$ rpki-client -vvf rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/Zd_y7j-bsuskVR4dGPHWPewKbhc.mft File: Zd_y7j-bsuskVR4dGPHWPewKbhc.mft (raw, json) Hash identifier: LlzfKo/JCKE15OUKeQBxgB7quwAEJ05nghXP0jUjXmc= Subject key identifier: FC:09:F8:71:66:A6:1B:F0:BD:CC:56:8D:FF:3E:AE:F3:50:A0:7D:6E Authority key identifier: 65:DF:F2:EE:3F:9B:B2:EB:24:55:1E:1D:18:F1:D6:3D:EC:0A:6E:17 Certificate issuer: /CN=A91DDCB6/serialNumber=65DFF2EE3F9BB2EB24551E1D18F1D63DEC0A6E17 Certificate serial: 0892 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zd_y7j-bsuskVR4dGPHWPewKbhc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/Zd_y7j-bsuskVR4dGPHWPewKbhc.mft Manifest number: 0886 Signing time: Thu 04 Sep 2025 20:51:27 +0000 Manifest this update: Thu 04 Sep 2025 20:51:27 +0000 Manifest next update: Thu 11 Sep 2025 20:51:27 +0000 Files and hashes: 1: Zd_y7j-bsuskVR4dGPHWPewKbhc.crl (hash: gJQjO1O4TjfDYBF0GvzkJZSjG8K2/5wU6gE+3xcqpjI=) 2: 36023BC6D29D11EAA11F7F51C4F9AE02.roa (hash: ef1HFtGWmHcKz9CuwiCCXSfT1VQsZ1MT51qDrYk3OoI=) 3: A7034AFA7F8411EC9036F64CC4F9AE02.roa (hash: f9tQPToB76p1pPXGROGF6QphrQQvfLBw4Gw3PGjwt1Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/Zd_y7j-bsuskVR4dGPHWPewKbhc.crl rsync://rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/Zd_y7j-bsuskVR4dGPHWPewKbhc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zd_y7j-bsuskVR4dGPHWPewKbhc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 20:51:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2194 (0x892) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DDCB6, serialNumber=65DFF2EE3F9BB2EB24551E1D18F1D63DEC0A6E17 Validity Not Before: Sep 4 20:51:27 2025 GMT Not After : Sep 11 20:51:27 2025 GMT Subject: CN=68b9fbcf-3c6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:ff:29:95:e9:6a:ca:2d:60:eb:86:39:96:34: 93:25:83:ac:ba:fa:12:84:0a:ec:87:70:1d:69:75: f5:36:24:ac:d9:9c:10:04:ab:30:d4:9d:b8:77:60: e7:f1:c8:9a:58:fd:b5:6b:20:16:5c:a4:6b:57:94: 9d:6c:8f:e0:1f:1f:84:12:3c:0b:fa:74:ed:e3:ba: 81:76:22:04:39:24:b1:71:33:ad:83:f8:c5:1e:bc: 6e:2c:d0:31:55:11:17:a1:91:96:8b:9c:a5:02:59: 2a:4f:c1:37:90:2a:26:49:19:9f:7e:68:d4:b4:c9: 0a:2f:35:36:45:78:8f:43:cd:37:90:fc:c2:10:fc: 5c:bd:40:43:7f:b7:54:d8:f4:3d:51:72:eb:11:0a: 36:0d:33:ee:a5:a3:e6:0f:1c:20:6c:ba:d9:cf:a1: ba:c3:29:1b:d1:72:5e:9a:a6:cc:5e:fb:dc:53:ad: 67:48:f5:0a:3e:a0:6c:ba:9c:e6:5f:12:0f:b0:ff: ee:96:d4:a2:b8:98:8c:08:c7:b0:f0:4c:a1:97:cb: 36:61:e9:bb:1c:bc:82:1c:93:22:e9:b8:2e:cd:33: 81:1d:14:e9:31:07:0a:ab:1c:31:44:7a:65:93:eb: ef:17:ea:ba:15:25:b2:cc:d6:13:6b:e9:b2:6d:b6: 9e:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:09:F8:71:66:A6:1B:F0:BD:CC:56:8D:FF:3E:AE:F3:50:A0:7D:6E X509v3 Authority Key Identifier: keyid:65:DF:F2:EE:3F:9B:B2:EB:24:55:1E:1D:18:F1:D6:3D:EC:0A:6E:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/Zd_y7j-bsuskVR4dGPHWPewKbhc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zd_y7j-bsuskVR4dGPHWPewKbhc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/Zd_y7j-bsuskVR4dGPHWPewKbhc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:15:61:bb:9f:6f:07:fb:c7:af:56:3c:25:4f:5e:23:b6:ba: 08:6a:90:7a:57:37:4d:7b:78:72:a1:81:5c:ad:4e:3f:3d:15: a5:24:f5:1a:6e:67:7b:ca:07:29:d6:0f:61:07:8e:ae:af:f0: 65:54:b0:d1:e5:d4:a9:5d:87:a5:ff:42:93:91:61:7c:bb:61: 03:de:c8:f1:3d:18:d2:76:f2:81:9e:5e:3f:21:cc:8b:44:a2: c3:ce:bc:c1:78:7a:87:65:49:eb:af:bd:77:77:83:02:8b:cf: 4f:de:f1:e4:26:0c:f0:a7:18:59:cd:00:20:f0:be:bc:3f:b2: 53:3e:40:d1:25:3e:35:83:37:38:8a:2e:d7:86:46:a1:23:6b: 0d:14:97:30:17:53:8e:dc:75:83:82:0a:43:8e:20:a9:18:99: 09:f6:4f:9d:05:c7:13:e6:f8:23:b1:2b:65:29:4c:42:42:11: c7:05:d2:88:9a:0c:3f:d5:c3:66:39:dd:76:9d:1c:2c:d7:ce: 2e:30:91:61:6d:5c:f1:e7:2a:51:ef:83:6c:60:26:3c:c7:5d: 25:11:cb:08:80:e7:0f:f3:20:91:c1:58:4d:86:ec:9c:cd:f4: ae:29:8e:a7:c8:50:ea:4a:39:56:de:da:dc:0b:82:42:48:6d: 76:91:53:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCJIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RERDQjYxMTAvBgNVBAUTKDY1REZGMkVFM0Y5QkIyRUIyNDU1MUUxRDE4RjFENjNE RUMwQTZFMTcwHhcNMjUwOTA0MjA1MTI3WhcNMjUwOTExMjA1MTI3WjAYMRYwFAYD VQQDEw02OGI5ZmJjZi0zYzZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8P8plelqyi1g64Y5ljSTJYOsuvoShArsh3AdaXX1NiSs2ZwQBKsw1J24d2Dn 8ciaWP21ayAWXKRrV5SdbI/gHx+EEjwL+nTt47qBdiIEOSSxcTOtg/jFHrxuLNAx VREXoZGWi5ylAlkqT8E3kComSRmffmjUtMkKLzU2RXiPQ803kPzCEPxcvUBDf7dU 2PQ9UXLrEQo2DTPupaPmDxwgbLrZz6G6wykb0XJemqbMXvvcU61nSPUKPqBsupzm XxIPsP/ultSiuJiMCMew8Eyhl8s2Yem7HLyCHJMi6bguzTOBHRTpMQcKqxwxRHpl k+vvF+q6FSWyzNYTa+mybbaeAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPwJ+HFm phvwvcxWjf8+rvNQoH1uMB8GA1UdIwQYMBaAFGXf8u4/m7LrJFUeHRjx1j3sCm4X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERENCNi9FODgzREZENkND M0QxMUVBOEJDNDVDMjlDNEY5QUUwMi9aZF95N2otYnN1c2tWUjRkR1BIV1Bld0ti aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1pkX3k3ai1ic3Vza1ZSNGRHUEhXUGV3S2JoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RENCNi9FODgzREZENkNDM0QxMUVBOEJDNDVDMjlDNEY5QUUwMi9aZF95N2otYnN1 c2tWUjRkR1BIV1Bld0tiaGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUFWG7n28H+8evVjwlT14jtroIapB6VzdNe3hyoYFcrU4/PRWlJPUa bmd7ygcp1g9hB46ur/BlVLDR5dSpXYel/0KTkWF8u2ED3sjxPRjSdvKBnl4/IcyL RKLDzrzBeHqHZUnrr713d4MCi89P3vHkJgzwpxhZzQAg8L68P7JTPkDRJT41gzc4 ii7XhkahI2sNFJcwF1OO3HWDggpDjiCpGJkJ9k+dBccT5vgjsStlKUxCQhHHBdKI mgw/1cNmOd12nRws184uMJFhbVzx5ypR74NsYCY8x10lEcsIgOcP8yCRwVhNhuyc zfSuKY6nyFDqSjlW3trcC4JCSG12kVOH -----END CERTIFICATE-----Generated at Sat Sep 6 16:31:18 2025 by rpki-client