$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5230/C50074DAE85211EAAC50B551C4F9AE02/ZPivgeq5CJliFNQ59xFwDp9ItMs.mft File: ZPivgeq5CJliFNQ59xFwDp9ItMs.mft (raw, json) Hash identifier: RLsBOqmddTtK+xF8Tzej2L/XNqYoTunKpoOJlTQYgBI= Subject key identifier: 44:6F:58:22:61:E4:92:0F:86:29:BF:6D:3B:CD:68:55:B3:A5:F4:62 Authority key identifier: 64:F8:AF:81:EA:B9:08:99:62:14:D4:39:F7:11:70:0E:9F:48:B4:CB Certificate issuer: /CN=A91D5230/serialNumber=64F8AF81EAB908996214D439F711700E9F48B4CB Certificate serial: 084B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZPivgeq5CJliFNQ59xFwDp9ItMs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5230/C50074DAE85211EAAC50B551C4F9AE02/ZPivgeq5CJliFNQ59xFwDp9ItMs.mft Manifest number: 0834 Signing time: Wed 10 Sep 2025 21:00:21 +0000 Manifest this update: Wed 10 Sep 2025 21:00:21 +0000 Manifest next update: Wed 17 Sep 2025 21:00:21 +0000 Files and hashes: 1: ZPivgeq5CJliFNQ59xFwDp9ItMs.crl (hash: 5gK9/6YYv1/aBrtr5EUY51SfRL9Cm3LOaqiDnxvcCVo=) 2: 5CC56600558F11F084E6F15EC4F9AE02.roa (hash: xIBKPrrFFxiQYfc9KkaEQ4EE2NMobEqzAjMwpy97Iaw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5230/C50074DAE85211EAAC50B551C4F9AE02/ZPivgeq5CJliFNQ59xFwDp9ItMs.crl rsync://rpki.apnic.net/member_repository/A91D5230/C50074DAE85211EAAC50B551C4F9AE02/ZPivgeq5CJliFNQ59xFwDp9ItMs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZPivgeq5CJliFNQ59xFwDp9ItMs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Sep 2025 21:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2123 (0x84b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5230, serialNumber=64F8AF81EAB908996214D439F711700E9F48B4CB Validity Not Before: Sep 10 21:00:21 2025 GMT Not After : Sep 17 21:00:21 2025 GMT Subject: CN=68c1e6e5-046b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:98:6c:b9:a8:ac:d8:bb:e8:1a:1a:90:d2:40: f4:17:1e:8a:22:23:de:d0:d3:22:8e:4f:5c:7d:29: 89:81:a5:f7:4a:db:a1:b3:b2:db:fd:07:67:d2:4c: 2f:11:bc:75:07:89:3c:a6:ee:d5:3b:87:9a:91:e7: 9d:b2:2b:bf:fd:77:60:2c:14:e9:36:78:5f:8a:5b: 49:46:e1:11:5d:7a:10:b2:77:e3:74:71:ff:d6:b8: a1:c1:41:76:16:04:50:4b:e5:06:0d:13:67:a6:8d: f3:d7:32:8a:e9:69:ca:79:4e:79:6f:ff:31:d9:fb: e0:18:f2:d3:71:d6:ff:23:8e:ca:d7:be:df:10:9b: db:fb:da:39:4a:6b:7d:30:fb:23:f4:f4:e5:55:76: 8e:58:41:8a:7c:a1:f9:f7:ee:a0:7d:ad:ed:0c:a8: 16:93:d1:0e:f0:82:d1:e6:75:0e:3c:d9:d6:8b:46: b6:ff:34:19:31:a1:a9:aa:96:13:be:d5:2c:5d:1e: 83:16:4a:3e:73:f9:3a:5c:b2:23:2b:32:ee:f2:34: 16:32:26:4e:45:12:a6:7d:11:f8:05:7a:e6:2f:95: 8f:60:26:14:fd:c2:aa:1f:4c:52:e0:95:14:80:81: 64:60:d3:e8:2e:97:2c:df:38:15:24:71:ef:77:d2: 10:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:6F:58:22:61:E4:92:0F:86:29:BF:6D:3B:CD:68:55:B3:A5:F4:62 X509v3 Authority Key Identifier: keyid:64:F8:AF:81:EA:B9:08:99:62:14:D4:39:F7:11:70:0E:9F:48:B4:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5230/C50074DAE85211EAAC50B551C4F9AE02/ZPivgeq5CJliFNQ59xFwDp9ItMs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZPivgeq5CJliFNQ59xFwDp9ItMs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5230/C50074DAE85211EAAC50B551C4F9AE02/ZPivgeq5CJliFNQ59xFwDp9ItMs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d4:d2:1f:3e:0c:5f:d2:40:9f:a6:f0:5b:71:73:ed:4a:3d:8d: 47:11:52:a5:22:07:67:c7:5c:3f:ad:b5:bd:b6:29:14:95:4a: 5f:3a:4d:c1:c1:11:53:67:96:2a:cd:21:e6:09:23:30:02:f4: bb:ae:ae:2a:ef:37:c4:2c:13:74:a3:0e:3a:91:28:6a:e4:e0: 33:a6:dd:14:cc:fa:31:07:c3:5e:69:7e:50:37:17:fb:e8:ae: c4:e0:ad:fd:96:c2:ae:28:38:3a:00:92:16:d0:05:f0:15:fc: 0d:6d:aa:d6:87:4c:d1:c6:50:38:aa:25:71:df:b8:9d:a7:03: 9f:59:12:b4:09:1c:cf:41:93:8a:75:dd:4d:76:7c:d1:74:c7: e0:5a:91:7f:21:6a:ba:19:f5:6a:23:9b:a9:c4:ef:33:5f:c9: 7a:fd:3c:af:36:30:48:82:f5:36:e0:92:ff:90:8e:77:5e:73: fa:d6:a9:bc:6c:df:6c:f9:5b:44:db:62:0d:af:c5:c9:b4:98: 27:2a:00:c2:dd:6f:e1:e7:2b:d6:de:6d:72:ce:e2:71:4f:52: fe:92:2d:99:8b:76:f9:20:94:0f:49:21:90:18:a1:f5:81:f4: ec:bb:c6:66:94:b1:71:40:2c:bd:c0:46:2a:e3:37:cb:d8:01: d9:fe:05:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCEswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUyMzAxMTAvBgNVBAUTKDY0RjhBRjgxRUFCOTA4OTk2MjE0RDQzOUY3MTE3MDBF OUY0OEI0Q0IwHhcNMjUwOTEwMjEwMDIxWhcNMjUwOTE3MjEwMDIxWjAYMRYwFAYD VQQDEw02OGMxZTZlNS0wNDZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvphsuais2LvoGhqQ0kD0Fx6KIiPe0NMijk9cfSmJgaX3Stuhs7Lb/Qdn0kwv Ebx1B4k8pu7VO4eakeedsiu//XdgLBTpNnhfiltJRuERXXoQsnfjdHH/1rihwUF2 FgRQS+UGDRNnpo3z1zKK6WnKeU55b/8x2fvgGPLTcdb/I47K177fEJvb+9o5Smt9 MPsj9PTlVXaOWEGKfKH59+6gfa3tDKgWk9EO8ILR5nUOPNnWi0a2/zQZMaGpqpYT vtUsXR6DFko+c/k6XLIjKzLu8jQWMiZORRKmfRH4BXrmL5WPYCYU/cKqH0xS4JUU gIFkYNPoLpcs3zgVJHHvd9IQnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFERvWCJh 5JIPhim/bTvNaFWzpfRiMB8GA1UdIwQYMBaAFGT4r4HquQiZYhTUOfcRcA6fSLTL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTIzMC9DNTAwNzREQUU4 NTIxMUVBQUM1MEI1NTFDNEY5QUUwMi9aUGl2Z2VxNUNKbGlGTlE1OXhGd0RwOUl0 TXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pQaXZnZXE1Q0psaUZOUTU5eEZ3RHA5SXRNcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTIzMC9DNTAwNzREQUU4NTIxMUVBQUM1MEI1NTFDNEY5QUUwMi9aUGl2Z2VxNUNK bGlGTlE1OXhGd0RwOUl0TXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDU0h8+DF/SQJ+m8Ftxc+1KPY1HEVKlIgdnx1w/rbW9tikUlUpfOk3B wRFTZ5YqzSHmCSMwAvS7rq4q7zfELBN0ow46kShq5OAzpt0UzPoxB8NeaX5QNxf7 6K7E4K39lsKuKDg6AJIW0AXwFfwNbarWh0zRxlA4qiVx37idpwOfWRK0CRzPQZOK dd1NdnzRdMfgWpF/IWq6GfVqI5upxO8zX8l6/TyvNjBIgvU24JL/kI53XnP61qm8 bN9s+VtE22INr8XJtJgnKgDC3W/h5yvW3m1yzuJxT1L+ki2Zi3b5IJQPSSGQGKH1 gfTsu8ZmlLFxQCy9wEYq4zfL2AHZ/gV2 -----END CERTIFICATE-----Generated at Wed Sep 10 23:30:15 2025 by rpki-client