$ rpki-client -vvf rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/Zd_y7j-bsuskVR4dGPHWPewKbhc.mft File: Zd_y7j-bsuskVR4dGPHWPewKbhc.mft (raw, json) Hash identifier: z2NhDEi16bG/YNQOVZ3IZdmaoW/kADwVJJkE35Ej9K8= Subject key identifier: 3E:42:44:9F:3D:5A:C1:E4:55:E4:12:A5:05:0C:3E:7E:59:DD:8A:AD Authority key identifier: 65:DF:F2:EE:3F:9B:B2:EB:24:55:1E:1D:18:F1:D6:3D:EC:0A:6E:17 Certificate issuer: /CN=A91DDCB6/serialNumber=65DFF2EE3F9BB2EB24551E1D18F1D63DEC0A6E17 Certificate serial: 0879 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zd_y7j-bsuskVR4dGPHWPewKbhc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/Zd_y7j-bsuskVR4dGPHWPewKbhc.mft Manifest number: 086D Signing time: Fri 18 Jul 2025 20:55:40 +0000 Manifest this update: Fri 18 Jul 2025 20:55:39 +0000 Manifest next update: Fri 25 Jul 2025 20:55:39 +0000 Files and hashes: 1: Zd_y7j-bsuskVR4dGPHWPewKbhc.crl (hash: wMJyGLJqgZPbCDtxs8Zq4PL480PqgPbsWT6qlZNlLQ4=) 2: 36023BC6D29D11EAA11F7F51C4F9AE02.roa (hash: ef1HFtGWmHcKz9CuwiCCXSfT1VQsZ1MT51qDrYk3OoI=) 3: A7034AFA7F8411EC9036F64CC4F9AE02.roa (hash: f9tQPToB76p1pPXGROGF6QphrQQvfLBw4Gw3PGjwt1Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/Zd_y7j-bsuskVR4dGPHWPewKbhc.crl rsync://rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/Zd_y7j-bsuskVR4dGPHWPewKbhc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zd_y7j-bsuskVR4dGPHWPewKbhc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 20:55:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2169 (0x879) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DDCB6, serialNumber=65DFF2EE3F9BB2EB24551E1D18F1D63DEC0A6E17 Validity Not Before: Jul 18 20:55:39 2025 GMT Not After : Jul 25 20:55:39 2025 GMT Subject: CN=687ab4cc-2bae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:9b:18:e5:b2:c5:77:cb:5d:db:c1:88:06:0a: 92:38:c3:f2:f7:70:02:10:ac:33:6f:5c:08:83:a1: f3:67:96:34:41:32:df:16:bc:71:d5:0a:ca:31:1d: 0f:73:1e:da:1d:2b:da:4d:39:3e:9f:eb:3c:02:ad: b8:b2:2c:ac:ab:2f:22:a4:60:72:8a:bc:c2:d7:b3: f0:12:97:24:b7:c7:b0:1f:e6:41:ae:fc:ad:5c:94: 70:bf:ea:81:32:14:9a:2e:cf:6c:a2:15:24:c6:55: e8:16:31:d0:22:c9:0b:e0:c8:f3:da:a4:cf:78:8e: 33:f7:dd:f2:73:33:f7:86:b9:46:ae:e2:6d:07:20: 50:0a:32:42:d3:16:74:37:09:f8:a1:75:fd:f1:e8: b8:32:d3:17:5f:5e:a7:82:4b:1c:99:18:12:59:e7: f3:c2:04:be:19:08:61:f0:0c:b8:d9:2a:54:76:bd: ca:44:c0:b8:ad:ba:b2:a9:84:47:6b:d7:4e:f5:85: a3:f5:73:f2:e4:c3:1c:de:8a:3a:2f:8a:f6:af:89: d6:fc:b7:96:63:4a:1a:53:92:98:83:97:6d:8f:63: 17:d0:ab:4d:8f:ca:28:6b:d2:e0:9c:6b:40:ec:45: cb:aa:b9:84:2e:db:58:11:f3:34:c1:fe:ea:39:3c: c5:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:42:44:9F:3D:5A:C1:E4:55:E4:12:A5:05:0C:3E:7E:59:DD:8A:AD X509v3 Authority Key Identifier: keyid:65:DF:F2:EE:3F:9B:B2:EB:24:55:1E:1D:18:F1:D6:3D:EC:0A:6E:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/Zd_y7j-bsuskVR4dGPHWPewKbhc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zd_y7j-bsuskVR4dGPHWPewKbhc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/Zd_y7j-bsuskVR4dGPHWPewKbhc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:a4:9e:19:ec:0c:df:8d:b9:51:7d:a0:a7:40:68:69:b7:37: 97:dd:b2:b8:ef:c4:31:1e:4f:50:93:d4:98:34:f8:c3:3b:dc: 15:04:eb:44:d7:1a:0d:09:9e:af:81:81:f1:6d:91:f1:30:8e: 57:5e:ea:66:bf:b4:aa:7b:61:53:ad:5c:31:8e:3b:f8:83:67: fb:ae:c5:10:f1:18:61:b8:c5:47:7f:c6:dc:fd:ac:c2:a5:8e: fb:9a:03:3d:ef:5a:50:e9:79:aa:87:a8:d2:2f:18:d4:ba:12: ad:fe:6d:5f:23:aa:be:97:55:3f:0d:62:7b:51:37:a0:be:4f: 66:9c:c7:e0:77:a3:af:9f:e3:1f:86:b3:f8:1d:13:8c:af:03: d9:76:c2:a3:e4:9c:02:ba:ff:fd:c1:40:1a:ec:04:07:4b:ea: 5a:a2:42:c7:4b:19:b6:eb:e9:73:ed:03:4f:53:97:41:0e:0f: 9f:49:04:e7:fa:67:59:00:97:cd:21:5d:c0:5a:d8:85:a1:0a: a0:de:c2:9c:3e:7c:cc:65:e1:ae:e6:fc:e7:6e:c8:20:73:4d: d5:09:23:6f:38:09:dc:f9:bd:ff:d7:8b:d4:79:f2:9d:c3:63: 7a:78:dc:9c:cc:69:56:a5:55:b2:9e:6e:03:84:18:19:d5:62: 12:51:94:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCHkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RERDQjYxMTAvBgNVBAUTKDY1REZGMkVFM0Y5QkIyRUIyNDU1MUUxRDE4RjFENjNE RUMwQTZFMTcwHhcNMjUwNzE4MjA1NTM5WhcNMjUwNzI1MjA1NTM5WjAYMRYwFAYD VQQDEw02ODdhYjRjYy0yYmFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArJsY5bLFd8td28GIBgqSOMPy93ACEKwzb1wIg6HzZ5Y0QTLfFrxx1QrKMR0P cx7aHSvaTTk+n+s8Aq24siysqy8ipGByirzC17PwEpckt8ewH+ZBrvytXJRwv+qB MhSaLs9sohUkxlXoFjHQIskL4Mjz2qTPeI4z993yczP3hrlGruJtByBQCjJC0xZ0 Nwn4oXX98ei4MtMXX16ngkscmRgSWefzwgS+GQhh8Ay42SpUdr3KRMC4rbqyqYRH a9dO9YWj9XPy5MMc3oo6L4r2r4nW/LeWY0oaU5KYg5dtj2MX0KtNj8ooa9LgnGtA 7EXLqrmELttYEfM0wf7qOTzF5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD5CRJ89 WsHkVeQSpQUMPn5Z3YqtMB8GA1UdIwQYMBaAFGXf8u4/m7LrJFUeHRjx1j3sCm4X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERENCNi9FODgzREZENkND M0QxMUVBOEJDNDVDMjlDNEY5QUUwMi9aZF95N2otYnN1c2tWUjRkR1BIV1Bld0ti aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1pkX3k3ai1ic3Vza1ZSNGRHUEhXUGV3S2JoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RENCNi9FODgzREZENkNDM0QxMUVBOEJDNDVDMjlDNEY5QUUwMi9aZF95N2otYnN1 c2tWUjRkR1BIV1Bld0tiaGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXpJ4Z7AzfjblRfaCnQGhptzeX3bK478QxHk9Qk9SYNPjDO9wVBOtE 1xoNCZ6vgYHxbZHxMI5XXupmv7Sqe2FTrVwxjjv4g2f7rsUQ8RhhuMVHf8bc/azC pY77mgM971pQ6Xmqh6jSLxjUuhKt/m1fI6q+l1U/DWJ7UTegvk9mnMfgd6Ovn+Mf hrP4HROMrwPZdsKj5JwCuv/9wUAa7AQHS+paokLHSxm26+lz7QNPU5dBDg+fSQTn +mdZAJfNIV3AWtiFoQqg3sKcPnzMZeGu5vznbsggc03VCSNvOAnc+b3/14vUefKd w2N6eNyczGlWpVWynm4DhBgZ1WISUZT1 -----END CERTIFICATE-----Generated at Sun Jul 20 20:16:31 2025 by rpki-client