ab:fe:0d:97:03:de:e8:7c:ca:81:25:c8:63: b5:30:de:0d:4c:db:9f:2e:f5:49:f6:a8:43:99:01: 70:62:00:ab:19:51:71:61:d5:a0:59:e5:91:b8:7e: fa:2e:98:42:ac:9f:76:f9:a5:64:c7:cd:12:bb:f8: e6:be:51:48:fc:71:b1:fc:6b:f9:93:df:36:1f:d6: bc:17:6a:c5:39:36:ef:a4:27:1c:12:df:8b:af:46: 49:02:9a:63:c9:90:77:78:62:89:dd:fa:81:0f:39: 31:f4:dc:63:d6:62:d6:34:b1:e5:cb:18:19:96:ff: 90:0a:ea:95:72:36:83:40:c0:8c:80:fc:3d:cb:11: 2b:ab:b5:08:c8:6d:3f:1a:17:4e:c6:04:0a:6f:a5: 85:6b:58:05:2b:a5:cd:da:77:37:1a:39:d9:ca:35: 70:f4:38:72:4b:dd:73:b0:c4:f9:9a:4f:ab:59:92: 7a:65:57:64:38:54:de:33:de:4d:51:80:65:ac:3e: 9e:31:3f:28:90:fc:0e:e5:53:d0:5c:34:16:6e:0a: 31:55:f4:07:f2:47:64:c1:82:35:9d:89:b5:1f:95: 77:76:6f:52:89:ab:4d:68:e4:c0:3f:85:e5:7c:74: 66:36:46:c4:3c:cb:a0:58:19:a7:9d:12:48:1c:a8: 85:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:20:1A:9A:9C:8A:2A:83:9B:B4:24:4D:27:EE:52:30:1F:50:2C:9E X509v3 Authority Key Identifier: keyid:CF:71:2C:B3:89:EE:84:DA:19:CA:98:1D:E6:30:F5:09:FF:44:CD:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D462A/4CBD3F8450D511E79313AE12C4F9AE02/z3Ess4nuhNoZypgd5jD1Cf9EzUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3Ess4nuhNoZypgd5jD1Cf9EzUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D462A/4CBD3F8450D511E79313AE12C4F9AE02/z3Ess4nuhNoZypgd5jD1Cf9EzUU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cd:cd:16:b3:d2:47:3b:4f:12:92:77:96:12:8e:45:28:bc:85: a6:74:b8:e2:32:9c:49:0d:5d:ee:22:df:1b:39:95:92:d4:fc: 68:ce:ea:d2:6f:f5:ba:15:ff:e2:34:f7:25:cc:0e:73:b0:9c: 71:81:d6:ba:71:dc:84:b8:ed:42:6f:26:4d:0d:d0:a7:dd:ee: 42:79:70:ff:a4:58:0b:53:bf:9e:0a:85:bb:81:d9:50:c8:9d: 27:8e:91:9f:2e:1c:4f:5c:0b:d8:f4:17:04:81:0b:62:0e:94: 62:ce:41:5e:e0:cc:e0:5e:93:35:b7:c9:28:17:4a:d0:7b:14: b0:d4:b4:de:6d:2e:06:f2:49:33:44:7c:35:80:df:b5:f4:e3: e4:b9:20:d2:d3:d3:a6:1a:c0:19:ba:da:5e:3a:20:f5:3f:f3: 07:ae:2d:34:63:9d:16:d4:9d:7d:13:04:30:0d:57:68:4c:b2: c3:79:ad:6f:b8:78:23:fe:46:69:b9:ee:f9:82:d0:8c:fa:3c: 74:b8:6c:6a:36:5f:e2:3e:d2:69:cb:10:08:9f:c0:8c:9b:1c: c7:e6:b3:fe:c4:84:9a:51:76:78:55:fd:30:5f:00:ba:ee:59: 30:e6:f6:4c:a8:44:ba:4a:1e:68:16:bd:ec:2d:84:b5:c0:24: c7:40:ea:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGmwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ2MkExMTAvBgNVBAUTKENGNzEyQ0IzODlFRTg0REExOUNBOTgxREU2MzBGNTA5 RkY0NENENDUwHhcNMjUwOTA0MTYyODE1WhcNMjUwOTExMTYyODE1WjAYMRYwFAYD VQQDEw02OGI5YmUyMC1jZGY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArKv+DZcD3uh8yoElyGO1MN4NTNufLvVJ9qhDmQFwYgCrGVFxYdWgWeWRuH76 LphCrJ92+aVkx80Su/jmvlFI/HGx/Gv5k982H9a8F2rFOTbvpCccEt+Lr0ZJAppj yZB3eGKJ3fqBDzkx9Nxj1mLWNLHlyxgZlv+QCuqVcjaDQMCMgPw9yxErq7UIyG0/ GhdOxgQKb6WFa1gFK6XN2nc3GjnZyjVw9DhyS91zsMT5mk+rWZJ6ZVdkOFTeM95N UYBlrD6eMT8okPwO5VPQXDQWbgoxVfQH8kdkwYI1nYm1H5V3dm9SiatNaOTAP4Xl fHRmNkbEPMugWBmnnRJIHKiFmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIsgGpqc iiqDm7QkTSfuUjAfUCyeMB8GA1UdIwQYMBaAFM9xLLOJ7oTaGcqYHeYw9Qn/RM1F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDYyQS80Q0JEM0Y4NDUw RDUxMUU3OTMxM0FFMTJDNEY5QUUwMi96M0VzczRudWhOb1p5cGdkNWpEMUNmOUV6 VVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ozRXNzNG51aE5vWnlwZ2Q1akQxQ2Y5RXpVVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDYyQS80Q0JEM0Y4NDUwRDUxMUU3OTMxM0FFMTJDNEY5QUUwMi96M0VzczRudWhO b1p5cGdkNWpEMUNmOUV6VVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDNzRaz0kc7TxKSd5YSjkUovIWmdLjiMpxJDV3uIt8bOZWS1PxozurS b/W6Ff/iNPclzA5zsJxxgda6cdyEuO1CbyZNDdCn3e5CeXD/pFgLU7+eCoW7gdlQ yJ0njpGfLhxPXAvY9BcEgQtiDpRizkFe4MzgXpM1t8koF0rQexSw1LTebS4G8kkz RHw1gN+19OPkuSDS09OmGsAZutpeOiD1P/MHri00Y50W1J19EwQwDVdoTLLDea1v uHgj/kZpue75gtCM+jx0uGxqNl/iPtJpyxAIn8CMmxzH5rP+xISaUXZ4Vf0wXwC6 7lkw5vZMqES6Sh5oFr3sLYS1wCTHQOqA -----END CERTIFICATE-----Generated at Sat Sep 6 16:59:58 2025 by rpki-client