$ rpki-client -vvf rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/Zd_y7j-bsuskVR4dGPHWPewKbhc.mft File: Zd_y7j-bsuskVR4dGPHWPewKbhc.mft (raw, json) Hash identifier: vjoJffd8gwH/o9V6rGHr4x6k/+hRsz7+vzy/HW7+C9U= Subject key identifier: 0D:1E:B5:2C:52:10:C7:8F:5E:20:56:8E:CF:BE:90:24:E8:57:99:19 Authority key identifier: 65:DF:F2:EE:3F:9B:B2:EB:24:55:1E:1D:18:F1:D6:3D:EC:0A:6E:17 Certificate issuer: /CN=A91DDCB6/serialNumber=65DFF2EE3F9BB2EB24551E1D18F1D63DEC0A6E17 Certificate serial: 08AD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zd_y7j-bsuskVR4dGPHWPewKbhc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/Zd_y7j-bsuskVR4dGPHWPewKbhc.mft Manifest number: 089F Signing time: Mon 20 Oct 2025 21:27:50 +0000 Manifest this update: Mon 20 Oct 2025 21:27:49 +0000 Manifest next update: Mon 27 Oct 2025 21:27:49 +0000 Files and hashes: 1: Zd_y7j-bsuskVR4dGPHWPewKbhc.crl (hash: L/ap7E6A9ww6aw3FZ2Ey6jxodPJ4ZWCN1kPs9VkZVAA=) 2: 36023BC6D29D11EAA11F7F51C4F9AE02.roa (hash: Kko5Py9oYVoGdTuR3TmCVY6w0QuvDF7yamqA7Lq7XfE=) 3: A7034AFA7F8411EC9036F64CC4F9AE02.roa (hash: gb3eIqGKtDZZMjsIarWLCbAcIGW3eUHFzm27i/K2y8U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/Zd_y7j-bsuskVR4dGPHWPewKbhc.crl rsync://rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/Zd_y7j-bsuskVR4dGPHWPewKbhc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zd_y7j-bsuskVR4dGPHWPewKbhc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 21:27:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2221 (0x8ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DDCB6, serialNumber=65DFF2EE3F9BB2EB24551E1D18F1D63DEC0A6E17 Validity Not Before: Oct 20 21:27:49 2025 GMT Not After : Oct 27 21:27:49 2025 GMT Subject: CN=68f6a955-3bf7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:36:8b:7c:3b:5e:b8:a4:8a:82:67:55:41:f7: 95:03:6d:35:ad:ad:cb:de:4c:2f:0b:64:47:c4:c6: ab:af:eb:09:36:cd:69:ca:00:00:19:e9:af:9a:82: 17:88:a1:0f:c9:e0:ee:09:42:1f:57:24:7c:7c:53: e4:f5:1e:ea:31:5d:0b:ac:65:8d:24:45:8a:77:e4: 48:26:b3:6f:58:63:81:d2:95:a1:bf:45:50:ce:36: de:7d:17:7c:40:fb:91:3c:34:51:09:6c:bb:51:c9: 92:ff:cb:93:fd:e3:80:26:91:01:03:f1:88:f1:e5: 1f:6b:c1:bc:8d:ed:32:29:bf:4b:97:0b:ee:d9:d6: ef:2f:d4:1f:3a:cd:06:ad:cb:2e:5b:d7:ad:71:cc: 13:4e:86:51:11:55:d1:0f:0d:dd:80:b8:6c:05:c4: 0d:58:13:41:e9:50:d9:e1:d2:97:a4:2c:bd:2f:30: 3f:38:de:07:cd:3d:6e:8a:54:e5:ef:d5:7a:a0:02: e4:ef:9d:ef:1d:bc:5f:af:9b:b1:71:55:38:1d:69: 9e:a4:d8:2b:02:90:4a:16:5f:2c:03:77:7f:53:a5: bf:23:fd:3a:6c:a8:f3:2f:dd:fe:f0:2b:1a:87:a2: 74:b7:d5:26:8b:ef:44:25:63:09:b7:d7:ae:2c:c8: cc:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:1E:B5:2C:52:10:C7:8F:5E:20:56:8E:CF:BE:90:24:E8:57:99:19 X509v3 Authority Key Identifier: keyid:65:DF:F2:EE:3F:9B:B2:EB:24:55:1E:1D:18:F1:D6:3D:EC:0A:6E:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/Zd_y7j-bsuskVR4dGPHWPewKbhc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zd_y7j-bsuskVR4dGPHWPewKbhc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/Zd_y7j-bsuskVR4dGPHWPewKbhc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:ce:e9:ba:18:22:f7:eb:46:5e:98:41:24:09:11:dc:5e:b3: fd:fe:45:b1:9b:a7:6b:ca:94:68:85:c7:69:f3:77:f2:1e:5a: 9b:03:2d:a9:85:bc:76:dd:8e:b4:dd:32:8f:7b:2f:94:77:b0: 93:d1:8f:22:99:83:d7:ec:35:1a:6f:41:48:a7:0e:a6:4f:e7: 9a:24:db:cd:6d:12:33:b5:ce:9f:5c:3e:a6:98:cb:52:86:d4: 30:da:c1:3d:d1:81:1e:2d:cd:ad:9b:78:5b:be:60:32:34:1e: cb:1d:8e:77:71:05:be:ae:73:dd:cb:06:57:94:26:66:45:6c: 92:a3:4a:6f:db:57:58:b2:ad:a2:c3:de:06:60:ad:f0:bc:3a: 38:42:13:b7:d7:38:59:f1:5f:63:ec:7b:04:38:5f:6e:1c:65: 11:5e:39:b5:68:3d:bb:93:5d:38:69:63:1d:5d:fc:42:b8:62: d9:ae:e3:d1:13:06:6b:c1:22:72:38:28:a9:1a:82:52:85:19: 6e:05:ac:81:3b:4c:a3:c2:d3:b9:7a:e0:35:b3:63:ba:97:40: 38:ab:1b:c1:d1:17:a5:25:4c:fa:9f:4c:42:4a:95:e5:ba:cc: 98:0a:b8:52:b0:b6:66:a0:78:e9:2b:b7:f9:b9:2a:49:b3:fc: 4b:47:8d:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RERDQjYxMTAvBgNVBAUTKDY1REZGMkVFM0Y5QkIyRUIyNDU1MUUxRDE4RjFENjNE RUMwQTZFMTcwHhcNMjUxMDIwMjEyNzQ5WhcNMjUxMDI3MjEyNzQ5WjAYMRYwFAYD VQQDEw02OGY2YTk1NS0zYmY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApjaLfDteuKSKgmdVQfeVA201ra3L3kwvC2RHxMarr+sJNs1pygAAGemvmoIX iKEPyeDuCUIfVyR8fFPk9R7qMV0LrGWNJEWKd+RIJrNvWGOB0pWhv0VQzjbefRd8 QPuRPDRRCWy7UcmS/8uT/eOAJpEBA/GI8eUfa8G8je0yKb9Llwvu2dbvL9QfOs0G rcsuW9etccwTToZREVXRDw3dgLhsBcQNWBNB6VDZ4dKXpCy9LzA/ON4HzT1uilTl 79V6oALk753vHbxfr5uxcVU4HWmepNgrApBKFl8sA3d/U6W/I/06bKjzL93+8Csa h6J0t9Umi+9EJWMJt9euLMjM5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA0etSxS EMePXiBWjs++kCToV5kZMB8GA1UdIwQYMBaAFGXf8u4/m7LrJFUeHRjx1j3sCm4X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERENCNi9FODgzREZENkND M0QxMUVBOEJDNDVDMjlDNEY5QUUwMi9aZF95N2otYnN1c2tWUjRkR1BIV1Bld0ti aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1pkX3k3ai1ic3Vza1ZSNGRHUEhXUGV3S2JoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RENCNi9FODgzREZENkNDM0QxMUVBOEJDNDVDMjlDNEY5QUUwMi9aZF95N2otYnN1 c2tWUjRkR1BIV1Bld0tiaGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSzum6GCL360ZemEEkCRHcXrP9/kWxm6drypRohcdp83fyHlqbAy2p hbx23Y603TKPey+Ud7CT0Y8imYPX7DUab0FIpw6mT+eaJNvNbRIztc6fXD6mmMtS htQw2sE90YEeLc2tm3hbvmAyNB7LHY53cQW+rnPdywZXlCZmRWySo0pv21dYsq2i w94GYK3wvDo4QhO31zhZ8V9j7HsEOF9uHGURXjm1aD27k104aWMdXfxCuGLZruPR EwZrwSJyOCipGoJShRluBayBO0yjwtO5euA1s2O6l0A4qxvB0RelJUz6n0xCSpXl usyYCrhSsLZmoHjpK7f5uSpJs/xLR40c -----END CERTIFICATE-----Generated at Wed Oct 22 17:59:10 2025 by rpki-client