$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft File: zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft (raw, json) Hash identifier: PRf0Sxj2EnDNjf7InWIrhHMpYydp/5iAF8z69Cgl6yE= Subject key identifier: 1D:29:5D:80:51:30:57:85:EE:CD:52:55:9C:80:12:97:40:53:91:08 Authority key identifier: CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0 Certificate issuer: /CN=A91EBFB0/serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0 Certificate serial: 0CC3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft Manifest number: 0CBC Signing time: Thu 18 Sep 2025 18:21:41 +0000 Manifest this update: Thu 18 Sep 2025 18:21:41 +0000 Manifest next update: Thu 25 Sep 2025 18:21:41 +0000 Files and hashes: 1: zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl (hash: NRo76Yph7bW1j4UKcpDkaN7QnhHtQjutULHKZ7+60LM=) 2: F690CAECF87D11E9A746D05BC4F9AE02.roa (hash: PKzsRoQOFkH0aPoaShEpuvQ+omyVkcjK/WY8mjX8BEM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 18:21:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3267 (0xcc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBFB0, serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0 Validity Not Before: Sep 18 18:21:41 2025 GMT Not After : Sep 25 18:21:41 2025 GMT Subject: CN=68cc4db5-134e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c6:52:d6:6f:b9:9a:7e:7e:05:1c:b6:10:79: 0f:b6:fb:af:fc:c0:66:e9:47:3a:63:52:b5:53:7e: f1:d3:93:4f:8e:50:7c:c9:ef:92:b2:81:48:b3:12: 72:f8:e8:1e:56:85:c3:94:fe:5a:10:3c:19:b7:2d: 8a:17:e7:15:54:9b:97:9d:e2:f1:10:f9:3e:fc:d6: f9:6d:a3:8e:3f:bf:c3:f6:75:b7:d5:bb:aa:57:a0: fb:79:a9:b0:f1:35:68:0d:a4:27:98:85:36:a9:b0: 42:80:3c:cf:1c:4a:b1:0a:32:3d:8c:0f:fd:44:4b: f9:6a:7b:07:20:b2:45:1f:06:9c:57:da:70:61:b6: 7b:c0:8e:2f:ee:a5:e8:31:2b:10:46:6e:c9:c1:ee: c3:6b:bb:a0:37:59:c1:1a:bc:7f:02:f7:0a:81:f8: f6:bd:3a:f8:13:e9:cf:49:ed:b3:90:fc:da:56:9b: 17:d6:98:03:5b:86:7f:5c:fc:e0:e9:56:20:02:65: 2f:c0:90:3b:71:51:57:c8:3f:df:83:8b:3d:12:34: 2c:f2:ce:bb:b4:d5:fd:04:fb:2d:c0:e0:4e:07:d4: 2d:6d:68:ea:ac:e8:61:16:20:90:33:dc:00:1c:a3: 84:b6:21:0f:e5:c6:96:27:4a:73:09:8e:99:33:35: 35:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:29:5D:80:51:30:57:85:EE:CD:52:55:9C:80:12:97:40:53:91:08 X509v3 Authority Key Identifier: keyid:CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:bd:56:5f:10:f9:47:ca:5b:d1:7f:95:cb:b1:0f:5b:8c:4a: ac:95:2d:e8:2e:c3:eb:c1:15:4e:bd:81:88:1d:75:fa:16:00: fc:22:c3:2b:3b:87:82:d1:95:96:2f:82:50:55:f0:12:90:ec: cc:b6:d0:db:10:87:cb:1e:e8:0f:77:5c:ef:38:67:03:68:84: 95:01:1a:5c:a1:07:f9:31:d9:2b:7b:41:11:ac:b4:24:78:be: 3c:70:47:87:76:4b:98:47:db:26:00:26:b1:8b:9a:d9:81:0b: 13:f9:f1:20:2b:53:f1:6b:01:a7:0c:c7:15:2b:b7:98:b5:78: fc:bd:08:62:2f:50:bf:6e:e0:d0:de:a3:ad:b5:e1:3a:39:b6: d4:42:64:fb:2c:93:d9:b4:4e:66:f1:e8:3d:a4:2c:87:44:02: 92:70:02:c5:84:b1:d0:96:14:ed:21:9c:f7:fd:f8:b4:05:f4: c2:0e:8f:92:ef:31:56:92:96:8f:87:d7:28:dc:87:e8:38:94: 83:03:ca:12:1e:f4:dd:70:2b:37:b5:42:75:f6:16:5e:87:e4: c4:69:00:40:2f:1b:04:a4:7c:67:a1:ed:44:ca:65:4c:b0:f3: 73:b1:e3:22:3b:2b:6a:2b:99:77:6c:80:57:90:f7:ce:ef:ee: 0d:5f:bf:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGQjAxMTAvBgNVBAUTKENDODUwOUQzMUZCNjNBOERERDZCRjJEM0Q4NEM3QkMw QjJCQTNGQzAwHhcNMjUwOTE4MTgyMTQxWhcNMjUwOTI1MTgyMTQxWjAYMRYwFAYD VQQDEw02OGNjNGRiNS0xMzRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAucZS1m+5mn5+BRy2EHkPtvuv/MBm6Uc6Y1K1U37x05NPjlB8ye+SsoFIsxJy +OgeVoXDlP5aEDwZty2KF+cVVJuXneLxEPk+/Nb5baOOP7/D9nW31buqV6D7eamw 8TVoDaQnmIU2qbBCgDzPHEqxCjI9jA/9REv5ansHILJFHwacV9pwYbZ7wI4v7qXo MSsQRm7Jwe7Da7ugN1nBGrx/AvcKgfj2vTr4E+nPSe2zkPzaVpsX1pgDW4Z/XPzg 6VYgAmUvwJA7cVFXyD/fg4s9EjQs8s67tNX9BPstwOBOB9QtbWjqrOhhFiCQM9wA HKOEtiEP5caWJ0pzCY6ZMzU1KwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB0pXYBR MFeF7s1SVZyAEpdAU5EIMB8GA1UdIwQYMBaAFMyFCdMftjqN3Wvy09hMe8Cyuj/A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZCMC9BM0FCNDNCMkY4 N0MxMUU5QUEyQ0YxNThDNEY5QUUwMi96SVVKMHgtMk9vM2RhX0xUMkV4N3dMSzZQ OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pJVUoweC0yT28zZGFfTFQyRXg3d0xLNlA4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkZCMC9BM0FCNDNCMkY4N0MxMUU5QUEyQ0YxNThDNEY5QUUwMi96SVVKMHgtMk9v M2RhX0xUMkV4N3dMSzZQOEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkvVZfEPlHylvRf5XLsQ9bjEqslS3oLsPrwRVOvYGIHXX6FgD8IsMr O4eC0ZWWL4JQVfASkOzMttDbEIfLHugPd1zvOGcDaISVARpcoQf5Mdkre0ERrLQk eL48cEeHdkuYR9smACaxi5rZgQsT+fEgK1PxawGnDMcVK7eYtXj8vQhiL1C/buDQ 3qOtteE6ObbUQmT7LJPZtE5m8eg9pCyHRAKScALFhLHQlhTtIZz3/fi0BfTCDo+S 7zFWkpaPh9co3IfoOJSDA8oSHvTdcCs3tUJ19hZeh+TEaQBALxsEpHxnoe1EymVM sPNzseMiOytqK5l3bIBXkPfO7+4NX7+T -----END CERTIFICATE-----Generated at Fri Sep 19 13:58:48 2025 by rpki-client