$ rpki-client -vvf rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.mft File: zIO7bQqhd53qFp7bpKQCKN4hvXs.mft (raw, json) Hash identifier: eNiqX2plnlAH+ahgaRs5W0GbtAkjkb3zhdNmO8vkkXs= Subject key identifier: DE:A8:8A:BB:8B:11:CA:2F:2F:1E:A3:35:DE:56:66:24:67:70:C3:01 Authority key identifier: CC:83:BB:6D:0A:A1:77:9D:EA:16:9E:DB:A4:A4:02:28:DE:21:BD:7B Certificate issuer: /CN=A91D493B/serialNumber=CC83BB6D0AA1779DEA169EDBA4A40228DE21BD7B Certificate serial: 0361 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIO7bQqhd53qFp7bpKQCKN4hvXs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.mft Manifest number: 035C Signing time: Wed 17 Sep 2025 01:26:05 +0000 Manifest this update: Wed 17 Sep 2025 01:26:04 +0000 Manifest next update: Wed 24 Sep 2025 01:26:04 +0000 Files and hashes: 1: zIO7bQqhd53qFp7bpKQCKN4hvXs.crl (hash: +37ErSHeHEm4Aj7AdQhD3z2oWMT99lIBU0relScLnJw=) 2: 684DDD32CAB311ECBBCE9843C4F9AE02.roa (hash: qH/kmALWQxd9w+o7ml/PHWheO95UYxgo26aceJX0/p4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.crl rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIO7bQqhd53qFp7bpKQCKN4hvXs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 01:26:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 865 (0x361) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D493B, serialNumber=CC83BB6D0AA1779DEA169EDBA4A40228DE21BD7B Validity Not Before: Sep 17 01:26:04 2025 GMT Not After : Sep 24 01:26:04 2025 GMT Subject: CN=68ca0e2d-845d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:d1:6d:b9:52:15:b1:8f:cf:59:dd:20:73:50: 13:0c:e8:cb:d7:96:b9:f1:a3:05:12:fd:ba:e9:f4: 88:2f:b0:ca:53:d1:8d:57:e8:bf:c0:44:3b:a4:8f: 7e:23:27:60:bb:9f:27:ac:bd:d6:9b:71:b1:b3:46: a2:0d:c2:56:2e:42:53:d0:a6:21:b3:e4:09:c6:95: 78:b7:8b:16:33:bf:7b:64:68:39:5a:8a:38:b1:c7: 34:04:8b:a9:5b:78:ca:21:ce:09:52:0f:82:52:c4: 76:49:8c:37:f4:06:36:e6:3d:4d:99:f5:4a:1f:95: bc:83:38:8d:da:b4:23:c7:28:2a:88:59:55:14:ac: df:b3:8a:f7:bd:fb:04:7f:c8:31:93:38:97:dd:79: cf:6c:36:41:4d:f3:bd:52:79:3b:72:cd:8f:7e:db: 2a:5e:96:73:b7:4f:e3:05:d0:66:25:05:5c:40:9b: 5b:0a:fb:d8:b8:43:a9:7a:8c:f3:d2:f1:b2:cd:55: 95:a8:13:cb:33:8a:5f:a0:40:fa:fd:c7:97:40:b2: 97:e8:36:5d:26:56:40:81:db:ec:ea:e4:0d:4e:14: ef:cb:00:65:e8:e9:72:f8:02:75:a4:87:45:1d:39: 37:e2:31:3f:62:86:af:b6:d7:62:d9:fa:10:46:99: b4:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:A8:8A:BB:8B:11:CA:2F:2F:1E:A3:35:DE:56:66:24:67:70:C3:01 X509v3 Authority Key Identifier: keyid:CC:83:BB:6D:0A:A1:77:9D:EA:16:9E:DB:A4:A4:02:28:DE:21:BD:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIO7bQqhd53qFp7bpKQCKN4hvXs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:e7:f5:b3:88:2f:86:b2:95:5b:d3:ae:14:2f:f6:26:26:a2: 58:b1:62:d0:23:2a:85:e4:24:50:b1:0a:d5:a2:68:20:4b:a8: 95:98:0a:c0:b2:e1:b7:17:56:41:5e:e0:3d:70:e0:45:da:e1: e7:a0:62:96:12:8b:21:ba:80:01:a3:4e:84:74:70:3f:76:eb: 02:10:3b:42:09:1d:d0:bb:ff:13:e2:97:58:ae:16:c0:7e:6d: 6e:b9:1a:1a:32:09:01:44:92:1f:60:83:0b:e8:27:37:ca:86: f7:d6:d9:88:cd:52:e0:58:99:f1:4d:43:ca:21:c0:65:70:6a: a5:f7:cf:f2:14:57:37:de:e4:a5:7c:ff:a9:60:b7:75:b1:f6: f9:6e:cb:dd:61:fa:e6:ca:33:79:75:25:11:7a:6f:53:2d:79: 15:bb:f1:35:85:1f:4d:80:6b:86:46:8e:2f:7b:dd:f8:54:40: c6:58:e1:25:e2:e9:f9:50:69:21:5e:70:3f:a9:a4:4e:3a:d3: ef:00:41:6f:44:76:b3:4e:9e:20:45:79:92:ad:dc:c5:ff:01: 94:1b:fb:88:7c:6b:8e:8a:9f:bf:17:0b:d5:3b:b0:4b:60:b7: de:4f:88:94:ec:58:e9:20:c2:8d:19:e3:53:4b:ea:48:94:d1: 56:9d:c7:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ5M0IxMTAvBgNVBAUTKENDODNCQjZEMEFBMTc3OURFQTE2OUVEQkE0QTQwMjI4 REUyMUJEN0IwHhcNMjUwOTE3MDEyNjA0WhcNMjUwOTI0MDEyNjA0WjAYMRYwFAYD VQQDEw02OGNhMGUyZC04NDVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzdFtuVIVsY/PWd0gc1ATDOjL15a58aMFEv266fSIL7DKU9GNV+i/wEQ7pI9+ Iydgu58nrL3Wm3Gxs0aiDcJWLkJT0KYhs+QJxpV4t4sWM797ZGg5Woo4scc0BIup W3jKIc4JUg+CUsR2SYw39AY25j1NmfVKH5W8gziN2rQjxygqiFlVFKzfs4r3vfsE f8gxkziX3XnPbDZBTfO9Unk7cs2PftsqXpZzt0/jBdBmJQVcQJtbCvvYuEOpeozz 0vGyzVWVqBPLM4pfoED6/ceXQLKX6DZdJlZAgdvs6uQNThTvywBl6Oly+AJ1pIdF HTk34jE/Yoavttdi2foQRpm08QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN6oiruL EcovLx6jNd5WZiRncMMBMB8GA1UdIwQYMBaAFMyDu20KoXed6hae26SkAijeIb17 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDkzQi9EQkFEMzdBMENB QUUxMUVDODI0MTI4MERDNEY5QUUwMi96SU83YlFxaGQ1M3FGcDdicEtRQ0tONGh2 WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pJTzdiUXFoZDUzcUZwN2JwS1FDS040aHZYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDkzQi9EQkFEMzdBMENBQUUxMUVDODI0MTI4MERDNEY5QUUwMi96SU83YlFxaGQ1 M3FGcDdicEtRQ0tONGh2WHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCr5/WziC+GspVb064UL/YmJqJYsWLQIyqF5CRQsQrVomggS6iVmArA suG3F1ZBXuA9cOBF2uHnoGKWEoshuoABo06EdHA/dusCEDtCCR3Qu/8T4pdYrhbA fm1uuRoaMgkBRJIfYIML6Cc3yob31tmIzVLgWJnxTUPKIcBlcGql98/yFFc33uSl fP+pYLd1sfb5bsvdYfrmyjN5dSURem9TLXkVu/E1hR9NgGuGRo4ve934VEDGWOEl 4un5UGkhXnA/qaROOtPvAEFvRHazTp4gRXmSrdzF/wGUG/uIfGuOip+/FwvVO7BL YLfeT4iU7FjpIMKNGeNTS+pIlNFWncfh -----END CERTIFICATE-----Generated at Thu Sep 18 23:50:19 2025 by rpki-client