$ rpki-client -vvf rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft File: zFkhdtiMQj-IWbUYtq0zT_92dAk.mft (raw, json) Hash identifier: cN/38TY4CSchPrG2AKw7bsD97TnnoKN9T7H9Dfp7gcU= Subject key identifier: 0F:5C:47:1F:83:08:A4:2D:4C:85:4B:82:E8:C4:FE:03:0E:C8:76:2B Authority key identifier: CC:59:21:76:D8:8C:42:3F:88:59:B5:18:B6:AD:33:4F:FF:76:74:09 Certificate issuer: /CN=A91F67BB/serialNumber=CC592176D88C423F8859B518B6AD334FFF767409 Certificate serial: 117C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft Manifest number: 115D Signing time: Sat 06 Sep 2025 17:20:53 +0000 Manifest this update: Sat 06 Sep 2025 17:20:53 +0000 Manifest next update: Sat 13 Sep 2025 17:20:53 +0000 Files and hashes: 1: zFkhdtiMQj-IWbUYtq0zT_92dAk.crl (hash: sF/Yi8DP9o8DBYqbx/JwHQB9hY4LJ6R85wqL/F/+wzo=) 2: 23A0D39C0F1D11E991F4271EC4F9AE02.roa (hash: LI5814/1mo8RhGHDIyDmTnyAaT8jPK8eiZW8nnVoECM=) 3: 5488F6EA0F1A11E9B3F2A713C4F9AE02.roa (hash: KE984DbFRTO0XDJnJvkUh9nTQI9OdADddfHh/b8sXns=) 4: 53BDA2F60F1A11E9B3F2A713C4F9AE02.roa (hash: tG0xAoHX5Jrg4VXIV0PMgN27hGtGNiwPzNpPEMcc5ZU=) 5: 552292460F1A11E9B3F2A713C4F9AE02.roa (hash: NlRxG3SgenSihBb1Uz1mdp6In7PIY3SWzoat7OXr7O8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.crl rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 17:20:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4476 (0x117c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F67BB, serialNumber=CC592176D88C423F8859B518B6AD334FFF767409 Validity Not Before: Sep 6 17:20:53 2025 GMT Not After : Sep 13 17:20:53 2025 GMT Subject: CN=68bc6d75-ba16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:23:c4:20:bc:7f:c1:96:4c:6c:38:1b:4b:6a: 4c:93:0b:7a:f8:52:88:fb:9e:3e:d1:e9:34:08:df: e9:1d:14:eb:6a:f2:c2:3a:59:8b:73:7a:0a:23:11: 52:80:0f:73:1a:41:d9:29:63:26:11:6b:d0:0d:c4: 75:4d:1b:58:f4:a6:3b:3f:b8:e6:9d:0d:f5:8f:30: 73:56:b4:b5:9a:f3:d1:e3:f1:19:84:4f:1f:85:d7: 43:fc:af:71:90:2a:f0:fc:34:c8:94:b2:d7:e2:cf: a6:9f:71:64:f0:2f:9d:40:8e:1b:2c:8b:1a:fb:57: c6:6a:5a:0f:4a:aa:17:38:e7:4f:24:10:44:5e:bf: 92:5c:cc:a4:c9:29:e6:97:e9:42:d0:8c:09:df:c1: 56:82:f7:5e:5f:1a:f1:c6:f0:ea:96:6a:3b:de:e9: 97:b8:91:07:c6:54:8e:6f:8f:20:79:b9:dd:cc:02: 91:5d:e5:f5:01:e1:17:0f:d4:40:8a:7d:79:38:f4: c9:9d:57:e0:22:f1:cc:3d:9b:bb:37:1c:6d:da:9b: 16:69:13:e0:ca:e4:cc:a6:76:cb:90:f1:ce:20:79: 08:19:24:db:79:45:d0:1d:bb:5e:2a:56:6a:e2:96: b6:51:cc:66:ac:d2:a3:f1:54:a1:05:54:b4:f3:b6: 39:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:5C:47:1F:83:08:A4:2D:4C:85:4B:82:E8:C4:FE:03:0E:C8:76:2B X509v3 Authority Key Identifier: keyid:CC:59:21:76:D8:8C:42:3F:88:59:B5:18:B6:AD:33:4F:FF:76:74:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d0:1f:eb:10:c5:ec:62:66:12:36:a5:5f:92:7b:d6:c4:41:2b: 71:1c:65:09:87:9e:b4:dd:1d:55:21:53:9b:22:84:ce:99:34: 5f:19:e3:27:ad:9d:b2:97:c4:c4:5f:c8:ff:5e:ec:79:45:65: 84:06:b5:f7:02:a4:9d:15:fa:25:cc:d1:e4:33:b6:67:b8:a6: 40:31:39:42:72:39:82:12:28:df:35:ea:c5:b5:5a:f0:9f:51: 1e:e4:28:c2:fe:3f:6f:52:c8:d2:c3:ab:36:d0:d4:52:c4:7d: 26:4b:48:e9:fd:92:fe:4d:0a:25:60:e1:6f:bd:3f:b6:c1:e2: 19:e0:b0:ea:63:7d:09:3c:22:ce:d4:a7:0f:55:df:6c:23:9a: 1c:62:93:77:08:83:41:6d:0e:68:2a:f0:b4:48:9c:17:d7:76: eb:4e:ab:83:a8:41:a5:09:d1:af:89:92:b1:60:02:b2:11:68: 21:af:a4:2c:ca:37:92:08:84:90:de:13:b6:d0:fa:c9:1a:75: a6:25:9a:60:f4:1d:62:ea:d1:ad:21:e2:f3:bc:7c:ab:35:8c: d6:ca:74:71:d6:84:da:40:db:94:ea:d5:9e:cf:a0:9a:a6:33: 27:13:d8:9a:c4:b0:a9:4a:39:b0:1e:e8:59:32:a8:02:bf:1d: bd:e0:b8:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEXwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY3QkIxMTAvBgNVBAUTKENDNTkyMTc2RDg4QzQyM0Y4ODU5QjUxOEI2QUQzMzRG RkY3Njc0MDkwHhcNMjUwOTA2MTcyMDUzWhcNMjUwOTEzMTcyMDUzWjAYMRYwFAYD VQQDEw02OGJjNmQ3NS1iYTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxyPEILx/wZZMbDgbS2pMkwt6+FKI+54+0ek0CN/pHRTravLCOlmLc3oKIxFS gA9zGkHZKWMmEWvQDcR1TRtY9KY7P7jmnQ31jzBzVrS1mvPR4/EZhE8fhddD/K9x kCrw/DTIlLLX4s+mn3Fk8C+dQI4bLIsa+1fGaloPSqoXOOdPJBBEXr+SXMykySnm l+lC0IwJ38FWgvdeXxrxxvDqlmo73umXuJEHxlSOb48gebndzAKRXeX1AeEXD9RA in15OPTJnVfgIvHMPZu7Nxxt2psWaRPgyuTMpnbLkPHOIHkIGSTbeUXQHbteKlZq 4pa2UcxmrNKj8VShBVS087Y5PwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA9cRx+D CKQtTIVLgujE/gMOyHYrMB8GA1UdIwQYMBaAFMxZIXbYjEI/iFm1GLatM0//dnQJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjdCQi9CREZCRjE4NjBF M0UxMUU5ODM2RjQwMTRDNEY5QUUwMi96RmtoZHRpTVFqLUlXYlVZdHEwelRfOTJk QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3pGa2hkdGlNUWotSVdiVVl0cTB6VF85MmRBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjdCQi9CREZCRjE4NjBFM0UxMUU5ODM2RjQwMTRDNEY5QUUwMi96RmtoZHRpTVFq LUlXYlVZdHEwelRfOTJkQWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDQH+sQxexiZhI2pV+Se9bEQStxHGUJh5603R1VIVObIoTOmTRfGeMn rZ2yl8TEX8j/Xux5RWWEBrX3AqSdFfolzNHkM7ZnuKZAMTlCcjmCEijfNerFtVrw n1Ee5CjC/j9vUsjSw6s20NRSxH0mS0jp/ZL+TQolYOFvvT+2weIZ4LDqY30JPCLO 1KcPVd9sI5ocYpN3CINBbQ5oKvC0SJwX13brTquDqEGlCdGviZKxYAKyEWghr6Qs yjeSCISQ3hO20PrJGnWmJZpg9B1i6tGtIeLzvHyrNYzWynRx1oTaQNuU6tWez6Ca pjMnE9iaxLCpSjmwHuhZMqgCvx294Li4 -----END CERTIFICATE-----Generated at Sat Sep 6 20:48:23 2025 by rpki-client