$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.mft File: zdfMWZTjQE5sI66UKlkhi1fFwTE.mft (raw, json) Hash identifier: xaSAzWsWibo4mFkD4+pNLp2fvkgXHdoLD0ASPNBbG1w= Subject key identifier: DC:6F:FA:C8:20:F0:15:66:41:2C:D8:5A:11:2C:2B:B8:A8:87:89:5F Authority key identifier: CD:D7:CC:59:94:E3:40:4E:6C:23:AE:94:2A:59:21:8B:57:C5:C1:31 Certificate issuer: /CN=A91EA6A1/serialNumber=CDD7CC5994E3404E6C23AE942A59218B57C5C131 Certificate serial: 01AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zdfMWZTjQE5sI66UKlkhi1fFwTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.mft Manifest number: 01A2 Signing time: Thu 21 Aug 2025 03:23:23 +0000 Manifest this update: Thu 21 Aug 2025 03:23:22 +0000 Manifest next update: Thu 28 Aug 2025 03:23:22 +0000 Files and hashes: 1: zdfMWZTjQE5sI66UKlkhi1fFwTE.crl (hash: NS9OwCCshyALuJqvSa+gpg3QVlpLs8fnPeNyc+9Tq8w=) 2: 1D45B78003C211EEB2272068C4F9AE02.roa (hash: F77Ohmhr+pSmcNMBmLDootHjfm49x1IrVzvlaFQhQZo=) 3: 1E7F6B9603C211EEB2272068C4F9AE02.roa (hash: T4SsvxhOJ8NmSlYF5F0QyIn0S5EcCqMNYfFfIGZadlw=) 4: 1DDE652A03C211EEB2272068C4F9AE02.roa (hash: 3jNUoCccmrM56z8z19CQSeUZl708g7HitdvgnX+ByM8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.crl rsync://rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zdfMWZTjQE5sI66UKlkhi1fFwTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 03:23:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 427 (0x1ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA6A1, serialNumber=CDD7CC5994E3404E6C23AE942A59218B57C5C131 Validity Not Before: Aug 21 03:23:22 2025 GMT Not After : Aug 28 03:23:22 2025 GMT Subject: CN=68a6912b-fc7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:5d:eb:96:3f:88:12:ad:b9:91:6d:de:b6:5f: 12:bc:16:f2:fc:dc:6d:01:83:0e:de:d3:a3:30:d2: b8:2b:31:6a:43:38:23:b1:73:59:2c:ee:94:42:50: 4e:67:b2:2e:1f:31:7d:4f:d5:d4:a4:11:f1:3a:d2: 1b:a1:34:e3:5f:19:ea:de:04:a3:2d:56:94:ed:b7: 58:56:a6:67:49:1a:bd:5c:6c:56:f3:08:44:70:36: 5b:b6:d5:74:4d:90:01:ca:c3:cf:66:68:2d:12:1a: ae:5f:c4:db:f9:74:5b:42:8c:76:0a:dd:52:62:a2: cd:ab:d1:23:ff:05:2b:f2:cd:e8:42:d0:ac:e1:5f: 63:fa:be:af:e8:b2:10:6d:ac:e3:61:53:a0:46:2e: 9c:18:21:cf:2a:13:c3:12:a4:13:7f:33:ae:85:1d: 8f:6c:8a:77:5f:91:4c:a6:8d:ee:d7:d0:a1:5d:b4: 11:c2:eb:c9:4a:6f:a1:1b:db:db:27:87:d1:1f:e4: 21:c3:d3:f6:83:aa:1f:5e:da:14:88:f1:4c:d7:a3: d3:16:cd:71:56:a7:99:bc:6f:56:46:d9:f0:6b:5f: 91:fc:61:cd:c2:b0:b3:b0:b8:de:e9:12:ae:d4:f0: 7f:d8:78:24:db:37:91:b8:58:69:27:22:7c:67:e0: 29:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:6F:FA:C8:20:F0:15:66:41:2C:D8:5A:11:2C:2B:B8:A8:87:89:5F X509v3 Authority Key Identifier: keyid:CD:D7:CC:59:94:E3:40:4E:6C:23:AE:94:2A:59:21:8B:57:C5:C1:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zdfMWZTjQE5sI66UKlkhi1fFwTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cd:76:f9:fb:72:3c:40:8e:bf:fb:42:c1:a8:bf:2c:6b:bd:0c: 6c:7a:5f:04:fd:67:32:eb:78:d1:36:28:d2:15:d0:de:b4:7d: 19:5f:2c:fc:4d:e9:76:07:b2:8e:41:bc:b9:38:d4:7c:34:51: 86:66:5e:5f:55:86:79:c5:31:d6:7d:34:d3:55:ac:f8:0d:6f: 54:f5:b5:04:2d:ff:5a:fd:9e:ce:b9:17:5c:79:43:cd:59:4a: bc:78:df:e5:8f:55:46:f8:19:0a:a7:61:39:ec:cb:39:e8:20: 35:58:ec:e7:43:ae:4d:d0:f5:f4:6a:76:71:62:2b:11:a0:bc: 29:f9:24:3c:6b:21:4e:50:e0:10:01:61:ce:44:7f:d1:f5:94: 8e:c9:93:3e:7f:db:0c:f2:83:f2:33:f6:2b:c6:ed:bf:12:a2: 58:e4:53:4e:29:3e:92:33:79:fd:51:0d:2a:3a:81:fd:c8:36: 2a:65:1d:d4:82:5a:d2:eb:0c:d3:9a:df:fd:69:9d:61:08:52: 05:7c:e6:92:78:1b:83:7f:3e:e0:d1:6f:e4:f6:21:a3:d9:05: 67:7a:2a:ac:ea:2c:cb:7a:92:2d:7f:bc:a8:16:56:d2:ce:92: db:8d:bf:60:d1:f9:fb:78:41:21:fd:48:1c:02:a7:0e:89:9c: d1:49:a5:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE2QTExMTAvBgNVBAUTKENERDdDQzU5OTRFMzQwNEU2QzIzQUU5NDJBNTkyMThC NTdDNUMxMzEwHhcNMjUwODIxMDMyMzIyWhcNMjUwODI4MDMyMzIyWjAYMRYwFAYD VQQDEw02OGE2OTEyYi1mYzdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs13rlj+IEq25kW3etl8SvBby/NxtAYMO3tOjMNK4KzFqQzgjsXNZLO6UQlBO Z7IuHzF9T9XUpBHxOtIboTTjXxnq3gSjLVaU7bdYVqZnSRq9XGxW8whEcDZbttV0 TZABysPPZmgtEhquX8Tb+XRbQox2Ct1SYqLNq9Ej/wUr8s3oQtCs4V9j+r6v6LIQ bazjYVOgRi6cGCHPKhPDEqQTfzOuhR2PbIp3X5FMpo3u19ChXbQRwuvJSm+hG9vb J4fRH+Qhw9P2g6ofXtoUiPFM16PTFs1xVqeZvG9WRtnwa1+R/GHNwrCzsLje6RKu 1PB/2Hgk2zeRuFhpJyJ8Z+ApEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNxv+sgg 8BVmQSzYWhEsK7ioh4lfMB8GA1UdIwQYMBaAFM3XzFmU40BObCOulCpZIYtXxcEx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTZBMS8zMTVCN0UwOEZG N0IxMUVEQTYyREYxMEVDNEY5QUUwMi96ZGZNV1pUalFFNXNJNjZVS2xraGkxZkZ3 VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pkZk1XWlRqUUU1c0k2NlVLbGtoaTFmRndURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTZBMS8zMTVCN0UwOEZGN0IxMUVEQTYyREYxMEVDNEY5QUUwMi96ZGZNV1pUalFF NXNJNjZVS2xraGkxZkZ3VEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDNdvn7cjxAjr/7QsGovyxrvQxsel8E/Wcy63jRNijSFdDetH0ZXyz8 Tel2B7KOQby5ONR8NFGGZl5fVYZ5xTHWfTTTVaz4DW9U9bUELf9a/Z7OuRdceUPN WUq8eN/lj1VG+BkKp2E57Ms56CA1WOznQ65N0PX0anZxYisRoLwp+SQ8ayFOUOAQ AWHORH/R9ZSOyZM+f9sM8oPyM/Yrxu2/EqJY5FNOKT6SM3n9UQ0qOoH9yDYqZR3U glrS6wzTmt/9aZ1hCFIFfOaSeBuDfz7g0W/k9iGj2QVneiqs6izLepItf7yoFlbS zpLbjb9g0fn7eEEh/UgcAqcOiZzRSaVG -----END CERTIFICATE-----Generated at Fri Aug 22 16:29:50 2025 by rpki-client