$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA13E/4E8531CA06B511EB9372D32BC4F9AE02/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.mft File: Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.mft (raw, json) Hash identifier: ML+ZhF6+XToOS0czIdFAQ6w2mXQyy9Y5E5isGMc786M= Subject key identifier: 90:FD:BC:A5:A4:93:B8:C0:75:49:58:34:5F:BC:C2:9D:F8:8D:CE:42 Authority key identifier: 67:F3:B9:FA:AA:10:D2:0C:B0:17:F0:7F:CC:9A:15:4D:88:B6:63:A0 Certificate issuer: /CN=A91DA13E/serialNumber=67F3B9FAAA10D20CB017F07FCC9A154D88B663A0 Certificate serial: 07E1 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA13E/4E8531CA06B511EB9372D32BC4F9AE02/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.mft Manifest number: 07D8 Signing time: Sat 06 Sep 2025 21:24:00 +0000 Manifest this update: Sat 06 Sep 2025 21:24:00 +0000 Manifest next update: Sat 13 Sep 2025 21:24:00 +0000 Files and hashes: 1: Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.crl (hash: qlBdlnvEqv3FenJSqojt2p4v2hzS7aREbGo2C69Tdkw=) 2: 28D471BA06B611EBBBFD6B2CC4F9AE02.roa (hash: qTxqjLafp1eHZVEFc07aPaguHdK/MmmTaVfaOIj+sXA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA13E/4E8531CA06B511EB9372D32BC4F9AE02/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.crl rsync://rpki.apnic.net/member_repository/A91DA13E/4E8531CA06B511EB9372D32BC4F9AE02/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 21:23:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2017 (0x7e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA13E, serialNumber=67F3B9FAAA10D20CB017F07FCC9A154D88B663A0 Validity Not Before: Sep 6 21:24:00 2025 GMT Not After : Sep 13 21:24:00 2025 GMT Subject: CN=68bca670-af07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:6f:1c:97:61:32:fc:80:f1:e5:a1:85:0d:37: 66:7a:f1:01:8b:bc:ec:ff:68:fa:6b:35:7e:df:cb: 3b:df:03:46:f5:0b:e8:49:65:7a:7c:b9:67:98:5d: 8b:2f:eb:35:6c:aa:87:16:35:11:a8:7d:bd:d9:64: 7c:8c:5c:43:72:d0:b4:7c:db:af:c9:4e:05:3b:3e: ab:31:7e:8a:97:97:06:f9:82:d9:92:ef:df:15:67: cd:9d:19:74:cb:f6:22:62:e8:f6:93:99:1b:46:bd: ad:04:5e:ef:8a:63:1f:d4:46:ca:ec:8d:dd:01:1d: 98:af:6b:eb:eb:38:f0:fa:c6:f0:43:73:3c:ee:76: 2d:62:10:94:2f:42:c1:c9:5e:38:ad:aa:aa:75:c9: c4:f1:b6:bf:56:c3:80:61:c1:ba:5a:c6:77:d5:c3: b3:d5:96:d3:00:a0:81:94:46:41:10:2c:3e:e5:c0: 42:ae:c0:9f:7c:8f:35:3c:30:e8:dd:7a:0d:a3:07: ae:f8:03:25:a1:3c:47:e3:8b:b2:76:10:cd:41:ff: cf:6f:79:1c:83:16:66:7f:57:2f:c5:15:67:bd:61: d5:e1:13:a0:2b:19:d3:60:bf:b3:52:aa:dd:71:c4: 1d:5b:ec:e9:73:8b:80:35:8c:20:bc:b0:7d:55:08: e5:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:FD:BC:A5:A4:93:B8:C0:75:49:58:34:5F:BC:C2:9D:F8:8D:CE:42 X509v3 Authority Key Identifier: keyid:67:F3:B9:FA:AA:10:D2:0C:B0:17:F0:7F:CC:9A:15:4D:88:B6:63:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA13E/4E8531CA06B511EB9372D32BC4F9AE02/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA13E/4E8531CA06B511EB9372D32BC4F9AE02/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:49:a8:b8:95:68:43:3b:bd:e1:7b:1e:0e:27:11:bb:65:11: c8:1e:8d:7d:63:63:32:5b:5f:a2:a7:e6:6a:ee:95:17:96:b5: f1:f6:f8:a8:c3:bf:bc:95:43:a8:9c:e6:b8:32:4c:74:1e:fe: 20:f1:ea:1e:74:68:fe:b4:32:1b:a4:a2:12:2f:0f:f8:a3:ca: f9:62:f1:b6:eb:3e:69:95:b1:84:10:34:ff:ec:ad:59:a5:24: 74:66:aa:41:5e:4f:e6:6d:96:e6:20:94:da:9c:1a:16:6c:68: 03:a2:54:bf:bf:08:5e:73:f8:18:2e:4b:b8:b1:23:7b:d3:f4: 7d:9e:cf:87:4f:cb:4d:f0:28:64:a0:ff:2d:0c:6c:1b:61:40: d8:a8:74:5c:bf:9b:f6:da:fa:a2:6c:9d:34:42:3f:11:39:79: 8e:f2:02:71:a9:cd:df:e8:3e:0d:f9:1c:64:ae:12:e7:27:8e: 21:e6:09:13:ca:8d:ce:7d:e4:cf:f4:65:1c:b7:ed:4f:e4:9a: 86:36:51:34:b6:50:2c:33:5a:3e:16:4b:73:77:9c:5e:16:14: 5b:9d:59:b9:fd:15:5f:91:36:47:70:7b:f5:c9:35:27:84:6e: 9c:8a:78:a3:10:8c:b5:55:2a:46:9b:60:b0:c7:63:77:76:3d: a2:c1:4f:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REExM0UxMTAvBgNVBAUTKDY3RjNCOUZBQUExMEQyMENCMDE3RjA3RkNDOUExNTRE ODhCNjYzQTAwHhcNMjUwOTA2MjEyNDAwWhcNMjUwOTEzMjEyNDAwWjAYMRYwFAYD VQQDEw02OGJjYTY3MC1hZjA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3W8cl2Ey/IDx5aGFDTdmevEBi7zs/2j6azV+38s73wNG9QvoSWV6fLlnmF2L L+s1bKqHFjURqH292WR8jFxDctC0fNuvyU4FOz6rMX6Kl5cG+YLZku/fFWfNnRl0 y/YiYuj2k5kbRr2tBF7vimMf1EbK7I3dAR2Yr2vr6zjw+sbwQ3M87nYtYhCUL0LB yV44raqqdcnE8ba/VsOAYcG6WsZ31cOz1ZbTAKCBlEZBECw+5cBCrsCffI81PDDo 3XoNoweu+AMloTxH44uydhDNQf/Pb3kcgxZmf1cvxRVnvWHV4ROgKxnTYL+zUqrd ccQdW+zpc4uANYwgvLB9VQjlSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJD9vKWk k7jAdUlYNF+8wp34jc5CMB8GA1UdIwQYMBaAFGfzufqqENIMsBfwf8yaFU2ItmOg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTEzRS80RTg1MzFDQTA2 QjUxMUVCOTM3MkQzMkJDNEY5QUUwMi9aX081LXFvUTBneXdGX0JfekpvVlRZaTJZ NkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1pfTzUtcW9RMGd5d0ZfQl96Sm9WVFlpMlk2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTEzRS80RTg1MzFDQTA2QjUxMUVCOTM3MkQzMkJDNEY5QUUwMi9aX081LXFvUTBn eXdGX0JfekpvVlRZaTJZNkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbSai4lWhDO73hex4OJxG7ZRHIHo19Y2MyW1+ip+Zq7pUXlrXx9vio w7+8lUOonOa4Mkx0Hv4g8eoedGj+tDIbpKISLw/4o8r5YvG26z5plbGEEDT/7K1Z pSR0ZqpBXk/mbZbmIJTanBoWbGgDolS/vwhec/gYLku4sSN70/R9ns+HT8tN8Chk oP8tDGwbYUDYqHRcv5v22vqibJ00Qj8ROXmO8gJxqc3f6D4N+RxkrhLnJ44h5gkT yo3OfeTP9GUct+1P5JqGNlE0tlAsM1o+Fktzd5xeFhRbnVm5/RVfkTZHcHv1yTUn hG6cinijEIy1VSpGm2Cwx2N3dj2iwU9H -----END CERTIFICATE-----Generated at Sun Sep 7 14:32:07 2025 by rpki-client